Skip to main content

Privacy Policy

Last updated: December 30, 2025

At Knowspams ("we," "our," or "us"), operated by Quantamsecure Private Limited, we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information.

1. Information We Collect

1.1 Information You Provide

We collect information you voluntarily provide when you:

  • Register for an account or request a demo
  • Fill out contact forms or subscribe to newsletters
  • Participate in phishing simulations or training modules
  • Contact our support team
  • Apply for employment opportunities

This information may include:

  • Name, email address, phone number
  • Company name, job title, department
  • Login credentials
  • Training progress and assessment results
  • Communication preferences

1.2 Information Collected Automatically

When you use our platform or visit our website, we automatically collect:

  • Device information (browser type, operating system, device type)
  • IP address and approximate location
  • Pages visited, time spent, and interaction data
  • Referral source and exit pages
  • Cookies and similar tracking technologies

1.3 Phishing Simulation Data

As part of our security awareness service, we collect data related to phishing simulations, including:

  • Email open rates and click-through rates
  • Time to report suspicious emails
  • Training completion status
  • Security awareness scores (AwareIQ™)

This data is used solely to measure and improve your organization's security posture and is handled with strict confidentiality.

2. How We Use Your Information

We use collected information to:

  • Provide and improve our security awareness platform
  • Conduct phishing simulations and deliver training content
  • Generate security awareness reports and analytics
  • Communicate with you about your account and our services
  • Send product updates, security alerts, and marketing communications (with consent)
  • Ensure platform security and prevent fraud
  • Comply with legal obligations
  • Respond to support requests and inquiries

3. Data Sharing and Disclosure

We do not sell your personal information. We may share your information with:

3.1 Service Providers

Third-party vendors who assist us in operating our platform, such as cloud hosting providers, email service providers, and analytics services. These providers are contractually bound to protect your information.

3.2 Your Organization

If you use Knowspams through your employer, we share relevant training and simulation data with authorized administrators in your organization.

3.3 Legal Requirements

We may disclose information when required by law, court order, or government request, or to protect our rights, property, or safety.

4. Data Security

We implement industry-standard security measures to protect your information, including:

  • Encryption of data in transit (TLS) and at rest (AES-256)
  • Regular security audits and penetration testing
  • Access controls and authentication mechanisms
  • Employee security training and background checks
  • Incident response procedures

While we strive to protect your information, no method of transmission over the Internet is 100% secure. We cannot guarantee absolute security.

5. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this policy, comply with legal obligations, resolve disputes, and enforce our agreements. Typically:

  • Account data: Duration of the business relationship plus 3 years
  • Training records: As required by your organization's compliance needs
  • Marketing data: Until you unsubscribe or request deletion
  • Log data: 12 months

6. Your Rights

Depending on your location, you may have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate or incomplete information
  • Request deletion of your personal information
  • Object to or restrict certain processing activities
  • Data portability (receive your data in a structured format)
  • Withdraw consent for marketing communications
  • Lodge a complaint with a supervisory authority

To exercise these rights, please contact us at support@knowspams.com.

7. Compliance with Indian Laws

We comply with applicable Indian data protection laws, including:

  • Digital Personal Data Protection Act, 2023 (DPDP Act)
  • Information Technology Act, 2000 and related rules
  • CERT-IN guidelines for cybersecurity

For users in other jurisdictions, we also comply with GDPR (for EU users) and other applicable data protection regulations.

8. International Data Transfers

Your information may be processed in India and other countries where our service providers operate. We ensure appropriate safeguards are in place for international transfers, including standard contractual clauses and adequacy decisions where applicable.

9. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of our services after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Data Protection Officer: For data protection inquiries, you may also contact our Data Protection Officer at dpo@knowspams.com.