Date: February 10, 2021
Gryphon Online Safety, Inc. (“Gryphon,” “we,” or “us”) cares about your privacy and wants you to be familiar with how we collect, use, and disclose data. This Privacy Statement covers the collection, use, and disclosure of data collected via our website www.gryphonconnect.com and any other Gryphon website where this Privacy Statement is posted or linked (collectively, this “Site”). This Privacy Statement also describes your legal rights in relation to such data.
By using this Site, you are subject to the terms and conditions of this Privacy Statement.
We collect or obtain data relating to you in a variety of ways, as described below. Such data may include personal data, i.e., information that alone or in combination with other information identifies you as an individual or can be reasonably linked to your identity.
Data You Provide:
When you submit questions, request information, or give us feedback via this Site, we may ask you for data, like your name, postal address, telephone number, and email address so we can respond or follow up. We may also ask you to provide other data relevant to your question, request, or feedback, such as your geographical location, industry, and preferred contact method.
You may also make requests through this Site to exercise your individual rights under applicable privacy laws. We will collect and maintain data related to such requests in order to respond to you and for our audit and legal compliance purposes.
We generally do not seek data that may be considered “special” or “sensitive” personal data (e.g., government-issued identification numbers or information related to an individual’s racial or ethnic origin, political opinions, religious or other beliefs, health, criminal background, or trade union membership) from visitors of this Site, and we ask that you do not provide such data. If we specifically require “special” or “sensitive” personal data in connection with one or more of the uses described below, we will request your consent to use the data in accordance with this Privacy Statement and/or in the ways described at the point where you were asked to disclose the data. If you voluntarily share with us or post/upload any “special” or “sensitive” personal data to this Site for any other reason, you consent that we may use such data in accordance with applicable law and this Privacy Statement.
Please note that any information or materials you post or disclose on this Site via message boards, chats, profile pages, blogs, and other services (including social media services) are publicly available and will be seen by other visitors to this Site. You should consider this when deciding to disclose any personal data or any other information on this Site.
Data Collected from your Use of this Site:
We automatically receive certain data about the computer or device you are using when you visit this Site, including your Internet Protocol (IP) address; information about the browser or type of device you are using; data collected through cookies, pixel tags, and other similar technologies the date and time of your visit; and the web page you visited immediately prior to visiting this Site. We also collect data about videos or other content you view on this Site, like the type and name of the content and the time viewed.
We use data about you for the purpose(s) for which it was collected or provided to us (as stated at the point of collection) or as otherwise obvious from the context of the collection. We may also use data to:
- Administer and manage this Site, communicate with you about this Site, process your request for information, or otherwise complete a transaction or service you request or authorize;
- Customize or personalize your user experience and the content we deliver to you, including providing you with content that is more relevant to you;
- Contact you about Gryphon’s products and services, provide you with promotional materials or offers for products/services from Gryphon, or send you other communications about Gryphon’s business and events (including communications based on your interests, personal and business characteristics, and location) (collectively, “marketing communications”). We may provide these communications and offers via email, postal mail, online, social media platforms, text messages, and other means;
- Carry out our internal business purposes, such as corporate transactions, audits, and data analysis; conduct research and analytics about your use of this Site and interaction with us; develop new products; improve this Site and our existing products and services; identify usage trends; assess the performance of our advertisements; optimize our advertising campaigns, and determine the effectiveness of our communications;
- Protect the rights, safety, property, or operations of one or more of Gryphon’s affiliates, you, or others;
- Comply with applicable law and/or respond to requests and communications from law enforcement authorities or other government officials.
Note that you may unsubscribe from Gryphon’s mailing list at any time by clicking on the ‘unsubscribe’ link in any of our marketing communications to you. After you unsubscribe, we will not send you further marketing communications, but we may continue to contact you to the extent necessary for the purposes of any services you have requested.
We will never use your personal data to advertise, promote, or market third-party goods or services to you. Additionally, we will not license or publish any of your personal data. We do not and will not sell any personal data to third parties for their own commercial use.
BASIS FOR PROCESSING PERSONAL DATA
Applicable law in certain countries requires us to set out in this Privacy Statement the legal basis upon which we rely in order to process personal data.
Consent: We may rely on the consent that you provide us at the point of data collection or disclosure to us to process such data for the purposes outlined herein.
Legitimate interests: We may rely on our legitimate interests to process your personal data, provided that our interests are not overridden by your interests, fundamental rights, or freedoms. In particular, we may process your personal data in reliance on a legitimate interest in the effective and lawful operation of this Site and our businesses, as well as the effective delivery of information and services to you. We may have other legitimate interests and, if so, we will make clear what those interests are at the relevant point in time.
Compliance with legal obligations that are compelled by an official warrant or court order.
To the extent that we process any “special” or “sensitive” categories of personal data relating to you, we will do so because either: (i) you have given us your explicit consent to carry out such processing; (ii) the processing is necessary for the establishment, exercise, or defense of legal claims; or (iii) you have made the data manifestly public.
If you have questions or concerns about the legal basis upon which we collect and use your personal data, you can contact us at email@example.com.
DISCLOSURES OF PERSONAL DATA
In connection with one or more of the purposes outlined in the “DATA USE” section above, we may disclose your data to:
- Third parties that provide services to us, such as system hosting, management, and support; data analysis; facilitation of advertisements; data backup; and data security and storage services;
- Relevant third parties as part of a corporate transaction, such as a reorganization, merger, sale, joint venture, assignment, transfer, or other disposition of all or any portion of our business, assets, or stock (including in connection with a bankruptcy or similar proceeding);
- Competent governmental and public authorities, in each case to comply with legal or regulatory obligations or requests; and
- Other third parties as we believe necessary or appropriate: (a) under applicable law; (b) to comply with legal process; (c) to enforce our terms and conditions; (d) to protect our operations and those of any of our affiliates; (e) to protect our rights, privacy, safety, or property, and/or those of our affiliates, you, or others; and (f) to allow us to pursue available remedies or limit damages that we may sustain.
The disclosures described in this section may result in the transfer of your data to countries or regions with data protection laws that differ from those in your country of residence. By providing us with your data and using this Site, you are acknowledging that your data may be transferred to countries outside of your country of residence.
In cases where your data is transferred outside of your country of residence, we take steps to ensure that appropriate safeguards are in place to protect such data. If you are based in the EU/EEA, such safeguards may include a data transfer agreement with the data recipient based on standard contractual clauses or such other mechanism as is approved by the European Commission for transfers of personal data to third countries. For further details relating to the transfers described above and the adequate safeguards used with respect to such transfers, please contact us at firstname.lastname@example.org.
COOKIES AND OTHER INTERNET TECHNOLOGIES
Google Analytics: We use Google Analytics, a web analytics tool that may set cookies in your browser, in order to help us understand how visitors engage with this Site. To learn more about Google Analytics’ data practices, please visit https://support.google.com/analytics/answer/6004245?hl=en. For opt-out options specific to Google Analytics, please visit https://tools.google.com/dlpage/gaoptout.
Other third-party cookies and technologies. We also enable third-party cookies and other similar technologies to collect or receive data from this Site and elsewhere for use in advertising, including for the purposes of serving advertisements targeted to users’ interests, retargeting visitors to this Site, conversion tracking (i.e., tracking the actions users take after viewing or engaging with our advertisements), measuring ad effectiveness, and ensuring that you do not see the same ad repeatedly. These cookies and similar technologies collect data about your browsing habits and online behavior, including across different browsers and devices used by you, in order to serve advertisements that may be of interest to you. For example, Nielsen’s third-party providers may use the fact that you visited this Site to place online ads for Nielsen on non-Nielsen websites.
Third parties may also use data about your use of this Site to help target non-Gryphon advertisements based on your online behavior and/or interests in general. Data collected generally includes actions you take on this Site (e.g., URL, the previous website visited), device and browser data (e.g., IP address, operating system, browser type), timestamp, and events (e.g., page views). In some cases, this data is connected to your social network ID. Please note that Gryphon is not responsible for practices by such third parties, and those practices are subject to those companies’ own policies.
This Privacy Statement does not address, and we are not responsible for, the privacy practices of any third parties, including those that operate websites to which this Site links. The inclusion of a link on this Site does not imply that we or our affiliates endorse the practices of the linked website.
We use reasonable organizational, technical, and administrative measures to protect data under our control. Unfortunately, no data transmission over the internet or data storage system can be guaranteed to be 100% secure. If you feel that the security of any data that we hold about you has been compromised, please immediately notify us of the problem by contacting us at email@example.com.
EXERCISING YOUR RIGHTS
You have choices about how your personal data is handled, and we are committed to providing you with reasonable access to your personal data and the ability to review and limit the use of such data in accordance with applicable law.
If you no longer want to receive electronic newsletters you signed up to receive or other marketing communications from Gryphon, you can click on the ‘unsubscribe’ link at the bottom of such communications.
Depending on your country (or U.S. state) of residence, you may also have the right to:
- request confirmation that we are processing your personal data;
- request a copy of the personal data we hold about you;
- request that we update the personal data we hold about you or correct such data that is inaccurate or incomplete;
- restrict the way in which we use your personal data (e.g., if we have no legal right to keep using it) or limit our use of your personal data (e.g., if your personal data is inaccurate or unlawfully held);
- object to our processing of your personal data;
- withdraw the consent that you have given us to process your personal data (where we process your personal data on the basis of your consent);
- request that we delete the personal data we hold about you; and
- lodge a complaint with the data protection or privacy authority in your country of residence regarding our processing of your personal data.
If you are interested in exercising one or more of the rights described above, you can submit a request to us at firstname.lastname@example.org. Please note that we may require proof of your identity before we can give effect to these rights. The process may also take time and Gryphon will make a reasonable business effort to do so in a timely manner.
We will not discriminate against you if you decide to exercise your rights under applicable law.
Because we want to avoid taking action regarding your personal data at the direction of someone other than you, only you or an “Authorized Agent” permitted to act on your behalf may submit a request. An “Authorized Agent” means a natural person or a business entity you have authorized to act on your behalf by providing your written permission. Please note, we may deny a request from an Authorized Agent if they do not submit proof that they have been authorized by you to act on your behalf.
Your request must:
- Provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal data or an Authorized Agent; and
- Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
We cannot respond to your request or provide you with personal data if we cannot verify your identity or authority to make the request and confirm the personal data we maintain relates to you. To verify your identity, we will seek to match any personal data you provide when you (or an Authorized Agent) submit your request to any personal data we already maintain. If we are unable to verify your identity based on the data we maintain, we will let you know.
Additional information for EU/EEA residents
If you have any questions or concerns about our collection or use of your personal data, you can contact us at email@example.com.
If you are unsatisfied with the way in which we have handled your personal data or any privacy query or request that you have raised to us, you have a right to complain to the appropriate National Data Protection Authority (“DPA”). To find the contact details of the DPA in your country of residence, please visit https://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=612080.
Special Notice to California Residents
If you are a resident of the state of California, you are entitled to request information regarding the disclosure of your personal data to third parties for direct marketing purposes. Please note that we do not share your personal data with non-affiliated third parties for such purposes.
DO NOT TRACK SIGNALS
We will retain your personal data only for those periods necessary to fulfill the various purposes outlined in this Privacy Statement unless a longer retention period is required or allowed by law.
USE OF THIS SITE BY MINORS
We understand the importance of protecting the privacy of minors, especially in the online environment. This Site is not designed for or intentionally targeted at minors under the age of 18, and we request that minors not use this Site. We do not knowingly collect data from minors on this Site. If we become aware that we have received data from a person under the age of 18, we will take reasonable steps to delete such data from our records.
UPDATES TO THIS PRIVACY STATEMENT
We may make changes to this Privacy Statement from time to time. The “Effective Date” at the top of this page shows when this Privacy Statement was last revised. Any changes will become effective when we post a revised version of this Privacy Statement on this Site. Your use of this Site is subject to the terms in the version of this Privacy Statement that is posted on this Site at the time of your visit. We encourage you to review this Privacy Statement periodically to remain informed about how we are protecting your data.
If you have any comments or questions regarding this Privacy Statement or our data handling practices or wish to contact us please email firstname.lastname@example.org.
Gryphon Connect App & Services
Date: July 1, 2022
Gryphon Online Safety, Inc. (“Gryphon”, “we”, “us”, or “our”) recognizes the importance of your privacy and we take this very seriously. You are entitled to know how we handle your personal data and you have the right to be forgotten if you no longer want to continue with our service by asking us to delete that personal data at any time.
Operation of our Services
In order to provide you with the Gryphon WiFi management and network protection services, we, with your permission, obtain certain information directly from you, such as your email address and your network settings for account management, and your use of the Gryphon Connect app.
Network usage information, network settings, and other information on the Gryphon Connect app temporarily pass through our servers to your mobile phone in order to present the information. We do not permanently store any of the information on our servers. The communication is conducted securely over the internet using industry standard Internet security protocols.
We collect and use network metadata for intrusion detection such as IP, port, and protocol used by the devices on the network. We do not collect data related to the actual traffic content or have any visibility to any encrypted internet traffic. The metadata may be anonymously (non-user identifiable) combined with other metadata to improve the intrusion detection and network protection for everyone using the Gryphon Service.
We anonymously (non-user identifiable) aggregate website URL approvals, blocks, and hiding to improve content filtering for everyone using our Service.
We anonymously (non-user identifiable) collect aggregate app usage information such as features used and actions taken to help improve the Gryphon Connect app.
For debugging issues, we may request log files from your Gryphon Connect app or WiFi router. These logs contain software events and other data that can help us better debug your issues. Log files get uploaded only with your permission and by using your Gryphon Connect app. Browsing history is not part of the logs. Log files are disposed of in a timely manner after their use and as a policy will not be stored permanently on our servers.
We may use your information for the following purposes:
For providing and improving our Services. To provide and maintain our Services; to develop new features or services; to authenticate users; to facilitate payments and communications; to perform technical operations, such as updating software; and for other customer service and support purposes.
For marketing and communications. To communicate with you about your account and use of our Services; to respond to your inquiries; to provide you with news, special offers, promotions, and other information we think may interest you; and for other informational, marketing, or promotional purposes.
For research and analytics. To analyze how you interact with our Services; to monitor and analyze individual and collective usage trends; and for other research, analytical, and statistical purposes to improve our Services.
For legal compliance that is based on an official warrant or court order.
How We May Disclose Your Information
We will never use your personal data to advertise, promote, or market third-party goods or services to you. Additionally, we will not license or publish any of your personal data. We do not and will not sell any personal data to third parties for their own commercial use. However, we may disclose your information, including personal information, with the following entities:
Business Transfers. We may disclose your information to another entity in connection with, including during negotiations of, an acquisition or merger, sale or transfer of a business unit or assets, bankruptcy proceeding, or as part of any other similar business transfer.
Legal Compliance. We may disclose your information to comply with applicable legal or regulatory obligations, including as part of a judicial proceeding; in response to a subpoena, warrant, court order, or other legal processes; or as part of an investigation or request, whether formal or informal, from law enforcement or a government official.
We have taken steps to help protect the personal information we received from you from loss, misuse, unauthorized access, disclosure, alteration, and destruction. However, no data security measures can guarantee 100% security. You should take steps to protect against unauthorized access to your account by, among other things, choosing a robust password, keeping your device login information private, and enable 2 factor authentications if available to enhance the protection of your account.
You may update or delete the personal information that we have about you by updating your Gryphon account or emailing us at email@example.com. Please note that while we will honor certain requests (e.g., to update a username), we will not be able to honor requests to delete your personal information and still provide you with the Services.
We may send periodic promotional or informational emails to you. You may opt out of such communications by following the opt-out instructions contained in the email. Please note that it may take up to ten (10) business days for us to process opt-out requests. Even if you opt out of receiving emails about recommendations or other information we think may interest you, we may still need to send you important emails about your account or our Services.
Although some of our Services are for the protection of children, the application of our Services is not intended to be by children under thirteen (13) years of age, and we do not knowingly collect personal information from children under 13. If we discover that a child under 13 has provided us with personal information, we will promptly delete such personal information from our systems.
If you have questions about the privacy aspects of our Services, please contact us at firstname.lastname@example.org.