1. Introduction

1.1 The purpose of this Privacy Policy is to transparently explain the basis for processing any personal information collected from you while browsing the website at heronsec.ai (the “Website”), how the information will be used, how it may be disclosed to third parties, and the use of “cookies” or files or tags on the Website. For any questions, please contact us at hello@heronsec.ai.

1.2 Heron (the “Initiative”) respects your privacy. When you use our services, you trust us with your information. We understand this is a significant responsibility and are committed to protecting your information.

1.3 The Initiative is committed to safeguarding your personal data (as defined below) in accordance with applicable data protection laws. Please read this policy carefully along with the Initiative’s Terms of Use to understand our views and practices regarding your personal data and how we will treat it.

1.4 Any references in feminine form are for convenience only and apply equally to all genders.

2. User Consent

Your use of the Website—whether by registering, browsing, or accessing it—constitutes confirmation that you have read this Privacy Policy and the Initiative’s procedures detailed herein, and that you consent to the use of your personal data (information about an individual), including its processing (collection, use, disclosure, storage, or transfer) in accordance with this policy and for the purposes outlined below. Information held about you may be stored and processed using digital files and/or written documents.

If you provide the Initiative with information about another individual, you are required to inform them of this Privacy Policy.

Note: You are not legally obligated to provide personal information, but without it, you may not be able to access some services on the Website. If you do not agree to these terms, please refrain from using the Website.

3. Types of Information Collected

3.1 Definitions:

• Personal Information – any information relating to a private individual and/or an identifiable person. An identifiable person is one who can be identified directly or indirectly, such as by full name, email address, phone number, ID number, location data, or other identifiers relating to their physical, physiological, genetic, mental, economic, cultural, or social identity.

• Anonymous Information – information that does not allow the Initiative to contact or identify you and is not linked to identifiable data. This includes data passively collected about your activity on the Website, such as usage data, provided it is not linked to your personal information.

3.2 Voluntary Information: This is information you voluntarily provide while using the Website and that we collect. Examples include:

• Personal information provided when registering for our services (e.g., career advising, meetups, workshops, conferences, hackathons, WhatsApp groups) or joining our mailing list, including your full name, email address, phone number, etc.
  
  

• Correspondence with the Initiative – which may be stored to manage and improve our services.

You may unsubscribe from our mailing list at any time by emailing hello@heronsec.ai.

3.3 Cookies and Web Beacons: To enable certain features, we use cookies, external provider files (like Google), and tags such as JavaScript. External providers (e.g., Facebook via a “Like” button) may collect data per their own privacy policies.

Cookies are small data files stored on your device and related to information about you. Some are temporary (deleted after browser sessions), while others are persistent and help us recognize your device during future visits. Cookies track clicks and online activity. We use cookies or configuration files to improve the site and personalize service, prevent fraud, and ensure security.

The legal basis for processing cookie data is either our contract with you (cookies as part of user experience) or our legitimate interest in securing and improving the Website. You can block cookies via browser settings, but doing so may limit access to certain features.

Web beacons may also be used in our emails and Website to gather information described in this policy. These are small electronic images that help us send cookies, monitor usage, or confirm actions taken from our emails.

4. Analytics and Web Technology

The Website uses analytics tools (e.g., Google Analytics) for monitoring, marketing, and improvement purposes. These tools only access anonymous data.

We use Google Analytics to track how often users visit the site, which pages they visit, and what other sites referred them here. We do not combine Google Analytics data with personally identifiable information.

You can read more about Google’s data use and prevent tracking via:

• Google Analytics Terms of Service

• Google Privacy Policy

• Google Analytics Opt-Out

We may perform our own or third-party statistical analyses regarding usage patterns, frequency, access sources, etc. This data is used for analysis, research, and auditing and may be shared at our discretion. We reserve the right to use additional analytic tools.

5. Use and Sharing of Information

5.1 We will use your personal information solely for the purpose for which you provided it (e.g., joining a mailing list, registering for meetups, workshops, conferences, hackathons, or WhatsApp groups) and for coordinating between different programs (e.g., combining participation in a conference with career advising). We may also use data for analysis, legal compliance, and investigating complaints or misconduct.

5.2 Disclosure to Third Parties: We strive to protect your privacy, but may be legally required to disclose information you provided. We may also disclose data in good faith if necessary to protect our or a third party’s interest in national security, law enforcement, legal processes, personal safety, or to prevent imminent harm—so long as we believe your rights are not overridden.

We may also disclose information regarding individuals who pose threats to our services (e.g., fraud, abuse, spam). Additionally, we may share your information as needed to operate, maintain, or improve the Website.

5.3 Subcontractors and Service Providers: We may share your information with service providers or subcontractors working with us, including those located outside Israel, for the purpose of delivering or improving our services. Data may be stored on cloud servers outside of Israel.

6. Data Security

We implement up-to-date systems and procedures to secure our sites. While these measures reduce the risk of unauthorized access, no system is entirely secure. Therefore, we cannot guarantee absolute protection from unauthorized access.

7. Links

Please note that our Website may include links to other websites, which may collect personal data. This policy does not apply to those external sites or their data practices. Your use of such links or services is at your own responsibility.

8. Right to Access Data

Under the Israeli Privacy Protection Law (1981), any person has the right to access data about them held in a database. We strive to collect accurate data. If you believe our information is incorrect or incomplete, or if you have questions about this policy or your data, contact us at hello@heronsec.ai.

9. Governing Law and Jurisdiction

This Privacy Policy is governed exclusively by the laws of the State of Israel. Exclusive jurisdiction for any dispute lies with the courts in Tel Aviv. If a court finds any part of this policy invalid, only that part will be void, and the remainder will continue in full force.