The California Consumer Privacy Act 2018 (CCPA) gives consumers more control over the personal information that businesses collect about them.
The CCPA requires businesses to provide detailed privacy notices with prescribed content, including transparent disclosures about information collection and use practices, sharing of personal information, and consumers’ privacy rights.
Personal information is any information that directly identifies, relates to, describes, is reasonably capable of being associated with or could reasonably be linked, either directly or indirectly, with a particular individual or household. This includes, for example, names; aliases; unique personal identifiers (such as social security number, driver’s license number, passport number, etc.); account or user names; IP addresses; unique device or cookie identifier, biometric data; educational, professional, or employment data; behavioral data; Internet activity data; and inferences drawn about an individual based on the foregoing or online activity.
A “sale” of personal information is any disclosure of or grant of access to personal information in exchange for money or other valuable consideration. These sales are regulated by requiring businesses that sell personal information to provide consumers detailed notice and the opportunity to opt out of these sales.
Companies can be a “business,” “service provider,” or “third party.” Many companies will qualify as one or more depending on the relationship of the parties and the nature of their data processing activities. This is how Secure Code Warrior views these roles in relation to our services and associated responsibilities:
A business is a for-profit entity that (a) does business in California, regardless of whether it has any physical presence in the state; (b) processes personal information of California residents or on whose behalf such personal information is processed;(c) alone, or jointly with others, determines the means and purposes of the processing; and (d) either: (i) has more than $25 million in annual gross revenue; (ii) annually buys, sells, receives or shares for a commercial purpose the personal information of at least 50,000 consumers, whether alone or in combination with other businesses; or (iii) derives at least 50% of its annual revenue from the sale of consumers’ personal information.
A “service provider” because we process personal information on your behalf pursuant to a written agreement. The CCPA requires that this agreement limit our ability to use the personal information we process on your behalf solely to what is needed to perform the services or as may otherwise be permitted by the CCPA. We offer our customers subject to the CCPA an addendum incorporating these terms.
Secure Code Warrior does not currently meet the criteria described above for a “Business” under CCPA, namely because we do not:
However, we are considered a “Service Provider” because we process personal information on your behalf pursuant to a written agreement.
We will provide reasonable assistance to you in facilitating compliance with consumer rights requests.
We will not:
Secure Code Warrior has implemented what we believe to be an industry-leading security and compliance program for our product infrastructure. Visit our Trust Center to find out more.
We will ensure that all employees, and contractors involved in the handling of personal information are aware of the confidential nature of the personal information and are contractually bound to keep the personal information confidential.
a. ENGLAND AND WALES
Secure Code Warrior Limited
Company Number 08559432
4 Ironstone Way
Brixworth, Northampton. NNG 9UD
b. NEW SOUTH WALES
Secure Code Warrior Pty Limited
ABN 97 608 498 639
c/o Vital Addition
5, 120 Sussex Street
Sydney. NSW 2000
Secure Code Warrior BVBA
Baron Ruzettelaan 5
bus 3 8310 Brugge
Security Code Warrior Inc
265 Franklin Street, Suite 1702
Boston MA 02110
Borgatun 24, 105,
* Only required for Trial Users
Whilst you have access to our platform, and thereafter for a period of 12 months, unless otherwise agreed.
We will retain this information for a period of 24 months from the date of our last contact with you unless, where you are entitled, request that we delete this information.
We will retain this information for the duration of the Competition, and for a period of 12 months from the date of our last contact with you unless, where you are entitled, request that we delete this information
We will retain this data for up to 7 years from our last contact with you, unless you request that we delete the data beforehand.
For unsuccessful we will retain this data for a period of twelve (12) months so that we may contact you regarding any future opportunities, unless you request that we delete the data beforehand.
¹ When you communicate with us through our websites:
We use Drift as one of our chatbots to allow customers to interact with us through our websites. Drift will only use the IP address for data enrichment, i.e. to determine if it is associated with a business to provide Secure Code Warrior with information such the industry and # of employees of the business.
We use Cookiebot to manage all cookies across our websites. Cookiebot allows Secure Code Warrior to:
³ Information is collected after consent is given
We will retain this data for a period of 12 months from the date of our last contact with you unless, where you are entitled, request that we delete this information.
1.Necessary to enable us to perform our contract with you:
2. Necessary for the performance of our contract with you where such communication relates specifically to our services, and legitimate interest to be able to handle such queries:
3. For legitimate interest to enable Secure Code Warrior to:
4. For legitimate interests to allow Secure Code Warrior to improve customer services offering:
5. With consent:
1. Necessary for the performance of a contract
2. For legitimate interests to enable Secure Code Warrior to conduct business
3. For legitimate interests to contact those who may benefit from our services
4. With consent
1.For legitimate interests to enable Secure Code Warrior to conduct business
2. For legitimate interests to contact those who may benefit from our services
3. With consent
1. Necessary for the performance of our contract with you, namely for the running of the competition and/ or tournament
2. With consent: to send out marketing materials
1. For legitimate interests to enable Secure Code Warrior for the performance of a contract where the supplier is an individual
2. To send and receive business communications.
3. To administer our relationship with our suppliers.
To enable Secure Code Warrior to recruit employees and assess potential candidates, that is to:
For legitimate interest to enable Secure Code Warrior to,
Secure Code Warrior (SCW) works with certain service providers (both locally and abroad) to run our business operations and to ensure that we can provide our contracted services to you. These service providers might (depending on the terms of their contracts with us) process your data:
Here is a full list of Secure Code Warrior’s service providers - our service providers are sometimes also referred to as Subprocessors on our website and/ or in any associated policies and terms and conditions.