What we do
Web-IQ offers services that enable our customers to search public data from the internet and use this for their own objectives. We work primarily for customers who are active in the field of security, justice, risk assessment and fraud prevention and who use our services to make the world a better and safer place.
To make this possible, Web-IQ collects public data from various online sources, such as social media, news sites, marketplaces, blogs, forums and the dark web. This may include your personal information. We collect the following information: name, address, postal code, city, region, country and Facebook profile. Web-IQ does not however collect any protected information.
Web-IQ collects public data because the processing is necessary to improve the quality of its service and to minimalize data collection. Furthermore, public information is also collected and on behalf of our customers, in which case the collection process is limited to data that contributes to their information needs. This means that in terms of the GDPR, Web-IQ acts as a controller as well as a data processor.
In addition, Web-IQ enables customers to install and operate Web-IQ software themselves on their own servers. As part of this, customers may capture public data from the internet or dark web onto their own systems, potentially including your personal data. We help our customers to comply to the privacy and data protection regulations for their situation by providing software that allows them to control and limit what data is being collected, how long the data is stored and who and how the data can be accessed.
In our agreements with our customers, we state that our customers may only use our services, data and products in a lawful manner that respects all applicable privacy aspects. Web-IQ will not do business with organizations that are related to countries, individuals or groups on the European Union Sanctions List.
We also use personal information from our customers, business contacts, web site visitors and people who signed up for our newsletters.
How we use your data
When you partner with us or purchase our services or products
If you become our customer or partner, we may collect personal information about you or your employees, like names, email addresses, telephone numbers. We use this information only to contact you and fulfill our contractual obligations.
We will not share this information with other customers nor third-parties without your consent and we will make sure that this information is protected properly.
When you use our Voyager Cloud services
Customers that sign up for our Voyager Cloud services (such as DarkCloud or SafeCity) need to provide a valid email address to create an account. We will use this email address only to send you monitoring alerts and other automated system notifications (opt in) and system maintenance updates. Your email address will never be disclosed to third-parties, nor will it be used for promotional or commercial purposes by Web-IQ without your prior consent.
Web-IQ does not actively collect nor monitor your navigational actions (like queries and clicking on items of interest). However, this information, including personal information like your IP address can appear in the log files of our underlying services. Log files are kept for a limited period (7 days) and only for support and maintenance purposes.
If you need more information about how we protect your case data in our Voyager Cloud services, the user agreement and the terms and conditions that apply, please contact us at email@example.com.
When our software captures your online information
In a similar way to how search engines work, Web-IQ searches and stores public data from the internet and the dark web. As part of this, we may capture your personal information which is publicly available.
We only collect public data. This is data that is actively shared online at places such as social media, news sites, darknet marketplaces, blogs and forums and can be found with a standard internet search engine or by visiting the relevant site on the internet or dark web.
We have designed our services with privacy in mind:
- We do not collect data that is protected or shared in private.
- We aim not to collect nor store data when there is no specific reason to do so. We search and collect data that is required to answer the questions from our customers and to improve the quality of our service and minimize data collection.
- We do not store data collected to improve the quality of our services longer than needed. Although the retention period may vary per case, all information will be deleted after two years from the date it was collected.
- We do not store data collected on behalf of our customers longer than needed. Some use cases, such as discovering trends over time and reconstructing events from the past, require us to store the collected public data for a longer period. Other use cases, like most of our risk and fraud detection services keep the collected data in memory for only a few seconds but never store any data on disk or in a database at all. We will delete data when the contract with our customer ends.
- We aim to anonymize the data as much as possible, although this might not always be possible given the use cases of our customers.
- We do not share the collected public information with third parties aside from data collected on behalf of our customers.
- We have implemented best practices and guidelines that ensure privacy and information security in our organization, such as separation of environments, encryption of documents and communication, access control, incident reporting procedures, monitoring and audits.
- We work with well-known partners located within the European Economic Area who have the appropriate certifications and approvals.
- We will always be open about our intended use of the data and we will inform our customers about how we have collected the data, so our customers can make sure that the way they use the data on their side is lawful and respects privacy.
- We will make sure that all data that is collected is linked to the original source, so the information can always be placed in its original context.
- When requested by an individual we will disclose all public information held on that individual if Web-IQ is Controller in that specific case. A GDPR request for personal data can be done by filling out our GDPR request form, which can be found here. In cases where Web-IQ is processor, the request will be forwarded to the Controller.
Please note: Web-IQ is processor in the case of SafeCity. Any request made regarding SafeCity will be forwarded to the relevant customer using it.
When you visit our site
We use analytical cookies to ensure that our website meets the wishes of our visitors as closely as possible. By means of analytical cookies we generate overall statistics and gain insight into the use of our website by the public in order to optimise our website and services. We have set up Google Analytics in line with a manual published by the Authority for Personal Data: ’Manual for privacy-friendly settings of Google Analytics’. This ensures that the analytical cookies have as little effect as possible on your privacy.
Used to distinguish users.
Used to distinguish users.
Used to throttle request rate.
Enabling and disabling cookies
You can disable the placing of cookies via the browser, but then some options on our website will no longer work properly. Most cookies have an expiration date. This means, that they will automatically expire after a certain period and no longer register any data concerning your visit of the website. Another option is to remove the cookies manually before the expiration data. More information about enabling, disabling and deleting cookies can be found in the instructions and/or by using the Help function of your browser.
When you subscribe to one of our newsletters
When you subscribe to one of our newsletters, such as the Darknet Update, we keep your email address and name, so we can send you the information you signed up for.We will not use this email address to spam you with other information or for any other purpose.
We use a newsletter service that allows us to keep track of how many subscribers open and interact with our newsletter emails. We use this information solely to learn how we can improve the content of our newsletter.
Each newsletter contains a link that allows you to unsubscribe. We permanently remove the personal data from inactive subscribers on a monthly basis.
When you contact us via our contact form
When you contact us via the contact form on our website, we keep your email address, your name and the content of the message, so that we can respond to your message. We will not use the information provided by you in this context for other purposes, unless you have explicitly requested it yourself. We will not keep any personal data longer than necessary for the full processing of your message.
When you apply to us
If you apply to us, we collect and process various personal data during the application process, such as your name, contact details, CV, motivation letter, or other personal data you decide to share. This personal data will only be used for the purpose of the application procedure. At the end of the application procedure, the data will be deleted, unless you have given your express consent to a longer retention.
For research purposes
Some personal data are also processed for research purposes. In cases where this is incompatible with the original purposes of processing, your explicit permission will always be sought beforehand. We will never process data for research purposes for longer than is necessary for the relevant research.
You have various rights with respect to the personal data as described in the ''How do we use your data'' section above.
- Right of access: you have the right to inspect the personal data that we process about you.
- Right to rectification: you have the right to correct or supplement the personal data we process about you if it is incorrect or incomplete.
- Right to withdraw consent: you can always easily withdraw your consent.
- Right to object: you can object to the processing of your personal data.
- Right to erasure: you can request us to erase your personal data.
- Right to data portability: if it is technically possible, you have the right to have the personal data we process from you transferred to a third party.
- Right to restriction of processing: in some cases, you can request that we restrict (temporarily or otherwise) the processing of your personal data, which means that we will process less data about you.
If you ask us to stop handling your personal information, we will stop unless we can show you that we have compelling grounds as to why our use of your personal information should continue. For other questions regarding your rights under the data protection laws, please contact us at firstname.lastname@example.org
We will endeavor to deal with any questions, requests or complaints as quickly as possible. If you feel that we do not help you in the right way, you have the right to lodge a complaint with the Dutch Data Protection Authority. More information about submitting a complaint to the Dutch Data Protection Authority can be found at https://autoriteitpersoonsgegevens.nl./
Changes to this privacy statement
We may update this privacy statement from time to time. The latest version of this privacy statement can be found on our web site:https://web-iq.com/privacy-statement/
If you have any questions about this privacy statement, please contact us.
Data Protection Officer
Iris de Groot
9723 ZA Groningen
31 (0)50 21 11 622