← Back

Privacy Policy

Cybersec Academy values its users’ privacy and created this Privacy Policy to demonstrate its commitment to personal data protection, in accordance with the Brazilian General Data Protection Law (LGPD – Law No. 13,709/2018).

1. Data Controller and Data Protection Officer (DPO)

The controller of the personal data processed on this site is Cybersec Academy and Consulting, registered under CNPJ No. 61.407.533/0001-87. The Data Protection Officer (DPO) can be reached at [email protected] for any matter regarding the processing of your data or the exercise of your rights.

2. Data Collection

We collect the information you provide directly, such as name, email, phone and browsing data, when you sign up through our forms or purchase our training. Payments are processed in a secure environment by Mercado Pago; we do not store credit card data on our servers.

3. Use of Information and Legal Bases

We use your data to enable and manage your access to the LMS platform, send operational communications (credentials, new-lesson notices) and, subject to consent, run marketing campaigns. Processing relies on the following LGPD legal bases: performance of a contract (art. 7, V), consent (art. 7, I), compliance with a legal or regulatory obligation (art. 7, II) and legitimate interest (art. 7, IX).

4. Data Sharing

Cybersec Academy does not sell or rent your database. Information is shared only with cloud infrastructure strictly necessary to operate the system (such as AWS and Cloudflare) and with authorized payment gateways, always under appropriate protection safeguards.

5. Data Retention

We keep your personal data only for as long as necessary for the purposes for which it was collected. Unless a legal or regulatory obligation requires a different term, data is retained for up to 5 years after the relationship ends, then deleted or anonymized.

6. Your Rights

Under art. 18 of the LGPD, you may at any time request: confirmation that processing exists; access to your data; correction of incomplete or outdated data; anonymization, blocking or deletion of unnecessary data; portability; information about whom we share your data with; and withdrawal of consent. To exercise these rights, write to [email protected]. You may also file a complaint with the National Data Protection Authority (ANPD).

7. Cookies

We use only technical cookies essential to the site’s operation and font loading via Google Fonts. We do not use third-party advertising tracking cookies. You can manage cookies in your browser settings.

8. Security and Changes

We adopt technical and organizational measures to protect your data against unauthorized access, loss or alteration. This Policy may be updated periodically; the version in force is always the one published on this page.