Privacy Policy

Zybercure.com Privacy Policy

Last Updated: June 23, 2025

Your privacy is paramount to us at Zybercure.com. This Privacy Policy outlines how Zybercure.com (“we,” “us,” or “our”) collects, uses, processes, discloses, and protects your personal data when you use our website, [zybercure.com], and our online courses and services (collectively, the “Service”).

We are committed to being transparent about our data practices and respecting your privacy rights. Please read this policy carefully to understand our views and practices regarding your personal data and how we will treat it.

1. Who We Are

Zybercure.com is an online education platform dedicated to providing comprehensive courses in AI and Cybersecurity. Our registered address is [Insert Zybercure.com’s Legal Business Address Here – e.g., in Maharashtra, India].

For questions regarding this Privacy Policy or our data practices, please contact our Privacy Officer at [privacy@zybercure.com] or by mail at [Zybercure.com’s Legal Business Address].

2. Information We Collect About You

We collect various types of information for different purposes to provide and improve our Service to you.

A. Personal Data You Provide Directly: This includes information you voluntarily provide when you register for an account, enroll in a course, make a purchase, participate in forums, submit inquiries, or interact with our support team. This may include:

  • Identity Data: Your full name, username, title.
  • Contact Data: Email address, phone number, billing address, country of residence.
  • Payment Data: Details required to process payments (e.g., credit card information, bank account details). Note: We typically use third-party payment processors (e.g., Stripe, PayPal) who directly collect and process your payment details. We do not store sensitive payment card information on our servers.
  • Profile Data: Your profile picture, preferences, feedback, responses to surveys, or any other information you choose to add to your public or private profile.
  • Educational/Professional Data (Optional): Your academic background, professional experience, career interests, if you choose to provide it for course recommendations or career services.
  • Communications Data: Content of your communications with us (e.g., support tickets, emails, chat messages).

B. Data Collected Automatically (Usage Data, Cookies, and Tracking Technologies): When you access or use our Service, we automatically collect certain information about your device, Browse actions, and patterns. This “Usage Data” helps us understand how our Service is used and how we can improve it. This may include:

  • Device Information: IP address, browser type and version, operating system, device identifiers, mobile network information.
  • Log Data: Access times, pages viewed, time spent on pages, unique device identifiers, referring/exit pages, clickstream data.
  • Course Progress Data: Information about your course enrollment, completion rates, quiz scores, assignment submissions, discussions participation, video watch time, and other learning activity metrics.
  • Behavioral Data: Your interactions with the Service, such as features used, content accessed, search queries, and clicks.
  • Location Data: General geographical location inferred from your IP address.
  • Cookies and Tracking Technologies: We use cookies and similar tracking technologies (like pixels, web beacons) to track activity on our Service and hold certain information. Our [Cookie Policy – Link to Cookie Policy Page] provides more detailed information on how we use cookies and how you can manage them.

C. Information from Third Parties: We may receive information about you from third-party services, such as:

  • Payment Processors: Confirmation of successful payments.
  • Social Media Platforms: If you choose to log in using a social media account, we may receive basic profile information from that platform, as permitted by their policies and your privacy settings.
  • Affiliate Partners: If you access our Service through an affiliate link, we may receive information about your referral.

3. How We Use Your Personal Data (Purposes of Processing)

We use your personal data for various purposes, based on different legal grounds as described below:

  • To Provide and Maintain the Service (Contractual Necessity): To operate our website, deliver courses, provide access to learning materials, manage your progress, and fulfill our contractual obligations to you.
  • To Manage Your Account (Contractual Necessity): To register you as a new user, manage your profile, and enable your access to course content.
  • To Process Payments (Contractual Necessity & Legal Obligation): To process your course purchases and manage billing and financial transactions.
  • To Communicate with You (Contractual Necessity & Legitimate Interest): To send you transactional emails (e.g., purchase confirmations, password resets), course-related notifications (e.g., new lessons, reminders), and respond to your inquiries and support requests.
  • For Marketing and Promotional Communications (Consent or Legitimate Interest): To send you newsletters, special offers, and information about new courses or services that may be of interest to you, where you have given consent or where we have a legitimate interest to do so and comply with applicable laws. You can opt-out of marketing communications at any time.
  • For Analytics and Service Improvement (Legitimate Interest): To understand how our Service is used, analyze trends, track user engagement, personalize your learning experience, and identify areas for improvement. This includes using aggregated and anonymized data.
  • For Security and Fraud Prevention (Legal Obligation & Legitimate Interest): To detect, prevent, and address technical issues, security incidents, and fraudulent activities, protecting both our users and our Service.
  • For Legal Compliance and Enforcement (Legal Obligation): To comply with applicable laws, regulations, legal processes, or governmental requests, and to enforce our Terms and Conditions.
  • For Business Transfers (Legitimate Interest): In connection with a merger, acquisition, or sale of all or a portion of our assets, your personal data may be transferred as part of that transaction.

4. Legal Basis for Processing Your Personal Data (GDPR & DPDP Act)

For individuals residing in regions governed by laws like the General Data Protection Regulation (GDPR) in the EU/EEA/UK, or India’s Digital Personal Data Protection Act (DPDP Act), we rely on the following legal bases for processing your personal data:

  • Consent: Where you have given us explicit, free, specific, informed, and unambiguous consent for a particular processing purpose (e.g., for direct marketing communications). You have the right to withdraw your consent at any time.
  • Contractual Necessity: Where processing is necessary for the performance of a contract with you or to take steps at your request before entering into such a contract (e.g., providing course access after purchase, managing your account).
  • Legal Obligation: Where processing is necessary for compliance with a legal obligation to which we are subject (e.g., tax compliance, preventing fraud).
  • Legitimate Interests: Where processing is necessary for the purposes of the legitimate interests pursued by us or by a third party, except where such interests are overridden by your interests or fundamental rights and freedoms (e.g., for analytics, service improvement, security, preventing misuse of the service). We ensure these interests are balanced with your rights.

5. Sharing Your Personal Data

We may share your personal data with the following categories of recipients, always ensuring appropriate safeguards are in place:

  • Service Providers: Third-party companies and individuals that perform services on our behalf to facilitate our Service, such as:
    • Payment processing providers (e.g., Stripe, PayPal)
    • Hosting and infrastructure providers (e.g., AWS, Azure)
    • Analytics providers (e.g., Google Analytics)
    • Customer support and communication platforms
    • Email and marketing service providers
    • Learning management system (LMS) providers
  • Business Partners: We may share information with business partners for specific collaborations, always with your consent where required.
  • Legal and Regulatory Authorities: When required by law or in response to valid requests by public authorities (e.g., a court order or government agency request), or to protect our rights, privacy, safety, or property, or that of our users or the public.
  • Business Transfers: In the event of a merger, acquisition, asset sale, or other business transaction involving all or part of Zybercure.com, your personal data may be transferred to the acquiring entity. We will notify you via email or a prominent notice on our Service of any such change in ownership or control of your personal data.
  • With Your Consent: We may share your personal data with any other third party when we have your explicit consent to do so.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements.

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

Generally, we will retain your account and course progress data for the duration of your active account and a reasonable period thereafter for analytical and record-keeping purposes. Payment transaction records are retained for periods required by tax and accounting laws.

7. Data Security

We implement robust technical and organizational measures to protect your personal data from unauthorized access, use, alteration, disclosure, or destruction. These measures include:

  • Encryption: Using SSL/TLS encryption for data in transit.
  • Access Controls: Restricting access to personal data to authorized personnel on a need-to-know basis.
  • Secure Infrastructure: Storing data on secure servers with appropriate firewall and intrusion detection systems.
  • Regular Audits and Monitoring: Continuously monitoring our systems for vulnerabilities and potential security incidents.
  • Data Minimization: Collecting only the data that is necessary for our stated purposes.

While we strive to use commercially acceptable means to protect your personal data, no method of transmission over the Internet or method of electronic storage is 100% secure. Therefore, we cannot guarantee its absolute security.

8. Your Data Protection Rights

Depending on your location and applicable data protection laws, you may have the following rights regarding your personal data:

  • Right to Access: You have the right to request a copy of the personal data we hold about you.
  • Right to Rectification (Correction): You have the right to request that we correct any inaccurate or incomplete personal data we hold about you.
  • Right to Erasure (Deletion/Right to be Forgotten): You have the right to request the deletion of your personal data under certain circumstances (e.g., where it is no longer necessary for the purposes for which it was collected, or you withdraw consent).
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data under certain conditions (e.g., if you dispute the accuracy of the data, for a period enabling us to verify its accuracy).
  • Right to Data Portability: You have the right to request that we transfer the data that we have collected to another organization, or directly to you, in a structured, commonly used, machine-readable format, where technically feasible (primarily applicable under GDPR). Note: The India DPDP Act does not explicitly include a data portability requirement.
  • Right to Object: You have the right to object to our processing of your personal data under certain conditions, particularly if we are processing it based on legitimate interests or for direct marketing purposes.
  • Right to Withdraw Consent: If we are relying on your consent to process your personal data, you have the right to withdraw that consent at any time. This will not affect the lawfulness of processing based on consent before its withdrawal.
  • Right to Grievance Redressal (India DPDP Act): If you are a Data Principal under the DPDP Act, you have the right to file a complaint directly with us. If unsatisfied with our response, you may escalate the issue to the Data Protection Board of India.
  • Rights under CCPA/CPRA (for California Residents): If you are a California resident, you may have additional rights, including the Right to Know (what personal information is collected, used, shared, or sold), the Right to Delete, and the Right to Opt-Out of the Sale or Sharing of Personal Information (Zybercure.com does not sell your personal data).

Exercising Your Rights: To exercise any of these rights, please submit a request to [privacy@zybercure.com]. We will respond to your request within the timeframe required by applicable law (e.g., 30 days under GDPR, 45 days under CCPA, reasonable period under DPDP Act). We may need to verify your identity before fulfilling your request.

9. Children’s Privacy

Our Service is not intended for individuals under the age of 18 (“Children”). We do not knowingly collect personally identifiable information from anyone under the age of 18. If you are a parent or guardian and you are aware that your child has provided us with personal data, please contact us immediately. If we become aware that we have collected personal data from children without verification of parental consent, we take steps to remove that information from our servers.

For individuals residing in India, under the DPDP Act, we will obtain verifiable consent from the parent or lawful guardian before processing the personal data of children. We are also prohibited from tracking children, monitoring their behavior, or using them as targets for advertising.

10. Links to Other Websites

Our Service may contain links to other websites that are not operated by us. If you click on a third-party link, you will be directed to that third party’s site. We strongly advise you to review the Privacy Policy of every site you visit. We have no control over and assume no responsibility for the content, privacy policies, or practices of any third-party sites or services.

11. Changes to This Privacy Policy

We may update our Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any changes by posting the new Privacy Policy on this page and updating the “Last Updated” date at the top of this policy. For significant changes, we may also provide more prominent notice (e.g., through email or a banner on our Service). You are advised to review this Privacy Policy periodically for any changes.

12. Contact Us

If you have any questions about this Privacy Policy, your data, or your rights, please contact us:

By mail: [Zybercure.com’s Legal Business Address WeWork, BKC, Mumbai, INDIA]

By email: [privacy@zybercure.com]

By visiting this page on our website: [zybercure.com/contact]