Privacy Policy for Who Got Phished

Effective Date: February 28, 2024

1. Overview

Welcome to Who Got Phished ("we," "us," or "our"). This Privacy Policy outlines how Who Got Phished collects, uses, and protects the information related to your use of our mobile application. Our app is designed to help you monitor email campaign performance, track interactions, and gain insights into phishing threats affecting your organization.

2. Information We Collect

Who Got Phished prioritizes your privacy while aiming to enhance the management and analysis of your email campaign strategies effectively. To facilitate this, we collect only the essential information required for authentication and app functionality.

• Authentication Information: The app requires users to provide login credentials, such as a username and password, for the purpose of authentication. This ensures secure access to your account and data related to phishing simulation campaigns.
• Local Storage: To enhance your user experience and ensure efficient app performance, we store tokens and IDs in your device's local storage. This storage is used to maintain your session state and preferences, allowing for seamless navigation and access to features within the app.

3. Utilizing Collected Data

We utilize collected data for    

• Provide a dashboard overview of phishing simulation campaigns, enabling users to monitor and assess their effectiveness.
• Offer detailed analytics on individual campaigns to understand recipient behavior and improve future strategies.
• Deliver real-time updates on campaign performance to ensure timely insights and actions.

4. Data Security

Protecting the confidentiality and integrity of your campaign data and personal information is paramount to us. To ensure the highest level of security, we implement industry-standard measures to safeguard the information stored within the Who Got Phished app. Here are the specific steps we take to protect your information:

• Authentication: To access the app, users are required to provide a username and password. This first layer of security ensures that only authorized users can access their account and data.
• Two-Factor Authentication (2FA): For an added layer of security, we offer two-factor authentication. This requires users to verify their identity through a second method upon logging in, further protecting against unauthorized access.

Although we collect usernames and passwords for authentication purposes, we are committed to maintaining the privacy and security of your personal information. No personal user data beyond what is necessary for authentication and security purposes is collected, further minimizing privacy risks.

6. Changes to This Privacy Policy

We reserve the right to update or change our Privacy Policy at any time. Users will be notified of any changes by updating the "Effective Date" at the top of this Privacy Policy.

7.  External Data Sources

Our app utilizes web APIs to fetch and display data directly within the app, ensuring a seamless experience. This process allows us to present relevant and current information without the need for external links. Data integration via APIs is conducted securely to maintain privacy and enhance the app's functionality, offering users valuable insights into their campaigns.

8. Your Consent

By using Who Got Phished, you consent to our Privacy Policy.

9. Contact Us

If you have any questions or suggestions regarding our Privacy Policy, please contact us at eteamid@gmail.com.