Privacy Policy

Effective date 12 April 2023

Shield Phisher Pty Ltd (ACN 634317025), hereafter referred to as the Company, is an Australian Company. This privacy policy will explain how our organisation uses the personal data we collect from you when you use our website and applications.

Please note that this Privacy Policy only applies to the MonkPhish Pro product. Other products offered by MonkPhish have different Privacy Policies.

Topics:

• What data do we collect? 
• How do we collect your data? 
• How will we use your data? 
• How do we store your data? 
• Marketing 
• How do we use data from third-party APIs?
• What are your data protection rights? 
• What are cookies? 
• How do we use cookies? 
• What types of cookies do we use? 
• How to manage your cookies 
• Privacy policies of other websites 
• Changes to our privacy policy 
• How to contact us 
• How to contact the appropriate authorities 

What data do we collect?

Our Company collects the following data:

• Personal identification information (Name, email address, phone number, etc.) Information you submit through forms and other input fields on our website and applications
• Information about your browser, device, and your IP address you use to access our website and applications

How do we collect your data?

You directly provide the Company with most of the data we collect. We collect data and process data when you:

• Register online or subscribe for any of our products or services.
• Voluntarily complete a customer survey or provide feedback on any of our message boards or via email.
• Use or view our website and application via your browser’s cookies.
• When you enter information into the website or the application.
• When you click on links in emails that are sent by us directly or through the application.
• The Company may also receive your data indirectly from the following sources: When your employer provides your details to us to enable the use of our products and services as part of your employment relationship with your employer.

How will we use your data?

Our Company collects your data so that we can:

• Process your subscriptions and manage your account.
• Email you with special offers on other products and services we think you might like.
• To enable the use of the application to send you training material and notices relating to the on-going training through the use of our applications and website.
• We will provide third parties data that you provide us to enable us to provide you with access to our products and services. Your financial details, as entered on our website and applications, will be provided to our payment provider, Stripe, in order to enable us to process your payments and Stripe will store that information in its systems. We do not store or process your credit card numbers on our systems to ensure they remain secure.
• When the Company processes your order, it may send your data to, and also use the resulting information from, credit reference agencies to prevent fraudulent purchases.

Our applications allow users to create and share their own content on the platform. The account owner is responsible for moderating their own content, ensuring it complies with our content guidelines and applicable laws. The Company reserves the right to remove or disable any content that violates our guidelines or policies, or that we believe is inappropriate or objectionable. The Company is not responsible for the content that users post on the platform and do not endorse any opinions expressed in user-generated content.

How do we store your data?

The Company securely stores your data in Australia, the United States of America, and within the European Union to enable the fastest and easiest access to the Company’s services and applications. We do not send unencrypted data across the open internet and encrypt all our data stores. We also restrict access to the data to appropriately trained and vetted employees and contractors of the Company.

The Company will keep your Personal identification information for the duration of you subscribing to and/or maintaining an account to access our services, products, and applications. Once this period ends, the Company will remove your Personal identification information from our systems. The Company will keep financial records of any transactions you make with the Company for a period of seven financial years (1 July to 30 June) subsequent to the financial year in which the transaction occurred. This ensures our compliance with Australian taxation laws. After this period ends, we will securely delete and/or destroy this data.

Your personal information may be transferred to, stored, and processed in countries outside of your own, including the United Kingdom, European Union, United States, and Australia, where our servers are located. By using our websites and applications, you consent to the transfer of your personal information to these countries. The Company takes appropriate steps to ensure that your personal information is adequately protected in accordance with this Privacy Policy and applicable data protection laws. If you are located in the European Economic Area or the United Kingdom, acknowledge that your personal information may be transferred to the United States of America and Australia, which may have different data protection laws than those in your own country. We rely on Standard Contractual Clauses or Binding Corporate Rules to transfer your personal information between these regions, where required. By using our websites and applications, you consent to the transfer of your personal information between these regions.

How do we use data from third-party APIs?

The Application uses third-party APIs that you connect to improve your experience in using the application. The application uses this data to critical functionality of the application and it is used to verify connected accounts.

The Application's use and transfer to any other app of information received from Google APIs will adhere to Google API Services User Data Policy, including the Limited Use requirements.

Marketing

The Company would like to send you information about products and services of ours that we think you might like.

If you have agreed to receive marketing, you may always opt out at a later date.

You have the right at any time to stop the Company from contacting you for marketing purposes.

If you no longer wish to be contacted for marketing purposes, you can click the unsubscribe link in the email or edit your preferences in your Profile Settings here: https://pro.monkphish.com/app/settings/profile

What are your data protection rights?

The Company would like to make sure you are fully aware of all of your data protection rights. Every user is entitled to the following:

The right to access – You have the right to request the Company for copies of your personal data. We may charge you a small fee for this service.

The right to rectification – You have the right to request that the Company correct any information you believe is inaccurate. You also have the right to request the Company to complete the information you believe is incomplete.

The right to erasure – You have the right to request that the Company erase your personal data, under certain conditions.

The right to restrict processing – You have the right to request that the Company restrict the processing of your personal data, under certain conditions.

The right to object to processing – You have the right to object to the Company’s processing of your personal data, under certain conditions.

The right to data portability – You have the right to request that the Company transfer the data that we have collected to another organisation, or directly to you, under certain conditions.

You can request that we delete your account in your Settings here: https://pro.monkphish.com/app/settings

Cookies

Cookies are text files placed on your computer to collect standard Internet log information and visitor behaviour information. When you visit our websites and applications, we may collect information from you automatically through cookies or similar technology

For further information, visit allaboutcookies.org.

How do we use cookies?

The Company uses cookies in a range of ways to improve your experience on our website, including:

• Keeping you signed in
• Understanding how you use our website and application
• To provide training metrics relating to your use of our website and applications

What types of cookies do we use?

There are a number of different types of cookies, however, our website uses:

• Functionality – the Company uses these cookies so that we recognise you on our website and remember your previously selected preferences. These could include what language you prefer and location you are in. A mix of first-party and third-party cookies are used.
• Advertising – the Company uses these cookies to collect information about your visit to our website, the content you viewed, the links you followed and information about your browser, device, and your IP address. The Company sometimes shares some limited aspects of this data with third parties for advertising purposes. We may also share online data collected through cookies with our advertising partners. This means that when you visit another website, you may be shown advertising based on your browsing patterns on our website.

How to manage cookies

You can set your browser not to accept cookies, and the above website tells you how to remove cookies from your browser. However, our website and application features may not function as a result.

Privacy policies of other websites

The Company’s website and applications contain links to other websites. Our privacy policy applies only to the Company’s website and applications, so if you click on a link to another website, you should read their privacy policy.

Changes to our privacy policy

The Company keeps its privacy policy under regular review and places any updates on this web page. This privacy policy was last updated on 25 March 2023.

The Company may update this Privacy Policy from time to time in response to changing legal, technical, or business developments. When the Company updates this Privacy Policy, it will post the updated version on its website, and revise the 'Last Updated' date at the top of this page. If the Company makes significant changes to the Privacy Policy that materially alter practices with respect to the personal information previously collected from you, the Company will provide notice and obtain your consent as required by law. The Company encourages you to review this Privacy Policy periodically to stay informed about the Company;s privacy practices.

How to contact us

If you have any questions about the Company’s privacy policy, the data we hold on you, or you would like to exercise one of your data protection rights, please do not hesitate to contact us.

Contact us at: https://monkphish.com/contact

How to contact the appropriate authority

Should you wish to report a complaint or if you feel that the Company has not addressed your concern in a satisfactory manner, you may contact the Information Commissioner’s Office if you live in the European Union:

Data Protection Commission
21 Fitzwilliam Square South, Dublin, D02 RD28, Ireland
https://forms.dataprotection.ie/contact