Privacy Policy

1. Introduction

PhishPlease (“we,” “our,” or “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our phishing simulation and security awareness training platform.

2. Information We Collect

2.1 Account Information

When you create an account, we collect your name, email address, company name, and job title.

2.2 Employee Data

To conduct phishing simulations, we collect employee names, email addresses, and department information as provided by your organization.

2.3 Campaign Data

We collect data about phishing simulation campaigns, including email open rates, click rates, and training completion status.

3. How We Use Your Information

• To provide and maintain our phishing simulation and training services
• To generate reports and analytics for your organization
• To improve our platform and develop new features
• To communicate with you about your account and our services
• To comply with legal obligations

4. Data Security

We implement industry-standard security measures to protect your data, including encryption in transit and at rest, access controls, and regular security audits. However, no method of transmission over the Internet is 100% secure.

5. Data Retention

We retain your data for as long as your account is active or as needed to provide services. You may request deletion of your data at any time by contacting us.

6. Your Rights

Depending on your location, you may have the right to:

• Access your personal data
• Correct inaccurate data
• Request deletion of your data
• Object to or restrict processing
• Data portability

7. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at privacy@phishplease.com.