Jump to content


  • Step 1 Your Account  
  • Step 2 Confirmation  

Join Our Community

  • * Required Information


  • Between 3 and 26 characters



  • Between 3 and 32 characters




  • Company Mailing Address (only visible to Admins)

  • First name

  • Last name

  • Middle name or initial

  • This is a private field, shown only to Admins of CForum

  • Max 100 characters

  • Your associated sector(s)

  • e.g. ISACs

  • Country you are speaking on behalf of

  • spell w H i T E .... backwards

    This helps to protect us against spammers.

Terms of Use

(Effective as of September 2014)

IMPORTANT – THIS IS A LEGAL AGREEMENT BETWEEN YOU, BOTH ON AN INDIVIDUAL BASIS AND WHEN ACTING AS AGENT FOR AND ON BEHALF OF AN ENTITY, NAMELY, YOUR EMPLOYER (together, referenced herein with “you” or with “your”) AND CYBERSECURITY FRAMEWORK IMPLEMENTATION REPOSITORY AND EXCHANGE, INC. (referenced herein as “CFIRE”).  YOU SHOULD READ CAREFULLY THE FOLLOWING TERMS AND CONDITIONS THAT ARE A PART OF THESE TERMS OF USE (“Agreement”) BECAUSE THEY GOVERN YOUR ACCESS TO AND USE OF THE WEBSITE LOCATED AT http://cyber.securityframework.org/ AND ANY ASSOCIATED INFORMATION, SERVICES, SOFTWARE FUNCTIONALITY AND/OR MATERIALS (collectively, the “Site”).  CFIRE IS WILLING TO LICENSE TO YOU THE RIGHT TO USE THE SITE ONLY ON THE CONDITION THAT YOU AGREE TO ALL OF THE TERMS AND CONDITIONS SET FORTH IN THIS AGREEMENT.  IF YOU DO NOT AGREE WITH THE TERMS AND CONDITIONS SET FORTH IN THIS AGREEMENT, YOU ARE HEREBY INSTRUCTED TO STOP USE OF THE SITE.    

BY CLICKING “I ACCEPT” AT THE END OF THIS AGREEMENT OR BY ACCESSING, OR USING ANY PART OF THE SITE, YOU ACKNOWLEDGE THAT YOU HAVE READ THIS AGREEMENT, THAT YOU UNDERSTAND IT AND ITS TERMS AND CONDITIONS, AND THAT YOU AGREE TO BE BOUND LEGALLY BY IT AND ITS TERMS AND CONDITIONS.

IF YOU DO NOT AGREE WITH ALL OF THIS AGREEMENT, YOU ARE NOT GRANTED PERMISSION BY CFIRE TO, ACCESS, OR OTHERWISE USE THE SITE.  IN SUCH CASE, PLEASE CLICK “I REJECT” AND PROMPTLY LEAVE THE SITE.  

  1. LICENSE GRANT.  Subject to your continued compliance with the express terms and conditions of this Agreement, CFIRE hereby provides to you a revocable, limited, royalty-free, non-exclusive, non-transferable, and non-sublicenseable license to access and use the Site (or any portion thereof) solely for personal or internal business purposes.  In addition, you may print materials and information from the Site solely for the foregoing purpose, provided that all hard copies contain all copyright and other applicable notices contained in such materials and you abide by any further restrictions set forth in this Agreement.  All rights not expressly granted under this Agreement are hereby reserved.  Accordingly, you are hereby prohibited from using the Site in any manner that is not expressly and unambiguously authorized by the terms and conditions of this Agreement.   

  2. USER CONTENT.  The Site may contain certain features or functionality, such as a forum or message area, (each, a “User Content Area”) that allow you to post and/or upload to the Site user generated content (collectively, “User Content”).  To the extent the Site contains any such User Content Area, you hereby agree that you will not upload, post, display, or transmit any of the following in any User Content Area:

  • User Content that violates or infringes in any way upon the rights of others, including any statements which may defame, harass, stalk or threaten others;

  • User Content that is offensive to the online community, including, without limitation, expressions of obscenity, bigotry, racism, abusiveness, vulgarity or profanity;

  • User Content that violates any law or engages in any activity that would constitute any criminal offense or give rise to any civil liability;

  • User Content in which you impersonate any person or entity, including, but not limited to, any CFIRE employee, or falsely state or otherwise misrepresent your affiliation with any person or entity;

  • User Content that interferes with any other user’s right to privacy;

  • User Content, software or other materials which contain a virus or other harmful or disruptive component;

  • Unsolicited or unauthorized advertising, promotional materials, “junk mail,” “spam” or any other form of solicitation;

  • User content that violates some other contractual or fiduciary rights, duties or agreements by which you are bound; or

 

  • User Content protected by copyright, trademark, trade secret, rights of publicity or other proprietary right of any third party (collectively, “Third Party Rights”) without the prior express written permission of the applicable right holder.  The burden of determining that all User Content is not subject to any Third Party Rights rests exclusively with you under all circumstances.  Accordingly, you shall be solely liable for any or damage or costs resulting from any User Content that actually or alleged infringes any Third Party Rights.  Any person determined by CFIRE in its sole discretion to have violated any Third Party Rights may be barred from submitting or posting any further User Content.  

CFIRE hereby reserves the right to delete (in part) and/or remove (in entirety) any User Content posted, submitted, and/or uploaded to the Services in its sole discretion.  You hereby agree that the foregoing restrictions set forth this Section 2 shall also apply to any User Content that you post, submit and/or upload to any social media or other webpage directly accessible through the Services.  Moreover, you hereby agree that you are solely responsible for any liability arising from or related to your use of any User Content Area and/or any of your User Content.   

 

  1. LICENSE TO USE USER CONTENT.  Although you have no proprietary interest in any User Content Area, you retain your rights in any User Content you post to the Site, subject to the rights that you grant to us as described in this Section 3.  By submitting User-Content to a User Content Area or by otherwise using the Site to transmit or display any User-Content, you automatically grant CFIRE a royalty-free, non-exclusive, transferable and sublicensable right and license to use, reproduce, modify, publish, translate, create derivative works from, distribute, transmit, perform, and display such content or information (in whole or in part) worldwide and/or to incorporate such content into other works in any form, media, or technology now known or later developed for as long as CFIRE needs to make use of the User Content to operate or provide such User Content with the Website.  At any time, you may modify or remove from the Site any User Content that you have submitted or made available for inclusion on or through the Site (but not, for clarity, any Submissions you have made to the Site pursuant to Section 11). Your removal of such User Content from the Website will terminate CFIRE’s license to such User Content.  Notwithstanding the foregoing license, you hereby agree that by merely permitting your User Content to be posted, displayed, submitted and/or uploaded to the Site, CFIRE shall not be considered a publisher of such User Content under any circumstances, and is merely functioning as an intermediary to enable you to post, display, submit and/or uploaded any User Content.  In addition, you also hereby agree that CFIRE has no control over the extent to which any User Content may be used, modified and/or distributed by any party or person once such content is posted, displayed, submitted and/or uploaded on the Site.  Moreover, CFIRE assumes no responsibility for the deletion of or failure to store any User Content.  

  2. REPRESENTATIONS AND WARRANTIES.  By downloading, accessing, or using the Site, you represent and warrant that (i) you are at least 18 years of age or the legal age of majority, whichever is greater; (ii) you will at all times provide true, accurate, current, and complete information when submitting any registration form(s) or otherwise providing any information to CFIRE through the Site; (iii) you will at all times comply with the terms and conditions of this Agreement including, without limitation, the terms set forth in Sections 1 (License Grant) and 2 (User Content); (iv) you have all necessary rights to make any User Content; and (v) none of your User Content will violate any right(s) of a third party including, without limitation, any privacy, publicity, intellectual property, confidentiality and/or employment right.  Any breach of the foregoing representations and warranties entitles CFIRE (and without notice to you) to seek immediately any and all remedies available at law or equity.  If you do not agree to any term or condition, you should not access or otherwise use this Site.

  3. USER NAME HANDLING POLICY.  Registration for access to and use of certain portions of the Site may require both a user name and a password or adherence to other access requirements as designated by CFIRE in its sole discretion from time to time.  You hereby agree to consider your user name and password as confidential information and not to disclose such information to any third party without the prior express written consent of CFIRE, which may be withheld in its sole discretion.  You shall immediately notify CFIRE if you suspect or become aware of any loss or theft of your password or any unauthorized use of your user name and password.  You shall be solely liable for any loss or damage arising from your failure (whether inadvertent or intentional) to comply with these obligations.        

  4. PROPRIETARY RIGHTS.  This Agreement provides only a limited license to access and use the Site in accordance with the terms of this Agreement.  Accordingly, you hereby agree that CFIRE transfers no ownership or intellectual property interest or title in and to the Site to you or anyone else in connection with your use of the Site.  All text, graphics, user interfaces, visual interfaces, photographs, sounds, artwork, computer code (including html code), programs, software, products, information, and documentation as well as the design, structure, selection, coordination, expression, “look and feel,” and arrangement of any content contained on or available through the Site are exclusively owned, controlled, and/or licensed by CFIRE or its shareholders, parent(s), licensors, or affiliates.  CFORUM, the CFIRE logo, and all other names, logos, marks, and icons identifying CFIRE and/or its affiliates, and any of their events, programs, products, and/or services, are owned exclusively by CFIRE, and any use of such marks without the prior express written permission of CFIRE is hereby expressly prohibited.  

  5. PRIVACY POLICY.  CFIRE may collect and use personally identifiable information, including, without limitation, your name, phone number and email address (collectively, “PII”), in connection with your access to and use of the Site.  Accordingly, please review CFIRE’s Privacy Policy found at http://cyber.securityframework.org/privacypolicy/ for a summary of CFIRE’s practices related to the collection and use of PII.  

  6. LINKS TO OTHER SITES AND THIRD PARTY CONTENT.  CFIRE may in its sole discretion provide on the Site links to certain websites owned and controlled by third parties (collectively, “Third Party Sites”).  These Third Party Sites have not necessarily been reviewed by CFIRE and are owned, controlled and/or maintained solely by third parties over whom CFIRE exercises no control.  Accordingly, CFIRE hereby expressly disclaims and shall not have any liability or responsibility for the content, the materials, the accuracy of the information, and/or the quality of the products or services provided by, available through, or advertised on Third Party Sites accessible through links on the Site.  Moreover, the Third Party Sites do not imply an endorsement with respect to any third party, any content, any website, network, or page, or the products or services provided by any third party.  

  7. DISCLAIMER.  THE SITE IS PROVIDED ON AN “AS-IS” BASIS AND MAY INCLUDE ERRORS, OMISSIONS, OR OTHER INACCURACIES.  CFIRE MAKES NO REPRESENTATIONS OR WARRANTIES ABOUT THE SITE FOR ANY PURPOSE, AND HEREBY EXPRESSLY DISCLAIMS ALL WARRANTIES, EXPRESS OR IMPLIED, INCLUDING, WITHOUT LIMITATION, ANY WARRANTY OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, OR NON-INFRINGEMENT OR ANY OTHER IMPLIED WARRANTY UNDER THE UNIFORM COMPUTER INFORMATION TRANSACTIONS ACT AS ENACTED BY ANY STATE.  CFIRE ALSO MAKES NO REPRESENTATIONS OR WARRANTIES THAT THE SITE WILL OPERATE ERROR-FREE, UNINTERRUPTED, OR IN A MANNER THAT WILL MEET YOUR REQUIREMENTS AND/OR NEEDS.  THEREFORE, YOU ASSUME THE ENTIRE RISK REGARDING THE QUALITY AND/OR PERFORMANCE OF THE SITE.      

  8. LIMITATION OF LIABILITY.  IN NO EVENT SHALL CFIRE BE LIABLE FOR ANY INDIRECT, PUNITIVE, INCIDENTAL, SPECIAL, OR CONSEQUENTIAL DAMAGES ARISING OUT OF OR IN ANY WAY CONNECTED WITH YOUR USE OF THE SITE AND/OR THIS AGREEMENT WHETHER BASED IN CONTRACT, TORT, STRICT LIABILITY, OR OTHERWISE.  

  9. SUBMISSIONS.  Any review, feedback, suggestions for improvement, or other submissions you make to CFIRE on or through the Site, including, without limitation, any information you provide to CFIRE through any registration process and/or form (collectively, “Submissions”), will be deemed to include a royalty-free, perpetual, irrevocable, transferable, sublicensable and non-exclusive right and license for CFIRE to adopt, publish, reproduce, disseminate, transmit, distribute, copy, use, create derivative works, and display (in whole or in part) worldwide, or act on any such Submission without additional approval or consideration, in any form, media, or technology now known or later developed for the full term of any rights that may exist in such content, and you hereby waive any claim to the contrary.           

  10. ENFORCEMENT.  You acknowledge that any breach, threatened or actual, of this Agreement, including, without limitation, violations or infringement of CFIRE’s intellectual property or proprietary rights, may cause irreparable injury to CFIRE, whereby such injury would not be quantifiable in monetary damages, and CFIRE would not have an adequate remedy at law.  In the event of such injury or potential for such injury and notwithstanding the arbitration provision below, you therefore hereby agree that CFIRE shall be entitled, in addition to other available remedies, to seek and be awarded an injunction or other appropriate equitable relief from a court of competent jurisdiction restraining any breach, threatened or actual, of your obligations under any provision of this Agreement.  

  11. ENFORCING SECURITY.  Any actual or attempted use of the Site by you in violation of this Agreement may result in criminal and/or civil prosecution, including, without limitation, punishment under the Computer Fraud and Abuse Act of 1986 under U.S. federal law.  CFIRE reserves the right in its sole discretion to review, monitor, and/or record any information relating to your use of the Site (“User Information”) without any prior notice to or permission from you, including, without limitation, by archiving content and/or communications submitted to and/or sent by you through the Site.  CFIRE may share any User Information we obtain from you with any law enforcement organization in connection with any investigation or prosecution of possible criminal or unlawful activity.  CFIRE will also disclose User Information as required by any court order and/or subpoena.  In addition, CFIRE hereby reserves the right in its sole direction to at any time and without notice modify, suspend, terminate, and/or interrupt operation of or access to the Site, or any portion thereof, in order to protect the Site, CFIRE, or the business interests of CFIRE and/or its affiliates.

  12. TERM AND TERMINATION.  This Agreement will take effect each and every time that you access and/or use the Site.  This Agreement will terminate automatically (i) if you fail to fully comply with all of its terms and conditions; or (ii) when you cease all use of the Site in connection with each separate visit.  Termination under the foregoing circumstances shall be effective without notice.  In addition, CFIRE may in its sole discretion terminate this Agreement upon notice to you for any or no reason.  Upon termination of this Agreement, any and all right(s) to use the Site shall immediately cease and you must promptly return to CFIRE (at the address listed below) all tangible embodiments of the Site in your possession or control.  Sections 2-6 and 8-18 will survive the termination of this Agreement.

  13. WAIVER & SEVERABILITY.  CFIRE’s failure to insist on upon strict performance of any of the terms and conditions of this Agreement by you will not operate as a waiver of any subsequent or other default or failure of performance.  If any part of this Agreement is determined by a court of competent jurisdiction to be invalid or unenforceable pursuant to applicable law or court order including, but not limited to, the warranty disclaimers and the liability limitations set forth above, then the invalid or unenforceable provision will be deemed superseded by a valid, enforceable provision(s) that most clearly matches the intent of the original provision and the remainder of this Agreement shall continue in effect.

  14. COPYRIGHT INFRINGEMENT POLICY AND TAKE DOWN PROCEDURES:

If you have a good faith belief that your work has been copied in a way that constitutes copyright infringement, or that your intellectual property rights have been otherwise violated, you can submit a Notice of Claimed Infringement (NOCI) to the designated agent (http://www.copyright.gov/onlinesp/list/y_agents.html) of Cybersecurity Framework Implementation Repository And Exchange, Inc. by providing our agent with the following information:

 

  • a physical or electronic signature of the person authorized to act on behalf of the owner of the copyright or other intellectual property interest that is allegedly infringed;

  • identification or description of the copyrighted work or other intellectual property that you claim has been infringed. If you are asserting infringement of an intellectual property right other than copyright, please specify the intellectual property right at issue (for example, trademark or patent);

  • Identification or description of where the material that you claim is infringing is located on the Site, with enough detail that we may find it on the Site;

  • your address, telephone number, and email address;

  • a statement by you that you have a good faith belief that the use of the material complained of is not authorized by the copyright or intellectual property owner, its agent, or the law;

  • a statement by you, made under penalty of perjury, that the information in your notice is accurate and that you are the copyright or intellectual property owner or authorized to act on the copyright or intellectual property owner’s behalf.

  • Our agent designated to receive claims of copyright or other intellectual property infringement may be contacted as follows:


 

By mail: CFIRE Copyright, 302 Sentinel Dr. Suite 300, Annapolis Junction, MD 20701

 

By fax: 301-317-1601

By email: Admin@Cyber.securityFramework.org

We have adopted and implemented a policy that provides for the termination in appropriate circumstances of the accounts of users who repeatedly infringe copyrights or other intellectual property rights of ours and/or others

Repeat Infringer Policy:

We will terminate user accounts that have been the subject of three (3) separate DMCA notices. In the event a user’s materials are removed due to a DMCA notice and then subsequently restored due to the filing of a DMCA counter-notification, we will treat the underlying DMCA notice as withdrawn.

We reserve the right to terminate user accounts that are the subject of fewer than three (3) DMCA notices in appropriate circumstances, such as where the user has a history of violating or willfully disregarding the terms of this Agreement.

  1. MISCELLANEOUS.  This Agreement has been made in and will be construed and enforced in accordance with the laws of the state of Maryland.  No joint venture, partnership, employment, or agency relationship exists between you and CFIRE as a result of this Agreement or your utilization of the Site.  Headings are for convenience only.  This Agreement represents the entire agreement between you and CFIRE with respect to use of the Site, and hereby supersede all prior and/or contemporaneous communications and proposals, whether electronic, oral, or written between you and CFIRE with respect to the Site.  You may not assign or transfer any rights under this Agreement without the prior express written consent of CFIRE, which may be withheld in CFIRE’s sole discretion.  Please note that CFIRE reserves in its sole discretion the right to change the terms and conditions of this Agreement by posting a revised Agreement to the Site.  In addition, CFIRE may in its sole discretion, add, modify, and/or delete any aspect, portion, functionality, service, program or other feature of the Site.  You hereby agree that CFIRE is under no obligation to upgrade, enhance, and/or modify the Site under any circumstances.  Your continued use of the Site following any announced change to this Agreement will be deemed to conclusively signal your acceptance of any change to this Agreement.  Therefore, you should immediately stop any and all use of the Site if you do not agree any with any changes.  

  2. CONTACT INFORMATION.  If you have any questions regarding this Agreement and/or the Site or otherwise would like to contact us, please contact CFIRE at Admin@Cyber.securityFramework.org.

 

I HAVE READ AND UNDERSTOOD THE FOREGOING AGREEMENT.  PLEASE MANIFEST YOUR ASSENT TO THIS AGREEMENT BY CLICKING ON THE APPROPRIATE LINK BELOW.

 

I HAVE READ AND UNDERSTOOD AND ACCEPT THIS AGREEMENT.

I REJECT THIS AGREEMENT.


 


Privacy Policy Statement

Effective as of September 2014

Cybersecurity Framework Implementation Repository And Exchange, Inc. (referenced herein by “we”, “us,” or “CFIRE” or with “our”) has developed this policy statement (“Privacy Policy”) to assist end users (referenced herein by “you” or “user” or with “your”) of CFIRE’s Web site located at http://cyber.securityframework.org/ (“Site”) in understanding the personally identifiable information (“PII”) collection and use practices for CFIRE’s Site. PII, as such term is used herein, includes information that can identify a specific individual, such as, without limitation, a name, address, phone number, or e-mail address. CFIRE reserves the right to change this Privacy Policy at any time to address changes to its information collection, disclosure, or use practices or changes in law. If CFIRE makes changes to this Privacy Policy, CFIRE will post those changes at this location and provide notice of any material changes. Please review this Privacy Policy on a periodic basis.

What Information Does CFIRE Collect?

PLEASE NOTE: THE TYPES OF DATA COLLECTED BY CFIRE WILL VARY WITH THE FUNCTIONALITY OFFERED BY THE SITE AND YOUR PARTICULAR USE OF THE SITE. MOREOVER, CERTAIN DATA SUBMISSIONS ARE VOLUNTARY. Below, we provide specific examples of the types of PII CFIRE may collect through the Site.

Contact Information: CFIRE may require you to provide certain contact information, including, without limitation, your name and e-mail address, when you register to access certain portions of the Site. Moreover, CFIRE requires you to provide your email address when you send emails to CFIRE through the Site.

Demographic Information: CFIRE may collect and compile demographic data, including, without limitation, general employment information, company name, address, phone number, and email address, when you register to access to certain portions of the Site.

Transactional Information: CFIRE may create and maintain a database of aggregated information about the transactions that occur on the Site, such as, without limitation, tool or feature (and related database) utilization, registration information, and activity, navigation, or content selection data).

Technical Information: CFIRE may also collect Internet Protocol (IP) addresses from all users of our Site as well as the date and time of access and the Web page(s) accessed. CFIRE may also catalog your log-in information and the type of computer, browser, or operating system used by you.

How Does CFIRE Use that Information?
CFIRE may use PII collected from the Site in order to operate the Site, provide and/or enhance certain of its features, tools, and functionality, and to otherwise provide and improve the quality of the programs, software solutions and services CFIRE may offer or make available on the Site. Below please find additional information on how CFIRE may use the PII collected from the Site.

Contact Information: CFIRE may use your contact information in connection with the provision of its services, software solutions and content and to enable you to participate in any events or programs publicized on the Site. CFIRE may also use your contact information to (i) advertise its events, programs, services or software solutions, (ii) create a personalized experience for you when using the Site, (iii) provide you with news and information, (iv) contact you regarding a survey, (v) assist with security or fraud prevention or response measures, (vi) to get in touch with you with respect to any (a) transactions conducted through the Site, (b.) material changes made by CFIRE to the Site’s policies and/or agreements, (c) new programs, events, services or software solutions offered by CFIRE, or (vii) for other any other purposes as determined by CFIRE in its sole discretion. In addition, CFIRE may (i) supplement the PII collected from you with information about you obtained from other sources, such as, without limitation, from CFIRE’s advertisers or business partners, or (ii) engage in cross-border transfers of PII in order to provide or enhance our ability to provide or advertise our programs, events, services or software solutions and/or the programs, events, services, or software solutions of others. We also may share, license, and/or sell your contact information with or to third parties including, without limitation, CFIRE’s agents, contractors, advertisers or business partners, to (i) provide or improve our programs, events, services, or software solutions, and (ii) to allow for on-line registration for programs, events, or services, the online provision of software applications, and/or for other internal business purposes.

Demographic Information: CFIRE may use demographic information for marketing, administrative, management, lobbying, and monitoring purposes both in order to continue to provide or improve the Site as well as to provide or improve any, programs, events or services CFIRE may offer. In addition, CFIRE may share, license, and/or sell survey results and aggregated demographic data collected through the Site with or to third parties, including, without limitation, its affiliates, advertisers, business partners, the general public, the news media, and the U.S. Government and state governments, not only as may be required by law, but also for advertising purposes, for release to third parties, and/or to participate in government programs and initiatives.

Transactional Information: CFIRE may use transactional information for marketing, administrative, and support purposes in order to provide or improve any, programs, events or services that CFIRE may offer. In addition, CFIRE may also share, license, and/or sell such transactional data with or to third parties, including, without limitation, advertisers or business partners.

Technical Information: CFIRE may use technical information, such as your IP address or browser type, to help diagnose problems with our servers, analyze Site usage trends, track user movements on the Site, and to otherwise manage and monitor our Site.

Business Transactions: In the event that CFIRE goes through a business transaction, such as a bankruptcy event, merger, investment transaction, or acquisition by another entity involving the sale of all or a portion of its assets, please note that the PII collected and retained by CFIRE may be among the assets transferred or reviewed.

Legal Action. CFIRE may disclose PII when legally required to do so in accordance with subpoenas, government requests or regulations, or legal proceedings. CFIRE may also disclose PII to protect against misuse or unauthorized use of the Site or as is otherwise required to limit legal liability, protect or defend our rights, property, or interests, or protect the safety, rights, or property of others.

What About the Use of Cookies and Other Data Collection Techniques?
CFIRE or its contractors may use cookies, web beacons, tags, log-in files, and/or other similar data collection or tracking techniques to enhance and/or monitor your experience while using our Site. Cookies and other related techniques are generally pieces of information, which CFIRE uses for record-keeping purposes and which the Site may transfer to us and/or your computer’s Web-browser for storage on our server(s) or your computer’s hard drive. Cookies and other related techniques enable CFIRE to manage and/or customize your experience on the Site, including available advertisements. Cookies and other related techniques also make Web-surfing or site review easier by automatically performing certain functions such as saving your personal preferences and by providing targeted content.

Many consider the use of cookies and such identifiers to be an industry standard measure. Consequently, your Web browser is likely set to accept cookies or allow other identifiers. If you would prefer not to receive cookies or allow identifiers, however, you can alter the configuration of your browser to refuse cookies or surf anonymously. If you choose to have your browser refuse cookies or surf anonymously, you should understand that it is possible that some areas of our Site will not function properly when you view them.

What About External or Third Party Web Sites?
To the extent hyperlinks or gateways are utilized to access external or third party sites, you should be aware that these external or third party sites may collect PII and are not controlled by CFIRE and therefore, are not subject to this Privacy Policy. This Privacy Policy applies only to the Site and will not apply to (i) any other web sites or entities that CFIRE does not own or control, or (ii) persons that are not employees of CFIRE. CFIRE suggests that you check the privacy policies of other web sites to determine how the proprietors of these third party sites will utilize your PII.

What About Security & Data Integrity?
As is appropriate for the nature of PII collected and stored by CFIRE, the Site uses industry standard security measures or safeguards to protect against the loss, misuse, and alteration of the PII under CFIRE’s control. With respect to any stored PII, CFIRE will also use commercially reasonable efforts to preserve such PII in its original form to the extent possible and as consistent with any processing that is directed by you or necessary for CFIRE to provide the Site or its related software solutions, programs or services. Although CFIRE has endeavored to create a secure and reliable Site, however, the confidentiality or integrity of any communication, data, or material transmitted via the Internet or stored with CFIRE cannot be 100% guaranteed. Accordingly, you should consider carefully if you want to submit PII via the Internet.

What About “Opting-Out” of Data Collection and Use?
The collection, use, and sharing of your PII may be necessary for CFIRE to provide certain features, programs, events, resources, services and software solutions made available on the Site, and to operate and/or improve the Site. For example, all users who register to access certain portions of the Site will need to agree to CFIRE’s use and collection of PII. However, under other circumstances you can decide on your own if you wish to provide your PII or opt-out of doing so. For example, if CFIRE conducts a survey on the Site, you do not have to participate unless you agree to do so.

California Residents:

Companies that collect PII from California residents and disclose such information to third parties (including affiliated entities) for marketing purposes must, in response to a request by a consumer, either (1) provide a list detailing the categories of information shared and the entities to which such information was provided, or (2) provide a mechanism by which a consumer may opt-out of having his or her information shared with third parties. CFIRE has elected the second option, and you may request that your PII not be shared with third parties by sending your request, including your full name, email address and postal address, to Attn. CFIRE Privacy, 302 Sentinel Dr., Suite 300, Annapolis Junction, MD. California residents are also entitled to know that they may file grievances and complaints with California Department of Consumer Affairs, 400 R Street, Suite 1080, Sacramento, CA 95814; or by phone at 916-445-1254 or 800-952-5210; or by email to dca@dca.ca.gov.

Moreover, CFIRE may use certain methods and technologies to collect PII relating to your online activities over time (i.e., through more than one visit to the Site) and across third party websites or online services (i.e., through CFIRE’s receipt of PII from other data sources). Any user who wishes to opt-out of such PII collection may contact us by email, phone or mail per the contact information listed in the final paragraph of this Privacy Policy.

What About Correcting, Deleting, or Updating Information?

At any time, you may go to the Site and access your account (using your username and password) to correct, modify, or delete the information stored in connection with your user profile. Moreover, when you cease to use CFIRE’s services or no longer wish to be included in CFIRE’s database, you may contact CFIRE at Attn. CFIRE Privacy, 302 Sentinel Dr. Suite 300, Annapolis Junction, MD 20701to request to have your information removed from the CFIRE database. In the event that CFIRE receives such a request or change, CFIRE may require you to confirm or verify any change to your record.

What About Children?
CFIRE cares about the safety of children on its Site and encourages parents and guardians to monitor their children’s use of the Internet. Although the Site is suitable for a general audience, the Site is intended for use only by users who are over 18 years of age. Accordingly, CFIRE does not knowingly solicit PII from children or send them requests for personal information. If you become aware that your child has provided PII to CFIRE, please contact CFIRE immediately so that such information can be deleted and CFIRE otherwise discontinues any further services provided to such child.

What About Governing Law?
This Privacy Policy shall be governed by and construed in accordance with the laws of the Maryland, U.S.A. The Site and the servers that host the Site are located in the United States. Any information you provide will be transferred to the United States. By visiting and using the Site and submitting PII thereto, you therefore authorize this transfer of your PII to the United States. If any part of this Privacy Policy is determined to be invalid or unenforceable pursuant to applicable law, then the invalid or unenforceable provision or part will be deemed suspended by a valid, enforceable provision that most closely matches the intent of the original provision or part and the remainder of this Privacy Policy shall continue in full force and effect.

What About Any Other Questions?
If you have any questions about this Privacy Policy or the PII collection and use practices of the Site, you can contact CFIRE at admin@cyber.securityframework.org, 302 Sentinel Dr. Suite 300, Annapolis Junction, MD 20901, or by phone at 301-575-5100

BY CLICKING “I ACCEPT” AT THE END OF THIS AGREEMENT OR BY INSTALLING, ACCESSING, OR USING ANY PART OF THE SITE, YOU ACKNOWLEDGE THAT YOU HAVE READ THIS AGREEMENT, THAT YOU UNDERSTAND IT AND ITS TERMS AND CONDITIONS, AND THAT YOU AGREE TO BE BOUND LEGALLY BY IT AND ITS TERMS AND CONDITIONS.

IF YOU DO NOT AGREE WITH ALL OF THIS AGREEMENT, YOU ARE NOT GRANTED PERMISSION BY CFIRE TO, ACCESS, OR OTHERWISE USE THE SITE. IN SUCH CASE, PLEASE CLICK “I REJECT” AND PROMPTLY LEAVE THE SITE.