We collect data either to make the application function, or for research.
Making the application work
We need to collect information about you in order to make the Security Culture Toolkit work. This kind of data is used to handle sessions, logging you in or out, resetting your password and so forth. Basically, without this data, the application will not work.
We collect research data for a number of reasons:
- to provide you with a benchmark
- to understand how security culture is evolving over time
- to understand how security culture is impacting security
- to build better security culture
- to provide researchers with raw data on security culture
A core part of the Security CLTRe Toolkit, is the benchmarking against other industries, countries and organization sizes. The benchmark tool use the research data to analyse how your industry is doing, and then show that benchmark against your own score so you can understand how you are comparing to your peers.
The evolving over time
By saving the research data, we can see how security culture evolves over time - for your part you can compare your own score over time, while also compare to your industry scores. Researchers can use the same data to understand and analyse progress, trends and compare industries, locations, company sizes etc.
The research data may be provided to academical research to help understand security culture, trends and so forth. If you have a research project where you think this data would be a good match, please contact us.