Logotype

Privacy Policy

Effective Date: 5-22-2024
ROSNIK Inc DBA Mirage Security

Introduction

ROSNIK Inc DBA Mirage Security ("we," "us," "our") is committed to protecting the privacy of our users. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you participate in our smishing/vishing simulation and training platform via Application-to-Person (A2P) 10-digit long code (10DLC) messaging services.

1. Information We Collect

We may collect personal information that you provide directly to us, such as:

  • Name
  • Phone number
  • Email address
  • Job title
  • Company name

Additionally, we may collect information automatically through your use of our services, such as:

  • Message interactions (e.g., when and if messages are opened)
  • Simulation responses

2. How We Use Your Information

We use the information we collect to:

  • Conduct voice and SMS phishing simulations and training exercises.
  • Improve and personalize our services.
  • Communicate with you regarding your participation in simulations.
  • Analyze and assess the effectiveness of our simulations.

3. Consent and Opt-Out

We obtain prior consent from participating employees for involvement in smishing/vishing simulations. While we understand the importance of providing an opt-out mechanism, our simulations may include messages that do not explicitly state an opt-out option to maintain the integrity of the training exercise. However, participants can contact us directly to opt-out at any time by emailing hello@miragesecurity.ai.

4. Data Sharing and Disclosure

We may share your information with:

  • Your employer, as part of the training program.
  • Third-party service providers who assist us in our operations.
  • Law enforcement, if required by law or to protect our rights.

We do not sell your personal information to third parties.

5. Data Security

We implement reasonable security measures to protect your information from unauthorized access, use, or disclosure. However, no method of transmission over the internet or method of electronic storage is completely secure, so we cannot guarantee absolute security.

6. Your Data Protection Rights

Depending on your location, you may have the following rights:

  • The right to access

    You have the right to request copies of your personal data.

  • The right to rectification

    You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.

  • The right to erasure

    You have the right to request that we erase your personal data, under certain conditions.

  • The right to restrict processing

    You have the right to request that we restrict the processing of your personal data, under certain conditions.

  • The right to object to processing

    You have the right to object to our processing of your personal data, under certain conditions.

  • The right to data portability

    You have the right to request that we transfer the data that we have collected to another organization, or directly to you, under certain conditions.

7. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on our website. You are advised to review this Privacy Policy periodically for any changes.

8. Contact Us

If you have any questions about this Privacy Policy, please contact us at: