Privacy Policy

Who we are

Our website address is:

What personal data we collect and why we collect it


When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Contact forms


If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.


How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

How we protect your data

In recent years, data protection has become a must for all companies, no matter their size. While big organizations suffering data breaches such as Facebook, Orbitz or Quora are the ones making headlines, a more troubling reality awaits small and mid-sized companies: 60% of them go out of business within six months of a cyberattack, according to the National Cyber Security Alliance.

Additionally, the rise of data protection regulations around the world, has added an extra layer of urgency to the need for all companies to implement concrete data protection measures. Big companies, are, in many cases, way ahead of the game, having already built their cybersecurity policies and tested them over the course of the last few years. Let’s have a look at some of their most successful strategies:

1. Knowing where data is and where it’s going

One of the most crucial steps towards efficient data protection is knowing exactly what data is being stored and where. By accurately identifying their data flow and its vulnerable points, companies can take informed decisions concerning the measures they need to take to protect it.

Large organizations use data discovery tools to scan company networks for sensitive data and, when finding it on computers not authorized to access it, they frequently have the option of deleting or encrypting it. In the age of data protection regulations, transparency is key both for compliance and for building effective data protection policies.

2. The use of encryption across the board

From encrypted hard drives, USBs and phones to data encrypted prior to its transfer to the cloud or onto portable devices, encryption has become a must for all companies looking to secure their sensitive information.

Encryption tackles two common data protection vulnerabilities in today’s global economy: a work force always on the move and the rise of remote work. With devices frequently leaving the safety of company networks, encryption ensures that, in case of theft or loss, the sensitive data they contain is inaccessible to outsiders.

3. Protecting data in the cloud

The cloud has become an integral part of digitalization efforts, but as data migrates to the cloud, the issue of its security has sparked heated debates among CIOs and in information security circles. While many argue that the security measures applied by cloud service providers to their servers far exceed any a modest or even large company is likely to apply to its on-site servers, the feeling that their most sensitive data’s security is out of their hands makes many organizations nervous.

The most common policies applied by big companies involve the use of tools specialized in data protection in the cloud or a limitation of the types of data that are stored in the cloud. Another strategy involves encrypting sensitive data before it is transferred to the cloud.

4. Educating employees at all levels

The human factor is often the biggest vulnerability in the chain of data protection. Whether through ignorance or negligence, employees account for 54% of data breaches according to a survey conducted by the Ponemon Institute. Large corporations ensure employees are kept informed of compliance regulations and internal cybersecurity policies, providing them with both training and clear guidelines for those coming into contact with the most sensitive types of data.

C-level executives are frequently targeted by malicious outsiders due to their high level access to data. Big companies take special care that higher management do not circumvent the rules as it is essential that the same level of data security is maintained across the board, not only horizontally, but vertically as well.

Software such as Data Loss Prevention solutions can act as an effective method of enforcement, by setting clear policies that protect and restrict access to sensitive data. Levels of access to data can be controlled based on groups and specific users or endpoints.

5. Creating BYOD policies

As companies embrace Bring-your-own-device (BYOD) policies that increase productivity and reduce costs, they often ignore their security implications. Accessing sensitive information on personal devices means that data is traveling outside the confines of the company network, effectively rendering any security measures taken to protect it moot.

Big organizations restrict the sort of data that can be transferred outside company devices. At the same time, policies marking the level of trust of a device can be applied. In this way, employees are given the option of aligning the security of their personal devices to policies used within the company and, if they choose not to apply them, it guarantees that no sensitive data is allowed to be transferred on them.

As we move forward into the age of data protection by design and by default, smaller and mid-sized companies must follow in the footsteps of larger companies and adopt policies that protect sensitive information from both inside and outside threats or risk losing not only their customers’ trust, but their entire businesses.

Supportscreen tag