Privacy Policy and Vulnerability Report
To submit a vulnerability report, please read and accept this privacy policy by selecting, I have read and agree to these terms, at the bottom of the page.
Data Controller and Data Protection Office
The Data Controller in relation to any personal information that is collected within the scope of this Privacy Policy is Katun Corporation 7760 France Ave So., Suite 340, Minneapolis, MN 55435. Our Data Protection Officer/Data Protection Team can be contacted by email at: laurie.young@katun.com.
Collection of Personal Information
Katun Corporation controls and responds to personal information (name, email address, company name and IP address “Personal information”) entered and sent from the vulnerability Web Form.
Purpose of Use of Personal Information
With regard to the Personal Information entered and sent from Web Form, we will use it to respond and confirm the content of the vulnerability. We will not use the Personal Information without your consent for any purpose other than the above-mentioned use.
Basis for Personal Information Processing
To contact you regarding vulnerabilities, please enter a check in the following check box and agree to the handling of this Personal Information before sending it.
Sharing and Disclosure of Personal Information with Third Parties
Personal Information shall not be disclosed to any third party without your consent. However, we will share your Personal Information with those employees who have a need to know to address the vulnerability (Computer Emergency Response Team Coordination Center). When the vulnerability report regards our affiliated entities, we will also share the Personal Information with Katun Corporation. When we share the Personal Information with CERTCC / Katun Corporation, we will not use the Personal Information for any purpose other than the use mentioned in this Privacy Policy.
Secured Management of Personal Information
Katun Corporation takes adequate technical and organizational security measures in order to protect your Personal Information from being misused, and to prevent the loss of your information. Your Personal Information is saved in a secure operating environment that is not accessible to the public. All registered Personal Information will be stored in encrypted form to prevent misuse of information by malicious third parties.
Your Rights Relating to your Personal Information
You have the right to request access to Personal Information, to request rectification or erasure of Personal Information, to restrict processing of your Personal Information, to object to such processing and to exercise your right to data portability in accordance with the applicable laws. You have the right to lodge a complaint with a competent supervisory authority in accordance with the applicable laws if you consider that the processing of Personal Information relating to you infringes the applicable law.
Retention Period of Personal Information
Personal Information will be erased as soon as the response to the vulnerability is completed.
Overseas Transfer of Personal Information
Personal Information entered and sent from your email will be processed and managed in the United Kingdom, United States and/or Japan.
Changes to the Privacy Policy
Katun Corporation reserves the right to change, amend, or update this Privacy Policy. If we do decide to change our Privacy Policy, we will post the revised Privacy Policy and indicate the date of publication. On return visits, please remember to review the Privacy Policy for any changes, since continued use of the Website(s) after any posted revision indicates your consent to our use of your information in accordance with the changed, amended, or updated Privacy Policy.
Legitimacy of Personal Information Processing
We process your Personal Information based on your consent as well as our obligation to comply with legal obligations and as necessary for the purposes of our legitimate interests.
Date of Enactment
Revised on 2024.10.25