English
  • English
  • Persian
Contact us

Privacy Policy

  • Home
  • Pages
  • Privacy Policy

Thank you for visiting the One Cert Cyber ​​Security Group online and reviewing our website privacy policy. Our privacy policy explains how we handle the personally identifiable information (PII) that you provide to us when you visit us online to browse, obtain information, or conduct a transaction.

PII includes information that is personal in nature and which may be used to identify you. You may provide PII to us when you send us an e-mail message or a request for information, when you fill out a questionnaire or customer satisfaction survey, when you participate in a research study, etc. We do not require you to register or provide PII to visit our websites. We do collect some technical information that does not include PII when you visit to make your visit seamless. The section below explains how we handle and collect information when you visit One Cert websites.

The PII you provide on a One Cert website will be used only for the purpose for which you provided it. We will protect your information consistent with the principles of the Privacy Act .

As a general rule, One Cert does not collect PII about you when you visit our websites, unless you choose to provide such information to us. Submitting PII through our website is voluntary. By doing so, you are giving the Department permission to use the information for a specific, stated purpose.

If you choose to provide us with PII through such methods as completing a web form, we will use that information to help us provide you the information or service you have requested. The information we may receive from you varies based on what you do when visiting our site.

We only share the PII you give us with another government agency if your inquiry relates to that agency, or as otherwise required by law. We never create individual profiles or give your PII to any private organizations. One Cert never collects information for commercial marketing.

If we store your PII in a record system designed to retrieve information about you by personal identifier (name, personal email address, home mailing address, personal or mobile phone number, etc.), so that we may contact you, we will safeguard the information you provide to us in accordance with the Privacy Act . The Act requires all public-facing sites or forms that request PII to prominently and conspicuously display a privacy notice.

The notice must address the following criteria:

Legal authorization to collect information about you;

Purpose for which the information will be used;

Whether your providing the information is voluntary or mandatory under law; and

Effects if you choose to not provide the requested information.

For the general contact information that may be submitted through One Cert websites, we have completed a Privacy Impact Assessment (PIA) and System of Records Notice (SORN) providing details about the privacy protections and redress options available for the contact information we collect from the public. This information may be used to distribute information to you and to perform various administrative tasks.

 

Email Communications

Many of our programs and websites allow you to send us email messages. We will use the information you provide to respond to your inquiry. We will only send you general information via email. You should be reminded that email may not necessarily be secure against interception. Therefore, we suggest that you do not send sensitive PII (id number) to us via email. If your intended email communication is sensitive, e.g., it includes information such as your bank account, charge card, or Id number, you should instead send it by. mail. Another alternative may be submission of data through a secure program website, if available. 

 

Web Measurement Tools and Web Surveys

When you browse through any website, certain information about your visit can be collected. We automatically collect the following types of information about your visit:

Domain from which you access the internet;

IP address (an IP address is a number that is automatically assigned to a computer when surfing the internet);

Operating system and information about the device or browser used when visiting the site;

Date and time of your visit;

Content you visited or downloaded; and,

Website (such as google.com or bing.com) or referral source (email notice or social media site) that connected you to the website.

 

How One Cert Uses Cookies

When you visit any website, its server may generate a piece of text known as a “cookie” to place on your computer. Placing cookie text allows websites to “remember” visitors’ preferences, surfing patterns, and behavior while they are connected.
 
The cookie makes it easier for you to use the dynamic features of webpages. Cookies from One Cert webpages only collect information about your browser’s visit to the site; they do not collect any personal information about you.
 
There are two types of cookies, single session (temporary), and multi-session (persistent). Session cookies last only as long as your web browser is open. Once you close your browser, the cookie disappears. Persistent cookies are stored on your computer for longer periods.
 
Session Cookies: We use session cookies for technical purposes such as to enable better navigation through our site. These cookies let our server know that you are continuing to visit our site. The OMB Memo 10-22 guidance defines our use of session cookies as “Usage Tier 1-Single Session.” The policy says, “This tier encompasses any use of single session web measurement and customization technologies.”
 
Persistent Cookies: We use persistent cookies to differentiate between new and returning visitors to our site. Persistent cookies remain on your computer between visits to One Cert websites for six months. We also use persistent cookies to block repeated invitations to take our customer satisfaction surveys. The persistent cookies that block repeated survey invitations expire in 90 days. The OMB Memo 10-22 guidance defines our use of persistent cookies as “Usage Tier 2-Multi-session without Personally Identifiable Information (PII).” The policy says, “This tier encompasses any use of multi-session web measurement and customization technologies when no PII is collected.”
 
Third party software, modules, or add-ins being leveraged on One Cert websites may or may not use persistent cookies or similar technology; however, no data collected in this manner is accessible, viewable, or retained by the federal government.
 
If you do not wish to have session or persistent cookies stored on your machine, you can opt out or disable cookies in your browser. You will still have access to all information and resources at One Cert websites. However, turning off cookies may affect the functioning of some websites. Be aware that disabling cookies in your browser will affect cookie usage at all other websites your visit as well.
 
Third-Party Websites and Applications
One Cert uses social media websites and other kinds of third-party websites. One Cert uses social media websites to engage in dialogue, share information and media, and collaborate with the public. One Cert may also use these websites to make information and services widely available, while promoting transparency and accountability, as a service for those seeking information about or services from One Cert.
One Cert does not used third-party websites to solicit and collect PII from individuals. Any PII collected by the third-party website will not be transmitted or stored by One Cert;
 
Site Security
One Cert takes the security of all PII very seriously. We take precautions to maintain the security, confidentiality, and integrity of the information we collect on One Cert websites. Such measures include access controls designed to limit access to the information to the extent necessary to accomplish our mission. We also employ various security technologies to protect the information stored on our systems. We routinely test our security measures to ensure that they remain operational and effective.
 
Visiting Other Websites
Our websites may contain links to international agencies, private organizations, and commercial entities. These websites are not within our control and may not follow the same privacy, security, or accessibility policies. Once you link to another site, you are subject to the policies of that site.