Last updated February 4, 2025
Privacy & Security Brainiacs is a cloud-based platform that provides information security and privacy governance, risk, compliance, education and quality management solutions for businesses. We do not knowingly attempt to solicit or receive information from children.
We understand that individuals and businesses are aware of and care about personal privacy interests, and we take actions feasible to ensure we address privacy concerns and legal requirements.
This Privacy Notice describes the Privacy & Security Brainiacs’ policies and practices regarding its collection and use of personal data, and establishes individuals’ privacy rights. We recognize that information privacy is an ongoing responsibility, and so we will from time to time update this Privacy Notice as we start new personal data practices or adopt new privacy policies.
Privacy & Security Brainiacs is headquartered in Iowa, in the United States.
Privacy & Security Brainiacs has personnel appointed to be responsible for data protection officer responsibilities. Individuals may contact us if they have any questions or concerns about the Privacy and Security Brainiacs© personal data policies or practices. The Privacy and Security Brainiacs©’ data protection officer’s name and contact information:
Rebecca Herold
Privacy & Security Brainiacs
625 42nd Street
Des Moines, Iowa, USA 50312
dpo@privacysecuritybrainiacs.com
+1 515-491-1564
We process personal data only when we have a legal basis to do so, in support of multiple laws and regulations throughout the world, such as GDPR. These legal bases include:
Consent: When you provide explicit consent (e.g., subscribing to newsletters, accepting cookies).
Contract Performance: When processing is necessary to fulfill a contract with you.
Legitimate Interests: When processing supports our business operations and does not override your rights.
Legal Obligations: When we are legally required to process certain data (e.g., fraud prevention, tax compliance).
Privacy and Security Brainiacs© collects personal information about its clients, people sending inquiries and publications subscribers. With a few exceptions this information includes: first name, last name, job title, employer name, work address, work email, and work phone number. We use this information to provide those communicating with us with goods and services. We do not sell personal information to anyone and only share it with third parties who are facilitating the delivery of Privacy and Security Brainiacs© services.
We collect the following types of personal information:
Information You Provide Directly
This could include a wide variety of personal information, depending upon the page you are on, and the associated context for which each personal informaiton provision is provided. Examples include: First name, last name, job title, employer name, work address, work email, and work phone number, customer support inquiries, payment and billing information (if applicable).
Information Collected Automatically
Cookies and Tracking Technologies: We collect IP addresses, browser type, operating system, and pages visited to help us understand where we can improve upon or fix errors within our website, to support an efficient and customer-friendly experience in purchasing our products and services.
Google Analytics: We use anonymized analytics data to understand website traffic and improve user experience.
Third-Party Sources
We may receive information from third-party platforms that help us provide services, such as payment processors and marketing automation tools.
To make this website work properly, and to provide the most relevant products and services to our site visitors and members, we place small data files called cookies on your computing device. Such cookies are implemented in compliance with a wide range of internationals data protection regulations, such as the GDPR and the ePrivacy Directive.
This section provides you with information about how to control cookies for this website.
We use cookies to enhance your experience and comply with a wide range of international data protection regulation, such as (but not limited to) the ePrivacy Directive and GDPR regulations. The first time you visit our website, you will be able to change your cookie preferences through our cookie banner consent form.
These cookies are essential for enabling user movement around our website and providing access to and ability to use features such as making purchases. These cookies do not gather information about you that could be used for marketing purposes and do not remember where you have been on the internet. This category of cookies cannot be disabled.
We use Google Analytics cookies to collect information about how visitors use our website. These cookies collect information in the aggregate to give us insight into how our website is being used, and to understand the types of topics that our website visitors are most interested in. We anonymize IP addresses in Google Analytics, and the anonymized data is transmitted to and stored by Google on servers in the United States. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google.
These cookies are used to provide you with a more personalized experience on our website and to remember choices you make when you use our website. For example, we may use functionality cookies to remember your language preferences or remember your login details to use our online services.
Third party cookies are cookies set with your consent by someone other than the website owner for purposes such as collecting information on user behavior, demographics, or personalized marketing. When using our website, you may encounter embedded content, such as to our YouTube or Vimeo videos, or you may be directed to other websites for such activities signing up for our monthly Privacy Professor Tips message. These websites and embedded content may use their own cookies. We do not have control over the placement of cookies by other websites, even if you are directed to them from our website. These cookies, as served by our content and/or advertising providers, may combine information they collected from our website with other information they have independently collected relating to your web browser’s activities across their network of websites. If you choose to remove or disable these targeting or advertising cookies, you will still see adverts but they may not be relevant to you.
To update your cookie preferences, visit our Cookie Settings page.
For any queries in relation to our policy on cookies and your choices, please contact us at dpo@privacysecuritybraniacs.com.
Similar to the practices of most other websites, the Privacy and Security Brainiacs©’ website collects certain information automatically and stores it in log files. The information may include internet protocol (IP) addresses, the region or general location from where your computer or device is accessing the internet, browser type, operating system and other usage information about the use of the Privacy and Security Brainiacs© website, including a history of the pages viewed on the site. We use this information to help us design our site to better suit our clients’ and website visitors’ needs. We may also use IP address to help diagnose problems with our server and to administer our website, analyze trends, track visitor movements, and gather broad demographic information that assists us in identifying visitor preferences.
Privacy and Security Brainiacs© has a genuine interest in understanding how our website is used. This assists Privacy and Security Brainiacs© with providing more relevant content, products and services, with communicating value to our website users, and with providing appropriate staffing to meet client needs.
Information about Privacy and Security Brainiacs© client purchases are maintained in association with client accounts. The personal information Privacy and Security Brainiacs© collects is stored in one or more databases hosted by third parties located in the United States. These third parties do not use or have access to your personal information for any purpose other than maintaining cloud storage and retrieval. Privacy and Security Brainiacs© may occasionally engage third parties to mail information to you, including items like free monthly tips messages, books, tools and other downloadable or physical mail delivery items you may have purchased, or material from a business partner.
We do not sell personal information to third parties. However, we may share data with trusted third parties who have verified their security and privacy practices for essential services supporting our business. These include:
Cloud Storage & Hosting: Liquid Web, Vimeo, Amazon Web Services (AWS), YouTube (hosts of our course materials and videos)
Email Messaging: Constant Contact (for our free, monthly awareness newsletters)
Payment Processing: Stripe
Marketing: LinkedIn (for advertising messages in the newsfeeds within that social media platform to support awareness of our business)
When transferring data, we use the following when applicable, based upon each specific situation:
Standard Contractual Clauses (SCCs) to ensure compliance.
Data Processing Agreements (DPAs) with vendors.
Privacy and Security Brainiacs© has its headquarters in the United States. Information we collect from individuals will be processed in the United States. The United States has not, at this time, sought nor received a finding of “adequacy” from the European Union under Article 45 of the GDPR. Privacy and Security Brainiacs© relies on derogations for specific situations as set forth in Article 49 of the GDPR. In particular, the Privacy and Security Brainiacs© collects and transfers to the U.S. personal data only:
with individual consent;
to perform a contract with individuals or organizations; or
to fulfill a compelling legitimate interest of Privacy and Security Brainiacs© in a manner that does not outweigh individual rights and freedoms.
Privacy and Security Brainiacs© applies suitable safeguards to protect the privacy and security of personal data and to use it only consistent with your relationship with the Privacy and Security Brainiacs© and the practices described in this Privacy Notice. The Privacy and Security Brainiacs© also enters into data processing agreements and model clauses with its vendors whenever feasible and appropriate.
This Privacy Notice is intended to provide you with information about what personal data the Privacy and Security Brainiacs© collects about you and how it is used. If you have any questions, please contact us at dpo@privacysecuritybraniacs.com
Under applicable laws in different geographic areas, for example which may include California CCPA and EU GDPR, individuals whose personal data we collect, have the following rights:
Right to Know
Right to Access
Right to Rectification/Corrections
Right to Erasure/Deletion
Right to Restrict Processing
Right to Withdraw Consent/Opt-Out
Right to Data Portability
Right to Non-Discrimination
If you wish to confirm that the Privacy and Security Brainiacs© is processing your personal data, or to have access to the personal data Privacy and Security Brainiacs© may have about you, please contact us at dpo@privacysecuritybrainiacs.com.
To help protect the privacy personal information transmitted as a result of using this site, we maintain administrative, physical, and technical safeguards. We update and test our security technology on an ongoing basis. We restrict access to personal data to the specific workers who need to know that information to provide benefits or services to individuals and organization clients. We also train our workers about the importance of confidentiality and maintaining the privacy and security of personally identifiable information. We commit to taking appropriate disciplinary measures to enforce our workers’ privacy responsibilities.
Personal data is stored on the Privacy and Security Brainiacs©’ servers, and on the servers of the cloud-based database management services Privacy and Security Brainiacs© engages, located in the United States. Privacy and Security Brainiacs© retains data for the duration of each individual’s and organizational client’s business relationship with Privacy and Security Brainiacs©, and for a period of time thereafter to allow individuals and organizations to recover accounts if they decide to renew, to analyze the data for Privacy and Security Brainiacs©’ own operations, and for historical and archiving purposes associated with Privacy and Security Brainiacs©’ history. For more information on where and how long personal data is stored, and for more information about individuals’ rights of erasure and portability, please contact the Privacy and Security Brainiacs©’ data protection officer at dpo@privacysecuritybrainiacs.com.
As our business changes from time to time, this Privacy Notice is expected to change as well. We reserve the right to amend the Privacy Notice at any time, for any reason, without notice to you, other than the posting of the amended Privacy Notice at this site. We may email periodic reminders of our notices and terms and conditions and will email Privacy and Security Brainiacs© clients when material changes occur, but individuals and clients should check our site frequently to see the current Privacy Notice and Conditions of Use that is in effect and any changes that may have been made to it.
For any privacy-related questions, concerns, or complaints, please contact the Privacy and Security Brainiacs© data protection officer:
Rebecca Herold
Privacy & Security Brainiacs
625 42nd Street
Des Moines, Iowa, USA 50312
dpo@privacysecuritybrainiacs.com
+1 515-491-1564