About

This research is being carried out by a team at the Centre for Research on Cryptography and Security at Masaryk University. The work was supported by the CyberSec4Europe project and Red Hat Research.

  • Petr Svenda
  • Stanislav Bobon
  • Adam Janovsky
  • Jiri Michalik
  • Jan Jancar

A thanks goes to Jaroslav Řezník and Łukasz Chmielewski for their insight into the security certification landscape.

If you would like to contact us, you can do so at svenda@fi.muni.cz.

Privacy policy

This site collects personal data in order to provide notifications about vulnerabilities or changes in certified products.

Personal data

This site collects the following personal data:

  • Email address. It is required to send notifications.

The collected personal data resides only on the server running this site.

Right to access personal data

You have a right to access your personal data that this site collects. If you want to exercise this right please send an email request to the above email address.

Right to correct personal data

You have a right to correct your personal data that this site collects. If you want to exercise this right please send an email request to the above email address.

Right to be forgotten

You have a right to have your personal data deleted. Your personal data is deleted automatically after your notification subscription is cancelled. The personal data associated to an unconfirmed subscription request is deleted after 7 days from the date of the subscription request. If you want to exercise this right please send an email request to the above email address.

Reason for collection

Email addresses are collected in order to provide a notification service, notifying users about potential vulnerabilities or changes in certified products they subscribed to. The collected personal data is not provided to any third parties. The emails are sent through a local mail server and not a third-party service.

Other

This project is open-source, you can find its sources on our Github where you can see how your personal data is processed.

The site uses some third and first-party tools that handle user data, namely Sentry.io, hCaptcha and Matomo. Sentry.io is a third-party service used to track errors on the frontend and backend of the site and thus might receive information such as the IP address, HTTP headers or the client's User-Agent, or other information included in a JavaScript error. This site is protected by hCaptcha and its Privacy Policy and Terms of Service apply. Matomo is a self-hosted service that collects analytics on this site.