Privacy Notice

Last updated January 18, 2020


Privacy & Security Brainiacs is a cloud-based platform that provides information security and privacy governance, risk, compliance, education and quality management solutions for businesses. We do not knowingly attempt to solicit or receive information from children.

We understand that individuals and businesses are aware of and care about personal privacy interests, and we take actions feasible to ensure we address privacy concerns and legal requirements. This Privacy Notice describes the Privacy & Security Brainiacs’ policies and practices regarding its collection and use of personal data, and establishes individuals’ privacy rights. We recognize that information privacy is an ongoing responsibility, and so we will from time to time update this Privacy Notice as we start new personal data practices or adopt new privacy policies.

Data Protection Officer

Privacy & Security Brainiacs is headquartered in Iowa, in the United States. Privacy & Security Brainiacs has personnel appointed to be responsible for data protection officer responsibilities. Individuals may contact us if they have any questions or concerns about the Privacy and Security Brainiacs™’ personal data policies or practices. The Privacy and Security Brainiacs™’ data protection officer’s name and contact information are as follows:

Rebecca Herold
Privacy & Security Brainiacs
625 42nd Street
Des Moines, Iowa, USA 50312
+1 515-491-1564

How we collect and use (process) personal information

Privacy and Security Brainiacs™ collects personal information about its clients, people sending inquiries and publications subscribers. With a few exceptions this information includes: first name, last name, job title, employer name, work address, work email, and work phone number. We use this information to provide those communicating with us with goods and services. We do not sell personal information to anyone and only share it with third parties who are facilitating the delivery of Privacy and Security Brainiacs™ services.

Use of Cookies


To make this website work properly, and to provide the most relevant products and services to our site visitors and members, we place small data files called cookies on your computing device. This policy provides you with information about how to control cookies for this website.

Cookies Used on This Site

Strictly Necessary Cookies. These cookies are essential for enabling user movement around our website and providing access to and ability to use features such as making purchases. These cookies do not gather information about you that could be used for marketing purposes and do not remember where you have been on the internet. This category of cookies cannot be disabled.

Tracking and Performance Analytics Cookies. We use Google Analytics cookies to collect information about how visitors use our website. These cookies collect information in the aggregate to give us insight into how our website is being used, and to understand the types of topics that our website visitors are most interested in. We anonymize IP addresses in Google Analytics, and the anonymized data is transmitted to and stored by Google on servers in the United States. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google’s behalf. Google will not associate your IP address with any other data held by Google.

Functionality Cookies. These cookies are used to provide you with a more personalized experience on our website and to remember choices you make when you use our website. For example, we may use functionality cookies to remember your language preferences or remember your login details to use our online services.

Third Party Websites’ Cookies. Third party cookies are cookies set by someone other than the website owner for purposes such as collecting information on user behavior, demographics, or personalized marketing. When using our website, you may encounter embedded content, such as to our YouTube videos, or you may be directed to other websites for such activities signing up for our monthly Privacy Professor Tips message. These websites and embedded content may use their own cookies. We do not have control over the placement of cookies by other websites, even if you are directed to them from our website. These cookies, as served by our content and/or advertising providers, may combine information they collected from our website with other information they have independently collected relating to your web browser’s activities across their network of websites. If you choose to remove or disable these targeting or advertising cookies, you will still see adverts but they may not be relevant to you.

More Information. For any queries in relation to our policy on cookies and your choices, please contact us at

Use of the privacysecuritybrainiac.comwebsite

Similar to the practices of most other websites, the Privacy and Security Brainiacs™’ website collects certain information automatically and stores it in log files. The information may include internet protocol (IP) addresses, the region or general location from where your computer or device is accessing the internet, browser type, operating system and other usage information about the use of the Privacy and Security Brainiacs™’ website, including a history of the pages viewed on the site. We use this information to help us design our site to better suit our clients’ and website visitors’ needs. We may also use IP address to help diagnose problems with our server and to administer our website, analyze trends, track visitor movements, and gather broad demographic information that assists us in identifying visitor preferences.

Privacy and Security Brainiacs™ has a genuine interest in understanding how our website is used. This assists Privacy and Security Brainiacs™ with providing more relevant content, products and services, with communicating value to our website users, and with providing appropriate staffing to meet client needs.

When and how we share information with others

Information about Privacy and Security Brainiacs™ client purchases are maintained in association with client accounts. The personal information Privacy and Security Brainiacs™ collects is stored in one or more databases hosted by third parties located in the United States. These third parties do not use or have access to your personal information for any purpose other than maintaining cloud storage and retrieval. Privacy and Security Brainiacs™ may occasionally engage third parties to mail information to you, including items like free monthly tips messages, books, tools and other downloadable or physical mail delivery items you may have purchased, or material from a business partner.

Transferring personal data from the EU to the US

Privacy and Security Brainiacs™ has its headquarters in the United States. Information we collect from individuals will be processed in the United States. The United States has not, at this time, sought nor received a finding of “adequacy” from the European Union under Article 45 of the GDPR. Privacy and Security Brainiacs™ relies on derogations for specific situations as set forth in Article 49 of the GDPR. In particular, the Privacy and Security Brainiacs™ collects and transfers to the U.S. personal data only:

  • with individual consent;
  • to perform a contract with individuals or organizations; or
  • to fulfill a compelling legitimate interest of Privacy and Security Brainiacs™ in a manner that does not outweigh individual rights and freedoms.

Privacy and Security Brainiacs™ applies suitable safeguards to protect the privacy and security of personal data and to use it only consistent with your relationship with the Privacy and Security Brainiacs™ and the practices described in this Privacy Notice. The Privacy and Security Brainiacs™ also enters into data processing agreements and model clauses with its vendors whenever feasible and appropriate.

Data subject rights

This Privacy Notice is intended to provide you with information about what personal data the Privacy and Security Brainiacs™ collects about you and how it is used. If you have any questions, please contact us at

If you wish to confirm that the Privacy and Security Brainiacs™ is processing your personal data, or to have access to the personal data the Privacy and Security Brainiacs™ may have about you, please contact us at

Security of your information

To help protect the privacy of data and personally identifiable information transmitted as a result of using this site, we maintain administrative, physical, and technical safeguards. We update and test our security technology on an ongoing basis. We restrict access to personal data to the specific workers who need to know that information to provide benefits or services to individuals and organization clients. We also train our workers about the importance of confidentiality and maintaining the privacy and security of personally identifiable information. We commit to taking appropriate disciplinary measures to enforce our workers’ privacy responsibilities.

Data storage and retention

Personal data is stored on the Privacy and Security Brainiacs™’ servers, and on the servers of the cloud-based database management services Privacy and Security Brainiacs™ engages, located in the United States. Privacy and Security Brainiacs™ retains data for the duration of each individual’s and organizational client’s business relationship with Privacy and Security Brainiacs™, and for a period of time thereafter to allow individuals and organizations to recover accounts if they decide to renew, to analyze the data for Privacy and Security Brainiacs™’ own operations, and for historical and archiving purposes associated with Privacy and Security Brainiacs™’ history. For more information on where and how long personal data is stored, and for more information about individuals’ rights of erasure and portability, please contact the Privacy and Security Brainiacs™’ data protection officer at

Changes and updates to the Privacy Notice

As our business changes from time to time, this Privacy Notice is expected to change as well. We reserve the right to amend the Privacy Notice at any time, for any reason, without notice to you, other than the posting of the amended Privacy Notice at this site. We may email periodic reminders of our notices and terms and conditions and will email Privacy and Security Brainiacs™ clients when material changes occur, but individuals and clients should check our site frequently to see the current Privacy Notice and Conditions of Use that is in effect and any changes that may have been made to it.

Questions, concerns or complaints

Please contact the Privacy and Security Brainiacs™’ data protection officer:

Rebecca Herold
Privacy & Security Brainiacs
625 42nd Street
Des Moines, Iowa, USA 50312
+1 515-491-1564