• Security Focus believes that your contact information and your account should be private. We do not require that you submit any identifying information to receive membership. If you decide to provide it, your personal, identifying membership information is confidential and protected to the best of our abilities against unauthorized access. We do not sell, trade, lease or loan personal, identifying data about our members to any third party ever.
• Security Focus has designed the DeepSight system so that your account information is stored separately from the IDS logs you submit for analysis. We use secure technology: a secure login to protect account access, meta-tags to mark your IDS logs, privacy protection controls, physically and electronically secure servers, and restrictions on employee access in order to safeguard your personal information. We will apply the latest security service patches to our system as soon as they are published.
• Security Focus uses the personal, identifying information that you may choose to provide and that is collected, to enable the functionality of the service, including verifying your account, for corresponding with you, for resolving problems that you encounter, and for improving the Service. You may choose to opt out of receiving communications from us at the point where we request information during your account set up. You may also choose to change any of your account information, update, or close your account whenever you wish.
• Security Focus collects your demographic information, such as geographic location, company size (by employee and revenue size), industry, job function, IDS type, and Operating System type, in order to create statistically valid reports on network attacks. Such statistics will show patterns that will serve as a gauging system for the Internet community and will be offered in our for-pay, subscription based reports. We will NEVER divulge identifying information in these reports.
• If you choose to close your DeepSight account, we will not delete the log information that you have already submitted, but will delete any personal, identifying information within 14 days. Your demographic information, such as geographic location, company size, industry, job function, IDS type, and Operating System type, along with logs that you have submitted will remain the property of Security Focus and will be kept in our database for statistical analysis. This data cannot be traced back to personal, identifying information. If you choose to close your account, and later wish to use the DeepSight system again, you will need to open a new account. We will not keep old meta tags associated with account information and will not be able to give you access to old logs.
• Security Focus does use cookies, but only to authenticate you. We do not track your personal viewing habits.
• Security Focus uses your IP address to help diagnose problems with our server, and to administer DeepSight. We do log IP addresses that connect to our HTTPS server for maintenance only and delete those logs once they are 14 days old.
• This site contains links to other sites. Security Focus is not responsible for the privacy practices or the content of such Web sites.
• This site makes chat rooms, forums, message boards, and/or news groups available to its users. Please remember that any information that is disclosed in these areas becomes public information and you should exercise caution when deciding to disclose your personal information.
• Security Focus is ot a source of nor does it deliver unsolicited e-mail, unsolicited voice mail or unsolicited faxes. We will not send any unwanted mail to you or any other Member.
• Security Focus will advise you if we change our policies by posting a statement to the DeepSight home page, http://analyzer.securityfocus.com.

If you have any questions about this privacy statement, the practices of Security Focus, or your dealings with DeepSight, you can contact us at analyzer@symantec.com