Privacy Policy
Last updated: 12/27/2025

Scam Trainer ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our cybersecurity awareness training platform.

Information We Collect

Personal Information

We collect information you provide directly to us, including:

  • Name and email address
  • Phone number (for SMS training campaigns)
  • Organization name and role
  • Authentication credentials
  • Training participation and response data

Automatically Collected Information

When you use our platform, we automatically collect:

  • Device information (type, operating system, browser)
  • IP address and location data
  • Usage data (pages visited, features used, training interactions)
  • Click tracking data from training campaigns
  • SMS delivery and response metrics

SMS Communications and Consent

Training Campaign Messages

Our platform sends simulated phishing and scam messages as part of cybersecurity awareness training. By participating in training campaigns:

  • You consent to receive/send training SMS messages from ScamTrainer
  • You consent to send training SMS messages to your family and friends, and you confirm that you have their consent to do so.
  • Messages are sent only as part of authorized training programs
  • Message frequency varies based on campaign settings

Opt-Out Procedures

You can opt out of SMS training campaigns by:

  • Contacting your training administrator
  • Emailing us at marco[dot]giannone[at]gmail[dot]com

Note: Opting out may affect your participation in required security training programs. Please contact us at marco[dot]giannone[at]gmail[dot]com.

How We Use Your Information

We use collected information to:

  • Deliver cybersecurity awareness training
  • Send simulated phishing and scam messages to you and your family and friends.
  • Track and report training effectiveness
  • Provide analytics and insights to your organization
  • Ensure platform security and prevent fraud
  • Comply with legal obligations
  • Improve our training methodologies

Data Sharing and Disclosure

We do not sell your personal information. We share your information only in the following circumstances:

With Your Organization

  • Training participation and performance data with authorized administrators
  • Aggregated analytics and reports to your organization administrators

With Service Providers

  • SMS delivery services (Twilio)
  • Cloud hosting and infrastructure providers
  • Analytics and monitoring services

Legal Requirements

We may disclose information if required by law, court order, or government request, or to protect our rights, property, or safety.

Data Security

We implement appropriate technical and organizational measures to protect your information, including:

  • Encryption of data in transit and at rest
  • Mandatory two-factor authentication
  • Regular security assessments and updates
  • Access controls and authentication
  • Employee training on data protection

Your Rights and Choices

You have the right to:

  • Access your personal information
  • Correct inaccurate data
  • Request deletion of your data
  • Opt out of training campaigns
  • Export your training data
  • Withdraw consent for SMS communications

To exercise these rights, contact us at marco[dot]giannone[at]gmail[dot]com.

Data Retention

We retain your information for as long as necessary to provide services and comply with legal obligations. Training data is typically retained for:

  • Active account data: 90 days
  • Analytics data: 24 months in aggregated form

Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of our services after changes indicates acceptance of the updated policy.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Scam Trainer Privacy Team

Email: marco[dot]giannone[at]gmail[dot]com

Return to Sign In