Request a demo
Request a demo

Privacy Policy

Effective Date: 1 June 2026

Trust Habit (“Trust Habit”, “we”, “our”, or “us”) is committed to protecting your privacy and safeguarding the information entrusted to us.

This Privacy Policy explains how we collect, use, store, disclose, and protect information when you access our website, platform, and services.

About Trust Habit

Trust Habit is a cybersecurity awareness and phishing simulation platform that helps organizations assess, measure, and improve employee resilience against phishing attacks, social engineering threats, and other cybersecurity risks.

Information We Collect

Information Provided by Customers

We may collect information provided directly by our customers, including:

  • Organization name
  • Administrator names
  • Business email addresses
  • Employee email addresses uploaded for phishing simulation campaigns
  • Job titles and departments (where provided)
  • Training completion records
  • User-generated content and communications

Information Collected Automatically

When you access or use our platform, we may automatically collect:

  • IP addresses
  • Browser type and version
  • Device information
  • Login activity and authentication records
  • Platform usage data
  • Security and audit logs
  • Cookie and analytics information

How We Use Information

We use collected information to:

  • Deliver phishing simulation campaigns
  • Provide cybersecurity awareness training
  • Generate security assessments, analytics, and reports
  • Improve platform performance, functionality, and security
  • Monitor system health and prevent misuse
  • Communicate with customers and administrators
  • Comply with legal, regulatory, and contractual obligations

Trust Habit does not sell personal information to third parties.

Phishing Simulation Data

As part of our services, organizations may upload employee information to conduct authorized phishing simulations.

Trust Habit processes this information solely for the purpose of:

  • Running phishing simulation campaigns
  • Measuring security awareness and employee resilience
  • Providing reporting and analytics
  • Delivering training and educational content

Organizations are responsible for ensuring they have the appropriate legal basis, permissions, and authority to provide employee information to Trust Habit.

Data Security

We implement industry-standard technical and organizational safeguards designed to protect information from unauthorized access, disclosure, alteration, or destruction.

Security measures may include:

  • Encryption of data in transit
  • Role-based access controls
  • Secure authentication mechanisms
  • Network monitoring and threat detection
  • Security logging and auditing

While we take reasonable steps to protect information, no method of transmission or storage can be guaranteed to be completely secure.

Sharing of Information

Service Providers

We may share information with trusted third-party service providers that support our operations, including providers of:

  • Cloud infrastructure and hosting
  • Email delivery services
  • Analytics services
  • Customer support systems
  • Security monitoring tools

These providers are authorized to process information only as necessary to perform services on our behalf.

Legal Requirements

We may disclose information when required to do so by law, regulation, legal process, court order, or governmental request.

Business Transfers

In the event of a merger, acquisition, financing, restructuring, or sale of assets, information may be transferred as part of the associated transaction.

Data Retention

We retain information only for as long as necessary to:

  • Deliver and maintain our services
  • Fulfill contractual obligations
  • Preserve security and audit records
  • Comply with legal and regulatory requirements

Customers may request deletion of their information, subject to applicable legal, regulatory, and contractual obligations.

Customer Responsibilities

Organizations using Trust Habit are responsible for:

  • Providing appropriate privacy notices to employees
  • Obtaining any necessary permissions or consents
  • Managing user access within their organization
  • Complying with applicable privacy and data protection laws

Cookies and Analytics

Our website and platform may use cookies and similar technologies to:

  • Improve user experience
  • Analyze website traffic and usage patterns
  • Enhance platform functionality
  • Support security monitoring and fraud prevention

Users may manage cookie preferences through their browser settings.

International Data Transfers

Information may be processed and stored in countries where Trust Habit or its service providers operate.

We take reasonable measures to ensure that appropriate safeguards are in place to protect information during international transfers.

Children’s Privacy

Trust Habit is intended for business and organizational use and is not directed to individuals under the age of 18.

We do not knowingly collect personal information from children.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time.

Any changes will become effective upon publication of the updated Privacy Policy on our website.

Continued use of our services after such updates constitutes acceptance of the revised Privacy Policy.

Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us.

Trust Habit

Email: th@trusthabit.com

Website: www.trusthabit.com