![[PRIVACY POLICY]](imgs/privacy_policy_title.gif)
PENETRATIONTEST.com Privacy Policy 1.0 (April 14, 2005)
The following statement outlines PENETRATIONTEST.com consumer privacy practices pertaining to the website
www.PENETRATIONTEST.com. As this policy may be updated over time, it should be reviewed on occasion.
1.1 Personally Identifiable Information
As an information security provider based in Canada, PENETRATIONTEST.com treats all personally identifiable information with the principles outlined in Canada's Personal Information Protection and Privacy Act (PIPEDA). These principles are:
1.1.1 Accountability
PENETRATIONTEST.com uses personal identifiable information for the following purposes:
- Aggregate information that helps PENETRATIONTEST.com provide content of interest to our customers and visitors
- For user account maintenance
- For opt-in only mailing list maintenance
- Cookies are used for session maintenance only
1.1.2 Identifying Purpose
Other than information that is gathered automatically by normal server functions, such as logging, all PENETRATIONTEST.com requests for personally identifiable information is accompanied by a description of the purpose for this information.
1.1.3 Consent
Other than information that is gathered automatically by normal server functions, such as logging, PENETRATIONTEST.com does not gather, use or disclose personally identifiable information, except where such consent would be deemed inappropriate. Where appropriate, PENETRATIONTEST.com obtains clear consent to gather, use or disclose personally identifiable information at the time this information is gathered, or thereafter in a manner for which consent has previously been given.
1.1.4 Limiting Collection
PENETRATIONTEST.com does not gather personally identifiable information for which there is no clear purpose, and/or for which consent has not been given.
1.1.5 Limiting Use, Disclosure and Retention
PENETRATIONTEST.com does not keep personally identifiable information any longer than necessary to carry out services requiring that information. Cancelled accounts are noted, but personal information is not retained.
1.1.6 Accuracy
PENETRATIONTEST.com maintains system integrity checks to ensure all retained information is accurate. User account information can be changed by the user as necessary to ensure that accuracy.
1.1.7 Safeguards
Personally identifiable information is never stored on the web server unless it is necessary to do so (account information, for example). Strong hard drive encryption is used on all of PENETRATIONTEST.com testing and mobile equipment to ensure privacy even in the case of device theft.
1.1.8 Openness
Any user can email the website administrator and request what personal information is retained by PENETRATIONTEST.com and the
www.PENETRATIONTEST.com website. This information will be provided to the requestor in a manner that assures that the correct person is receiving this information.
1.1.9 Individual Access
Any user who feels the information PENETRATIONTEST.com retains is incomplete or inaccurate can simply email the web administrator for
www.PENETRATIONTEST.com and request this information. The information will then be amended as deemed appropriate.
1.1.10 Challenging Compliance
If a user feels PENETRATIONTEST.com may not be handling their personally identifiable information in the manner outlined in this policy, that user may email the
www.PENETRATIONTEST.com web administrator, stating such, and provide necessary information for PENETRATIONTEST.com to investigate the complaint. As a member of the service industry, PENETRATIONTEST.com takes all complaints seriously, and ensures that appropriate steps will be taken to rectify any unfortunate or apparent lack of compliance to this policy, to the point that compliance has been reasonably met.
