Security & Privacy Policy
- Home
- Security & Privacy
Security & Privacy Policy
Last updated: October 10, 2025
Purpose & Scope
This page is the Security & Privacy Policy for ateam.net. It explains how we protect visitors, what we collect, how we use it, and how to report security issues. It applies to this website and any forms we host under this domain. We do not process online payments on this site.
Audience
This website is intended for a general business audience.
How We Protect This Site
We use a defense-in-depth approach appropriate for a public website:
Encrypted transport – HTTPS is enforced site-wide; secure transport is required.
Modern browser protections – We deploy security headers (e.g., content security, click-jacking protection, anti-sniffing, cross-origin and permissions controls).
Firewall & abuse reduction – Rules at the edge help filter automated abuse and throttle sensitive endpoints.
Hygiene & hardening – Regular platform/plugin updates, least-privilege admin access, and monitoring for unusual activity.
Change control – We review material changes and patch or roll back rapidly if needed.
We don’t list every control publicly, but we regularly review and improve our safeguards.
What We Collect (and Why)
We collect only what’s needed to operate and protect this website:
Technical data – (e.g., page requests, device/browser details, IP address, timestamps) in standard web logs — used to run the site, maintain security, and diagnose issues.
Form submissions – You choose to send (e.g., messages or files) — used to respond to your request.
Security reports – Submitted via our security-reporting form — used to investigate and remediate potential issues.
Limited cookies – used for basic SEO/traffic statistics and site reliability.
We do not use third-party advertising pixels, and we do not sell personal information.
Cookies & Analytics
We use minimal, purpose-bound cookies to keep the site reliable and to understand aggregate traffic/SEO performance. You can manage or clear cookies in your browser settings. If our use of cookies changes, we will update this page.
How We Use and Share Information
We handle submissions conservatively.
No sale or marketing disclosure – We do not sell personal information and we do not disclose quote requests, client inquiries, or general inquiries to third parties for their marketing or independent use. These submissions are used solely to respond to you and to provide the services you requested.
Hiring information – Information submitted for hiring is used only by our internal hiring team to evaluate your candidacy. If we ever need to involve a specialized service provider (for example, a background-screening or interview-scheduling vendor), we will share only what is necessary, require appropriate confidentiality/data-processing protections, and notify you as applicable.
Infrastructure Processing – To operate this website and route form submissions, we rely on trusted infrastructure providers (such as web hosting, content delivery networks, and email delivery services). These providers process information strictly on our behalf and under our direction. They are not permitted to use it for their own purposes. We configure our systems with security and privacy in mind. While some functionality is supported by third-party tools, we disable unnecessary data collection wherever possible. Protective and security-focused features are maintained under our direct control, ensuring that safeguards are applied consistently to keep our site clean, secure, and authentic.
Legal/safety – We may disclose information if required by law, regulation, or legal process, or to protect the rights, safety, or integrity of our site and services.
Culture Index (applicant survey)
We invite applicants to complete a brief Culture Index survey as part of our hiring process. Participation is voluntary—we encourage it because it helps us evaluate role fit, but it is not required for consideration.
Who operates the survey – Culture Index, LLC is a third-party provider. When you follow our survey link, your responses (and any identifiers you provide to them) are collected and processed by Culture Index so they can deliver results to us.
What we receive and how we use it – We receive the assessment results and limited identifying information for the sole purpose of evaluating your candidacy. We do not sell this information and we do not disclose it for third-party marketing. Access to results is restricted to our internal hiring team.
What Culture Index may collect on their site – In addition to your survey responses, Culture Index may collect device/usage information and use cookies or similar technologies as part of operating their service. Their privacy practices, retention, and security safeguards are governed by their own policy.
Your choices and requests. You may choose not to complete the survey – If you want to access, correct, or request deletion of your survey data held by Culture Index, contact them through their normal support channels. If you have questions about how we use the results we receive, contact us and we will assist.
Retention – We retain Culture Index results only as long as needed for hiring evaluation and our records, after which they are archived or deleted consistent with our Data Retention section.
If you prefer not to complete the survey, please let us know; your application will still be reviewed using the other information you provide.
Data Retention
We keep website-generated records only as long as necessary for the purposes described on this page or as required by law, and then delete or anonymize them. Security reports may be retained longer to support remediation and audit.
- Annual archive – Once per year we export form entries and any associated files from the website environment to our internal systems. After confirming a successful transfer, we remove the copies from the website (including its database and media storage).
- Not publicly accessible – Form submissions and attachments are stored server-side in protected locations, are not published, and are configured so they are not indexable by search engines. Uploaded files are stored in restricted areas and are not available via public URLs.
- Access & use – Access to submissions is limited to authorized personnel for the purpose of responding to requests, evaluating candidates, or investigating security reports.
- Backups – Routine system backups may retain information for a limited period before they are cycled. Those backups are stored securely and are not used for any other purpose.
Where applicable law or legitimate business needs (e.g., hiring records) require longer retention, we retain only what is necessary and then delete or anonymize it.
Your Choices
You may choose not to provide optional information in forms.
You can manage or clear cookies through your browser settings.
For general business matters, please contact us through your usual channels.
(This page is specifically for website security & privacy.)
Report a Security Concern (Responsible Disclosure)
If you believe you’ve found a potential security or privacy issue affecting ateam.net.
Please use our dedicated reporting channel below.
Include the relevant page/URL and clear steps to reproduce so our internal IT team can review efficiently.
This channel is reserved for security reporting and may not receive replies to general inquiries.
Please practice responsible disclosure and do not perform disruptive testing.
(e.g., DDoS, spam, or social engineering).
For discoverability by researchers, we also publish a machine-readable security.txt.
Changes to This Page
This Security & Privacy Policy is maintained by our Internal IT & Security team and reviewed periodically.
Material updates are reflected by the Last updated date at the top of this page.