Last updated: February 8, 2026
Introduction
SecurityAware ("we", "our" or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our security awareness training and phishing protection platform.
Data Collection
Personal Data
We collect the following personal information when you create an account or use our services:
- Full name
- Email address
- Company information (name, job title)
- Tax identification number (when applicable for billing purposes)
- IP address and geographic location information
- Platform usage data and training metrics
Usage Data
We automatically collect information about how you interact with our platform:
- Browser type and version
- Device type and operating system
- Pages visited and features used
- Access time and session duration
Data Usage
We use your personal information for the following purposes:
- Provide and maintain our security training services
- Communicate with you about updates, security alerts, and support
- Improve and personalize your platform experience
- Detect, prevent, and combat fraud and malicious activities
- Comply with legal and regulatory obligations
Data Sharing
We may share your information in the following circumstances:
- Service Providers: With third-party service providers who assist us in operating the platform (hosting, payment processing, data analysis).
- Legal Requirements: When required by law, court order, or regulatory authority.
- Business Transfers: In the event of a merger, acquisition, or asset sale, your information may be transferred to the new entity.
User Rights
Under applicable data protection laws, you have the following rights:
- Access: Request a copy of all personal data we hold about you.
- Rectification: Correct inaccurate or outdated personal information.
- Erasure: Request deletion of your personal data, subject to legal obligations.
- Portability: Receive your personal data in a structured, machine-readable format.
- Objection: Object to the processing of your personal data in certain circumstances.
- Withdrawal of Consent: Withdraw your consent for data processing at any time.
Data Security
We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. This includes data encryption, access controls, regular security audits, and employee training. However, no method of transmission over the Internet or electronic storage is 100% secure.
Data Retention
We retain your personal information for as long as necessary to fulfill the purposes described in this policy, unless a longer retention period is required or permitted by law. Training data and performance metrics are retained for up to 5 years for analysis and compliance purposes. After termination of the contractual relationship, your data will be anonymized or securely deleted.
Cookies and Similar Technologies
We use cookies and similar technologies to enhance your experience. For more information, please see our Cookie Policy.
Changes to this Policy
We may update this Privacy Policy periodically. We will notify you of any significant changes by email or through a prominent notice on our platform. We recommend that you review this policy regularly to stay informed about how we protect your information.
Contact
If you have questions about this Privacy Policy or wish to exercise your data protection rights, please contact us:
- Email: privacy@securityaware.com
- Contact form: Contact us