Legal Document

PRIVACY
POLICY

How NIHACS collects, uses, and protects your personal information across all our cybersecurity training services.

Effective: Jan 15, 2025|nihacs.com|9 Sections
SECTION 01OVERVIEW
Privacy Overview

At NIHACS, your privacy is not a formality — it's a commitment. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit nihacs.com or enroll in our cybersecurity training programs.

By accessing our platform, you agree to the terms described in this document. If you disagree with any part, please discontinue use of our services.

Last updated: January 15, 2025 · Effective immediately upon publication.
SECTION 02DATA WE COLLECT
Information We Collect

We collect information you provide directly and data generated automatically through your use of our platform.

Personal Information
  • //Full name and email address upon registration
  • //Payment and billing information (processed via secure third-party gateways)
  • //Profile photo and biographical information (optional)
  • //Communication records when you contact our support team
Automatically Collected Data
  • //IP address, browser type, and operating system
  • //Pages visited, time spent, and navigation paths
  • //Device identifiers and cookie data
  • //Course progress, quiz scores, and lab activity
SECTION 03HOW WE USE IT
How We Use Your Data

Your data helps us deliver, maintain, and continuously improve NIHACS's training experience. We never sell your personal information to third parties.

Primary Uses
  • //Processing enrollments, payments, and issuing certificates
  • //Personalizing your learning path and course recommendations
  • //Providing technical support and responding to inquiries
  • //Sending transactional emails and important platform updates
  • //Maintaining the security and integrity of our systems
Secondary Uses (with consent)
  • //Sending promotional content about new courses or events
  • //Aggregated analytics to improve curriculum and UX
  • //Research on cybersecurity education effectiveness
SECTION 04DATA SHARING
Sharing & Disclosure

NIHACS shares data only when necessary to operate our services, comply with legal obligations, or protect our users. We maintain strict agreements with all third parties.

We May Share With
  • //Payment processors (Razorpay, Stripe) to complete transactions
  • //Cloud infrastructure providers (AWS, Vercel) for hosting
  • //Analytics services (Google Analytics) under data processing agreements
  • //Law enforcement or regulators when legally required
  • //Successor entities in the event of a merger or acquisition
We will never sell, rent, or trade your personal information to advertisers or data brokers — ever.
SECTION 05COOKIES
Cookies & Tracking

We use cookies and similar tracking technologies to enhance your experience and gather usage analytics. You can control cookie preferences through your browser settings.

Types of Cookies We Use
  • //Essential cookies — required for login sessions and security
  • //Functional cookies — remember your preferences and settings
  • //Analytics cookies — understand how users navigate our platform
  • //Marketing cookies — only with your explicit consent

Disabling cookies may affect the functionality of certain features. Most browsers allow you to refuse cookies; consult your browser's help documentation for instructions.

SECTION 06SECURITY
Data Security

As a cybersecurity education platform, we hold our own security to the highest standard. We implement industry-leading practices to protect your data.

Security Measures
  • //TLS 1.3 encryption for all data in transit
  • //AES-256 encryption for sensitive data at rest
  • //Regular third-party penetration testing
  • //Multi-factor authentication for administrative access
  • //Automated vulnerability scanning and intrusion detection
  • //SOC 2-aligned incident response procedures
Despite our best efforts, no method of transmission over the internet is 100% secure. We will notify affected users promptly in the event of a breach.
SECTION 07YOUR RIGHTS
Your Privacy Rights

You have meaningful control over your personal data. Depending on your jurisdiction, you may exercise the following rights at any time.

Rights Available to You
  • //Access — request a copy of all personal data we hold about you
  • //Rectification — correct inaccurate or incomplete data
  • //Erasure — request deletion of your account and associated data
  • //Portability — receive your data in a structured, machine-readable format
  • //Restriction — limit how we process your data in certain circumstances
  • //Objection — opt out of marketing communications at any time

To exercise any of these rights, contact us at privacy@nihacs.com. We will respond within 30 days.

SECTION 08DATA RETENTION
Retention Policy

We retain your data only as long as necessary to fulfill the purposes outlined in this policy or as required by law.

Retention Periods
  • //Active account data — retained for the duration of your account
  • //Course completion records — retained for 7 years for certification validity
  • //Payment records — retained for 5 years per financial regulations
  • //Support communications — retained for 2 years
  • //Analytics data — anonymized and retained indefinitely

Upon account deletion, personal data is removed within 30 days, except where legal obligations require longer retention.

SECTION 09CONTACT US
Contact & Grievances

For any privacy-related questions, requests, or concerns, please reach out to our dedicated privacy team.

Contact Details
  • //Email: privacy@nihacs.com
  • //General: contact@nihacs.com
  • //Website: nihacs.com/contact
  • //Response time: Within 2 business days
We take every privacy concern seriously. If you feel your concern has not been addressed, you have the right to lodge a complaint with your local data protection authority.