- Visit our offices, websites, social media pages,
- Use our products and services,
- Attend events, trainings, webinars, contests, or programs,
- Participate in a Corelight community such as that focused on open-source development,
- Participate in data collection efforts facilitated by us, or
- Receive communications from us.
In some circumstances, we may also collect, or our partners provide us with, publicly available information which may contain Personal Data that you have published or that has been made available online. The way in which our partners collect this information is detailed in their own privacy policies, available on their respective websites.
The types Personal Data we collect directly from you may include information such as:
- Commercial information,
- Financial account information,
- Professional or employment-related information,
- Visual information,
- Usage data information,
- Computer or device information,
- Behavioral information,
- Login information, and
- Internet activity information (cookies, web beacons, pixels, tags, etc.).
You agree not to provide or disclose any information that is sensitive in nature, such as, but not limited to, information relating to political opinions, ethnic origin, race, religious beliefs, genetic data, criminal history.
We also collect Personal Data from other sources for advertising purposes, which information includes commercial information, professional or employment-related information, education information, and internet activity information. We collect this information from third party providers, along with information such as mailing addresses, email addresses, phone numbers, job titles, behavior data, social media profiles, and LinkedIn URLs for purposes of targeted advertising, determining eligibility, event promotion, and verifying contact information. If you are not interested in receiving tailored advertising, you can visit this website to opt out of most companies that engage in such advertising.
Reasons for Collection
We collect and process your Personal Data for the purposes of providing you with the services you have requested from us. The legal basis we rely on when processing your personal data will be one of the following:
- Performance of the contract between you and us (and/or in preparation of entering into such contract),
- Corelight’s legitimate interests in running its business, and
- Compliance with a legal obligation to which we are subject.
If you fail to provide certain Personal Data when requested, we may not be able to provide the services that you have requested.
Data We Share
Corelight does not sell, rent, or lease your information. We may share your Personal Data with:
- Our vendors, contractors, subprocessors, or other service providers to support our legitimate business interests,
- Corelight affiliates,
- Event and promotion sponsors,
- Specific partners and resellers that offer supplementary services to those provided by Corelight and/or help sell our products and services,
- Third-party social media networks, advertising networks and websites, so that Corelight can market and advertise on third party platforms and websites,
- Third parties interested in your information in an anonymous or de-identified form,
- Government authorities, as required by law, or in the pursuit of available remedies or mitigation of damages,
- A buyer or other successor if we are involved in a reorganization, divestiture, merger, dissolution, or other corporate change.
We take appropriate precautions to protect your Personal Data including physical, administrative, and technical measures to help safeguard against unauthorized access or disclosure, loss, misuse, alteration, and destruction. Despite our efforts, no method of storage or transmission is 100% secure. The security and safety of your information also depends on you. You are solely responsible for protecting your password, limiting access to your devices, and signing out of websites after your sessions. If you have any questions about the security of our websites or feel that the security of any Corelight account you may have has been compromised, please contact us at firstname.lastname@example.org.
Corelight is an international company with offices around the world. Your Personal Data may be collected, transferred to, and stored by us in the United States and by our affiliates and third parties based in other countries. Consequently, your information may be processed outside of your country or jurisdiction, including places that are not subject to an adequacy decision by the European Commission or your local legislature or regulator, and that may not provide for the same level of data protection. We ensure that the recipient of your Personal Data offers an adequate level of protection and security, for instance by entering into the appropriate back-to-back agreements and, if required, standard contractual clauses or an alternative mechanism for the transfer of data as approved by the European Commission (Art. 46 GDPR) or other applicable regulators or legislators. Where required by applicable law, we will only share, transfer, or store your Personal Data outside of your jurisdiction with your prior consent.
We may retain your Personal Data for as long as is required to fulfill our legal obligations or the original purpose for which the information was collected. After such time, your Personal Data will be deleted. If there is any data that we are unable, for technical reasons, to delete, we will implement measures to prevent any further use of the information.
Corelight does not direct its websites and services at children. We do not knowingly collect Personal Data from children without first having obtained consent from a parent or guardian. If you are a parent or guardian and believe your child has provided us with Personal Data without your consent, please contact us and we will take steps to delete their Personal Data from our systems.
Subject to local data protection laws, you may have certain rights relating to your Personal Data. Depending on the applicable laws these rights may include the right to:
- Access a copy of your Personal Data in Corelight’s possession,
- Opt-out of certain disclosures of your Personal Data to third parties,
- Learn more about how Corelight processes your Personal Data,
- Rectify inaccurate Personal Data,
- Erase or delete your Personal Data,
- Withdraw any consent you have provided for the processing of your Personal Data,
- Transfer the data Corelight holds to another entity, and
- Object to the processing of your personal data.
To exercise your rights, please contact us using the methods described in the Contact section. We will use commercially reasonable efforts to comply with your request, typically within one month unless otherwise required by law, and will contact you if we need additional information from you in order to honor your request or verify your identity. If you are an employee of a Corelight customer, we recommend you contact your employer’s system administrator for assistance in correcting or updating your information.
Additionally, if you believe that we have not been able to assist with your complaint or concern and you are located in the European Economic Area or the United Kingdom, you have the right to lodge a complaint with the appropriate data protection authority in your country. If you work or reside in a country that is a member of the European Union or that is in the EEA, you may find the contact details for your appropriate data protection authority at website.
Attention: Legal Department
548 Market Street, PMB 77799
San Francisco, CA 94104-5401
Breach Notification procedures fall within our Incident Response process and comply with EU GDPR and other regulatory time reporting/notification requirements.