Privacy Policy

Quick Bait (“we”, “our”, or “us”) is committed to protecting your privacy and ensuring compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws within the European Union. This Privacy Policy explains how we collect, use, store, and protect personal data in connection with our phishing testing services.

1. Data We Collect

To deliver our phishing testing services, we collect and process the following types of personal data:

• Instructing Individual:

• Name

• Email Address

• Testing Targets:

• Names

• Email Addresses

2. Purpose of Data Processing

We collect and process this data to:

• Deliver and administer our phishing testing services.

• Provide performance reports and insights to the instructing individual or organization.

• Improve the quality and effectiveness of our services.

• Ensure compliance with legal and regulatory obligations.

3. Legal Basis for Processing

We process personal data in accordance with GDPR Article 6, relying on the following legal bases:

• Legitimate Interests: To deliver the agreed-upon phishing testing services.

• Consent: Where applicable, consent is obtained for processing specific data.

4. Data Retention

Quick Bait retains the personal data of instructing individuals and testing targets for no longer than seven (7) years, unless a longer retention period is required by applicable laws. After this period, data will be securely deleted or anonymized.

5. Data Sharing and Third Parties

We do not sell, rent, or share personal data with third parties for marketing purposes. However, we may share data with trusted service providers and partners who assist in delivering our services, provided they comply with GDPR and ensure the security and confidentiality of the data.

6. Data Security

We implement robust security measures to protect your personal data, including:

• Encryption of sensitive data during transmission and storage.

• Regular security assessments and penetration testing.

• Access controls to ensure only authorized personnel can access personal data.

7. Your Rights

Under GDPR, you have the following rights regarding your personal data:

• The right to access your personal data.

• The right to rectify inaccurate or incomplete data.

• The right to erasure (“right to be forgotten”).

• The right to restrict or object to processing.

• The right to data portability.

• The right to lodge a complaint with a data protection authority.

To exercise any of these rights, please contact us using the details provided below.

8. International Data Transfers

If personal data is transferred outside the European Economic Area (EEA), we ensure adequate safeguards are in place, such as standard contractual clauses or binding corporate rules, to protect your data.

9. Cookies and Tracking Technologies

Quick Bait uses cookies and similar tracking technologies on our website to improve your browsing experience, analyze website traffic, and enhance our services.

Types of Cookies We Use:

• Essential Cookies: These are necessary for the operation of our website and cannot be disabled.

• Analytics Cookies: These help us understand how users interact with our website, allowing us to improve its functionality.

By using our website, you consent to the use of cookies in accordance with this Privacy Policy. You can manage your cookie preferences through your browser settings or our website’s cookie management tool.

10. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our services or applicable laws. Any changes will be communicated to you and published on our website.

11. Contact Us

If you have any questions about this Privacy Policy or how your data is handled, please contact us at:

Quick Bait

[Insert Address]

Email: [Insert Email]

Phone: [Insert Phone Number]

By using our services, you acknowledge that you have read and understood this Privacy Policy and agree to the processing of your personal data as described herein.