Privacy Policy

1. SMARTFENSE Privacy Commitment

Privacy is a fundamental right. It means keeping a User’s information private and giving them control over it—who it’s shared with, who can access it, for how long, and more.

DEFENSE BALANCE S.L. (hereinafter, “SMARTFENSE”) has always cared deeply about our customers’ and users’ privacy—even before regulations governing data protection were in place. For that reason, we only request the minimum information necessary to deliver our services.

This Policy is incorporated into and forms part of the SMARTFENSE Terms and Conditions of Service (the “Terms and Conditions”) and applies to any use of and/or access to the SMARTFENSE Service.

SMARTFENSE complies with current regulations on personal data protection, including in Spain’s Organic Law 3/2018 of December 5 on Personal Data Protection and Guarantee of Digital Rights (LOPD), and Regulation (EU) 2016/679 of the European Parliament and Council of April 27, 2016, on the General Data Protection Regulation (GDPR).

2. Scope of this Privacy Policy

This Privacy Policy applies to the websites www.smartfense.com and www.takesecurity.com, and to the services SMARTFENSE provides through these sites and its web platform. If you decide to contract SMARTFENSE’s services, we are prepared to sign an appropriate Data Processing Agreement (DPA) that provides more detailed terms governing data processing in connection with our services.

3. How this Policy is Organized

To make this information clear and easy to navigate, we’ve organized our Privacy Policy into three parts:

Part I: Information SMARTFENSE Collects and Controls (Data Controller)

How SMARTFENSE collects and uses information about website visitors, prospective customers, partners, resellers, users of SMARTFENSE products and services, and others who contact SMARTFENSE via forms or email addresses published on or linked from our websites.

Part II: Information SMARTFENSE Processes on your Behalf (Data Processor)

How SMARTFENSE handles data that you entrust to us when you use our products and services, or when you share personal or confidential information with us while seeking customer service or support.

Part III – General Provisions

Topics relevant to both Parts I and II, including SMARTFENSE’s security commitments and how we notify you when this Privacy Policy changes.

 

Part I: Information SMARTFENSE Collects and Controls (Data Controller)

1. Controller Identity

• Entity: DEFENSE BALANCE S.L.
• Address: C/ Santos Ovejero 1 – Office P1-03, 24008 León, León, Spain
• Email: privacy@smartfense.com
• Websites: www.smartfense.com and www.takesecurity.com

 

2. What Information does SMARTFENSE Collect

We collect information about you only when we have a legitimate purpose for it. SMARTFENSE will have information about you only if (a) you provide it, (b) we collect it automatically, or (c) we obtain it from a third party. Below, we describe scenarios in each category and the information collected.

2.1 Information you Provide to us

1. Account registration: When you purchase the service (directly or through one of our authorized partners), we request details to create an administrator user for the Service. To set up the account, we request information such as your name, phone number, email address, company name, and country. You may optionally add items like a profile photo, time zone, and language; these are not required for the system to function.
2. Event sign-ups and other forms: We record information you submit when (i) you register for events, including webinars or seminars; (ii) subscribe to our newsletter or other mailing lists; (iii) submit a form to download a product, white paper, or other materials; (iv) enter contests or respond to surveys; or (v) submit a form to request customer support, a quote, or to contact SMARTFENSE for any other purpose.
3. Payment processing: In our business relationships with partners and vendors, we need information to manage and process payments. We may request name, contact information, and banking or other payment account details. We do not store credit card data. We may store certain payment details to streamline future transactions.
4. Interactions with SMARTFENSE: We may record, analyze, and use your interactions with us—including email, phone, and chat conversations with our sales and support teams—to improve our interactions with you and other customers.

 

2.2 Information we Collect Automatically

1. Browser, device, and server data: When you visit our sites, we collect information that web browsers, mobile devices, and servers make available, such as IP address, browser type, language preference, time zone, referring URL, access date and time, operating system, mobile device manufacturer, and mobile network information. We include this in our logs to better understand our site visitors.
2. Cookies and tracking technologies: We use session and persistent cookies to identify users of our services and improve user experience. We embed unique identifiers in downloadable products to track product usage. We also use cookies, beacons, tags, scripts, and similar technologies to identify visitors, track on-site navigation, collect demographic information, understand email campaign effectiveness, and tailor engagement by tracking activity on our sites. For more details, please see our Cookie Policy.
3. Application logs: We collect information about your use of our products and services from application logs and internal usage analytics to understand how your needs can help us improve our products. This includes IP address, user agents, clicks, scrolls, features accessed, access times and frequency, generated errors, performance data, storage used, user settings and configurations, and devices used to access the services.

 

2.3 Information we Obtain from Third Parties

1. Authentication providers: Where technically available, SMARTFENSE may enable sign-in through compatible authentication providers (e.g., LinkedIn, Microsoft, or Google). These services verify your identity and may let you share certain personal information with us, such as your name and email address.
2. Partners, resellers, and service providers: If you contact any of our partners or resellers and express interest in our products or services, they may share your name, email address, company name, and other details with SMARTFENSE. If you register for or attend an event sponsored by SMARTFENSE, the organizer may share your information with us. SMARTFENSE may also receive information about you from review sites if you comment on reviews of our products and services.
3. Social networks and other public sources: When you provide feedback or reviews about our products, or interact with us on marketplaces, review sites, or social networks like Facebook, X (Twitter), LinkedIn, or Instagram via posts, comments, questions, or other interactions, we may collect publicly available data—including profile information—to connect with you, improve our products, better understand user reactions and issues, or republish your comments on our sites. Once collected, this information may remain with us even if you later remove it from those sites. SMARTFENSE may also aggregate and update information about you from other publicly available sources.

 

3. How we use your Information

Beyond the primary purpose of delivering the contracted services and the uses mentioned above, we may use your information to:

• Set up and maintain your account, and perform other tasks needed to provide our services (e.g., password resets, administrator access, backups, and data restore);
• Provide user support and analyze and improve our customer interactions;
• Detect and prevent fraud and other illegal activities, report misuse of the platform, and protect the rights and interests of SMARTFENSE, SMARTFENSE users, third parties, and the public;
• Communicate with you (e.g., by email) about resources you downloaded and services you subscribed to, changes to this Privacy Policy, changes to the Terms of Service, or other important notices;
• Keep you informed about new products and services, upcoming events, offers, promotions, and other information we think may interest you;
• Invite you to participate in surveys or request feedback on our products and services;
• Understand how users use our products and services, monitor and prevent issues, and improve our offerings;
• Update, expand, and analyze our records, identify new customers, and provide products and services that may interest you;
• Analyze trends, administer our websites, and track visitor navigation to understand what visitors are looking for and how to help them;
• Monitor and improve marketing campaigns and make relevant suggestions to users.

 

4. Legal Bases for Collecting and Using Information

Applicable legal bases for processing to SMARTFENSE: If you are in the European Economic Area (EEA), our legal basis for collecting and using personal information depends on the data and the context. Most of our collection and processing activities are based on (i) contract, (ii) one or more legitimate interests of SMARTFENSE or a third party that are not overridden by your data-protection interests, or (iii) your consent.

Withdrawal of consent: Where we rely on consent, you may withdraw it at any time. This will not affect processing that has already occurred.

Notice of legitimate interests: Where we rely on legitimate interests that are not otherwise specified above, we will clearly explain those interests at the time of collection.

5. Your Choices in the Use of Information

Opting out of non-essential emails: You can opt out of newsletters and other non-essential messages using the “unsubscribe” link in those emails. You will still receive essential notices, such as account notifications (password changes, renewal reminders, etc.), security incident alerts, security and privacy update notifications, and transaction- and payment-related emails.

Disabling cookies: You can disable cookies in your browser before visiting our sites. However, doing so may prevent certain site features from functioning properly.

Optional information: You can choose not to provide optional profile information, such as a photo. You can also delete or change optional profile details. You can always leave non-required fields blank on any website forms.

6. How we Share your Information

SMARTFENSE does not and will not sell your personal information. We share information only as described in this Policy, and only with parties that apply appropriate confidentiality and security safeguards. Depending on necessity, we may share your information with the following:

Employees and independent contractors: Employees and independent contractors of the relevant SMARTFENSE entities have access to information covered in Part I as needed. We require them to follow this Privacy Policy for the personal information we share with them.

Third-party service providers: We may share personal information and aggregated or anonymized information with third-party service providers we engage—such as marketing and advertising partners, event organizers, web analytics providers, and payment processors. They are authorized to use personal information only as needed to provide these services to us.

Partners: We may share your personal information with our partners and authorized resellers in your region solely to communicate with you about the services you’ve subscribed to. Where possible, we will offer you the option to stop working with a given partner.

Other cases: Additional scenarios where we may share information that apply to both Parts I and II are described in Part III.

7. Your Rights Concerning your Information as Data Controller or Data Processor

If you are in the EEA, you have the following rights under the GDPR regarding information SMARTFENSE holds about you. SMARTFENSE is committed to providing the same rights regardless of where you live.

1. Right of access: Obtain access to (and a copy of, if needed) categories of personal data we hold about you, including the source, purpose, and period of processing, and the recipients.
2. Right to rectification: Update or correct inaccuracies. Depending on the purpose for which we use your information, you may ask us to add information about you to our records.
3. Right to erasure: Request deletion of your personal data in certain circumstances, such as when it’s no longer needed for its original purpose.
4. Right to restrict processing: Request that we limit the use of your information in certain cases, such as when you’ve objected, but we need to verify whether we have compelling legitimate grounds.
5. Right to data portability: Transfer your information to a third party in a structured, commonly used, machine-readable format where processing is based on your consent or carried out by automated means.
6. Right to object: Object to certain uses, such as direct marketing.
7. Right to complain: Submit a complaint with the relevant supervisory authority if you have concerns about how we collect, use, or share your information. This right may not be available if your country lacks a data protection authority.

 

8. Data Retention

We retain personal information for as long as necessary for the purposes set out in this Policy. We may retain information longer where permitted or required by law—for example, to maintain suppression lists, prevent abuse, comply with legal claims or proceedings, enforce agreements, or for tax and accounting obligations. When we no longer have a legitimate need to process your information, we will delete or anonymize it in our active databases and store remaining information securely in backups, isolated from further processing, until deletion is feasible.

Part II: Information SMARTFENSE Processes on your Behalf (Data Processor)

1. Information Entrusted to SMARTFENSE and Purpose

To deliver SMARTFENSE’s services, we necessarily act as a processor (under your instructions) for your information. Your organization may therefore entrust SMARTFENSE with information it controls so you can effectively use our services or receive technical support.

This may include information about your employees (if you are a controller) or data you hold and use on someone else’s behalf for a specific purpose (if you are a processor). Such data can include first and last name, email address, phone number, IP address, User Agent, and other data, which will be stored on our servers while you use our services. All information entrusted to SMARTFENSE for service delivery is collectively called “Service Data.”

SMARTFENSE does not collect data for purposes other than those stated in this Policy, nor do we collect data by unfair or fraudulent means or in violation of applicable law. We apply data minimization and maintain processes to help ensure data is accurate, adequate, relevant, and not excessive for the scope and purpose of collection.

2. Ownership and Control of your Service Data

We recognize that you own your Service Data: We give you full control by enabling you to (i) access your Service Data, (ii) share it via compatible third-party integrations, and (iii) request export or deletion of your Service Data.

3. How we Process Service Data

We process your Service Data when you instruct us through modules in our services. For example, when you run a security awareness campaign using our service, we use information such as your employees’ names and email addresses to generate and send the requested campaign.

4. Ownership and Control of your Service Data

SMARTFENSE and third-party sub-processors: To provide parts of our services and product support, SMARTFENSE may engage third-party providers (for example, Amazon provides infrastructure for delivering the service and storing certain information).

Employees and independent contractors: We restrict employee access to Service Data to specific personnel and maintain logging and auditing. Employees may also access data you knowingly share with us for support or to import data into our products or services. We communicate our privacy and security guidelines to employees and strictly enforce safeguards within SMARTFENSE.

Third-party integrations you enable: Some products and services may support optional integrations with third-party products and services. If you enable such an integration, the third party may access your Service Data and personal information about you. We recommend reviewing the privacy practices of those third parties before enabling integrations. SMARTFENSE is not responsible for their processing.

Other cases: Additional scenarios common to Parts I and II are described in Part III.

5. Retention of Service Data

We retain data in your account for as long as you choose to use SMARTFENSE Services—that is, until the purpose for which it was collected is fulfilled (GDPR Art. 5(e)) or until you exercise your right to deletion or modification. After you cancel your SMARTFENSE user account, your data will be removed from the active database during the next cleanup, which occurs once every 6 months. Data removed from the active database will be deleted from backups after 3 months from the date of removal from production, unless legal or tax obligations require retention.

6. Data Subject Requests

If you are in the EEA and believe we store, use, or process your information on behalf of one of our customers, please contact that customer to access, correct, delete, restrict, object to processing, or export your personal data. We will support our customer in responding within a reasonable time.

6.1 Controller Identity

• Entity: DEFENSE BALANCE S.L.
• Address: C/ Santos Ovejero 1 – Office P1-03, 24008 León, León, Spain
• Email: privacy@smartfense.com
• Websites: www.smartfense.com and www.takesecurity.com

 

6.2 Contacting the Data Protection Officer

To ensure ongoing compliance and to support your rights under applicable law, SMARTFENSE has appointed a Data Protection Officer. You can contact our DPO at:

• Data Protection Officer: dpo@smartfense.com

 

Part III – General Provisions

1. Processing of Personal Data

According to international data protection regulations, particularly Regulation (EU) 2016/679 of the European Parliament and Council of April 27, 2016, on the General Data Protection Regulation (GDPR), there are different roles when identifying the type of data processing. We’ve structured this Privacy Policy to clarify SMARTFENSE’s role as a Data Controller (Part I) and as a Data Processor (Part II).

Subscribers who purchase our Services (“Customers”) are solely responsible for setting policies and ensuring compliance with all applicable laws and regulations, as well as privacy policies, agreements, or other obligations related to collecting personal data from individuals (“data subjects”) in connection with their use of our Services.

1.1 Data Accuracy

Users guarantee and are responsible for the accuracy, validity, and authenticity of personal data provided, and agree to keep it up to date. Users agree to provide complete and correct information in contact or subscription forms. We collect only what is strictly necessary to deliver the service, consistent with the principle of data minimization (GDPR Art. 5(b)).

1.2 Informed Consent

Users acknowledge they have been informed of the conditions governing personal data protection and agree to the processing of their data by SMARTFENSE for the purposes described in this Privacy Policy. Using the Services means you accept this Privacy Policy and the Terms and Conditions.

If you do not accept the processing of your data as described, we will not collect it,which may prevent SMARTFENSE from providing the service.

1.3 Principles Applicable to Data Processing

When processing your personal data, SMARTFENSE applies the following GDPR-aligned principles:

• Lawfulness, fairness, and transparency: We will always request consent for processing your personal data for one or more specific purposes and will inform you transparently in advance.
• Data minimization: We request only the data strictly necessary for the stated purposes.
• Storage limitation: Data is retained only as long as necessary for the stated purposes. For subscriptions, SMARTFENSE periodically reviews mailing lists and removes records that have been inactive for an extended period.
• Integrity and confidentiality: Your data is handled to ensure its security, confidentiality, and integrity. SMARTFENSE takes necessary precautions to prevent unauthorized access or misuse by third parties.

 

1.4 Children’s Personal Information

We collect data only from individuals 16 years of age or older (GDPR Art. 8.1). SMARTFENSE reserves the right to take appropriate steps to verify age (GDPR Art. 8.2). If we learn a child under 16 has provided personal information, we will take steps to delete it. If you believe a child under 16 has provided us with their personal information, please email privacy@smartfense.com with the details, and we will remove it. Suppose you use our products to collect information about individuals who may be minors. In that case, you acknowledge and agree that you are responsible for complying with laws and regulations governing the protection of such personal data.

1.5 International Transfers

To provide the Services, you may authorize certain third-party companies assisting us to access data. You can view the list of authorized processors. SMARTFENSE assures you that your data will be processed only for declared purposes. By accepting our contract, you authorize us to transfer your personal data—within our organization or to external third parties—including service delivery functions, service providers, and/or data processors working on SMARTFENSE’s behalf.

By accessing or using our products and services or by providing personal information or Service Data to us, you understand that your information may be processed, transferred, and stored in the United States, the European Economic Area (EEA), and other countries where SMARTFENSE operates. Such transfers are subject to appropriate data protection agreements, including the EU Standard Contractual Clauses, where the GDPR applies. You may write to privacy@smartfense.com to request a copy of our data processing agreement.

In all authorized transfers, SMARTFENSE contractually requires recipients to protect personal information with appropriate security measures, prohibits their use of personal information for their own purposes, and prevents disclosure to other parties.

SMARTFENSE applies strict criteria when selecting service providers to meet its data protection obligations and commits to entering into data processing agreements requiring, among other things: appropriate technical and organizational measures; processing personal data only for agreed purposes and following SMARTFENSE’s documented instructions; and deleting or returning data at the end of service provision.

1.6 Data Processing Agreement

To help you meet your data protection obligations, we are prepared to sign an appropriate Data Processing Agreement (DPA). You can request a DPA via our contact forms or by emailing privacy@smartfense.com.

1.7 External Links on our Websites

Some pages on our websites may link to sites not covered by this Privacy Policy. If you submit personal information to any such third-party site, your information will be governed by that site’s privacy policy. As a safety measure, we recommend not sharing personal information with third parties unless you have reviewed their privacy policies and are comfortable with their practices.

1.8 Disclosures Required by Law

We may be required to retain or disclose your personal information and Service Data to comply with applicable laws, regulations, legal processes, or governmental requests, including national security requirements. We may also disclose personal information and Service Data to third parties when necessary to prevent fraud, filter spam, investigate suspected illegal activity, enforce our agreements or policies, or protect the safety of our users.

1.9 Business Transfers

We do not intend to sell our business. In the unlikely event of a sale, acquisition, or merger, we will ensure the acquiring entity is legally obligated to honor our commitments to you. We will notify you by email or a prominent notice on our site of any change in ownership or use of your personal information and Service Data, and of your choices regarding your information.

2. How Secure is your Information?

SMARTFENSE uses appropriate technology, clearly defined personnel practices, and robust information security measures to safeguard personal data.

We invest heavily in security measures designed to prevent alteration, loss, and unauthorized access or use of data. While it is impossible to guarantee absolute security for Internet communications, SMARTFENSE implements human, administrative, and technical safeguards aligned with international best practices.

For details on security measures implemented across SMARTFENSE infrastructure, networks, and Services, refer to our “Cloud Security, Trust, and Assurance” document, which describes Infrastructure, Architecture Diagrams, Network Security (Firewalls; DDoS mitigation; anti-spoofing/sniffing; Web Application Firewall), Application Security (Authentication; Cookie Policy; Error Messages; Security Testing), Availability, Databases, Encryption at Rest, Encryption in Transit, Backup Policy, and more.

Personnel at SMARTFENSE and anyone involved in processing personal data are required to maintain confidentiality, and this obligation continues after the contractual relationship ends. SMARTFENSE includes data protection clauses in its contracts accordingly.

SMARTFENSE is committed to confidentiality regarding the personal data you provide. Any disclosure of your personal data will follow the principles of purpose limitation, confidentiality, and security.

The official SMARTFENSE Service operates through the platform available at takesecurity.com. In exceptional cases where a Customer hosts the platform on its own infrastructure and external domain for security knowledge testing, the Customer is solely responsible for the content and information provided there; DEFENSE BALANCE assumes no responsibility for such content.

3. Compliance with this Privacy Policy

We take all reasonable steps, including periodic reviews, to ensure your personal information is used in accordance with this Privacy Policy. If you have concerns about our adherence to this Policy or our use of your personal information, please write to privacy@smartfense.com. We will contact you and, if necessary, coordinate with the relevant regulatory authorities to address your concerns.

4. Changes to this Policy

We update this Privacy Policy from time to time, so please review it regularly. The last modification was on May 1, 2022. We may change the Policy at any time by posting a service announcement or emailing your primary email address. If we make significant changes that affect your rights, we will provide at least 30 days’ notice to your primary email address. If you have not verified your email address, you may miss important notifications. If you believe the updated Policy affects your rights regarding our products or services, you may discontinue use by emailing us within 30 days. Your continued use after the effective date of changes constitutes acceptance. We will not email you about minor changes. If you are concerned about how your personal information is used, please check https://www.smartfense.com/privacy periodically.

5. Exercising Your Rights

5.1 What are my Rights and How do I Exercise them?

Under applicable data protection laws, you have the following rights regarding the processing of your personal data. Exercising these rights is free of charge, except where requests are clearly unfounded or excessive, particularly if repetitive. These rights include the following:

1. Right to be informed: You have the right to clear, concise, and accessible information—using plain language—about how your personal data is used and processed.
2. Right of access: You can request confirmation at any time as to whether we are processing your personal data, obtain access to it and information about the processing, and receive a copy. The first copy is free; reasonable administrative fees may apply for additional copies. We may ask you to verify your identity or provide information necessary to process your request.
3. Right to rectification: You may request correction of inaccurate, outdated, or incomplete personal data. You can also ask us to complete incomplete data, including by providing a supplementary statement.
4. Right to erasure: You may request deletion of your personal data when, among other reasons, it is no longer needed for the purposes for which it was collected. This right is not absolute; we may retain data in a restricted manner in the cases allowed by law.
5. Right to restrict processing: You may request that we limit processing—which means we may store your data but not process it further—if any of the following applies:
   • You contest the accuracy of the data, for a period allowing us to verify it;
   • Processing is unlawful and you oppose deletion and request restriction instead;
   • We no longer need the data for processing purposes, but you need it to establish, exercise, or defend legal claims;
   • You have objected to processing while we verify whether our legitimate grounds override yours.
6. Right to data portability: You may request transmission of your data to another controller in a structured, commonly used, machine-readable format. This applies where processing is based on consent or contract and carried out by automated means.
7. Right to object: You may object to processing of your personal data, including profiling. We will honor your objection unless we demonstrate compelling legitimate grounds or need the data to establish, exercise, or defend legal claims.
8. Right not to be subject to automated decisions, including profiling: You have the right not to be subject to a decision based solely on automated processing—including profiling—that produces legal effects concerning you or similarly significantly affects you, unless required for a contract, authorized by law, or based on your consent.
9. Right to withdraw consent: Where we rely on your consent (e.g., to send marketing communications), you may withdraw it at any time. We will stop the specific processing unless another legal basis applies, in which case we will notify you.
10. Right to complain: You may exercise these rights by contacting Customer Support or emailing dpo@smartfense.com with proof of identity and sufficient details to process your request.

 

5.2 Data Protection Officer

We have appointed a Data Protection Officer to oversee our handling of your personal information in accordance with this Privacy Policy. For questions or concerns about our privacy practices, email dpo@smartfense.com.

6. Additional Country-specific Provisions

6.1 Argentina

Personal data collected, stored, used, and/or processed by SMARTFENSE, as described in this Policy, is handled in accordance with Argentina’s Personal Data Protection Law No. 25.326.

SMARTFENSE (in Argentina, registered commercially as DIGITAL CONTENT MACHINE S.A.) is duly registered with the Agency for Access to Public Information as a Data Controller, Registration No. RL-2020-33258012-APN-DNPDP#AAIP. Official information: https://www.argentina.gob.ar/aaip/datospersonales/reclama/30715179373–RL-2020-33258012-APN-DNPDP#AAIP

In addition, databases for which SMARTFENSE is the Data Controller are registered under Argentine law:

• Customers and Partners: Registration No. RL-2020-36242988-APN-DNPDP#AAIP
• Employees: Registration No. RL-2020-36233416-APN-DNPDP#AAIP

 

Data subjects may exercise their right of access free of charge at intervals of no less than six months, unless a legitimate interest is shown, as established in Article 14(3) of Law No. 25.326.

The National Directorate for Personal Data Protection, the enforcement authority for Law No. 25.326, handles complaints regarding non-compliance with personal data protection rules.

6.2 Brazil

Personal data collected, stored, used, and/or processed by SMARTFENSE, as described in this Policy, is handled in accordance with Brazil’s General Data Protection Law (Law No. 13.709/2018, “LGPD”). Individuals using or accessing our website or Services expressly consent to our collection, use, storage, and processing of personal data for the purposes described in this Policy.

6.3 Supplemental Privacy Notice for California Residents

The California Consumer Privacy Act (“CCPA”), effective January 1, 2020, governs how we handle personal data of California residents and grants certain rights regarding personal data.

SMARTFENSE acts as both a “business” and a “service provider” under the CCPA. The following supplemental policy applies to information we collect when acting as a business—i.e., when we interact with you directly.

When we act as a service provider (for example, when providing services to another company you interact with), we follow that company’s instructions regarding how we process your personal data. For information about how those companies process your personal data, please contact them directly.

This supplemental notice is effective April 1, 2022, applies only to California residents, and may change over time. The general Privacy Policy continues to apply to the extent it applies to you as a California resident. If you are a California resident, we are required to disclose certain uses and disclosures in a specified format and inform you of certain rights you may have. Capitalized terms used here have the same meaning as in the general Privacy Policy.

6.3.1 Categories of Information we may Collect

• Identifiers
• Demographic information
• Commercial information
• Internet or other electronic network activity information
• Geolocation data
• Audio, electronic, visual, or similar information
• Professional or employment-related information

 

For each category, we collect information from various sources, including directly from you, from your devices, from social media profiles, and/or from third-party providers. We collect information to deliver services, protect our customers and ourselves (including the services), and improve the services. We do not share personal data with third parties as defined by the CCPA.

6.3.2 Additional Disclosures

We do not sell personal data, including data of individuals under 16.

We have disclosed the following categories of personal data for a business purpose in the 12 months preceding the last update to this Policy.

6.3.3 Identifiers

• Demographic information
• Commercial information
• Internet or other electronic network activity information
• Geolocation data
• Audio, electronic, visual, or similar information
• Professional or employment-related information
• Inferences drawn from any of the above

 

We have not disclosed any personal data in exchange for valuable consideration in the 12 months preceding the last update to this Policy.

6.3.4 Your Rights

You may have the following rights regarding your personal data:

• The right to access, including the right to know the categories and specific pieces of personal data we collect;
• The right to deletion of your personal data, subject to certain limitations under applicable law;
• The right to request disclosure of information collected;
• Geolocation data;
• The right to disclosure of information “sold” (for value) and;
• The right not to be discriminated against for exercising rights under California law.

 

To exercise these rights, email privacy@smartfense.com. Please be as specific as possible about the personal data you wish to access. After receiving your request, we will review it, determine whether we can verify your identity, and process it accordingly. If we need additional information to verify your identity, we will let you know. We will respond within 45 days of receipt or notify you if more time is needed.

If you prefer, you may designate an authorized agent to submit a request on your behalf.

6.3.5 Contact

If you have questions about this Policy or SMARTFENSE’s privacy practices, contact us at privacy@smartfense.com.