This Privacy Policy describes how Andromeda Security and its affiliated companies (collectively, “Andromeda”, "we", "our" or "us") collects, stores, uses, and discloses personal data.
If you are a business customer, hereby referred to as a User or a visitor of our website or a prospective customer, hereby referred to as a Prospect, please read this Privacy Policy carefully and make sure that you fully understand it.
Andromeda is the "data processor" of its customers' end-users' personal data, which we process on behalf of our customer (who is the "data controller" of such data), strictly in accordance with their reasonable instructions subject to our DPA (data processing addendum) and other commercial agreements with such customer. This Privacy Policy does not apply where we process personal data on behalf of our customers in our role as a data processor.
You are not legally required to provide us with any personal data. If you do not wish to provide us with your personal data, or to have it processed by us or any of our service providers (as described below), please do not provide it to us and avoid any interaction with us or with our Services.
Interpretation
The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.
Definitions
For the purposes of this Privacy Policy:
- Account means a unique account created for You to access our Service or parts of our Service.
- Business, refers to the Company as the legal entity that collects Consumers' personal information and determines the purposes and means of the processing of Consumers' personal information, or on behalf of which such information is collected and that alone, or jointly with others, determines the purposes and means of the processing of consumers' personal information, that does business in the State of California.
- Company (referred to as either "the Company", "We", "Us" or "Our" in this Agreement) refers to Andromeda Security, 1505 Fairway Drive, Los Altos, CA 94024 USA.
- Consumer, for the purpose of the CCPA (California Consumer Privacy Act), means a natural person who is a California resident. A resident, as defined in the law, includes (1) every individual who is in the USA for other than a temporary or transitory purpose, and (2) every individual who is domiciled in the USA who is outside the USA for a temporary or transitory purpose.
- Cookies are small files that are placed on Your computer, mobile device or any other device by a website, containing the details of Your browsing history on that website among its many uses.
- Country refers to: California, United States
- Device means any device that can access the Service such as a computer, a cellphone or a digital tablet.
- Personal Data is any information that relates to an identified or identifiable individual.For the purposes of the CCPA, Personal Data means any information that identifies, relates to, describes or is capable of being associated with, or could reasonably be linked, directly or indirectly, with You.
- Sale, for the purpose of the CCPA (California Consumer Privacy Act), means selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating orally, in writing, or by electronic or other means, a Consumer's personal information to another business or a third party for monetary or other valuable consideration.
- Service refers to the Website.
- Service Provider means any natural or legal person who processes the data on behalf of the Company. It refers to third-party companies or individuals employed by the Company to facilitate the Service, to provide the Service on behalf of the Company, to perform services related to the Service or to assist the Company in analyzing how the Service is used.
- Third-party Social Media Service refers to any website or any social network website through which a User can log in or create an account to use the Service.
- Usage Data refers to data collected automatically, either generated by the use of the Service or from the Service infrastructure itself (for example, the duration of a page visit).
- Website refers to Andromeda Security, accessible from https://andromedasecurity.com.
- You means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.
Data Collection
Information You Provide to Us
We collect information you provide directly to us. For example, you share information directly with us when you fill out a form, send us an email, communicate with us via third-party platforms, request customer support, or otherwise communicate with us. The types of personal information we may collect include your name, email address, phone number, company name, and any other information you choose to provide.
Information We Collect Automatically When You Interact with Us
When you access or use our Site or use our Service or otherwise transact business with us, we automatically collect certain information, including:
- Device and Usage Information: We collect information about how you access our Site, including data about the device and network you use, such as your hardware model, operating system version, mobile network, IP address, unique device identifiers, browser type, and app version. We also collect information about your activity on our Site, such as access times, pages viewed, links clicked, and the page you visited before navigating to our Site.
- Information Collected by Cookies and Similar Tracking Technologies: We (and our service providers) use tracking technologies, such as cookies and web beacons, to collect information about you. Cookies are small data files stored on your hard drive or in device memory that help us improve our Site and your experience, see which areas and features of our Site are popular, and count visits. Web beacons (also known as “pixel tags” or “clear GIFs”) are electronic images that we use on our Site and in our emails to help deliver cookies, count visits, and understand usage and campaign effectiveness. For more information about cookies and how to disable them, see the Cookies section below.
Information We Collect from Other Sources
We obtain information from third-party sources. For example, we may collect information about you from advertising networks, data analytics providers, and mailing list providers.
Information We Derive
We may derive information or draw inferences about you based on the information we collect. For example, we may make inferences about your location based on your IP address or infer that you are looking to purchase certain products based on your browsing behavior and past purchases.
Data Uses
We use the information we collect to promote our services and to deliver the products and services you request. We also use the information we collect to:
- Provide, maintain, and improve our products and services;
- Personalize and improve your experience on our Site;
- Send you technical notices, security alerts, and support and administrative messages;
- Respond to your comments and questions and provide customer service;
- Communicate with you about products, services, and events offered by Andromeda and others and provide news and information that we think will interest you.
- Monitor and analyze trends, usage, and activities in connection with our Site;
- Personalize the advertisements you see on third-party platforms and websites (for more information, see the Advertising and Analytics section below);
- Detect, investigate, and prevent security incidents and other malicious, deceptive, fraudulent, or illegal activity and protect the rights and property of Andromeda and others;
- Debug to identify and repair errors in our Site;
- Comply with our legal and financial obligations; and
- Carry out any other purpose described to you at the time the information was collected.
Data Location
We and our authorized Service Providers and Subprocessors, (defined below) maintain, store and process personal data in the United States, and other locations, as reasonably necessary for the proper performance and delivery of our Services, or as may be required by law.
While privacy laws may vary between jurisdictions, Andromeda is committed to protect personal data in accordance with this Privacy Policy and customary industry standards, and such appropriate lawful mechanisms and contractual terms requiring adequate data protection, regardless of any lesser legal requirements that may apply in the jurisdiction to which such data is transferred.
Data Retention
We retain personal data for as long as we deem it as reasonably necessary in order to maintain and expand our relationship and provide you with our Services and offerings; in order to comply with our legal and contractual obligations; or to protect ourselves from any potential disputes (i.e. as required by laws applicable to log-keeping, records and bookkeeping, and in order to have proof and evidence concerning our relationship, should any legal issues arise following your discontinuance of use), all in accordance with our data retention policy.
To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and the applicable legal requirements.
If you have any questions about our data retention policy, please contact us by email at
privacy@andromeda.com.
Data Disclosure
We share personal information in the following circumstances or as otherwise described in this policy:
- We share personal information with vendors, service providers, and consultants that need access to personal information in order to perform services for us, such as companies that assist us with web hosting, fraud prevention, customer service, and marketing and advertising.
- We may disclose personal information if we believe that disclosure is in accordance with, or required by, any applicable law or legal process, including lawful requests by public authorities to meet national security or law enforcement requirements.
- We may share personal information if we believe that your actions are inconsistent with our user agreements or policies, if we believe that you have violated the law, or if we believe it is necessary to protect the rights, property, and safety of Andromeda, our users, the public, or others.
- We share personal information with our lawyers and other professional advisors where necessary to obtain advice or otherwise protect and manage our business interests.
- We may share personal information in connection with, or during negotiations concerning, any merger, sale of company assets, financing, or acquisition of all or a portion of our business by another company.
- We share personal information with your consent or at your direction.
We also share aggregated or de-identified information that cannot reasonably be used to identify you.
Data Security
We implement systems, applications and procedures intended to secure your personal data, to minimize the risks of theft, damage, loss of information, or unauthorized access or use of information. However, we cannot guarantee that our Sites or Services will be immune from any wrongdoings, malfunctions, unlawful interceptions or access, or other kinds of abuse and misuse.
Data Subject Rights
Individuals have rights concerning their personal data. Please contact us by e-mail at:
privacy@andromedasecurity.com if you wish to exercise your privacy rights under any applicable law, including the EU or UK General Data Protection Regulation ("GDPR") or the California Consumer Privacy Act ("CCPA"), such as - to the extent applicable - the right to know/request access to (specific pieces of personal data collected; categories of personal data collected; categories of sources from whom the personal data was collected; purpose of collecting personal data; categories of third parties with whom we have shared personal data), to request rectification or erasure of your personal data held with Andromeda Security, or to restrict or object to such personal data's processing (including the right to direct us not to sell your personal data to third parties now or in the future), or to port such personal data, or the right to equal services and prices (e.g. freedom from discrimination) (each to the extent available to you under the laws which apply to you). If you are a GDPR-protected individual, you also have the right to lodge a complaint with the relevant supervisory authority in the EU or the UK, as applicable.
Please note that when you ask us to exercise any of your rights under this policy or applicable law, we may need to ask you to provide us certain credentials to make sure that you are who you claim you are, to avoid disclosure to you of personal data related to others and to ask you to provide further information to better understand the nature and scope of data that you request to access. Such additional data will be then retained by us for legal purposes (i.e., as proof of the identity of the person submitting the request).
We may redact from the data which we will make available to you, any personal data related to others.
Advertising and Analytics
We allow others to provide analytics services and serve advertisements on our behalf across the web and in mobile apps. These entities may use cookies, web beacons, device identifiers, and other technologies to collect information about your use of our Site and other websites and applications, including your IP address, web browser, mobile network information, pages viewed, time spent on pages or in mobile apps, links clicked, and conversion information. This information may be used by Andromeda and others to, among other things, analyze and track data, determine the popularity of certain content, deliver advertising and content targeted to your interests on our Site and other websites, and better understand your online activity.
Cookies
We and our Service Providers use cookies and other technologies for performance, tracking, analytics and personalization purposes. We may share non-identifiable / aggregated extracts of such information with our partners for our legitimate business purposes.
Most web browsers are set to accept cookies by default. If you prefer, you can usually adjust your browser settings to remove or reject browser cookies. Please note that removing or rejecting cookies could affect the availability and functionality of our Site.
Communications
We engage in service and promotional communications, through e-mail, phone, SMS, and notifications.
Service Communications: We may contact you with important information regarding our Services. For example, we may send you notifications (through any of the means available to us) of changes or updates to our Services, billing issues, log-in attempts or password reset notices, etc. If you are registered as a User to our Services, you can typically control your communications and notifications settings from your profile settings, or otherwise in accordance with the instructions included in the communications sent to you. Please note that you will not be able to opt out of receiving certain service communications which are integral to your use (e.g., one-time auth tokens or billing notices).
Promotional Communications: We may also notify you about new features, additional offerings, events, special opportunities or any other information we think you will find valuable, as our User or Prospect. We may provide such notices through any of the contact means available to us (e.g., phone, mobile or email), through the Services, or through our marketing campaigns on any other sites or platforms.
If you do not wish to receive such promotional communications, you may notify Andromeda at any time by sending an e-mail to:
privacy@andromeda.com, changing your communications preferences in your profile settings whilst being logged as a User to our Services, or by following the "unsubscribe", "stop", "opt-out" or "change email preferences" instructions contained in the promotional communications you receive.
Links to Other Websites
Our Service may contain links to other websites that are not operated by Us. If You click on a third party link, You will be directed to that third party's site. We strongly advise You to review the Privacy Policy of every site You visit.
We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
Changes to this Privacy Policy
We may update Our Privacy Policy from time to time. We will notify You of any changes by posting the new Privacy Policy on this page.
We will let You know via email and/or a prominent notice on Our Service, prior to the change becoming effective and update the "Last updated" date at the top of this Privacy Policy.
You are advised to review this Privacy Policy periodically for any changes. Changes to this Privacy Policy are effective when they are posted on this page.
Contact Us
If you have any questions about this Privacy Policy, please contact us at
privacy@andromedasecurity.com.