Threat Level: green Handler on Duty: Brad Duncan

SANS ISC: ISC Feature of the Week: Privacy Policy SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms: https://isctv.sans.edu

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
ISC Feature of the Week: Privacy Policy

Overview

There have been a lot of data leaks of email, password, credit card information and more lately. I wanted to take a moment and remind everyone about the Internet Storm Center's and the SANS Institute's commitment to protecting private information as outlined in our ISC/DShield Privacy Policy at https://isc.sans.edu/privacy.html.

Additionally, any source information in DShield submissions as well as any other project such as the 404project are anonymised in public reports.

Features

I'll give a brief summary here and you can follow the links for complete details.

First line is Last Updated date so you'll know immediately if there are any current changes.

1. How We Gather Information - https://isc.sans.edu/privacy.html#1

The ISC Portal system saves your information and references it to your email address and password.

2. Log Files - https://isc.sans.edu/privacy.html#2

Web logs are stored and used to analyze trends, to administer the site, to track how visitors interact with the site.

3. Cookies - https://isc.sans.edu/privacy.html#3

ISC may use both session ID cookies and persistent cookies. We use session cookies to make it easier for you to navigate our site. You can remove your ISC Portal login cookie by clicking the "Logout" link.

4. How We Protect Your Personal Information - https://isc.sans.edu/privacy.html#4

ISC safeguards the security of the data you send us with physical, electronic, and managerial procedures. The ISC website uses SSL v3 and TLS v1 encryption on all web pages where personal information is submitted.

5. Access To Your Personal Information - https://isc.sans.edu/privacy.html#5

To review and update your personal contact information, simply click https://isc.sans.edu/login.html and log in with your email address and password, then click My Information.

6. Notifications and Promotional Email - https://isc.sans.edu/privacy.html#6

You are free to opt-in and/or opt-out of any notification or email.

7. Links To Other Sites - https://isc.sans.edu/privacy.html#7

The ISC web site contains links to other sites that are not owned or controlled by ISC. Please be aware that the ISC is not responsible for the privacy practices of such other sites.

8. Affiliates And Subsidiaries - https://isc.sans.edu/privacy.html#8

DShield.org provides Google Ads and uses Google Analytics in certain areas of the site.

9. Information Obtained From Third Parties - https://isc.sans.edu/privacy.html#9

ISC does not sell or trade your personal information. We may at times receive contact lists from other organizations. We may send mailings such as brochures to these addresses.

10. Changes To This Privacy Statement - https://isc.sans.edu/privacy.html#10

If we decide to change our privacy policy, we will post those changes to this privacy statement, the homepage, and other places we deem appropriate so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it.

11. Contact Us - https://isc.sans.edu/privacy.html#11

If you have any questions or suggestions regarding our privacy policy, please contact us at handlers@sans.edu.

 

Post suggestions or comments in the section below or send us any questions or comments in the contact form on https://isc.sans.edu/contact.html#contact-form
--
Adam Swanger, Web Developer (GWEB, GWAPT)
Internet Storm Center https://isc.sans.edu

AdamS

86 Posts
What a timely article. I was just checking out an add-in called Do Not Track Plus from http://www.abine.com/dntdetail.php . It's a browser add-in that purportedly automatically blocks tracking cookies. It shows this site is just using Google Anayltics. LinkedIn, well, that's an entirely different story. :-)
Anonymous

Sign Up for Free or Log In to start participating in the conversation!