Privacy Policy

Read how we protect your data and privacy.

RedNexus Academy Privacy Policy

Last Updated: May 8, 2026

At RedNexus Academy, protecting your data is as important to us as teaching you to protect networks. This Privacy Policy explains how we handle your information when you use our website, courses, labs, and community features.

For exact legal definitions, contractual obligations, and exhaustive procedural details, please refer to the Full Privacy Policy PDF.

1. Information We Collect

We collect data directly from you, automatically, and from authorized third parties:

  • User-Provided Data: Identity, contact info, account credentials, enrollment details, payment/billing info, and user-generated content (forum posts, lab reports, code snippets).
  • Automatic Data: Device info, IP address (which may derive approximate location), browser type, cookies, session duration, and platform navigation metrics.
  • Third-Party Data: Information from employers/sponsors paying for your enrollment, payment processors, identity verification vendors, and public professional profiles.
  • Cybersecurity Lab Data: Because we provide hands-on security training, we actively monitor and log lab environments. This includes virtual machine activity, commands executed, terminal/console activity, network traffic metadata, exploit attempts, and defensive monitoring alerts.
🚨 Strict Rule: Never upload real credentials, production data, private keys, or sensitive personal data into lab environments unless expressly authorized in writing.

2. How We Use Your Information

We process your data for specific legal reasons (including Contractual Performance, Legitimate Interest, Legal Obligation, and Consent) to:

  • Operate your account, deliver training, track progress, and issue/verify certificates.
  • Process payments, detect fraud/cheating/account-sharing, and enforce our Terms of Service.
  • Provide technical/admin support, improve our platform, and personalize your learning experience.
  • Send marketing communications (only where permitted by law or where you have opted in).

3. How We Share Your Information

We do not sell your personal information. We may share data with:

  • Internal Teams: Instructors, mentors, graders, and support staff (to deliver training and grade assignments).
  • Service Providers: Third-party vendors for hosting, payment processing, analytics, identity verification, and security monitoring (bound by strict data processing agreements).
  • Sponsors/Employers: If your enrollment is sponsored, we will share your attendance, progress, and completion status with that organization.
  • Certification Partners: Accreditation bodies and exam providers for credential verification.
  • Legal/Security Entities: To comply with laws, legal processes, or to protect our rights/safety in the event of abuse or security incidents.
  • Business Transfers: In the event of a merger, acquisition, or sale of company assets, your data may be transferred as part of that transaction (subject to legal safeguards).

4. Cookies, Tracking & Analytics

We use cookies, pixels, and local storage to keep you logged in, remember settings, analyze platform usage, and prevent fraud. You can manage cookies via your browser, but disabling them may impact platform functionality. Note: We may not automatically respond to "Do Not Track" browser signals, but you can control tracking via browser cookie settings.

5. Payments & Financial Data

Payments are handled by compliant third-party processors. We receive transaction IDs, billing addresses, and purchase history, but we do not store full payment card numbers on our servers.

6. Live Sessions & Community Areas

  • Live Classes: Webinars and live sessions may be recorded for educational or replay purposes. By participating, you consent to your voice, image, or chat messages appearing in recordings (unless you disable your camera/mic).
  • Community Forums: Anything you post in public forums is visible to other users. Do not post sensitive personal data or confidential information in these spaces. We reserve the right to moderate or remove content that violates our policies.

7. Data Security & Incident Response

We use administrative, technical, and organizational security measures (encryption, access controls, logging) to protect your data. However, no internet transmission is 100% secure. In the event of a security incident or data breach, we will investigate and notify affected users/regulators as required by applicable law.

8. Data Retention & Accuracy

We keep your data only as long as necessary for the purposes outlined in this policy (including tax/accounting requirements, certificate verification, and security logging). Once no longer needed, data is deleted, anonymized, or archived. You are responsible for keeping your account information accurate and up-to-date. Please do not submit sensitive information (like government IDs or health data) unless specifically requested.

9. International Data Transfers

Your data may be stored or processed in countries other than your own. Where required by law (like the GDPR), we use appropriate legal transfer mechanisms (such as Standard Contractual Clauses) to ensure your data remains protected.

10. Children & Minors

Our services are intended for users of the age of majority in their jurisdiction. If you are a minor, you may only use our services with parental/guardian or organizational consent. We do not knowingly collect data from children under 13 without legally required consent.

11. Third-Party Links

Our platform may link to external sites, repositories, or tools. We are not responsible for the privacy practices or content of these third-party services.

12. Your Privacy Rights

Depending on your location, you have specific rights regarding your data (e.g., under the GDPR for EU/UK residents, or the CCPA for California residents):

  • Access, Correction, Deletion, & Portability: You can request copies of your data, fix inaccuracies, ask for deletion, or request a portable format.
  • Restriction & Objection: You can object to certain processing activities (like direct marketing) or ask us to restrict how we use your data.
  • Opt-Out: You can opt out of marketing emails anytime (though we must still send service/transactional emails like password resets). You may also opt out of the "sale" or "sharing" of data for targeted advertising under applicable US state laws (noting that RedNexus does not sell data for money).
  • Appeal & Complaint: You have the right to appeal a denied privacy request and to lodge a formal complaint with your local data protection authority.

13. User Responsibilities

To maintain your privacy, you agree to: use strong passwords, not share your account, notify us immediately of unauthorized access, and comply with our Acceptable Use Policies and Lab Rules.

14. Changes to This Policy

We may update this policy periodically. If we make material changes, we will notify you via email, platform notice, or website update. Your continued use of the services after updates constitutes acceptance of the new policy.

Contact Us & Submitting Requests

To exercise your privacy rights, report inaccurate data, or submit a privacy request, contact our Privacy Team. All requests require identity verification to protect your account from unauthorized access.