Breach Risk | DomainGuard | Threat Visibility Platform

Risk Calculation for Breach by Phishing

Let’s look at a very simple calculation for risk:

Probability x Business Impact = Risk

Replace the values in this calculation with values representing the total risk if a breach were to occur as a result of phishing. In 2020, 36% of breaches involved phishing and that number is likely to be higher for 2021. The value for business impact of a breach will vary by company and industry, we will use $500,000 in our example.

Phishing Probability x Business Impact Breach = Phishing Risk

36% x $500,000 = $180,000

In this example, we see the organization’s financial risk to a phishing breach can be measured at $180,000.

Measuring Risk Reduction

Now that we have our overall risk, we can measure the reduction in risk if we were to implement a control to reduce the probability of a phishing attack. In 2020, half of all social engineering attacks were identified by a monitoring service, such as DomainGuard. We’ll use 40% as an approximation for the following calculation.

Phishing Risk x Reduction In Probability = Reduced Phishing Risk

$180,000 x 40% = $72,000

By having a monitoring solution like DomainGuard in place, on average your organization will reduce risk to phishing by 40%.

DomainGuard, LLC Privacy Policy

Effective: May 1, 2024

At DomainGuard LLC (“DomainGuard”, “We” or the “Company”), We prioritize the protection of your privacy and are dedicated to maintaining transparent practices in handling your personal information. We value the privacy of our esteemed customers, users of our products, and visitors to our public sites. Upholding exemplary ethical standards is ingrained in our business ethos, ensuring strict compliance with laws and regulations governing the safeguarding of personal data. This document serves as a comprehensive guide, outlining how DomainGuard collects, manages, stores, and safeguards your personal information within the scope of our services.

Table of contents:

1. Protecting Your Data

2. Information We Collect

3. Cookies and Tracking Technologies

4. How We Use Your Information

5. How We Share Your Information

6. How To Access & Control Your Information

7. Data Retention

8. Third-Party Websites & Applications

9. Children’s Information

10. International Users & Visitors

11. US State Law Requirements

12. Changes To This Policy

13. Contact Us

1. Protecting Your Data

DomainGuard holds the data entrusted to us by our clients and prospective clients in the highest regard. While we cannot guarantee the security of personal information, DomainGuard is committed to ensuring stringent security protocols for all personal data under our purview. DomainGuard takes technical and organizational measures to protect your information against accidental or unlawful destruction or accidental loss, alteration, unauthorized disclosure, or access.

We use Transport Layer encryption to protect your personal information during the transmission of data between your web browser and our servers. Please be aware any information you send by email is not encrypted and is susceptible to interception over the internet.

Our Managed Service data is hosted with SOC 2 compliant providers who have signed a Non-disclosure agreement with DomainGuard. This infrastructure is audited by external experts to ensure fully up to date SOC 2 compliance. No personal client information is ever disclosed to our service providers.

While we take steps to protect your personal information, you also play a role in protecting your information, including by not sharing your log-in or password with anyone. DomainGuard will never ask you for this information.

2. Information We Collect

We collect information when you provide it to us, when you use our website or services, and when other sources provide it to us, as further described below.

Information you provide to DomainGuard:

· Account and Profile Creation: When you create an account or profile or otherwise use the Services, we collect information such as your name, email address, password, role within your team or enterprise, and an optional profile photo.

· Your Communications with Us: We collect information from you such as email address, phone number, or mailing address when you request information about our Services, register for our newsletter, request customer or technical support, or otherwise communicate with us. We also collect the contents of messages or attachments that you may send to us, as well as other information you choose to provide, and that may be associated with your communications.

· Surveys: We may contact you to participate in surveys. If you decide to participate, you may be asked to provide certain information which may include contact information and other information about you.

· Conferences, Trade Shows, and Other Events: We may attend conferences, trade shows, and other events where we collect contact information from individuals who interact with or express an interest in the Services.

· Job Applications. We may post job openings and opportunities on the Website or Services. If you reply to one of these postings by submitting your application, CV and/or cover letter to us, we will collect and use your information to assess your qualifications.

Information we automatically collect through your use of DomainGuard.

· Information you provide in workspaces, tasks, questionnaires, comments, and other features of Information uploaded to DomainGuard, such as attachments.

· Information regarding your device. This information may include your Internet protocol (IP) address, user settings, cookie identifiers, mobile carrier, mobile advertising and other unique identifiers, details about your browser, operating system or device, location information (including inferred general location based off your IP address).

· Internet service provider, pages that you visit before, during and after using the Website or Services, information about the links you click, information about how you interact with the website or services, including the frequency and duration of your activities, and other information about how you use the website or services.

· Any other information you choose to provide while using DomainGuard that identifies or can be reasonably associated with you.

Information we collect from third parties.

· We may receive information about you from other Service users, from third-party services, from our related companies, social media platforms, public databases, and from our business and channel partners.

· We may combine this information with information we collect through other means described above. This helps us to update and improve our records, identify new customers, create more personalized advertising, and suggest services that may be of interest to you.

3. Cookies and Tracking Technologies

Our Sites and Services (including some of our Services Providers) utilize “cookies”, anonymous identifiers, pixels, container tags and other technologies for us to provide and monitor our Services and Sites, to ensure that they perform properly, to analyze our performance and marketing activities, and to personalize your experience. Such cookies and similar files or tags may also be temporarily placed on your device. Certain cookies and other technologies serve to recall personal data, such as an IP address, as indicated by a Prospect, User or Technology Partner.

Please note that we do not change our practices in response to a “Do Not Track” signal in the HTTP header from a browser or mobile application, however, most browsers allow you to control cookies, including whether to accept them and how to remove them. You may set most browsers to notify you if you receive a cookie, or to block or remove cookies altogether.

4. How We Use Your information

Our use of personal information is subject to the policy in effect at the time of use. The provisions of this policy supersede all previous notices or statements regarding our privacy practices with respect to this public site and our managed service. We use the personal information we collect to help us better maintain and develop our public sites and products to meet the needs of our visitors and customer users. We sometimes use aggregated data (independent of any personal identifiers) for research and commercial purposes. This information may include the areas of our public sites and services are accessed most often.

We use the personal information we collect through our applications only to perform the services for which we are contractually engaged. Each employer submitting personal information to us is responsible for ensuring the information is accurate, complete, and current. We may make automated decisions on cyber-security issues based upon our customer’s instructions.

By analyzing this data, we gain insights into visitor preferences and trends, enabling us to optimize our public sites and products for enhanced usability. This information helps us identify frequently visited pages and screens, facilitating improvements to make our products and information more beneficial to all users. At times, we may share this anonymized data with trusted third parties to assist us in refining and developing our public sites and products, ensuring continual enhancements aligned with user needs and preferences.

5. How we share your information

We may share your personal information as:

· To comply with laws or protect ourselves: This may include responding to a court order or subpoena, or in connection with a request from a governmental or quasi-governmental agency or regulatory agency or investigative body or to enforce our terms and conditions of use, acceptable use policies and the like.

6. How To Access & Control Your information

Individuals whose personal information is processed by DomainGuard have the right to access, correct or delete their personal information. We have different methods of addressing changes depending on how we collected information.

If personal information about you has been provided to DomainGuard through the delivery of our services to customers, please contact your employer. Employers are responsible for providing you a mechanism to update, correct, delete, or make changes to your personal information. We will work closely with your employer to ensure such information is accessible for such purposes.

If you provided any personal information through our public site(s) you may contact us at [email protected].

7. Data Retention

We store the information we receive as described in this Privacy Policy for as long as you use our services or as necessary to fulfill the purpose(s) for which it was collected, provide our services, resolve disputes, establish legal defenses, conduct audits, pursue legitimate business purposes, enforce our agreements, and comply with applicable laws.

8. Third-Party Websites & Applications

DomainGuard’s public sites and applications may contain links to third-party websites, plug-ins, and other online services. When you access these external resources, the owners of those resources may collect certain information about you subject to their own separate policies. Access to those resources is not subject to this policy. We do not endorse, screen, or approve, and are not responsible for, the privacy practices or content of such other websites or applications. Visiting these other websites or applications is at your own risk.

9. Children's Information

Our Services are intended for general audiences and are not directed at children. If you are under the age of 18, you may not have a DomainGuard account or use the Company’s products or services. We do not knowingly process any information from, or direct any of our products or services to, children under the age of 18. If we become aware that we have collected data without legally valid parental consent from children under an age where such consent is required, we will take reasonable steps to delete it as soon as possible.

10. International Users & Visitors

If you are visiting our public site from outside the United States, you expressly and affirmatively consent to our processing of your personal information in the United States. You acknowledge and agree the level of data protection in the United States may not be equal to the level of protection under the laws of other countries.

When you and your employer use our products, you and your employer are responsible for compliance with all data security laws and regulations applicable to DomainGuard’s collection of personal information whether directly or indirectly through your employer. This includes, without limitation, your employer’s receipt of any required consent and providing a mechanism for you to access, update, correct or delete personal information from the products, as described above.

You understand and agree personal information submitted through our public sites and applications is transferred to DomainGuard in the United States, where it may be used to respond to your requests or deliver services to our customers. If you do not want DomainGuard to use any personal information about you which has been collected through our delivery of products to customers, please contact your employer. Failure to grant consent to your employer or a decision to withdraw consent from them could impact DomainGuard’s ability to provide products.

11. US State Law Requirements

This Privacy Policy describes the categories of personal information we may collect and the sources of such information (in Section ‎2 above), and our retention (Section ‎7) and deletion (Section 6) practices. We also included information about how we may process your information (in Sections ‎1 through ‎8), which includes “business purposes” under the CCPA. We do not sell your personal information for the intents and purposes of CCPA. We do share and disclose personal data to third parties or allow them to collect personal data from our Services as described in Sections ‎4 and 5 above, if those third parties are authorized Service Providers or business partners who have agreed to our contractual limitations as to their retention, use, and disclosure of such personal data, or if you integrate the Services of third parties with our Services, or direct us to disclose your personal data to third parties, or as otherwise described in Section 4 above.

If you have any questions or would like to exercise your rights under the CCPA, you can contact [email protected]

12. Changes to Our Privacy Policy

We may change this privacy policy from time to time. We will post any privacy policy changes on this page and, if the changes are significant, we will provide a more prominent notice by adding a notice on the Services homepages, login screens, or by sending you an email notification. We will also keep prior versions of this Privacy Policy in an archive for your review. We encourage you to review our privacy policy whenever you use the Services to stay informed about our information practices and the ways you can help protect your privacy. If you disagree with any changes to this privacy policy, you will need to stop using the Services and deactivate your account(s), as outlined above.

13. Contact Us

Should you have any inquiries or require further clarification regarding the handling of your personal information, please do not hesitate to contact us. Your questions and concerns are important to us, and we are dedicated to providing you with the necessary assistance and information. For more information, please contact us @ [email protected].

DomainGuard, LLC

518 Kimberton Rd Suite 360

Phoenixville, PA 19460

United States

Terms and Conditions

Last updated: June 28, 2021

Please read these terms and conditions carefully before using Our Service.

Interpretation and Definitions

Interpretation

The words of which the initial letter is capitalized have meanings defined under the following conditions. The following definitions shall have the same meaning regardless of whether they appear in singular or in plural.

Definitions

For the purposes of these Terms and Conditions:

Affiliate means an entity that controls, is controlled by or is under common control with a party, where "control" means ownership of 50% or more of the shares, equity interest or other securities entitled to vote for election of directors or other managing authority.
Country refers to: Pennsylvania, United States
Company (referred to as either "the Company", "We", "Us" or "Our" in this Agreement) refers to DomainGuard, LLC
Device means any device that can access the Service such as a computer, a cellphone or a digital tablet.
Service refers to the Website.
Terms and Conditions (also referred as "Terms") mean these Terms and Conditions that form the entire agreement between You and the Company regarding the use of the Service. This Terms and Conditions agreement has been created with the help of the Terms and Conditions Generator.
Third-party Social Media Service means any services or content (including data, information, products or services) provided by a third-party that may be displayed, included or made available by the Service.
Website refers to DomainGuard, accessible from https://guardyourdomain.com
You means the individual accessing or using the Service, or the company, or other legal entity on behalf of which such individual is accessing or using the Service, as applicable.

Acknowledgment

These are the Terms and Conditions governing the use of this Service and the agreement that operates between You and the Company. These Terms and Conditions set out the rights and obligations of all users regarding the use of the Service.

Your access to and use of the Service is conditioned on Your acceptance of and compliance with these Terms and Conditions. These Terms and Conditions apply to all visitors, users and others who access or use the Service.

By accessing or using the Service You agree to be bound by these Terms and Conditions. If You disagree with any part of these Terms and Conditions then You may not access the Service.

You represent that you are over the age of 18. The Company does not permit those under 18 to use the Service.

Your access to and use of the Service is also conditioned on Your acceptance of and compliance with the Privacy Policy of the Company. Our Privacy Policy describes Our policies and procedures on the collection, use and disclosure of Your personal information when You use the Application or the Website and tells You about Your privacy rights and how the law protects You. Please read Our Privacy Policy carefully before using Our Service.

Links to Other Websites

Our Service may contain links to third-party web sites or services that are not owned or controlled by the Company.

The Company has no control over, and assumes no responsibility for, the content, privacy policies, or practices of any third party web sites or services. You further acknowledge and agree that the Company shall not be responsible or liable, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with the use of or reliance on any such content, goods or services available on or through any such web sites or services.

We strongly advise You to read the terms and conditions and privacy policies of any third-party web sites or services that You visit.

Termination

We may terminate or suspend Your access immediately, without prior notice or liability, for any reason whatsoever, including without limitation if You breach these Terms and Conditions.

Upon termination, Your right to use the Service will cease immediately.

Limitation of Liability

Notwithstanding any damages that You might incur, the entire liability of the Company and any of its suppliers under any provision of this Terms and Your exclusive remedy for all of the foregoing shall be limited to the amount actually paid by You through the Service or 100 USD if You haven't purchased anything through the Service.

To the maximum extent permitted by applicable law, in no event shall the Company or its suppliers be liable for any special, incidental, indirect, or consequential damages whatsoever (including, but not limited to, damages for loss of profits, loss of data or other information, for business interruption, for personal injury, loss of privacy arising out of or in any way related to the use of or inability to use the Service, third-party software and/or third-party hardware used with the Service, or otherwise in connection with any provision of this Terms), even if the Company or any supplier has been advised of the possibility of such damages and even if the remedy fails of its essential purpose.

Some states do not allow the exclusion of implied warranties or limitation of liability for incidental or consequential damages, which means that some of the above limitations may not apply. In these states, each party's liability will be limited to the greatest extent permitted by law.

"AS IS" and "AS AVAILABLE" Disclaimer

The Service is provided to You "AS IS" and "AS AVAILABLE" and with all faults and defects without warranty of any kind. To the maximum extent permitted under applicable law, the Company, on its own behalf and on behalf of its Affiliates and its and their respective licensors and service providers, expressly disclaims all warranties, whether express, implied, statutory or otherwise, with respect to the Service, including all implied warranties of merchantability, fitness for a particular purpose, title and non-infringement, and warranties that may arise out of course of dealing, course of performance, usage or trade practice. Without limitation to the foregoing, the Company provides no warranty or undertaking, and makes no representation of any kind that the Service will meet Your requirements, achieve any intended results, be compatible or work with any other software, applications, systems or services, operate without interruption, meet any performance or reliability standards or be error free or that any errors or defects can or will be corrected.

Without limiting the foregoing, neither the Company nor any of the company's provider makes any representation or warranty of any kind, express or implied: (i) as to the operation or availability of the Service, or the information, content, and materials or products included thereon; (ii) that the Service will be uninterrupted or error-free; (iii) as to the accuracy, reliability, or currency of any information or content provided through the Service; or (iv) that the Service, its servers, the content, or e-mails sent from or on behalf of the Company are free of viruses, scripts, trojan horses, worms, malware, timebombs or other harmful components.

Some jurisdictions do not allow the exclusion of certain types of warranties or limitations on applicable statutory rights of a consumer, so some or all of the above exclusions and limitations may not apply to You. But in such a case the exclusions and limitations set forth in this section shall be applied to the greatest extent enforceable under applicable law.

Governing Law

The laws of the Country, excluding its conflicts of law rules, shall govern this Terms and Your use of the Service. Your use of the Application may also be subject to other local, state, national, or international laws.

Disputes Resolution

If You have any concern or dispute about the Service, You agree to first try to resolve the dispute informally by contacting the Company.

For European Union (EU) Users

If You are a European Union consumer, you will benefit from any mandatory provisions of the law of the country in which you are resident in.

United States Legal Compliance

You represent and warrant that (i) You are not located in a country that is subject to the United States government embargo, or that has been designated by the United States government as a "terrorist supporting" country, and (ii) You are not listed on any United States government list of prohibited or restricted parties.

Severability and Waiver

Severability

If any provision of these Terms is held to be unenforceable or invalid, such provision will be changed and interpreted to accomplish the objectives of such provision to the greatest extent possible under applicable law and the remaining provisions will continue in full force and effect.

Waiver

Except as provided herein, the failure to exercise a right or to require performance of an obligation under this Terms shall not effect a party's ability to exercise such right or require such performance at any time thereafter nor shall be the waiver of a breach constitute a waiver of any subsequent breach.

Translation Interpretation

These Terms and Conditions may have been translated if We have made them available to You on our Service. You agree that the original English text shall prevail in the case of a dispute.

Changes to These Terms and Conditions

We reserve the right, at Our sole discretion, to modify or replace these Terms at any time. If a revision is material We will make reasonable efforts to provide at least 30 days' notice prior to any new terms taking effect. What constitutes a material change will be determined at Our sole discretion.

By continuing to access or use Our Service after those revisions become effective, You agree to be bound by the revised terms. If You do not agree to the new terms, in whole or in part, please stop using the website and the Service.

Contact Us

If you have any questions about these Terms and Conditions, You can contact us:

By email: [email protected]

Risk Calculation for Breach by Phishing

Measuring Risk Reduction

Get In Touch

Company

Legal

Quick Links