Privacy policy

Overview

The Information Security Journal is committed to respecting and protecting the privacy of readers when accessing its website and using mobile applications issued by the Magazine. This Privacy Policy is established to ensure transparency regarding how we collect, use, store, protect, and share personal data, while demonstrating our compliance with applicable laws on personal data protection and the requirements of application distribution platforms.

This Policy applies to the entire system, including websites, platforms, mobile applications, and related online services managed and operated by the The Information Security Journal.

Information Collected

• During readers’ access to the website or use of our platforms and mobile applications, we only access, collect, use, and share data obtained through such access or usage within the following categories, depending on the form and function of use:
• - The Magazine collects information directly provided by users when registering accounts, logging in, submitting articles, sending feedback, posting comments, or contacting the editorial office. Such information may include full name, email address, username, and content voluntarily submitted by users to the system.
• - In addition, the system may automatically record technical data for operational purposes, including IP address, browser type, operating system, device information, application version, and error logs generated during use, in order to support technical assistance and improve service quality for readers.
• - Data on access behavior may be collected, such as frequency of visits, pages viewed, reading duration, usage actions, and other interaction data, to support statistical analysis, audience engagement assessment, and content improvement.
• - In cases where advertising services are used, the application or website may collect device-level advertising identifiers, usage behavior data, and non-identifiable regional information for the purposes of ad distribution, performance measurement, and user experience enhancement. We do not use advertising data to identify individuals or sell such data to third parties.

Purposes of Data Use

• Personal data and technical data (information automatically recorded by the system when readers access the website or use the application, such as device type, operating system, IP address, etc.) are collected for the purpose of evaluating content performance and enhancing reader experience, including but not limited to:
• - Providing journalistic content, managing user accounts, and ensuring stable operation of web and mobile platforms.
• - Improving interface design, optimizing reading experience, and enhancing the quality of information systems and journalistic content.
• - Analyzing user behavior in an aggregated and anonymized manner to evaluate content effectiveness, compile access statistics, and guide product development.
• - Providing technical support, handling complaints, protecting user rights, and detecting system anomalies to strengthen information security.
• - Where advertising is involved, data may be used to display advertisements relevant to reader groups, without infringing on privacy or disclosing personal identities.

Cookies and Tracking Technologies

The website and applications may use cookies or similar technologies to remember user preferences, support automatic login, improve access speed, and collect statistical data on user behavior.

Users may choose to refuse or delete cookies through browser settings. Disabling cookies may affect certain display or login functionalities of the system.

Data Security

We apply appropriate technical and organizational measures to protect users’ private and sensitive data, including secure data transmission through modern encryption methods (HTTPS), access control, system security monitoring, and internal access management.

Although necessary measures are implemented to protect data, we cannot guarantee absolute security in all circumstances due to the nature of the network environment. In the event of a security incident, we will promptly take remedial actions and provide notifications in accordance with applicable regulations.

Data Retention Period

Personal data is stored for the period necessary to fulfill the stated purposes or as required by law. When data is no longer needed, it will be deleted or anonymized in accordance with internal policies.

User Rights

Users have the right to request access to, correction, updating, deletion, or restriction of processing of their personal data. Users also have the right to withdraw consent for data collection and to submit complaints related to privacy matters.

All requests concerning personal data may be sent to the official contact address of the Magazine.

No Sale of Data and Restrictions on Access to Private and Sensitive Data

The website and mobile applications do not publicly disclose any private or sensitive user data related to financial or payment activities, or government-issued identification numbers. Furthermore, we do not allow the publication or unauthorized disclosure of non-public contact information of individuals.

The Magazine strictly does not sell users’ private or sensitive data. “Sale” refers to the exchange or transfer of private or sensitive user data to third parties for monetary compensation. The transfer of such data at the explicit request of the user (for example, when a user uses an application feature to transfer files to a third party or chooses to use an application for research purposes) is not considered a sale.

Children

If children’s data is found to have been unintentionally collected, we will delete such data upon valid request from parents or legal guardians.

Changes to the Policy

This Policy may be updated in accordance with operational practices or legal requirements. Any changes will be published on the official website of the The Information Security Journal .