Cofense Privacy Policy

Updated July 11, 2025

Overview 

Cofense Inc. and its subsidiaries and affiliates (collectively “Cofense” “our,” “we” or “us”) develops, markets, and sells software and services designed to assist our business customers, and the customers of our partners, in their defenses against cybersecurity threats and phishing attacks.  We also maintain public-facing websites where visitors can learn more about our solutions and request more information.

We want you to be assured that no matter whether you are our customer, a customer of one of our partners, or someone who is interested in learning more about Cofense, we are handling your personal data carefully and in line with the reason it was shared with us.  Because we collect and use personal data for different purposes, we have split our Privacy Policy into two sections: Website Privacy Policy and Product Privacy Policy.  Please refer to the applicable section for more information about how we collect and use your personal data.

The terms “personal data” and "personal information” used throughout this entire Privacy Policy are both defined as any information that does or can identify an individual, or as otherwise defined under applicable data protection legislation and privacy laws.  Personal data or personal information may include the following: name, address, date of birth, and contact data (i.e. email address, telephone number, work title, work location and employer name).

Please refer to the applicable section for more information about how we collect and use your personal data.

Website Privacy Policy

This Website Privacy Policy describes how Cofense Inc. and its affiliated entities (collectively, “Cofense”, “we”, “us”) collects, uses, discloses, stores, and otherwise processes personal data when you use our public websites.

By providing your personal data to Cofense, you agree that you are authorized to provide that data and are accepting this Website Privacy Policy and any supplementary privacy statement that may be relevant to you. If you do not agree to our practices, please do not register, subscribe, create an account, or otherwise interact with our websites.

Personal Data Collected

This Website Privacy Policy applies to personal data and other information collected by Cofense or its service providers from or about visitors to, or users of, Cofense websites. For purposes of applicable data protection legislation and privacy laws, Cofense Inc., located at 1602 Village Market Blvd SE suite 400, Leesburg, VA 20175, is the data controller of your personal data when you submit it on our websites, or we otherwise collect it directly from you by your use of our websites.

This Website Privacy Policy does not apply when we receive personal data from customers of our cybersecurity and phishing defense software and services or our employees and job applicants in their capacity as Cofense employees and job candidates. Please refer to the Product Privacy Policy below for information on how we process personal data from our customers.

We may collect information that is related to you but that does not personally identify you (“Non-Personal Data”). Non-Personal Data also includes information that could personally identify you in its original form, but that we have modified (for instance, by aggregating, anonymizing or de-identifying such information) to remove or obscure any personal data.

We may also collect Technical Information about you when you visit our websites, which your web browser automatically sends whenever you visit a website on the Internet. “Technical Information” is information that does not, by itself, identify a specific individual but which could be used to indirectly identify you. Our servers automatically record Technical Information, which may include your Internet Protocol (“IP”) address, browser type, browser language, and the date and time of your request.

How We Collect Information

Websites

Cofense collects personal data about you when you submit information through our websites. Examples include requests for Cofense software and services information; registering for Cofense whitepapers, reports, newsletters, or webcasts; or entering promotions.

Email Communication

We use pixel tags and cookies in our marketing emails so that we can track your interactions with those messages, such as when you open the email or click a URL link that’s embedded within them. When recipients click on one of those URLs, they pass through a separate web server before arriving at the destination page on a Cofense website. We use tools like pixel tags and cookies so that we can determine interest in particular topics and measure and improve the effectiveness of our communications.

Log Files

Log files record website activity related to our software and services and enable us to gather statistics about our users’ browsing habits. These entries help Cofense determine how many and how often users have accessed or used our software and services, which pages they’ve visited, and other similar data.

Cookies and Similar Technologies

We may collect information about your use of the websites through cookies and similar technologies. A “cookie” is text that we store through your computer’s web browser so that we can keep track of your interests and/or preferences and recognize you as a return visitor to the websites.

Clear GIFs

Clear GIFs, sometimes called “web bugs” or “web beacons,” are small electronic images that are placed on a web page or in an email message. We use clear GIFs to monitor website user behavior, deliver cookies, collect information, count visits, understand usage and campaign effectiveness, and to tell if a recipient has opened and acted upon an email.

Social Media

Our websites may contain social media features. These features may collect your IP address, the pages visited on our site and may set a cookie to enable the feature to function properly. Social media features and widgets are either hosted by a third party or hosted directly on our site. Your interactions with these features are governed by the privacy policy of the organization providing it.

Links to Other Websites

Our websites may link to third party web websites, and Cofense is not responsible for any personal data collected by these third-party websites. Information collected is governed through the third party’s website’s privacy policy. Any interactions you have with these websites, or any services or applications they offer, are beyond the control of Cofense. When you post information to or through such services, those websites’ privacy policies and cookie usage policies apply directly. We urge you to read the privacy and security policies of any third-party websites before providing any personal data while accessing those websites.

Public Forums, Blogs and the Customer Reference Program

Cofense websites may feature bulletin boards, blogs or forums (collectively, “Forums”). Any personal data that you choose to submit via such a Forum may be read, collected, or used by others who visit these Forums, and may be used to send you unsolicited messages.

Purposes for Processing Personal Data

We will only process your personal data in accordance with applicable data protection legislation and privacy laws. We need certain personal data to provide you with access to the Cofense websites. If you registered with us, you would have been asked to check a box indicating your agreement to provide personal data to access our websites or view our content related to the same. This consent provides us with the legal basis we require under applicable law to process your personal data. You maintain the right to withdraw such consent at any time. If you do not agree to our use of your personal data in line with this Website Privacy Policy, please do not use our Cofense websites.

Use of Information Collected

We may use your personal data:

• To provide you with personalized content;
• To process and respond to inquiries;
• For the purposes for which you provided the data;
• To improve the content and navigability of our websites; and
• To alert you about new features, special events and important announcements.

We may use Non-Personal Data for any reason and may share such information freely with third parties.

Cofense gives you choices about the ways we collect, use, share and overall process your personal data. You can choose what contact will be stored in your account and preferences. However, if you choose not to provide certain details, some of your experiences with us may be affected.

We do not use your personal data for the purposes of automated decision-making. However, we may do so in order to fulfill obligations imposed by applicable law, in which case we will inform you of any such processing and provide you with an opportunity to object.

If you would like to know what personal data we hold about you, you may submit a request to us reaching out to: privacy@Cofense.com. We will supply personal data about you that we hold in our own files within the reasonable timeframes stipulated by applicable law. Please note, that some requests may be subject to a reasonable fee.

Sharing of Information Collected

Cofense will not rent or sell your personal data to others but may disclose personal data with contracted third-party vendors and service providers (including cloud service providers) that work with Cofense and are contractually bound by confidentiality obligations. We will only share personal data with these vendors and service providers to help us maintain the Cofense public websites and provide certain content and services via our public websites.

If Cofense sells any part of its operations, Cofense may transfer personal data in connection with the sale. If a sale does occur, Cofense will attempt to notify you of the disclosure of your personal data.

We reserve the right to disclose information, including personal data, by law, litigation, or as a matter of national security to comply with valid legal process including subpoenas, court orders or search warrants, and as otherwise required by applicable law. We may also need to disclose personal data in the event of an emergency that threatens an individual’s life, health, or security.

Individual Rights

Opt-out.  You may contact us anytime to opt-out of: (i) direct marketing communications; (ii) automated decision-making and/or profiling; (iii) our collection of sensitive personal data; (iv) any new processing of your personal data that we may carry out beyond the original purpose; or (v) the transfer of your EEA/EU, UK or Swiss personal outside the EEA/EU, UK and Switzerland. Please note that your use of the Cofense websites may be impacted upon opt-out.

Access. You may access the personal data we hold about you at any time by contacting us directly.

Amend. You can also contact us to update or correct any inaccuracies in your personal data.

Delete. You can request that we erase your personal data.

Security

Cofense uses reasonable administrative, technical and physical safeguards to protect the security of your personal data from unauthorized disclosure, access or use, and overall processing. We also try to ensure that only necessary people and third parties have access to personal data. Nevertheless, such security measures cannot prevent all loss, misuse or alteration of personal data and we are not responsible for any damages or liabilities relating to any such incidents to the fullest extent permitted by applicable law. Where required under applicable law, we will notify you of any such loss, misuse or alteration of personal data that may affect you so that you can take the appropriate actions for the due protection of your rights. Cofense also reviews its security procedures periodically to consider appropriate new technology and updated methods.

We require that our third-party vendors, service providers and partners agree to keep all confidential information we share with them confidential and to use the information, inclusive of personal data, only to perform their obligations in the agreements we have in place with them. While we provide these third parties with no more information than is necessary to perform the function for which we engaged them, any information that you provide to these third parties independently, including personal data, is subject to their respective privacy policies and practices.

Data Retention and Storage

Cofense retains your information, including personal data, for its legitimate business purposes. Cofense will also retain your information, including personal data, as reasonably necessary to comply with our legal obligations, resolve disputes and enforce our agreements. We may also retain cached or archived copies of your information, including personal data, for a reasonable period of time.

Location of Personal Data Processing

Any personal data collected about EU/EEA, UK and Swiss visitors via our Cofense websites is processed in the United States by Cofense or by a third party acting on our behalf. When you provide personal data to Cofense, you consent to the processing of your personal data in the United States. Our Cofense websites are hosted in the United States.

California Privacy Rights

If you are a California resident, the California Consumer Privacy Act of 2018 (“CCPA”) may give you certain rights relating to your personal information (as defined in the CCPA). Please visit the California Attorney General’s privacy laws page for more information.

At points throughout our websites, you may be able to provide personal information, including contact information. If you provide your contact information, we will maintain that information until you request that we delete it. If you want us to delete your contact information, please email us from the email address you provided originally. Cofense will not discriminate against you for exercising your privacy rights.

Cofense does not sell any personal information to third parties and has not done so in the previous twelve (12) months.

Changes to the Website Privacy Policy

Cofense may review and update this Website Privacy Policy periodically without any prior notice. Cofense will post a notice to its main website at www.cofense.com to inform you of any changes to our Website Privacy Policy and indicate when it was most recently updated. Your continued use of our websites after changes have been posted to this Website Privacy Policy will constitute your acceptance of such changes. In the case of material changes that may adversely affect you, Cofense may notify you directly of changes to this Website Privacy Policy.

Contact

Our data protection officer is our Chief Privacy Officer. If you have any questions, concerns, or suggestions regarding this Website Privacy Policy, or would like to reach our data protection officer or UK representative, please contact us by email at privacy@cofense.com. 

For EU citizens, our EU representative is MCF Legal Technology Solutions Limited, which may be contacted at: cofense@mcf.ie. Please also cc: privacy@Cofense.com on your request.

Cofense Headquarters

1602 Village Market Blvd. SE #400

Leesburg, VA 20175

Tel: 1-888-304-9422

Product Privacy Policy

This Product Privacy Policy applies to the personal data processed as part of the software, services, applications, and related professional services, offered by Cofense Inc. and its affiliated entities (collectively, “Cofense”, “we”, “us”) to its direct customers and its partners’ customers. We refer to these Cofense software, services, applications, and related professional services, collectively as the “Services” in this Product Privacy Policy. This Product Privacy Policy describes how we collect, use, disclose, and overall process personal data when you use our Services. The personal data we process when you use our Services relates to your authorized employees, agents or independent contractors with an assigned unique email address, who may (i) access the applicable Services; and/or (ii) receive or send email messages with respect to the applicable Services (collectively, “Services Users”).

This Product Privacy Policy does not apply to personal data Cofense collects from visitors of its public websites or its employees and job applicants in their capacity as Cofense employees and job candidates.   Please refer to the Website Privacy Policy above for information about how we process personal data received from our public websites.

For the purposes of this Product Privacy Policy, Cofense acts as a service provider (a “data processor”, as defined under Privacy Laws) for our customers (each, a “data controller”, as defined under Privacy Laws).  This means that Cofense customers are responsible for determining what personal data is processed by the Services they have purchased from us directly or via our partners.

Personal Data Collected

Cofense Reporter (SaaS version): Cofense Reporter stores emails reported as potential spam by Cofense Reporter users for up to thirty days.

Cofense PhishMe: Business email addresses and IP addresses are collected for the purpose of providing the Service. Cofense PhishMe customer administrators can optionally upload additional personal data of the Service Users, such as full name, IP address, business telephone number, work title, work location and time zone, and department. In addition, the Service also collects their business contact information, full name, and IP address for identification/login of customer administrators. 

Cofense Triage: Cofense Triage collects business email addresses of the Cofense Triage customer operators and their business contact information, full name, and IP address for identification/login purposes. Cofense Triage also collects full content of emails reported by Service Users as being phishing emails to a designated “reporting” mailbox.

Cofense Vision (SaaS version): Cofense Vision collects business email addresses and usernames/login names of the Cofense Vision customer operators and their business contact information, full name, time/date stamp and IP address for identification/login purposes. The Service collects additional personal data obtained from meta data in reported emails processed by Cofense Vision which may include Service Users’ business email addresses, full name, work title and telephone number, if included in the processed emails.  

Cofense Vision (on-premises version): The on-premises version of Cofense Vision will not transfer any personal data to Cofense from the processed emails. 

Cofense Intelligence: The Service retains the customer company name and address, and the individual Cofense Intelligence customer operators’ business email addresses, full name, and, optionally, business telephone number. 

Cofense LMS: Cofense LMS collects Service Users’ usernames/login names, full names, business email addresses, and optionally: work location, time zone, optionally description and picture, alternate names, work ID number, work department, business telephone number, mobile phone number, address, and the name of their supervisor. 

Cofense Phishing Defense Center: The personal data collected by this Service is as set out in the preceding descriptions above for the constituent Services: Cofense Triage, Cofense Vision, Cofense Intelligence and Cofense Reporter.

How We Collect Information
 Services 

We will collect personal data that either your Service Users have directly provided us with via their use of the Services or the applicable Services may collect Service Users’ personal data themselves, as set forth in the section directly above. 

Third Party Products

The Services may link to third party websites, products, services, features, content, inclusive of social media features and content, or applications, and integrations (collectively, “Third Party Products”). Information, including personal data, collected and processed by such third parties is governed through each third party’s privacy policy. Any interactions you have with Third Party Products are beyond the control of Cofense. We urge you to read the privacy and security policies of any Third Party Products before providing any personal data while accessing or using them.

Purposes for Processing Personal Data

We will only process personal data in accordance with applicable data protection legislation and privacy laws (“Privacy Laws”). Prior to using our Services, our customers have entered into an agreement with us, either our standard Master Software and Services Agreement or another type of license agreement. The agreement will include terms stating that we require to process personal data for the purposes of providing the Services and upon accepting and/or signing the agreement, our customers indicate their acknowledgment and agreement of this personal data processing. When fulfilling our contractual obligations to our customers, we have a legitimate interest in processing certain personal data.

Use of Information Collected

We process personal data for the following purposes:

• To provide and maintain the Services;
• To improve and optimize the Services; 
• To provide our customers with personalized or customized content;
• To process and respond to inquiries and requests, including Service User requests;
• To communicate with you about your account with Cofense and our Services;
• For the purposes for which you or the Service Users shared the personal data with us;
• To fulfill obligations imposed by applicable law and authorities;
• To notify and market new Services, features, special events and make important company or Services announcements; and
• For other legitimate business purposes.

Cofense will process, disclose, use, reproduce, sell, publicize, or otherwise exploit aggregate de-identified information that doesn’t identify a Service User or a Cofense customer, such as statistical information about how you or the Service Users use the Services.

Sharing of Information Collected

Cofense will disclose personal data for any legitimate business purpose within the Cofense family of companies. 

If Cofense sells any part of its operations, or a merger, asset or stock purchase or similar change of company control takes place, Cofense may also disclose personal data in connection with the same.

Cofense will also disclose personal data to unaffiliated companies that may process personal data on its behalf (“Subprocessor(s)”) to facilitate the provision of the Services and to help run its business without obtaining your prior consent. Cofense will provide notice via the Cofense Resource Center prior to engaging a Subprocessor to process personal data and such engagement shall be subject always to Privacy Laws.   Subprocessors may be providers of customer support services, data centers, analytics technologies, administrative, procurement and payment processing services, fraud monitoring and prevention services, services that aim to detect and prevent any deceptive or illegal activity or misuse of our Services, email and social media and other marketing platforms and other service providers and hosting services. We enter into data protection agreements with our Subprocessors that commit them to protect personal data as set out in this Product Privacy Policy.

Cofense will also disclose personal data with other third parties with your prior approval or consent (where required by applicable law), to provide Third Party Products that we have integrated with our Services. Cofense is not responsible for any personal data collected by these third parties. Any interactions Service Users have with these Third Party Products, are beyond the control of Cofense. When Service Users post personal data to or through such Third Party Products, those third parties’ applicable privacy policies apply and we assume no responsibility for the content, privacy policies, actions, omissions or practices of any such third party and Third Party Products.

Cofense may also disclose personal data without your prior approval or consent to unaffiliated companies, organizations, government authorities or individuals outside of the Cofense family of companies to comply with legal obligations or to protect Cofense’s rights.  Cofense may also disclose personal data to unaffiliated companies, organizations, government authorities or individuals outside of the Cofense family of companies: a) if it believes in good faith that access, use, preservation, or disclosure of the personal data is reasonably necessary to detect, prevent or protect against fraudulent, deceptive or illegal activity, misuse of the Services, security or technical issues, and emergency issues, or b) where it is reasonably necessary to protect from harm the rights, property or safety of Cofense and its employees, and of Service Users, children, any individual’s life, health or of the public in general, as required or permitted by applicable law.

Cofense reserves the right to disclose personal data by law, litigation, or as a matter of national security, to comply with valid legal processes, including subpoenas, court orders or search warrants, and as otherwise required by applicable law.

Individual Rights

Service Users may be entitled to exercise rights under Privacy Laws, and we will do our best to help you (acting as the data controller) comply with requests you may receive from Service Users, or we receive directly from Service Users.

Service Users may be entitled to ask us for a copy of their personal data we process to correct, delete, or restrict (stop any active) processing of their personal data. They may also be entitled to additional rights based on Privacy Laws in their jurisdiction. In addition, they may object to the processing of their personal data in some circumstances (such as where we are using the personal data for direct marketing).

These rights may be limited, for example, if by fulfilling such requests we would also be revealing personal data about another person, or if we are asked to delete personal data which we are required to process as part of the provision of our Services to the respective Service User’s employer (you, acting as the data controller),  or we are required to retain by law, or which we need to retain in order to defend claims against us.

To exercise any of these rights, Service Users can get in touch with us using the Contact details set out below, however, for questions about how our customers use, share, and generally process their personal data via the use of our Services, Service Users should ask their employer (you, acting as the data controller) directly.  

Please note, we will take reasonable steps to verify related identities and authenticity of requests before taking any action. To the extent Service Users’ requests to exercise a right relate to the provision of Services you have purchased, we will notify you of this request and ask the Service Users to send their request directly to you, since you act as the data controller for their personal data, and we will not take any further action unless you request us to in writing or unless we are otherwise required to do under applicable law. 

Security

Cofense uses reasonable administrative, technical, and physical safeguards designed to protect the security of Service Users’ personal data from unauthorized disclosure or processing.  Where required under law, we will notify you of any such loss, misuse or alteration of personal data that may affect you so that you can take the appropriate actions for the due protection of your rights.  Cofense also reviews its security procedures periodically to consider appropriate new technology and updated methods.

We require that our Subprocessors who process personal data related to our Services agree to appropriate data protection obligations in the agreements we have in place with them. While we provide these Subprocessors with no more personal data than is necessary to perform the function for which we engaged them, any personal data that you or Service Users provide to them independently is subject to their own respective privacy policies and practices.

Data Transfers

Personal data processed by our Services is stored on the servers of the Subprocessor(s) we engage to provide data center services to us. The storage locations are set out in our Cofense Sub-Processor List, which is accessible via the Cofense Resource Center of the Services.

Personal data may be processed in, and transferred or disclosed in, the United States and other third countries (countries for which the European Commission has not confirmed a suitable level of data protection on the basis of an adequacy decision) in which Cofense affiliated entities are located and in which Subprocessors are located or have servers they use. You can view a list of these third countries in our Cofense Sub-Processor List. 

Cofense offers, upon request, to its customers and partners accordingly, a Data Processing Agreement for signature, and this includes the current EU Commission Standard Contractual Clauses, the UK International Data Transfer Addendum to the EU Commission Standard Contractual Clauses, and a Swiss Addendum to the EU Commission Standard Contractual Clauses, or other transfer mechanisms as they become available or applicable to Cofense (such as confirmation it has self-certified under the EU-U.S. Data Privacy Framework (“EU-U.S. DPF”), the UK Extension to the EU-U.S. DPF (“UK Extension”), and the Swiss-U.S. Data Privacy Framework (“Swiss-U.S. DPF”), as approved by the European Commission and relevant other data protection authorities.

We ensure that Subprocessors processing personal data offer an adequate level of data protection by entering into appropriate data protection agreements with them, which include the EU Commission Standard Contractual Clauses, the UK International Data Transfer Addendum to the EU Commission Standard Contractual Clauses and a Swiss Addendum to the EU Commission Standard Contractual Clauses, or other transfer mechanisms (such as confirmation they are self-certified under the EU-U.S. DPF, inclusive of the UK Extension and the Swiss-U.S. DPF), as approved by the European Commission or relevant other data protection authorities.

Data Retention and Storage

Cofense retains personal data for its legitimate business purposes and for as long as your Service license(s) is/are active. Upon termination or expiration of such license(s), Cofense retains personal data processed within the Services for up to sixty (60) calendar days after the Service license(s) have terminated or expired. Cofense may retain personal data for a longer period, as reasonably necessary, to comply with its legal obligations, resolve disputes, enforce its agreements, as well as for procurement, administrative and auditing purposes.

California Privacy Rights

Cofense will not sell, process, retain, disclose, or use (i) for a commercial purpose or (ii) outside of the direct business relationship between us and you, any information that, under the California Consumer Privacy Act (“CCPA”) constitutes “personal information”, except to provide the Services or as permitted by CCPA. 

Data Privacy Framework

Cofense complies with the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF), and the onward transfer liability provisions, as set forth by the U.S. Department of Commerce (the “Frameworks”). Under the Frameworks, Cofense is responsible for the processing of personal information it receives and transfers to third parties, and is liable for any such third parties that process the personal information in a manner inconsistent with the Frameworks. Cofense Inc. has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (“EU-U.S. DPF Principles”) applicable to the processing of personal data received from the EU and the UK (including Gibraltar) in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF. Additionally, Cofense Inc. has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the EU-U.S. DPF, and to view our certification, please visit https://www.dataprivacyframework.gov.

Any personal data we receive under the Frameworks will be processed in accordance with the DPF Principles.  Cofense is responsible for the personal data it processes in its Services, under each of the Frameworks, and subsequently transfers to a third party as set out in this Product Privacy Policy. The Federal Trade Commission has jurisdiction over Cofense’s compliance with the EU-U.S. DPF, the UK Extension, and the Swiss-U.S. DPF.

Cofense commits to resolve DPF Principles-related complaints regarding the personal data we process as part of our Services.  EU, UK, and Swiss individuals with inquiries or complaints regarding our handling of personal data received, collected and overall processed in reliance on the EU-U.S. DPF, the UK Extension, and the Swiss-U.S. DPF should first contact us at: privacy@cofense.com . 

In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, Cofense Inc commits to refer unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF to TRUSTe, an alternative dispute resolution provider based in the United States. If you do not receive timely acknowledgment of your DPF Principles-related complaint from us, or if we have not addressed your DPF Principles-related complaint to your satisfaction, please visit https://feedback-form.truste.com/watchdog/request for more information or to file a complaint. The services of TRUSTe are provided at no cost to you. 

In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, Cofense will arbitrate claims of individuals, provided they invoke binding arbitration. An individual may initiate binding arbitration by submitting a notice to Cofense, detailing prior resolution efforts, the alleged violation, and, optionally, supporting materials or legal arguments. For more information on initiating binding arbitration, please visit https://www.dataprivacyframework.gov/framework-article/G%E2%80%93Arbitration-Procedures and https://www.dataprivacyframework.gov/framework-article/B%E2%80%93Available-Remedies%E2%80%93SWISS 

Minors

Our Services are not intended for and may not be used by minors. “Minors” are individuals under the age of 16 (or under a higher age, as provided in certain countries or territories).  Cofense does not knowingly collect personal data from minors or allow them to register for the purposes of using the Services.  If it comes to our attention that we have collected personal data from a minor, we may delete the personal data without notice. If you have reason to believe that information about a minor has been sent to us, please contact Cofense customer support at support@cofense.com to request removal of the minor’s information.

Changes to the Product Privacy Policy

Cofense may review and update this Product Privacy Policy periodically without any prior notice.  Cofense will post the updated Product Privacy Policy on our website or Cofense Resource Center and indicate when it was most recently updated. Your continued use of the Services after such changes have been posted online will constitute your acceptance of the same.  

Contact

Our Data Protection Officer is our General Counsel, Chief Privacy and Compliance Officer. 

If you have any questions regarding this Privacy Policy or would generally like to reach our Data Protection Officer, please contact us by email at: privacy@cofense.com.

Cofense Inc. Headquarters
 1602 Village Market Blvd, SE #400
 Leesburg, VA 20175
 Tel: 1-703-652-0717

For EU citizens, our EU representative pursuant to Art. 27 of the GDPR is: MCF Legal Technology Solutions Limited and can be contacted at: cofense@mcf.ie. Please also cc: privacy@cofense.com on your request.

For UK citizens, our UK representative pursuant to Art. 27 of the UK GDPR can be contacted at: privacy@cofense.com.