Privacy Policy – Learning Platform

Privacy Policy

This Privacy Policy explains how Cyber Advisory Excellence Ltd. (“Cyber A.E” or “We”) collect, use, share, protect and may disclose under certain circumstances, your information when you use the Cyber Insurance Academy Learning Platform (the “Platform” or “Services”). Your use of the Services is also governed by the Platform’s Terms of Use. In the event of any conflict between the terms of this Privacy Policy and the Terms of Use, this Policy shall prevail.

We are committed to protecting and respecting your privacy and any information that you may provide us. Please read this Privacy Policy carefully before using the Services and review it periodically for the latest information about our privacy practices. By using the Services, you fully agree to the terms of this Privacy Policy.

 

Personal Data Processed

We process the information you provide us when you submit an inquiry on the Platform.

When using the Platform, you can submit an inquiry via email. When contacting us, you will be asked to provide information such as your name, email address, phone number, state, organization and the subject and content of your inquiry. We refer to this entire data as “Inquiry Information”.

We collect and process your information when you register to the Platform.

When you register to the Platform, we will collect your contact details such as your full name, email and organization. we may also collect and process information relating to any tests you have taken as part of the program, including your results in such tests. We refer to this entire data as “Learning Platform Information”.

You do not have a legal obligation to provide us with your Inquiry Information or Learning Platform Information; however, if you choose to not share this information with us we may not be able to respond to your inquiry or allow you with access to the Services.

We also collect analytics information about your use of the Platform.

When you use the Platform, we record and collect certain information about your interaction with the Platform, including the IP address from which you access the Platform, time and date of access, type of browser used, language used, links clicked, and actions taken while using the Platform (“Analytics Information“).

 

How Your Personal Data Is Used

To respond to and handle your inquiry.

We will use your Inquiry Information to contact you about your inquiry and handle your inquiry.

To provide and maintain the Platform.

We will use your Learning Platform Information to provide, maintain and improve your user experience when using the Platform; to send you communications and administrative emails and to provide users with further information and updates with regards to the Platform.

We will use your Analytics Information for enhancing and developing the Platform.

We will use the Analytics Information for quality assurance and for the development and enhancement of the Platform. We also use the Analytical Information to adapt the Platform, its content, and our services to users’ preferences. Finally, we will use the Analytics Information to track your progress when using the Platform, prevent fraud, resolve disputes, troubleshoot problems, assist with any investigations, enforce the Terms of Use, establishing your use of the Platform, and take other actions otherwise permitted by law.

Who Will Process Your Data

We will not share your information with third parties, except in the events listed below or when you provide us your explicit and informed consent.

We will share your information with our service providers helping us operate the Services.

We will share your personal information with our service providers who assist us with the internal operations of the Services. These companies are authorized to use your personal information in this context only as necessary to provide these services to us and not for their own promotional purposes.

We will share your information with your organization.

We will share your Inquiry and Learning Platform Information with your organization. Please note that your organization is a separate controller of such information and may use it for its own purposes as detailed in your organization’s privacy policy.

We will share your information with competent authorities, if you abuse your right to use the Platform, or violate any applicable law.

If you have abused your rights to use the Platform, or violated any applicable law, we may share your information with competent authorities and with third parties (such as legal counsels and advisors), for the purpose of handling of the violation or breach.

We will share your information if we are legally required.

If we are required to disclose your information by a judicial, governmental or regulatory authority.

We will share your information with third-parties in any event of change in our structure.

If the operation of the Service is organized within a different framework, or through another legal structure or entity (such as due to a merger or acquisition), we will share your information only as required to enable the structural change in the operation of the Service.

 

Cookies

What are cookies?

Cookies are text files, comprised of small amount of data, that are saved on your computer or other device (e.g. smartphone, tablet, etc.) when you use the internet and visit various websites. The information that the cookies maintain is read by the website you visit, during the session of your visit to the website (these are called ‘session’ cookies), and when you return to visit it again (these are called ‘persistent’ cookies). We may also use techniques called web beacons and web pixels for purposes similar to the use of cookies. We use cookies and other web technologies on the Platform to help us collect and store some of the information described above and to enable the functionality of the Platform.

 

Security And Data Retention

We will retain your information for as long as we need it for the provision of the Platform services to your organization, and thereafter as needed for record-keeping matters.

We will retain your Inquiry Information and Learning Platform Information for the duration needed to support our ordinary business activities operating the Platform and providing the Platform to your organization. Thereafter, we will still retain your personal information as necessary to comply with our legal obligations, resolve disputes, establish and defend legal claims and enforce our agreements.

We implement measures to secure your Information

We implement measures to reduce the risks of damage, loss of information and unauthorized access or use of information. However, these measures do not provide absolute information security. Therefore, although efforts are made to secure your personal information, it is not guaranteed, and you cannot expect that the Platform will be immune from information security risks.

 

International Data Transfers

We will internationally transfer your Information only in accordance with applicable data protection laws.

If we transfer your personal data for processing at locations outside your jurisdiction, we will abide by data transfer rules applicable to these situations.

 

Additional Information For Individuals In The EU

Cyber A.E is the data controller of the personal data we collect via the Platform.

The following is the data controller for the purposes of the personal data we collect via the Platform:

Cyber A.E Insurance Company Ltd.

Rothschild Blvd 45, Tel Aviv-Yafo

Contact details of our European representative.

Our European representative, for the purposes of this Policy, is MR. Andy Searle. If you are within the European Economic Area

Legal basis under EU law for processing your personal data.

The legal basis under EU law for processing your Analytics Information is our legitimate interest in providing, maintaining, developing and enhancing the Platform.

The legal basis for collecting and processing your Inquiry Information is our legitimate interests in responding to your inquiry.

The legal basis for collecting and processing your Learning Platform Information is the performance of our contract with you to provide you with our Platform and services.

The legal basis under EU law for processing your data for the purpose of handling instances of abusive use of the Services is our legitimate interests in defending and enforcing against violations and breaches that are harmful to our business.

The legal basis under EU law for processing your data where we are legally required to share it, is our legitimate interests in complying with mandatory legal requirements imposed on us.

The legal basis under EU law for us processing your data in the event of a change in our corporate structure is our legitimate interests in our business continuity.

You have certain rights to access, update or delete your information, obtain a copy of your information, withdraw your consent and object or restrict certain data processing activities.

If you are in the EU, you have the following rights under the GDPR:

Right to Access your personal data that we process and receive a copy of it.

Right to Rectify inaccurate personal data we have concerning you and to have incomplete personal data completed.

Right to Data Portability, that is, to receive the personal data that you provided to us, in a structured, commonly used and machine-readable format. You have the right to transmit this data to another service provider. Where technically feasible, you have the right that your personal data be transmitted directly from us to the service provider you designate.

Right to Object, based on your particular situation, to using your personal data on the basis of our legitimate interest. However, we may override the objection if we demonstrate compelling legitimate grounds, or for the establishment, exercise of defense of legal claims.

Right to Restrict the processing your personal data (except for storing it) if you contest the accuracy of your personal data, for a period enabling us to verify its accuracy; if you believe that the processing is unlawful and you oppose the erasure of the personal data and request instead to restrict its use; if we no longer need the personal data for the purposes outlined in this Policy, but you require them to establish, exercise or defense relating to legal claims, or if you object to processing, pending the verification whether our legitimate grounds for processing override yours.

Right to be Forgotten. Under certain circumstances, such as when you object to us processing your data and we have no compelling legitimate grounds to override your objection, you have the right to ask us to erase your personal data. However, we may still process your personal data if it is necessary to comply with a legal obligation that we are subject to under laws in EU Member States or for the establishment, exercise or defense of legal claims.

If you wish to exercise any of these rights, contact us at support@cyberinsuranceacademy.com

We reserve the right to ask for reasonable evidence to verify your identity before we provide you with information. Where we are not able to provide you with information that you have asked for, we will explain the reason for this.

Cross-border transfers

Information we collect from you will generally be processed within the EU and in Israel which is recognized by the European Commission as having adequate protection for personal data.

If we transfer your information from the EU to other jurisdictions outside the EU, we will do so using adequate safeguards determined by the EU Commission.

You have a right to submit a complaint to the relevant supervisory data protection authority.

Subject to applicable law, you have the right to lodge a complaint with your local data protection authority. If you are in the EU, then according to Article 77 of the GDPR, you can lodge a complaint to the supervisory authority, in particular in the Member State of your residence, place of work or place of alleged infringement of the GDPR. For a list of supervisory authorities in the EU, click here.

 

Minors

The Services are not directed to individuals under 18.

The Services are not directed to users under the age of 18. We do not knowingly collect information or data from children under the age of 18 or knowingly allow children under the age of 18 to use the Services.

 

Changes To This Privacy Notice

If we change this Notice, we will make efforts to proactively notify you of such changes.

From time to time, we may change this Notice. If we do so, we will make efforts to proactively notify you of such changes. In any event, the latest version of the Notice will always be accessible at our website.

 

Last Update: July 15, 2021.