Privacy Policy & GDPR
Introduction
Aikido is the product name of the security product built by Aikido Security BV, as well as the abbreviation frequently used for Aikido Security BV.
We understand that you are aware of and care about your own personal privacy interests, and we take that seriously. This Privacy Notice describes Aikido’s policies and practices regarding its collection and use of your personal data and sets forth your privacy rights. We recognize that information privacy is an ongoing responsibility, and so we will from time to time update this Privacy Notice as we undertake new personal data practices or adopt new privacy policies.
As a company that finds its roots in the European Union, and that considers compliance to privacy legislation Privacy a core principle of its organization, Aikido has created this Privacy Policy based upon the foundations of the EU General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data).
As GDPR currently is the most advanced and elaborate data protection legislation in the world, Aikido uses GDPR as its main benchmark for its companywide privacy program.
Seeing the global activities of Aikido, it goes without saying that with this Privacy Policy, in addition to GDPR, Aikido also wants to take into account the principles of other applicable data protection legislation (such as the California Consumer Privacy act of 2018, or the UK Data Protection act 2018), which principles are either already incorporated through GDPR (in most of the cases) or either has specifically been added to this Privacy Policy.
Privacy officer
Aikido Security BV is headquartered in Coupure Rechts 88, 9000 Gent, in Belgium (Europe). Aikido has appointed an internal privacy officer for you to contact if you have any questions or concerns about Aikido’s personal data policies or practices. If you would like to exercise your privacy rights, please direct your query to Aikido’s privacy officer. Aikido’s privacy officer can be contacted as follows:
Via email privacy@aikido.dev
Via mail Coupure Rechts 88, 9000 Gent (Belgium)
How we collect and use (process) your personal information
Aikido collects personal information about its website visitors and customers. With a few exceptions, this information is generally limited to:
- name
- job title
- employer name
- work address
- work email
- work phone number
- date of birth
We use this information to provide prospects and customers with services.
We do not sell personal information to anyone and only share it with third parties who are facilitating the delivery of our services.
From time to time, Aikido receives personal information about individuals from third parties. Typically, information collected from third parties will include further details on your employer or industry. We may also collect your personal data from a third-party website (e.g. LinkedIn)
Use of the Aikido Website & Platform
As is true of most other websites, Aikido’s website collects certain information automatically and stores it in log files. The information may include internet protocol (IP) addresses, the region or general location where your computer or device is accessing the internet, browser type, operating system and other usage information about the use of Aikido’s website, including a history of the pages you view. We use this information to help us design our site to better suit our users’ needs. We may also use your IP address to help diagnose problems with our server and to administer our website, analyze trends, track visitor movements, and gather broad demographic information that assists us in identifying visitor preferences.
Aikido has a legitimate interest in understanding how members, customers and potential customers use its website. This assists Aikido with providing more relevant products and services, with communicating value to our sponsors and corporate members, and with providing appropriate staffing to meet member and customer needs.
Cookies & tracking technologies
Aikido makes available a comprehensive cookie notice that describes the cookies and tracking technologies used on Aikido website and provides information on how users can accept or reject them. To view the notice, just click Cookie Policy
Sharing information with 3rd parties
The personal information Aikido collects from you is stored in one or more databases hosted by third parties located in the United States. These third parties do not use or have access to your personal information for any purpose other than cloud storage and retrieval. On occasion, Aikido engages third parties to send information to you, including information about our products, services, and events.
A list of our third party sub processors can be found here: Subprocessors
We do not otherwise reveal your personal data to non-Aikido persons or businesses for their independent use unless: (1) you request or authorize it; (2) it’s in connection with Aikido-hosted and Aikido co-sponsored conferences as described above; (3) the information is provided to comply with the law (for example, compelled by law enforcement to comply with a search warrant, subpoena, or court order), enforce an agreement we have with you, or to protect our rights, property or safety, or the rights, property or safety of our employees or others; (4) the information is provided to our agents, vendors or service providers who perform functions on our behalf; (5) to address emergencies or acts of God; or (6) to address disputes, claims, or to persons demonstrating legal authority to act on your behalf. We may also gather aggregated data about our services and website visitors and disclose the results of such aggregated (but not personally identifiable) information to our partners, service providers, advertisers, and/or other third parties for marketing or promotional purposes.
The Aikido website connects with third party services such as Facebook, LinkedIn, Twitter and others. If you choose to share information from the Aikido website through these services, you should review the privacy policy of that service. If you are a member of a third party service, the aforementioned connections may allow that service to connect your visit to our site to your personal data.
Transferring personal data outside the EEA.
Some information we collect about you will be processed by partners outside of the EEA. Pursuant to Article 46 of the GDPR, Aikido is providing for appropriate safeguards by entering into binding, standard data protection clauses, enforceable by data subjects in the EEA and the UK. These clauses have been enhanced based on the guidance of the European Data Protection Board and will be updated when the new draft model clauses are approved.
Depending on the circumstance, Aikido collects and transfers personal data outside of the EEA with consent; to perform a contract with you; or to fulfill a compelling legitimate interest of Aikido in a manner that does not outweigh your rights and freedoms. Aikido endeavors to apply suitable safeguards to protect the privacy and security of your personal data and to use it only consistent with your relationship with Aikido and the practices described in this Privacy Statement. Aikido also enters into data processing agreements and model clauses with its vendors whenever feasible and appropriate.
For more information or if you have any questions, please contact us at privacy@aikido.dev
Data subject rights
The European Union’s General Data Protection Regulation (GDPR) and other countries’ privacy laws provide certain rights for data subjects. Data Subject rights under GDPR include the following:
- Right to be informed
- Right of access
- Right to rectification
- Right to erasure
- Right to restrict processing
- Right of data portability
- Right to object
- Rights related to automated decision making including profiling
This Privacy Notice is intended to provide you with information about what personal data Aikido collects about you and how it is used.
If you wish to confirm that Aikido is processing your personal data, or to have access to the personal data Aikido may have about you, please contact us.
You may also request information about: the purpose of the processing; the categories of personal data concerned; who else outside Aikido might have received the data from Aikido; what the source of the information was (if you didn’t provide it directly to Aikido); and how long it will be stored. You have a right to correct (rectify) the record of your personal data maintained by Aikido if it is inaccurate. You may request that Aikido erase that data or cease processing it, subject to certain exceptions. You may also request that Aikido cease using your data for direct marketing purposes. In many countries, you have a right to lodge a complaint with the appropriate data protection authority if you have concerns about how Aikido processes your personal data. When technically feasible, Aikido will—at your request—provide your personal data to you.
Reasonable access to your personal data will be provided at no cost. If access cannot be provided within a reasonable time frame, Aikido will provide you with a date when the information will be provided. If for some reason access is denied, Aikido will provide an explanation as to why access has been denied.
For questions or complaints concerning the processing of your personal data, you can email us at privacy@aikido.dev
Data storage & retention
Your personal data is stored by the Aikido on its servers, and on the servers of the cloud-based database management services the Aikido engages, located in Europe and in the United States. The Aikido retains service data for the duration of the customer’s business relationship with the Aikido and for a period of time thereafter, to analyze the data for Aikido’s own operations, and for historical and archiving purposes associated with Aikido’s services. Aikido retains prospect data until such time as it no longer has business value and is purged from Aikido systems. All personal data that Aikido controls may be deleted upon verified request from Data Subjects or their authorized agents. For more information on where and how long your personal data is stored, and for more information on your rights of erasure and portability, please contact us at: privacy@aikido.dev
Children’s data
We do not knowingly attempt to solicit or receive information from children.
Changes to this policy
At our discretion, we may change our privacy policy to reflect current acceptable practices. We will take reasonable steps to let users know about changes via our website. Your continued use of this site after any changes to this policy will be regarded as acceptance of our practices around privacy and personal information.
If we make a significant change to this privacy policy, for example changing a lawful basis on which we process your personal information, we will ask you to re-consent to the amended privacy policy.
Questions, concerns or complaints
If you have questions, concerns, complaints, or would like to exercise your rights, please contact us at:
Per email privacy@aikido.dev
Per mail Coupure Rechts 88, 9000 Gent (Belgium)