This section explains how your personal data is handled when you visit our website. Personal data is any information that can be used to identify you individually. Detailed information about data protection can be found in our data protection declaration, which is listed below this paragraph.
Data gathering on this website.
Who is in charge of data gathering on this website?
We are regularly updating the content on this website and attempt to give accurate and current information. Unfortunately, we cannot assume responsibility for the veracity of any content on this website, particularly that given by third parties. As a service provider, we are under no obligation to monitor the information you transmit or retain, or to investigate circumstances that imply criminal behavior.
How do we collect your information?
On the one hand, we collect your data when you offer it to us. This could include data you enter into a contact form, as well as data acquired automatically or with your permission when you visit the website. This is largely technical information (for example, internet browser, operating system, or time of page view). our information is automatically collected as soon as you enter our page.
What do we do with your data?
Some data is collected to verify that the website is error-free. Other information may be utilized to assess your user behavior.
What rights do you have regarding your data?
You have the right to request free information about the origin, recipient, and purpose of your stored personal data at any time. You have the right to request that this data be corrected or deleted. If you have granted your consent to data processing, you may revoke it at any point in the future. You also have the right to request that the processing of your personal data be restricted in certain instances. You have the right to file a complaint with the appropriate supervisory authority. If you have any further data protection-related questions, please contact us at any time.
Hosting and Content Delivery Networks (CDN)
External hosting
This website is hosted externally. The personal data collected on this website is stored on the servers of the hoster(s). This may include IP addresses, contact requests, meta and communication data, contract data, contact details, names, website accesses and other data generated via a website. External hosting is carried out for the purpose of fulfilling the contract with our potential and existing customers (Art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast and efficient provision of our online offer by a professional provider (Art. 6 para. 1 lit. f GDPR). If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. Consent can be revoked at any time. Our host(s) will only process your data to the extent that this is necessary to fulfill its performance obligations and follow our instructions with regard to this data.
Our hosting provider is www.hetzner.com/de/
Order Processing
We have reached a data processing agreement (DPA) with the aforementioned vendor. This is a contract mandated by data protection law that assures the supplier only processes our website visitors’ personal data in line with our instructions and in accordance with the GDPR.
Which cloud server are you using hetzner.cloud
We utilize the hetzner.cloud ” service. The provider is Cloudflare Hetzner Online GmbIndustriestr. 25 91710 Gunzenhausen Deutschland (hereafter referred to as “)”hetzner cloud” .
Cloudflare provides a globally dispersed content delivery network that includes DNS. The Cloudflare network technically routes the information transmission between your browser and our website. This allows Cloudflare to analyze the data flow between your browser and our website and act as a filter between our servers and potentially dangerous data traffic from the Internet. Cloudflare may also use cookies or other technology to identify Internet users, but only for the purposes indicated above.
Our usage of Cloudflare is based on our legitimate interest in making our website as error-free and secure as feasible (Art. 6 para. 1 lit. f GDPR).
Data transfers to the United States are based on the EU Commission’s standard contractual terms.
Details can be found here: https://www.cloudflare.com/privacypolicy/.
For more information about Cloudflare’s security and data protection, see https://www.cloudflare.com/privacypolicy/.
Order Processing
We have reached a data processing agreement (DPA) with the aforementioned vendor. This is a data protection law-compliant contract that assures the provider only processes our website visitors’ personal data in accordance with our instructions and the GDPR.
General remarks and necessary information.
Data protection
The owners of these pages take the security of your personal information extremely seriously. We keep your personal information confidential and in accordance with the statutory data protection requirements and this privacy policy.
When you use this website, a variety of personal information is collected. Personal data is information that can be used to identify you individually. This privacy policy describes what data we gather and how we utilize it. It also discusses how and why this is done.
We would like to point out that data transfer over the Internet (for example, when conversing via email) may be susceptible to security flaws. Data cannot be completely protected against unauthorized access by third parties.
Note on the Responsible Body
The controller for data processing on this website is Frank Mutebbi.
Email address: privacy@cybersecurityvigilanceacademy.de
The controller is the natural or legal person who, alone or with others, determines the goals and methods of processing personal data (e.g., names, e-mail addresses, etc.).
Storage period
Unless otherwise noted in this privacy policy, your personal data will be retained by us until the purpose for data processing is no longer applicable. If you make a valid request for deletion or revoke your consent to data processing, your data will be deleted unless we have other legally permissible reasons for storing your personal data (for example, retention periods under tax or commercial law); in the latter case, the deletion will occur after these reasons are no longer applicable.
This page provides general information regarding the legal basis for data processing.
If you have given your consent to data processing, we will treat your personal data in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, as special categories of data are processed in accordance with Art. 9 para. 1 GDPR. In the case that express consent is provided for the transfer of personal data to third countries, data processing is carried out in accordance with Art. 49 para. 1 lit. a GDPR. If you have consented to the storage of cookies or access to information in your end device (e.g., via device fingerprinting), the data processing is also carried out under Section 25 para. 1 TTDSG. Consent may be rescinded at any time. If your data is required to perform the contract or carry out pre-contractual steps, we will treat it in accordance with Art. 6 para. 1 lit. b GDPR. Furthermore, we treat your data if it is essential to meet a legal duty under Art. 6 para. 1 lit. c GDPR. Data processing may also be carried out on the basis of our legitimate interests, as defined in Art. 6 para. 1 lit. f GDPR. The applicable legal bases in each specific case are discussed in the following paragraphs of this privacy policy.
Note about data transfer to the United States and other foreign countries.
Among other things, we employ tools from companies situated in the United States or other foreign countries that do not comply with data privacy laws. If these tools are activated, your personal information may be transferred and processed in these third countries. We would like to point out that these nations cannot guarantee the same level of data protection as the EU. For example, US corporations are required to disclose personal data to security agencies without providing you with the opportunity to seek legal redress. It is therefore not impossible that US authorities (e.g., secret services) will process, review, and permanently retain your data on US servers for surveillance reasons. We have no influence over these processing processes.
Withdrawal of your permission for data processing
Many data processing processes require your specific consent. You may withdraw your permission at any time. The revocation has no effect on the legality of the data processing carried out prior to it.
Right to object to the acquisition of data in exceptional instances and direct marketing (Article 21 GDPR).
If the data processing is based on Article 6 Abs. 1 Lit. E or F GDPR, you have the right to object to the processing of your personal data at any time on grounds related to your specific situation; THIS ALSO APPLIES TO PROFILING BASED ON THESE PROVISIONS. The relevant legal basis for processing can be found in this privacy policy. If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or the processing serves the establishment, RIGHTS AND FREEDOMS OR THE PROCESSING SERVES THE ESTABLISHMENT, EXERCISE OR DEFENSE OF LEGAL CLAIMS (OBJECTION PURSUANT TO ART. 21 PARA. 1 GDPR).
IF YOUR PERSONAL DATA ARE PROCESSED FOR DIRECT MARKETING, YOU HAVE THE RIGHT TO OBJECT AT ANY TIME TO THE PROCESSING OF PERSONAL DATA CONCERNING YOU FOR THE PURPOSE OF SUCH MARKETING; THIS ALSO APPLIES TO PROFILING TO THE EXTENT THAT IT IS RELATED TO SUCH DIRECT MARKETING. If you object, your personal data will no longer be used for direct marketing purposes (objection under Article 21 Paragraph 2 GDPR).
Right to file a complaint with the competent supervisory authority.In the event of GDPR infringement, data subjects have the right to file a complaint with a supervisory body, namely in the Member State of their habitual home, place of work, or the alleged violation. The right to file a complaint is not limited to any other administrative or judicial remedy.
Right to data portability.
You have the right to receive data in a common, machine-readable format that we handle automatically with your consent or in accordance with a contract with you or a third party. If you request a direct transfer of data to another controller, we shall do so only if it is technically practicable.
Information, deletion, and correction.
Within the scope of the applicable legal regulations, you have the right to free information about your stored personal data, its origin and recipients, and the purpose of data processing, as well as the right to modify or delete this data at any time. You are welcome to contact us at any time with this or any other personal data-related questions.
Right to restrict processing.
You have the right to request that your personal data be restricted from further processing. You may contact us at any time to do this. The right to restrict processing occurs in the following cases:
If you dispute the correctness of your personal data stored by us, we will normally need time to investigate this. You have the right to request that your personal data be restricted throughout the review process.
If your personal data was/is unlawfully processed, you have the option of requesting data restriction rather than erasure.
If we no longer require your personal data but you require it to exercise, defend, or pursue legal rights, you have the right to request that your personal data be restricted rather than erased.
If you have filed an objection under Article 21 (1) GDPR, a balance must be established between your interests and ours. You have the right to request that your personal data be restricted while it is still being assessed whose interests predominate.
If you have restricted the processing of your personal data, this data, aside from its storage, may only be processed with your consent, for the establishment, exercise, or defence of legal claims, for the protection of the rights of another natural or legal person, or for reasons of significant public interest of the European Union or a Member State.
SSL and TLS encryption.
This site employs SSL or TLS encryption for security reasons and to protect the transmission of sensitive information, such as orders or enquiries sent to us as the site operator. An encrypted connection can be identified by the change in the browser’s address line from “http://” to “https://” as well as the lock symbol in your browser line.
If SSL or TLS encryption is enabled, third parties will be unable to read the data you communicate to us.
Objection to promotional emails
We hereby object to the use of contact information published as part of our obligation to give legal notices for the purpose of sending unwanted advertisements and information. The proprietors of this website expressly reserve the right to take legal action if they receive unsolicited advertising information, such as spam e-mails.
Data gathering on this website.
Cookies
Our websites employ so-called “cookies”. Cookies are little data packets that pose no harm to your end device. They are saved on your device either momentarily (session cookies) or permanently. Session cookies are immediately removed at the end of your visit. Permanent cookies are maintained on your device until you erase them or your web browser deletes them automatically.
Third-party cookies may be stored on your device when you visit our website. These allow us or you to utilize specific third-party services (for example, cookies for payment processing). Cookies have a variety of functions. Many cookies are theoretically necessary because some website functionalities (such as the shopping cart or video presentation) would not operate without them. Other cookies are used to analyze user behavior or to display advertisements.
Cookies that are required to carry out the electronic communication process, to provide certain functions that you have requested (e.g., for the shopping cart function), or to optimize the website (e.g., cookies to measure the web audience) (necessary cookies) are stored under Art. 6 para. 1 lit. f GDPR, unless another legal basis is specified. The website operator has a legitimate interest in storing the cookies required for the technically error-free and optimized supply of its services.
Consent to store cookies and recognition technologies is required for processing (Art. 6 para. 1 lit. a GDPR and § 25 para. 1 TTDSG), which can be revoked at any time.
You can configure your browser to notify you of cookie settings and to allow cookies in specific instances, to reject cookies in specific cases or in general, and to automatically delete cookies when you close the browser. If cookies are turned off, the functionality of this website may be limited.
If cookies are used by third-party firms or for analysis, we will notify you separately in this privacy policy and, if necessary, obtain your permission.
Contact Form
If you submit a query using the contact form, we will retain your inquiry details, including the contact information you provide, for the purpose of processing the request and responding to follow-up queries. We will not disclose this information without your permission.
This data is processed in accordance with Art. 6 para. 1 lit. b GDPR if your request is related to contract fulfillment or the implementation of pre-contractual procedures. In all other situations, the processing is based on our legitimate interest in effectively processing the enquiries directed to us (Art. 6 para. 1 lit. f GDPR) or, if asked, your consent (Art. 6 para. 1 lit. a GDPR), which can be revoked at any time.
We will keep the information you give on the contact form until you request its deletion, renounce your consent for its keeping, or the purpose for its storage no longer applies (e.g., once your request is fulfilled). Mandatory legislative provisions, particularly retention periods, are unaffected.
Request via email, phone, or fax.
If you contact us via e-mail, phone, or fax, we will retain and handle your request, including all personal information (name, request), for the purpose of processing it. We will not disclose this information without your approval, and it will be processed in accordance with Art. 6 para. 1 lit. b GDPR if your request is related to the fulfillment of a contract or is required for the implementation of pre-contractual procedures. In all other situations, the processing is based on our legitimate interest in effectively processing the enquiries directed to us (Art. 6 para. 1 lit. f GDPR) or, if asked, your consent (Art. 6 para. 1 lit. a GDPR), which can be revoked at any time.
The data you submit via contact requests will remain with us until you ask us to delete it, renounce your consent to storage, or the purpose for data storage no longer applies (for example, when your request has been handled). Mandatory legislative provisions, including statutory retention periods, are unaffected.
These Terms and Conditions (“Agreement”) are a binding legal agreement between Cyber-Vigilance Academy (CVA) and you (“User”). By using the CVA website or registering for a CVA-provided training, product, or service, the user agrees to be bound by the terms of this contract. PLEASE REVIEW THIS AGREEMENT CAREFULLY TO ENSURE THAT YOU UNDERSTAND EVERY PROVISION. THIS AGREEMENT INCLUDES A MANDATORY ARBITRATION OF DISPUTES PROVISION THAT REQUIRES ARBITRATION ON AN INDIVIDUAL BASIS TO RESOLVE DISPUTES, AS OPPOSED TO TRIAL BY JURY OR CLASS ACTION.
If User registers for CVA-provided training, products, or services that are paid for by User’s employer or other sponsoring organisation (“Sponsor”), and there is a conflict or inconsistency between the provisions of this Agreement and any of the provisions of a previously agreed-upon agreement between CVA and the Sponsor (Previous Agreement), the provisions of the Previous Agreement shall take precedence.
Eligibility
Before utilising a CVA website or registering for and participating in any CVA-provided training, product, or service, the user must accept this Agreement. The user affirms that he or she is at least 18 years old and legally capable of consenting to this Agreement. If User is under the age of 18 and/or is not legally capable of consenting to this Agreement, User must request that a legal guardian review and agree to this Agreement on User’s behalf before using a CVA website or registering for and purchasing CVA-provided training, products, or services.
Live, Online, and On-Demand Training
CVA offers high-quality training in a variety of formats, including live in-person, online, and on-demand training. The CVA Training Policy describes the numerous obligations and requirements of users when attending training events or taking training online, whether live or on-demand. If User registers for CVA-provided training, User is also subject to the CVA Training Policy, which is available on this website. The Policy is incorporated into this Agreement by reference.
Spam filters & email notifications
CVA cannot be held liable if the User’s spam filters prevent the confirmation email from being delivered. It is the user’s obligation to guarantee that the email account linked with their registration accepts mail from CVA”s website.
Payment Terms & Taxes
If the user registers for CVA-provided training, services, or goods that require a fee or other charge, the user agrees to CVA’s pricing and payment terms, which are amended from time to time. CVA may introduce new training, products, or services for additional fees or charges, or change fees and charges for current training, products, or services, at any time at its sole discretion.
Indemnity
User agrees to defend, indemnify, and hold harmless CVA and their employees, contractors, agents, officers, and directors, from and against any and all claims, damages, obligations, losses, liabilities, costs or debt, and expenses (including attorney’s fees) arising out of or relating to: (i) User’s participation in any training, services, or products provided by CVA, including any data or content transmitted or received by you, (ii) User’s violation of any terms of this agreement.
No warranty
CVA disclaims any representations and guarantees, whether oral or written, stated, implied, or statutory, including but not limited to any implied warranties of fitness for a particular purpose or merchantability. CVA shall not be liable for any incidental, indirect, consequential, exemplary, special, or punitive damages, whether foreseeable, and regardless of whether liability is founded on contract, tort, or otherwise.
Limitations of Liability
TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, CVA, ITS DIRECTORS, OFFICERS, EMPLOYEES, OR AGENTS SHALL NOT BE LIABLE FOR ANY INDIRECT, PUNITIVE, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR EXEMPLARY DAMAGES, INCLUDING DAMAGES FOR LOSS OF PROFITS, GOODWILL, USE, DATA, OR OTHER INTANGIBLE LOSSES, ARISING FROM OR RELATED TO THE USE, OR INABILITY TO USE, THE SANS-PROVIDED TR. This liability limit applies regardless of whether the asserted responsibility is based on contract, tort, negligence, strict liability, or another basis.
No waiver
CVA’s waiver of any term of this Agreement shall not be construed as a continuous waiver of that term or any other term, and CVA’s omission to assert any right or provision under this Agreement shall not constitute a waiver of such right or provision.
Entire Agreement
This Agreement represents the parties’ entire understanding and agreement on the use of a CVA website, or CVA-provided training, products, or services. If any term of this Agreement is found illegal by a court of competent jurisdiction, the validity of the remaining sections of this Agreement will not be affected, and they will remain in full force and effect. This Agreement cannot be modified except by a written amendment signed by both parties.
CVA Training Policy
The CVA offers high-quality training in a variety of formats, including in-person, live online, and on-demand training. By registering for CVA-providing training, you (“User”) agree to follow the following:
Conduct
The user will conduct professionally in any training or other CVA-hosted environment. The use of obscene or sexually offensive language, as well as abusive or threatening behaviour against CVA officials or other users, is not conducive to learning. Improper conduct may result in exclusion from any CVA-provided training, hotel, or registration forfeiture.
CVA-provided Internet use
If User intends to utilise CVA-provided Internet connection during training, User acknowledges and understands that the following uses of such Internet are expressly prohibited:
Delivery Format and Event Instructor
CVA makes every effort to ensure that the scheduled delivery type (In-Person & Live Online) and teacher stated on our event sites are accurate on the event start day. However, if circumstances necessitate a change in either the format (i.e., from In-Person to Live Online) or the teacher, CVA reserves the right to make those adjustments at any time. CVA will notify User if changes occur; nevertheless, CVA will not refund User for travel or other expenses incurred as a result of a delivery format or instructor change.
Photo and Recording Release
CVA may have photographers capture images and/or films of the event, which may include User as a participant. By participating in the event, User consents to any filming of the event, which may include User, and authorises CVA to use photos or videos containing your image or likeness in marketing materials, promotional videos, social media channels, websites, and other advertising and promotional materials without compensation for as long as CVA wishes to use such photos or videos.
At the event, CVA will display banners and make statements to inform guests when photographers will take photos or films, allowing them to avoid being in the area if they do not want their image or likeness shot. Furthermore, if User does not wish to be featured in event filming, CVA asks that you notify CVA staff before entering the event. Attendees may be asked to wear a bracelet or other kind of signage to notify photographers that they do not want to be included in event filming.
If you wish to withdraw your consent to CVA’s use of your picture or likeness in event photography or filming, please contact us.
Transfer Policy
After CVA authorises User’s order for CVA-provided training and course materials are mailed to User’s registered account, access to the training cannot be transferred to another user or account.
Refund Policy for Training Events.
If User is unable to attend a training event and no one can replace User, User may submit a written refund request to US. Refund requests must be made by the deadline date for the User’s training event. 75 percent of the money will be returned.
Cyber-Vigilance Academy provides this website and its tools “as is”. Cyber-Vigilance Academy makes no express or implied representations or warranties about the website’s operation, information, content, materials, tools, services, or products. To the fullest extent permitted by applicable law, Cyber-Vigilance Academy disclaims any guarantees, express or implied, including but not limited to implied warranties of merchantability and fitness for a specific purpose.
Cyber-Vigilance Academy is not liable for any damages of any kind resulting from the use of this website and its tools, including direct, indirect, incidental, punitive, and consequential damages.
Copyright
All content on this site, including text, graphics, logos, icons, pictures, audio clips, and software, is the property of Cyber-Vigilance Academy, its legal entities, or its content providers and is protected under copyright laws. The compilation (gathering, organisation, and assembly) of all content on this site is Cyber-Vigilance Academy ‘s sole property and is protected by copyright laws. All software used on this website is the property of Cyber-Vigilance Academy, its legal entities, or its software providers, and is protected by copyright laws. The content and applications on this website can be utilised as a resource with explicit references. The content on this site may not be used for any other purpose, including reproduction, modification, distribution, transmission, republication, exhibition, or performance.
Trademarks
The Cyber-Vigilance Academy brand, logo, and any other Cyber-Vigilance Academy or service names or logos used on the Cyber-Vigilance Academy.de website are registered trademarks of Cyber-Vigilance Academy Brand.