Global
SecureWorks Privacy Policy
About SecureWorks
With over 2,000 clients, SecureWorks, Inc. ("SecureWorks") is one of the market's leading Security as a Service providers. Organizations are protected from external and internal cyber-threats through SecureWorks' On-Demand Security Information and Event Management (SIEM) platform, the SecureWorks Counter Threat Unit™ and three fully synchronous Security Operations Centers (SOCs) staffed with SANS GIAC certified analysts working 24x7 to safeguard client systems.
The Information SECUREWORKS Collects via its Website
This site is provided by SecureWorks. SecureWorks collects information in several ways from different parts of this site. SecureWorks collects personal information from you when you register with this site. SecureWorks also may ask you for personal information at other times, such as when you ask a question or report a problem with this site. If you contact SecureWorks, SecureWorks may keep a record of that session or correspondence, including a record of your email address. SecureWorks may also occasionally ask users to complete surveys for research purposes. There also may be services on this site that require you to fill out an online form or send SecureWorks an email message in order to utilize these services. SecureWorks collects any information that you provide, including any personal information.
SecureWorks also may collect IP addresses and domain names of users of this site to measure the number of visits, pages visited, average time spent on this site, and similar items.
"Cookies" are used in connection with this site. A cookie is a small amount of identifier data that is sent to your browser from a web server and stored on your computer's hard drive. By using cookies, information is potentially collected without your express knowledge. Most browsers are initially set to accept cookies but you can change the setting to refuse cookies or to be alerted when cookies are being sent. While refusal to accept cookies will not prevent the use of portions of this site, some portions of this site may not function properly without cookies.
How SecureWorks Uses the Information it Collects
SecureWorks uses the information it collects through this site to improve its marketing and promotional efforts, to improve its content, and to customize this site's services, content, and layout. SecureWorks may provide the information it collects through this site to SecureWorks business partners and to third parties who provide services on SecureWorks behalf. SecureWorks may use the information it collects through this site to inform you of new services, changes, or promotions. If you do not want us to send you this type of information, please let us know by contacting us at 404-327-6339. We will not disclose your personal information to third parties except as described in this Privacy Policy without first informing you of such change in our disclosure practices and providing you a choice regarding such disclosure.
Generally, SecureWorks may use cookies and the information they provide to: (a) remind it of who you are; (b) access your account information in order to deliver to you better and more personalized service; (c) estimate its audience size; (d) determine the nature and extent of repeat usage; and (e) measure certain traffic patterns to understand how users' habits are similar or different from one another, so that SecureWorks may improve its site.
SecureWorks understands the importance of privacy and confidentiality to users of this site. SecureWorks will not share personal information you submit through this site with companies not affiliated with SecureWorks for purposes of marketing or promoting events, products, or similar items, unless such events, products, or similar items are related to SecureWorks, and except that SecureWorks may, from time to time, make personal information available to selected third parties, but only in the aggregate.
SecureWorks may provide the information it collects through this site to one or more third parties in the event that all or part of SecureWorks or all or part of SecureWorks assets are acquired by, merged with, sold to, or otherwise disposed of to one or more third parties (including, without limitation, in the event of bankruptcy). SecureWorks may also disclose information it collects through this site when required to do so by a court, regulatory agency, subpoena, law, regulation, or other body of competent jurisdiction and authority, and for administrative and other purposes that SecureWorks deems necessary to maintain, service, and improve its products and services and to protect its rights and property. Finally, if you become involved in any violation of security, SecureWorks may release information about you to system administrators at other sites in order to assist them in resolving security incidents.
Integrity and Security
SecureWorks employs commercially reasonable managerial and technical measures to help protect the security and integrity of the personal information it collects online through this site. You acknowledge, however, that no data transmission over the Internet can be guaranteed to be 100% secure. As a result, while SecureWorks strives to protect your personal information, SecureWorks cannot ensure the security of any information you transmit to or from this site.
No Collection of Information from Children
SecureWorks does not intend to collect personal information from children who identify themselves as being under 18 years of age. Children should not provide personal information on this site, and should ask their parents to submit a request on their behalf if they want to receive information related to this site.
Privacy Practices of Other sites
This Privacy Policy only address the use and disclosure of information SecureWorks collects online through this site, not information that SecureWorks collects through other sources. This site may include links to the sites of SecureWorks' business partners or others. SecureWorks is not responsible for these other sites' privacy practices, which may be different from SecureWorks' privacy practices.
Contacting SecureWorks About Your Personal Information
If you would like to review the personal information that SecureWorks has collected about you through this site in order to verify its accuracy and completeness, or if you have a question or complaint regarding SecureWorks' privacy practices, please contact SecureWorks at 404-327-6339.
SecureWorks EU and Swiss Safe Harbors Policy
This Section of the Privacy Policy describes how SecureWorks handles personal data of representatives of, and event data related to, certain clients from the European Union and Switzerland in connection with the delivery of the following managed security services: Intrusion Prevention Systems (IPS), Intrusion Detection Systems (IDS), Log Monitoring, Log Retention, Host IPS, Firewall Monitoring, Firewall Management, Vulnerability Scanning and Security Incident Management (SIM) On-Demand and other managed security and consulting services ("Covered Services") Specifically, SecureWorks adheres to the EU Safe Harbor Privacy Principles ("EU Safe Harbor") and to the Swiss EU Safe Harbor Privacy Principles (“Swiss Safe Harbor” and together with the EU Safe Harbor, the “European Safe Harbors”) with respect to certain personally identifiable information that it receives from Covered Services clients in the European Union and Switzerland related to its services ("European Personal Data"). SecureWorks has various other service offerings and data collections (for example, consulting services) which are not covered by this Section of the Privacy Policy, nor by SecureWorks' participation in the European Safe Harbors and SecureWorks makes no European Safe Harbors representations with respect to any data collected or used in these service offerings or data collections. For further background about the European Safe Harbors, please refer to the U.S. Department of Commerce's website at http://export.gov/safeharbor/.
Collection and Use of European Personal Data
From its clients, SecureWorks may collect name, title, address, phone, fax, pager number, and other contact information ("Contact Data") for purposes of contacting clients as necessary or appropriate to provide or support the Covered Services. Where permitted by law, SecureWorks may also use this Contact Data to communicate regarding SecureWorks products or services, and disclose such data to subsidiaries, business partners and independent resellers of SecureWorks services for the same purposes. With respect to any sharing of European Personal Data for purposes of marketing SecureWorks products and services, SecureWorks obtains promises from its subsidiaries, business partners and independent resellers that such entities will use and disclose the European Personal Data for purposes of marketing SecureWorks products and services only. Individuals may opt-out of further disclosures of their European Personal Data from SecureWorks to subsidiaries, business partners and independent resellers, and further uses of their data by SecureWorks for marketing, by contacting SecureWorks at 404-327-6339. If you receive a marketing communication from one our subsidiaries, business partners or independent resellers, you should opt-out with that entity directly.
In connection with providing the Covered Services, SecureWorks may collect passwords, user names, and other data from client networks, which may incidentally include European Personal Data ("Event Data") for the exclusive purposes of performing the Covered Services on behalf of its clients. SecureWorks does not control the content of the Event Data as this data is securely transmitted to SecureWorks by its clients' network assets. This Event Data is merely stored and processed by SecureWorks and clients are informed that the Event Data may be transmitted outside the EU or Switzerland. Clients are responsible for warranting that the client had the full authority to transmit such Event Data to SecureWorks for purposes of the Covered Services. At all times with respect to Event Data, and not for any other purpose under US federal or state law, SecureWorks acts as a mere "data processor" (as that term is defined under applicable EU or Swiss law or otherwise referred to under the European Safe Harbors as an "agent") on behalf of its clients.
Data Integrity and Access
SecureWorks takes commercially reasonable precautions to protect European Personal Data from loss, misuse and unauthorized access, disclosure, alteration, and destruction.
To the extent necessary or appropriate consistent with its role as a data processor, SecureWorks makes reasonable efforts to keep Event Data reliable for its intended use, accurate, current, and complete. SecureWorks makes reasonable efforts to keep all other European Personal Data reliable for its intended use, accurate, current, and complete. SecureWorks also provides client contacts with the opportunity to access, review and correct their own Contact Data, and otherwise provides clients access in accordance with the European Safe Harbors. SecureWorks will respond to the request within 30 days.
As a data processor, SecureWorks has no direct relationship with the individuals whose European Personal Data may be included in Event Data processed by SecureWorks. Individuals, who may be clients' customers or employees, seeking to correct, amend or delete European Personal Data included in Event Data should first contact their company's representative (i.e., SecureWorks' client), the data controller, who provided the data to SecureWorks. The client will then provide access to the individual as determined under the applicable local data protection law and SecureWorks will cooperate with the client per the established contractual arrangements.
Other Disclosures
SecureWorks may also disclose European Personal Data as necessary in connection with the sale or transfer of all or part of its business, provided that it will notify affected clients in accordance with the procedure for changing this Privacy Statement as noted above. In situations where SecureWorks discloses European Personal Data to any third parties acting as "agents" on behalf of SecureWorks, SecureWorks will require the recipient to protect the data in accordance with the relevant principles in the European Safe Harbors, or otherwise take steps to ensure that the European Personal Data is appropriately protected. SecureWorks may also disclose European Personal Data where required or permitted by law, where SecureWorks believes that such disclosures are appropriate in connection with a law enforcement request or otherwise permitted by the European Safe Harbors, or in order to investigate, prevent, or take action regarding illegal activities or suspected fraud, or enforce or apply SecureWorks agreements.
Questions
If you have any questions about this European Safe Harbors Privacy Statement, or if you would like to request access to European Personal Data that SecureWorks may maintain about you, please contact us as follows:
Jim Ulam
General Counsel
SecureWorks, Inc.
One Concourse Pkway, Suite 500
Atlanta, GA 30328
Email: EUSafeHarbor@SecureWorks.com
Any questions regarding SecureWorks' European Safe Harbors Participation should first be directed to the SecureWorks contact above. If you do not receive acknowledgment of your inquiry or your inquiry has not been satisfactorily addressed, you may then contact the EU or Swiss Data Protection Authorities for further information.
Changes to This Privacy Policy
SecureWorks can revise this Privacy Policy (including the European Safe Harbors Policy) at any time by updating this posting. Please consult this Privacy Policy regularly.
