About
This research is being carried out by a team at the Centre for Research on Cryptography and Security at Masaryk University. The work was supported by the CyberSec4Europe project, Red Hat Research as well as the Internal grant agency of Masaryk University, project CZ.02.2.69/0.0/0.0/19_073/0016943.
- Petr Svenda
- Stanislav Bobon
- Adam Janovsky
- Jiri Michalik
- Jan Jancar
- Łukasz Chmielewski
A thanks goes to Jaroslav Řezník for their insight into the security certification landscape.
If you would like to contact us, you can do so at svenda@fi.muni.cz.


Privacy policy
This site collects personal data in order to provide notifications about vulnerabilities or changes in certified products.
Personal data
This site collects the following personal data:
- Email address. It is required to send notifications.
The collected personal data resides only on the server running this site.
Right to access personal data
You have a right to access your personal data that this site collects. If you want to exercise this right please send an email request to the above email address.
Right to correct personal data
You have a right to correct your personal data that this site collects. If you want to exercise this right please send an email request to the above email address.
Right to be forgotten
You have a right to have your personal data deleted. Your personal data is deleted automatically after your notification subscription is cancelled. The personal data associated to an unconfirmed subscription request is deleted after 7 days from the date of the subscription request. If you want to exercise this right please send an email request to the above email address.
Reason for collection
Email addresses are collected in order to provide a notification service, notifying users about potential vulnerabilities or changes in certified products they subscribed to. The collected personal data is not provided to any third parties. The emails are sent through a local mail server and not a third-party service.
Other
This project is open-source, you can find its sources on our Github where you can see how your personal data is processed.
The site uses some third and first-party tools that handle user data, namely Sentry.io, hCaptcha and Matomo. Sentry.io is a third-party service used to track errors on the frontend and backend of the site and thus might receive information such as the IP address, HTTP headers or the client's User-Agent, or other information included in a JavaScript error. This site is protected by hCaptcha and its Privacy Policy and Terms of Service apply. Matomo is a self-hosted service that collects analytics on this site.