Updated Jan 1, 2023
A primary focus of our company is the protection of user data. All employees and contractors must abide by security policies as well as sign and agree to the Intellectual Property, Confidentiality, Noninterference and Non-Compete Agreements. All E-HAWK applications and services are required to follow our company goals of:
- Purging all unnecessary data as soon as possible
- Saving only data that is necessary to perform our service
- One-way hashing/encrypting all sensitive data so neither E-HAWK or intruders can view values
- Securing and encrypting all data in transit and at rest
- Securely protecting client and end user data
- Utilizing client data and personal information in a transparent and fair manner
WWW WEB SITE
WHAT INFORMATION DO WE COLLECT ON OUR WWW SITE?
E-HAWK may ask you to register and provide information when you request our product literature, a free trial, order email newsletters, or respond to a marketing campaign. The information gathered is used to qualify you as a potential client and may be used to contact you regarding offerings specific to E-HAWK's products and services. We follow strict best practices for email marketing and customer contact. We may also collect standard information and statistics about connections to our Web sites using cookies. First time visitors are shown a cookie notice and must accept and acknowledge to continue. We use this visiting information to enhance the user experience on our site and to identify frequent visitors. We will never sell, share, or rent this information to others.
WHO DO WE SHARE INFORMATION COLLECTED ON THIS WWW SITE?
We may share the information you provide with our business partners acting on our behalf for the uses described above. These business partners help E-HAWK with web analytics and customer requests through our CRM services. We will never sell, share, or rent this information to others.
WHAT KIND OF INFORMATION DO WE COLLECT WHEN WE PROVIDE E-HAWK SERVICES TO OUR CUSTOMERS?
E-HAWK uses vetting technology and data analysis to assist our subscribers in detecting and preventing fraud, spam, account hijacking, cybercrime and similar activities. E-HAWK may receive information regarding the user's login or use of a system from its subscribers and other third parties, including but not limited to IP address, account and device identifiers, and Geo-location. E-HAWK may combine this information with information from other E-HAWK services, third parties, or E-HAWK subscribers in order to provide our subscribers a better and more secure on-line environment and to improve the quality of our services.
WHY IS THIS INFORMATION COLLECTED AND WHO HAS ACCESS TO IT?
E-HAWK collects this information for the sole purpose of trying to help our customers prevent fraud, spam, on-line scams, phishing, account hijacking, and other cyber criminal activity. Our customers access our services to evaluate the history and reputation of their data and users for the purpose of user protection and risk mitigation.
HOW LONG IS THE INFORMATION RETAINED?
Vetting information data is retained for a maximum of thirty-five days, then securely deleted. If vetting data is directly associated with an active cyber-crime incident, we might keep specific data longer than thirty-five days, but typically delete this information within four months. Upon termination of your service, all Vetting Data will be deleted within thirty days. Community data sent to our feed-api is retained for up to one year, but depending on the data type, most data is retained for less than ninety days. Tag data sent to our feed-api is maintained for as long as clients are active or until the clients delete the Tags. If users of our vetting service terminate their service agreement, all their data is deleted within thirty-five days.
DO USERS HAVE ACCESS TO THEIR INFORMATION?
E-HAWK customers who visit this website have access to the information we collect from them. Customers who wish to change or view information should contact us through our support email.
We do not provide access to our services data and information we collect in our services except to the subscriber of E-HAWK services.
HOW DOES E-HAWK HANDLE DISPUTES ABOUT COLLECTED DATA?
E-HAWK regularly reviews its compliance with this Policy. Please feel free to direct any questions or concerns regarding this Policy or E-HAWK's treatment of user information by contacting us through this web site or by writing to us at E-HAWK, 26F Congress Street, # 264, Saratoga Springs, NY 12866. When we receive formal written complaints at this address, it is our policy to contact the complaining user regarding his or her concerns, and E-HAWK does not discriminate against clients exercising their data protection rights. We will cooperate with the appropriate regulatory authorities, including local data protection authorities, to resolve any complaints regarding the transfer of data that cannot be resolved between us and an individual.
This Policy applies to websites and services that are owned and operated by E-HAWK. In compliance with GDPR and CCPA, clients have the right to know by who or where their personal data is used, but we many not exercise control over other sites, including those sites that subscribe to and use our services. These other sites may place their own cookies or other files on a user's device, collect data or solicit PII from the user. How any such information is handled lies strictly within the control of such third parties and is subject to their privacy policies. E-HAWK has no responsibility for the confidentiality, protection or use of such information.
The Service Providers We use may have access to Your Personal Data. These third-party vendors collect, store, use, process and transfer information about Your activity on Our Service in accordance with their Privacy Policies.
Google Analytics and Tag Manager
SECURITY OF YOUR INFORMATION
To prevent unauthorized access, maintain data accuracy, and ensure the correct use of information, we have put in place appropriate physical, electronic, and managerial procedures to safeguard and secure the information we collect on-line. Access to customer information is restricted to authorized personnel only. All data obtained via our services is on secure servers. All data is encrypted in transit and at rest.
Rights Provided Under CCPA
The California Consumer Privacy Act (CCPA) grants several privacy rights for consumers who are residents of California regarding their collected personal information. These rights include but are not limited to:
- the right to request a business to disclose the use and sharing of the consumer’s personal information within the last year.
- The right to delete personal information collected by a business, with some exceptions.
- The right to opt-out of sale or sharing of the consumer’s personal information.
- Finally, a business cannot discriminate against the consumer for exercising their rights granted by the CCPA.
- As of January 1, 2023, the CCPA also includes the right to correct inaccurate personal information a business has about them, and the right to limit the use and disclosure of sensitive personal information collected about them.
Adhering to the GDPR
The General Data Protection Regulation (GDPR) is a European privacy law approved by the European Commission, and went into effect May 25th 2018. The GDPR strengthens and modernizes EU data protection law, and regulates how individuals and organizations may obtain, use, store, and remove personal data. The GDPR provides several principles for data protection for EU citizens, including:
- Personal data collected must be processed in a fair, legal, and transparent way and should only be used in a way that a person would reasonably expect.
- Personal data should only be collected to fulfill a specific purpose and it should only be used for that purpose. Organizations must specify why they need the personal data when they collect it.
- Personal data should be held no longer than necessary to fulfill its purpose.
- People covered by the GDPR have the right to access their own personal data. They can also request a copy of their data, and that their data be updated, deleted, restricted, or moved to another organization.
In order to make requests based on rights provided by the GDPR or CCPA, customers can email our support system.