Effective Date: January 1, 2025
Sec-Curity Safety Center ("we," "us," or "our") operates the CP-AI Standard certification platform at cyberpai.co. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our services.
We are committed to protecting your privacy and handling your data responsibly. As a cybersecurity training provider, we understand the importance of data protection and apply the same principles we teach to our own practices.
1. Information We Collect
1.1 Information You Provide
We collect information you voluntarily provide when you:
- Create an Account: Name, email address, password, phone number (optional), employer/company name (optional)
- Enroll in Courses: Billing information, payment details (processed by third-party providers)
- Complete Training: Course progress, quiz answers, examination responses
- Earn Certification: Certification records, digital badge information
- Contact Us: Any information you include in communications with us
1.2 Information Collected Automatically
When you use our platform, we automatically collect:
- Device Information: Browser type, operating system, device identifiers
- Usage Data: Pages visited, time spent on modules, features used
- Log Data: IP address, access times, referring URLs
- Learning Analytics: Course completion rates, assessment performance, learning patterns
1.3 Information from Third Parties
We may receive information from:
- Payment processors regarding transaction status
- Employers who enroll team members (name, email)
- Analytics providers
2. How We Use Your Information
| Purpose |
Data Used |
Legal Basis |
| Provide training services |
Account info, progress data |
Contract performance |
| Process payments |
Billing information |
Contract performance |
| Issue certifications |
Name, completion data |
Contract performance |
| Verify certifications |
Certificate ID, name, status |
Legitimate interest |
| Send course updates |
Email address |
Legitimate interest |
| Marketing communications |
Email address |
Consent |
| Improve our services |
Usage data, analytics |
Legitimate interest |
| Prevent fraud |
Account activity, IP address |
Legitimate interest |
| Comply with law |
As required |
Legal obligation |
3. Information Sharing
3.1 We Share Information With:
- Your Employer: If enrolled through a team/enterprise plan, we share completion status, certification status, and progress reports with authorized administrators
- Service Providers: Third parties who help us operate our platform (hosting, payment processing, email delivery, analytics)
- Certificate Verifiers: When someone verifies your certification, we confirm your name, certification status, and expiration date
- Legal Requirements: When required by law, court order, or to protect our rights
3.2 We Do NOT:
- Sell your personal information to third parties
- Share examination questions or your specific answers
- Provide your information to unrelated marketing companies
4. Data Security
We implement appropriate technical and organizational measures to protect your information, including:
- Encryption of data in transit (TLS/SSL) and at rest
- Secure password hashing
- Access controls limiting employee access to personal data
- Regular security assessments
- Secure third-party service providers
While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.
5. Data Retention
We retain your information for:
- Account Data: As long as your account is active, plus 3 years after deletion request
- Certification Records: Permanently, to maintain verification integrity
- Course Progress: Duration of account plus 2 years
- Payment Records: 7 years (legal/tax requirements)
- Marketing Preferences: Until you opt out
6. Your Rights
Depending on your location, you may have the following rights:
6.1 All Users
- Access: Request a copy of your personal data
- Correction: Update inaccurate information
- Deletion: Request deletion of your data (subject to legal retention requirements)
- Opt-Out: Unsubscribe from marketing communications
6.2 European Users (GDPR)
- Data Portability: Receive your data in a machine-readable format
- Restriction: Request limited processing of your data
- Object: Object to processing based on legitimate interests
- Withdraw Consent: Where processing is based on consent
- Lodge Complaint: File a complaint with your supervisory authority
6.3 California Residents (CCPA)
- Know: Request disclosure of data collected about you
- Delete: Request deletion of your personal information
- Opt-Out: Opt out of sale of personal information (we do not sell data)
- Non-Discrimination: Equal service regardless of privacy choices
To exercise these rights, contact us at privacy@cyberpai.co. We will respond within 30 days (or as required by applicable law).
7. Cookies and Tracking
7.1 Cookies We Use
- Essential Cookies: Required for platform functionality (login, session management)
- Preference Cookies: Remember your settings and preferences
- Analytics Cookies: Help us understand how users interact with our platform
- Marketing Cookies: Track effectiveness of our advertising (with consent)
7.2 Managing Cookies
You can manage cookies through:
- Our cookie consent banner
- Your browser settings
- Third-party opt-out tools
Note: Disabling essential cookies may prevent you from using our platform.
8. International Data Transfers
Your information may be transferred to and processed in countries other than your own. When we transfer data internationally, we ensure appropriate safeguards are in place, including:
- Standard Contractual Clauses approved by the European Commission
- Data Processing Agreements with service providers
- Compliance with applicable data transfer regulations
9. Children's Privacy
Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately at privacy@cyberpai.co.
10. Third-Party Links
Our platform may contain links to third-party websites. We are not responsible for the privacy practices of these sites. We encourage you to review the privacy policies of any third-party sites you visit.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. For significant changes, we will notify you via email or prominent notice on our platform.
12. Contact Us
For questions, concerns, or to exercise your privacy rights:
Sec-Curity Safety Center
Email: privacy@cyberpai.co
Website: cyberpai.co
For GDPR-related inquiries, you may also contact our Data Protection representative at: dpo@cyberpai.co