The Legality of SecurityScorecard Data Collection

SecurityScorecard delivers security ratings that empower enterprises to instantly and accurately monitor, assess and understand their own cybersecurity posture as well as the cyberhealth of all vendors and business partners in their ecosystems. 

SecurityScorecard does not collect or use personal data or other personal information related to its product offerings, which limits the applicability of the General Data Protection Regulation (GDPR) to its B2B operations. However, as part of its alignment with best business practices, SecurityScorecard is committed to compliance with GDPR and all applicable U.S. federal regulations, including the Federal Trade Commission (FTC) Act, the Computer Fraud and Abuse Act, and the Electronic Communications Privacy Act, which dictate how SecurityScorecard acquires, uses and discloses data. Since SecurityScorecard engages with clients in heavily regulated industries that are subject to GDPR and U.S. federal laws on personal data privacy, the company also focuses on requirements of laws that impact customers and how those laws apply to its own business operations.

You will learn: 

  • How we collect data to calculate scores
  • How we protect data
  • How we protect our platform
  • Website scanning legal issues

Request a Demo

Thank you for requesting a demo!