Privacy Policy

Last Updated: October 2025

securecoste is committed to protecting your personal data and respecting your privacy. This policy explains how we collect, use, store, and protect your information when you visit our website or enroll in our cyber security training programs. We comply with Singapore's Personal Data Protection Act and other applicable data protection regulations.

1. Information We Collect

Personal Information

We collect information you voluntarily provide when contacting us or enrolling in training programs:

  • Contact details including name, email address, and phone number
  • Professional background and employment information for course placement
  • Educational history and technical certifications
  • Payment information processed through secure third-party providers

Usage Data

We automatically collect certain information when you visit our website:

  • IP address and general location information for security purposes
  • Browser type, operating system, and device information
  • Pages visited, time spent on pages, and navigation patterns
  • Referral source and search terms used to find our website

Communication Data

We maintain records of your interactions with us:

  • Messages sent through contact forms or email correspondence
  • Phone call records for quality assurance and training purposes
  • Course enrollment inquiries and assessment results

2. How We Use Your Information

We process your personal data for the following purposes:

Service Delivery

  • Processing course enrollments and managing student records
  • Providing access to training materials and virtual lab environments
  • Communicating about course schedules, assignments, and program updates
  • Issuing completion badges and maintaining training documentation

Business Operations

  • Responding to inquiries and providing customer support
  • Processing payments and maintaining financial records
  • Conducting prerequisite assessments for program placement
  • Managing facility access and security monitoring

Improvement and Analytics

  • Analyzing website usage to enhance user experience
  • Evaluating training program effectiveness through feedback
  • Developing new course offerings based on market demand
  • Improving curriculum content and instructional methods

Marketing Communications

  • Sending information about upcoming courses and events with your consent
  • Sharing cyber security industry news and training resources
  • Providing career development guidance for program graduates

3. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: You have given explicit permission for specific processing activities such as marketing communications
  • Contract Performance: Processing is necessary to provide training services you have enrolled in
  • Legitimate Interests: We have legitimate business interests in operations, security, and fraud prevention
  • Legal Obligations: Compliance with tax laws, financial reporting, and regulatory requirements

4. Data Sharing and Disclosure

We may share your information with the following third parties:

Service Providers

  • Payment processors for secure transaction handling
  • Email service providers for communication delivery
  • Cloud hosting providers for data storage and website operation
  • Analytics platforms for website performance monitoring

Legal Requirements

  • Compliance with court orders or legal obligations
  • Protection of our rights and property
  • Investigation of fraud or security incidents
  • Response to lawful requests from regulatory authorities

We do not sell, rent, or trade your personal information to third parties for their marketing purposes.

5. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

  • Encryption of data in transit using industry-standard TLS protocols
  • Secure storage with access controls and authentication requirements
  • Regular security assessments of our infrastructure and systems
  • Staff training on data protection and privacy practices
  • Incident response procedures for potential data breaches
  • Regular backups and disaster recovery planning

While we strive to protect your personal data, no method of transmission or storage is completely secure. We cannot guarantee absolute security but maintain reasonable safeguards appropriate to the data sensitivity.

6. Data Retention

We retain your personal data for the following periods:

  • Contact Form Submissions: 3 years from last interaction
  • Student Records: 5 years after program completion
  • Financial Records: 7 years as required by Singapore tax law
  • Marketing Consents: Until consent is withdrawn
  • Website Analytics: 26 months in aggregated form

After the retention period expires, we securely delete or anonymize your personal data. We may retain certain information for longer if required by legal obligations or legitimate business interests.

7. Your Rights

Under Singapore's Personal Data Protection Act, you have the following rights:

  • Access: Request copies of your personal data we hold
  • Correction: Request correction of inaccurate or incomplete data
  • Erasure: Request deletion of your personal data in certain circumstances
  • Portability: Receive your data in a structured, machine-readable format
  • Objection: Object to processing based on legitimate interests
  • Withdrawal: Withdraw consent for marketing communications at any time
  • Complaint: Lodge a complaint with the Personal Data Protection Commission

To exercise these rights, please contact us using the details below. We will respond to your request within 30 days.

8. Cookies and Tracking

We use cookies and similar tracking technologies to enhance your experience. For detailed information about our cookie practices, please review our Cookie Policy.

You can manage your cookie preferences through our cookie management tool or your browser settings.

9. International Data Transfers

Your personal data is primarily processed and stored in Singapore. If we transfer data internationally, we ensure appropriate safeguards are in place including:

  • Standard contractual clauses approved by regulatory authorities
  • Adequacy decisions recognizing equivalent data protection standards
  • Binding corporate rules for transfers within corporate groups

10. Changes to This Policy

We may update this privacy policy periodically to reflect changes in our practices or legal requirements. We will notify you of significant changes through:

  • Email notification to enrolled students and active contacts
  • Prominent notice on our website homepage
  • Updated date at the top of this policy

Continued use of our services after policy updates constitutes acceptance of the revised terms.

11. Contact Information

For questions about this privacy policy or to exercise your data protection rights, please contact us:

Privacy Contact: [email protected]

Phone: +65 6893 4527

Address: 9 Straits View, Marina One East Tower, #15-07, Singapore 018937

We aim to respond to all privacy inquiries within 30 days. For urgent matters related to data breaches or security concerns, please indicate this clearly in your communication.