search

Privacy Policy

Effective Date: 01/03/2025 Last Updated: 01/03/2026

WOCS AI Technologies (“we,” “us,” or “our”) is committed to protecting the privacy and security of our users and their organizations. This Privacy Policy explains how we collect, use, disclose, and protect personal and organizational information when you use our platform and related services. By accessing or using our Services, you agree to the terms of this Privacy Policy.

  1. Scope of Policy This Privacy Policy applies to: • Our cybersecurity platform, including the CISOaaS, Security Culture, and SECaaS modules. • Websites, applications, APIs, and communications provided by [Your Company Name]. • Users, administrators, trainees, and third-party contacts whose information may be processed.

  2. Information We Collect 2.1 Information You Provide • Account Details: Name, email address, phone number, role, department. • Organization Data: Company name, industry, locations, risk owners. • Third-Party Inputs: Vendor questionnaires, contact info, compliance documents. • Training Participation: Course completions, quiz scores, phishing simulation results. 2.2 Information Collected Automatically • Device & Usage Info: IP address, browser type, operating system, activity logs. • Threat Intelligence Events: IOCs, file hashes, incident metadata (non-personal). • Cookies and Tracking: For authentication, session integrity, and usage analytics.

  3. How We Use Information We use your data to: • Deliver and improve platform functionality and user experience. • Identify and assess cybersecurity risks using AI-driven automation. • Monitor compliance, training completion, and risk ownership. • Respond to security incidents and user support requests. • Generate anonymized benchmarks and metrics. • Comply with legal obligations and regulatory frameworks (e.g., GDPR, ISO, CCPA).

  4. Legal Basis for Processing (for GDPR-compliant Users) We process data based on: • Contractual necessity (to deliver services). • Legitimate interest (e.g., to improve security posture). • Consent (e.g., for email communications). • Legal obligation (e.g., audit retention).

  5. Data Sharing and Disclosure We do not sell your data. We may share data with: • Authorized Users: Within your organization based on roles and permissions. • Vetted Subprocessors: Cloud providers, analytics tools, training content partners. • Regulators or Legal Entities: When required by law or lawful requests. • Third-Party Vendors: When using the TPRM module under your direction. Each subprocessor is subject to contractual obligations ensuring confidentiality and security.

  6. Data Security We use industry-leading measures to protect your data: • Encryption (in transit and at rest) • Role-Based Access Control (RBAC) • Multi-Factor Authentication (MFA) • Continuous Monitoring & Pen Testing • ISO 27001 and/or SOC 2-aligned practices

  7. Data Retention We retain data only for as long as necessary to: • Fulfill the purposes described in this policy. • Meet audit, compliance, and legal requirements. • Support platform analytics and improvement (anonymized where possible). Upon termination or written request, we securely delete or return your data.

  8. Your Rights Depending on your jurisdiction, you may have the right to: • Access the data we hold about you. • Correct inaccurate information. • Delete your personal data (right to erasure). • Restrict or object to processing. • Data Portability: Receive your data in a structured format. • Withdraw consent where applicable. To exercise these rights, contact us at [email protected]

  9. International Data Transfers If you are outside Israel, your data may be transferred and stored in other countries where we or our service providers operate. We ensure appropriate safeguards (e.g., Standard Contractual Clauses) are in place for such transfers.

  10. Children’s Privacy Our Services are not intended for individuals under 18. We do not knowingly collect data from children. If you believe a child has provided personal data, contact us immediately.

  11. Cookies and Tracking Technologies We use cookies and similar technologies for: • Session management • Feature optimization • Usage analytics You can manage cookie preferences through your browser settings or cookie banner (where applicable).

  12. Changes to This Policy We may update this Privacy Policy periodically. Material changes will be notified via email or platform banner. Continued use after changes constitutes acceptance.

  13. Contact Us If you have questions, requests, or complaints about this Privacy Policy or our data practices, contact: Email: [email protected]

PreviousService Level AgreementsNextCookies Policy

Last updated