Protected Privacy Training – Privacy Notice
Hi there! We are Protected (by Privacy Team Ltd. – “PrivacyTeam”, “we”, “our” or “us“), and we love privacy! Before diving deeper, we should first explain what “privacy” means to us.
Privacy is choice and control – by an individual – over their own personal data, identity, voice and image. It’s up to each individual to choose what happens with their personal data, and it’s important for organizations that process such data to provide the individual with sufficient information and knowledge about their processing activity – how they use that individual’s data – for the individual to be able to make an informed choice.
That’s why we created this notice. We tried our best to keep it simple, transparent and easy to understand. If any further clarification is needed – just reach out to us at [email protected] 😊
Privacy matters. YOUR privacy matters.
You are probably here because:
- You are really interested in privacy! You browse our websites (e.g., privacyteam.com, Protected.fm, Protected.pt), engage with our content and blog, explore our e-learning platform (“Protected” or “platform”) for your business, or generally engage with our online assets (thank you! “Visitor”);
- Your organization wanted you to learn more about privacy with Protected! You received an email that requested you to confirm your email and to create account in your organization’s training area (Mazal Tov! “User”, and together with Visitor – “you”).
Allow us to take you through this notice: How we collect your personal data, What do we collect, How we use it, Where & for how long we keep it. You will also find some information about our use of cookies, our security practices, your rights and other relevant information.
Remember: you are not legally required to provide us with any personal data. If you do not wish to provide us with your personal data, or to have it processed by us or any of our service providers (as described below), please do not provide it to us and avoid any interaction with us or with our platform.
How do we collect your personal data?
As a Visitor, our main data collection method is directly from you, as you may choose to share certain details (mainly name, business email and other contact details) when contacting us. We also collect some technical information indirectly, via cookies and usage analytics.
As a User, your contact details will be provided to us by your organization as part of enrolling you to the platform. We might also assign you a unique course participant number, or other identifiers, including through the use of cookies and similar technologies.
What personal data do we collect?
Visitor contact & communication data: name, email and other personal data provided or made available to us in any form, including through inquiries that you may submit to us, or participation in our online and offline communities and activities; surveys and feedback received; as well as written correspondences, screen and session recordings, screenshots, documentation and related information that is either automatically or manually recorded, tracked, transcribed and analyzed.
User contact & profile data: name, email, position, workplace, login credentials, and any other information provided or made available to us by your organization and throughout your signup, login and use of the platform (either by yourself or by you organization); as well as information pertaining to your use of the platform, such as activity logs and recorded activity (sessions, clicks, use of features, logged activities and other interactions), training progress, quiz answers and scoring, surveys and feedback submitted to us, as well as written correspondences, screen and session recordings, screenshots, documentation and related information that is either automatically or manually recorded, tracked, transcribed and analyzed.
How do we use your personal data & who we share it with?
We will only use your personal data for the purposes described in this notice, which we believe are pretty straight-forward and align with your reasonable expectations when you provided us with your data – i.e., to provide our services, to improve our services, to comply with laws and contracts, for security and risk prevention/mitigation purposes, and other normal things that businesses normally do – like sales, marketing (the nice kind, that doesn’t spam you or abuses your trust), and generally trying to get better all the time.
For example – if you left your details to be contacted by us – we will simply use it to contact you. If you are using our platform, or submit and inquiries or feedback to us, we will use the data related to your use, and any information or feedback you provide us, to better understand how the platform is used, and the expressed needs and preferences of our Users, to gain insights and see how we could improve the platform and your user experience and satisfaction.
If your organization shared your personal data with us to enroll you to Protected – we will use it to enroll and provide you with access to our platform. In ‘privacy language’, your organization is the ‘Controller’ of this data, and we are its ‘Processor’ – processing your personal data on your organization’s behalf (you will learn more about it in the privacy training 😊).
In order to make our platform, websites and services work, we share your personal data with our international service providers. For example, for our platform’s infrastructure and capabilities, and to be able to provide related customer service and support, we engaged with service providers such as WordPress, Learndash, Google, Slack, Teachable and monday.com and depending on your use of the platform and interactions with us, some or all of them may process your data on our behalf.
We may also share some data relating to your use of the platform (e.g., regarding your signup and logins into the platform, training participation and scores), and interactions with us concerning such use, with the administrator(s) designated by your organization.
Where & for how long do we store your personal data?
No papers here! All personal data in kept in a digital form and is maintained, stored and processed by us and our authorized service providers in the US and Israel.
Privacy Team Ltd. is headquartered in Israel, a jurisdiction which is considered by the European Commission, the UK Secretary of State, and the Swiss Federal Data Protection and Information Commissioner (FDPIC), to be offering an adequate level of protection for personal data of individuals residing in EU Member States, the UK and Switzerland, respectively. Any data transferred to us from the EEA, the UK and Switzerland, is actually transferred to Israel on this basis. For data transfers from such locations to countries which are not considered to be offering an adequate level of data protection, we and the relevant data exporters and importers enter into Standard Contractual Clauses as approved by the European Commission, FDPIC and UK Information Commissioner’s Office (ICO). You can obtain a copy by emailing us at [email protected].
We minimize! So we don’t collect any personal data in excess of, nor do we keep personal data for longer than, what we view as needed for the purposes described in this notice. This means that we retain personal data only for as long as we deem it as reasonably necessary in order to maintain and expand our relationship and provide your with our services and offerings; in order to comply with our legal and contractual obligations; or to protect ourselves from any potential disputes (i.e., as required by laws applicable to log-keeping, records and bookkeeping, and in order to have proof and evidence concerning our relationship, should any legal issues arise following your discontinuance of use). To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and the applicable legal requirements.
If you have any questions about our data retention policy, please contact us by email at [email protected]
Cookies (not the delicious kind)
Cookies are packets of information sent to your web browser and then sent back by the browser each time it accesses the server that sent the cookie.
Cookies that are removed when you close your browser session are called “Session Cookies”. Cookies that last for longer periods are called “Persistent Cookies”. We use both types.
We only use cookies that are essential to our operation of the platform, or that support its different functionalities. For example, we use a cookie that remembers your log-in details to make it easier for you to stay logged into the platform.
Additional information
Communications: We may be in contact with you (through any means available to us) regarding your enrolment to the platform, changes or updates to our services, billing, support, etc. Kindly note that you will not be able to opt-out of receiving certain communications which are integral to the operation of our platform and its use (like enrolment notices); but you can definitely expect any ‘optional’ communications, such as marketing emails, to come with easy-to-follow ‘unsubscribe’ options. You can also always reach out to us if you would like to inquire about removing your contact details from certain communications, and we will do our best to accommodate your wishes (except of course with respect to ‘mandatory’ or integral communications as mentioned earlier).
Security: We and service providers implement systems, applications and procedures to secure your personal data, and to reduce the risks of theft, damage, loss of data, or unauthorized access or use of personal data. That said, we cannot guarantee that the we will be immune from any wrongdoings, malfunctions, unlawful interceptions or access, or other kinds of abuse and misuse.
Your rights: Under various privacy laws, you have certain rights concerning your data, such as the rights to access, correction or deletion of your personal data. Note that such rights are not absolute but if you wish to know more, or to exercise any of your rights, please contact us at: [email protected].
GDPR, CCPA, and us: As an Israeli provider that is not particularly offering our services to data subjects in the European Union or California, nor engages in monitoring the behaviour of any data subjects anywhere, we are not directly subject to the GDPR or CCPA – but we do view the GDPR as a great piece of legislation, and strongly believe in its core principles and empowerment of data subjects. Accordingly, we strive to afford the same rights as under the GDPR to all data subjects regardless of where they are in the world, and to follow globally-acceptable processing principles such as data minimization, storage limitation, transparency, fairness, purpose limitation and accountability, to name a few. That said, we do quietly enjoy the ability of keeping this notice well under 2000 words (while still covering all the essentials, and then some), without some of the legalese that is required under GDPR (or those ridiculously complex and inaccessible tables that some in the EU think are both required and ideal for relaying this kind of information. Trust us. They are not).
Contact us: If you have any comments, questions or concerns regarding our privacy notice or practices, or regarding your personal data held with us, we’d love to address them! Just email us at [email protected].
Last updated: September 6th, 2022