Privacy Policy

Introduction. Scope

Privacy is a major concern for most Internet users and is a critically important aspect of ensuring a satisfying and rewarding experience. CertiSur is aware of and sensitive to concerns about this topic, both from subscribers of services (hereinafter the 'User' or 'Users') and from visitors to its site, in relation to the services we provide.

Both CertiSur and DigiCert request personal information from Users of their products and services for the purpose of authenticating their identity, thereby ensuring trust and integrity as part of the certification services we develop. The personal information requested may include name, surname, email address, address, personal identification number, Tax ID (CUIT), or other contact information (hereinafter 'Personal Information').

This Policy describes the way CertiSur collects, stores and processes your Personal Information in accordance with current privacy regulations and international confidentiality standards, as well as the choices you have regarding the collection and use of your Personal Information. By browsing the Website, you are deemed to accept the terms of this Privacy Policy.

Important: DigiCert and CertiSur web pages contain links to other sites. Neither DigiCert nor CertiSur assume any responsibility with respect to the privacy practices of, or make any representations about, the owners of those other pages. Important: Las páginas Web de DigiCert y CertiSur contienen vínculos con otros sitios. Ni DigiCert ni CertiSur asumen algún tipo de responsabilidad con respecto a las prácticas relativas a la privacidad, ni formulan ningún tipo de declaración sobre el tema, respecto de los titulares de esas otras páginas.

Information CertiSur Collects from Website Visitors

CertiSur does not collect any personal information from visitors to its site unless it is explicitly requested and voluntarily provided by them. If a visitor simply browses our page, CertiSur does not collect any personal information. There are only two ways in which a visitor can explicitly provide and voluntarily consent to CertiSur collecting Personal Information:

• Email: CertiSur uses links throughout its site that allow visitors to contact us by email to ask questions or provide comments and suggestions. CertiSur may also offer visitors the opportunity to have a representative contact them personally to provide additional information about a product or service.
• Applications: During the process of completing an application for some of DigiCert's and CertiSur's products, the applicant is required to provide certain information. Different products may require different personal information. For more information, see section 9.4.2 of the Certification Practice Statements ("CPS") available in the Legal Repository .

Asimismo, podemos recopilar su comportamiento de navegación en línea a través de cookies propias, por lo cual le recomendamos revisar la Política de Cookies disponible en el Legal Repository.

Use of Collected Information

• Responses and updates: CertiSur responds to all emails and other inquiries it receives. CertiSur may store that correspondence in order to improve its products, services and web pages and for other purposes related to the personalization of its content.
• Validation: If an applicant requires a certain type of digital certificate, CertiSur may compare the information provided with data contained in a third-party database to authenticate the identity and other attributes of the applicant.
• Digital Certificate content: DigiCert and CertiSur explicitly indicate (on application pages, Certification Practice Statements, FAQs or elsewhere) what information will appear in a digital certificate.
• Publication in repositories: Publication of Digital Certificates in an accessible repository is an inherent aspect of their widespread use and is a globally recognized and common practice.
• Marketing campaigns: CertiSur may use Personal Information to personalize the content you access based on your characteristics or personal preferences, with your prior, explicit and express consent.

Retention and Deletion of Personal Information

Once the purpose for which the Personal Information was collected has been fulfilled, the Company will retain only the information necessary to comply with applicable regulations requiring the retention of information for a specific period. Personal Information that is no longer required will be deleted from all media on which it is stored by the Company.

Information Security. Training

To prevent unauthorized access and maintain the accuracy of visitor and User data, CertiSur and DigiCert implement adequate and appropriate technical and organizational measures to safeguard and protect the information they collect online. We recognize the importance of safeguarding Personal Information against loss, misuse, security breaches, unauthorized access or inappropriate distribution. However, it must be recognized that no measure is 100% risk-free.

As part of this commitment, the Company implements regular training and education programs for all our employees and contracted third parties, designed to educate on best practices in the proper and secure handling of Personal Information.

Access and Permitted Disclosure

CertiSur may access, process, retain and/or share User information and personal data to investigate, prevent or take action regarding possible illegal activities, or to comply with judicial processes or requirements. This may involve transferring your personal data to government agencies or authorities, courts and/or other competent bodies.

International Transfer

If the User or any of its subsidiaries are in a country outside Argentina, the User agrees that the Company may make international transfers of personal data to such countries or to third parties in those countries. These transfers will be carried out in compliance with applicable law and subject to the adoption of appropriate legal safeguards, ensuring that personal data is treated with an adequate level of protection.

Right to Be Removed from Email Communications

CertiSur may contact website visitors and Users to announce new products, updates or comments about the services offered. If you wish to be removed from the list of recipients of such information, please send an email to mkt@certisur.com with the subject line: remove , or contact:

CertiSur S.A. — Customer Service
Av. Santa Fe 788, 2nd Floor — C1059ABO Buenos Aires

Notwithstanding the foregoing, CertiSur reserves the right to notify its Users of any information that may affect the security of its products and/or services.

Policy on Updating or Rectifying Personal Data

Neither DigiCert nor CertiSur can correct or update information contained in a Digital Certificate without destroying its integrity. DigiCert digitally signs each Certificate as an essential part of the issuance process. If information in a Digital Certificate were subsequently modified or deleted, DigiCert's signature could not verify the new content.

If you wish to correct or update any information in our database that is not included in your Digital Certificate, please contact: atencionalcliente@certisur.com or:
CertiSur S.A. — Customer Service, Av. Santa Fe 788, 2nd Floor — C1059ABO Buenos Aires

For European Union (EU) Users

At CertiSur and DigiCert we are committed to protecting the privacy and Personal Information of our EU users and visitors, in compliance with the General Data Protection Regulation ('GDPR'). EU visitors have the right to access, rectify, erase, restrict and object to the processing of their personal data, as well as the right to data portability.

Para ejercer estos derechos, por favor contáctenos a través de atencionalcliente@certisur.com. Nos aseguramos de implementar medidas técnicas y organizativas adecuadas para proteger su Información Personal contra pérdida, uso indebido, acceso no autorizado, divulgación, alteración y destrucción.

Modifications to this Privacy Policy

The Company may, at its sole discretion, modify this Privacy Policy at any time, which will be communicated through notices posted on the website. You are requested to visit this page and periodically check the Privacy Policy in effect at that time.

Last updated: January 2025