RoleSec Privacy Notice (Privacy Policy)

Effective Date: December 13, 2025
Last Updated: December 13, 2025
Next Review Date: December 13, 2026

1) Who We Are

This Privacy Notice explains how RoleSec, LLC (“RoleSec,” “we,” “us,” “our”) collects, uses, shares, and protects information when you visit or use our website and training services (the “Services”).

  • Company: RoleSec, LLC

  • Address: 30 N Gould St Ste R, Sheridan, WY 82801, USA

  • Privacy contact: [email protected] (use subject line “Privacy”)

2) Scope

This Privacy Notice applies to:

  • visitors of rolesec.com,

  • people who create an account, enroll in, or access our courses,

  • people who contact us for support, business, legal, or security matters.

If you do not agree with this Privacy Notice, do not use the Services.

3) Important Notes (Read Carefully)

  • We provide educational training content. We do not want or need sensitive personal information to provide the Services.

  • We use third-party providers (including a hosted learning platform and payment processors) to deliver the Services.

  • No online service is risk-free. We use reasonable safeguards but cannot guarantee absolute security.

4) Information We Collect

4.1 Information You Provide

We may collect:

  • Account data: first name, last name, email address, and authentication data (such as passwords or login tokens handled through the platform).

  • Purchase/enrollment data: what you bought, what you enrolled in, access status, and transaction references.

  • Learning activity: course progress, completion status, quiz/final exam completion indicators, and certificate issuance data (such as your name, course name, completion date, and certificate ID).

  • Communications: emails or messages you send us, including support requests and attachments.

4.2 Information Collected Automatically

When you use the Services, we (and our providers) may automatically collect:

  • Device and usage data: IP address, browser type, device identifiers, operating system, referring URLs, pages viewed, timestamps, clicks, and general usage patterns.

  • Log and security data: login attempts, suspected abuse patterns, fraud signals, and system activity logs.

4.3 Social Login Information

If you choose to sign in using a third-party identity provider (such as Google, Apple, LinkedIn, or Facebook), we may receive limited information like your name and email address depending on the provider, your settings, and what you authorize.

4.4 Payment Information

Payments are processed by third-party payment processors (for example, Stripe). We do not store full payment card numbers on our systems. We may receive limited transaction details such as:

  • payment status (successful/failed/refunded),

  • timestamps,

  • billing country,

  • partial card data (e.g., last four digits) or other non-sensitive references.

5) Cookies and Similar Technologies

We and our providers may use cookies and similar technologies to:

  • keep you signed in and maintain sessions,

  • remember preferences,

  • measure performance and improve the Services,

  • prevent abuse and fraud,

  • (if enabled) support marketing and advertising.

For details, see our Cookie Notice at /cookies.

6) How We Use Information

We use information for the following purposes:

  • Provide and operate the Services (account creation, enrollment, course delivery, certificates).

  • Authenticate users and secure accounts.

  • Process payments and prevent fraud/abuse.

  • Provide customer support and respond to inquiries.

  • Improve content, user experience, and service performance.

  • Enforce our Terms and policies, protect our rights, and protect users.

  • Comply with legal obligations and respond to lawful requests.

7) Legal Bases (Where Applicable)

Where required (including GDPR/UK GDPR), our legal bases may include:

  • Contract: to provide the Services you request.

  • Legitimate interests: security, fraud prevention, service improvement, and business operations.

  • Consent: where required for certain cookies/marketing.

  • Legal obligations: compliance and lawful requests.

8) How We Share Information

We may share information in the following situations:

  1. Service providers
    We share information with vendors that help us run the Services (hosting, learning platform delivery, analytics, email delivery, customer support tools, infrastructure, security tools).

  2. Payment processors
    We share information with payment processors to complete transactions and prevent fraud.

  3. Legal, security, and enforcement
    We may disclose information to comply with law, respond to valid legal process, enforce our Terms, protect the Services, investigate fraud/abuse, or protect rights, safety, and property.

  4. Business transfers
    If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, information may be transferred as part of that transaction.

9) “Sale” / “Share” and Targeted Advertising

We do not sell personal information for money in the traditional sense.

However, certain U.S. privacy laws define “sale” or “share” broadly (for example, sharing data for targeted advertising). If we enable targeted advertising technologies, we will provide legally required opt-out choices where applicable.

10) Data Retention

We retain personal information only as long as reasonably necessary for:

  • providing “lifetime access” to purchased courses (as long as your account remains active and the offering remains available),

  • maintaining certificate and completion records,

  • security and fraud prevention,

  • legal, tax, accounting, and dispute resolution obligations.

Typical retention approach (may vary by context and legal requirements):

  • Account and course records: while active, then a limited period after closure (often up to 24 months) unless deletion is requested and we have no legal basis to retain.

  • Payment records: retained as required by law/accounting (often several years).

  • Security logs: retained for a limited period (commonly 90 days to 24 months depending on risk and necessity).

We may retain aggregated or de-identified data longer.

11) Security

We use reasonable administrative, technical, and organizational safeguards designed to protect personal information. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

You are responsible for using a strong password and keeping your account credentials confidential.

12) Your Choices and Rights

12.1 Access, Correction, and Deletion

You may request access, correction, or deletion of your personal information by emailing [email protected] with subject “Privacy Request.”

We may:

  • require identity verification,

  • deny or limit requests where permitted by law (for example, to comply with legal obligations, prevent fraud, or protect others).

12.2 Marketing Emails

If we send marketing emails, you can opt out using the unsubscribe link or by contacting us. Transactional or service-related emails (e.g., password reset, purchase confirmations) may still be sent.

12.3 Cookies

You can control cookies through your browser settings and any consent tools we may provide. Disabling cookies may reduce functionality.

12.4 U.S. State Privacy Rights

Depending on where you live, you may have rights such as:

  • access to categories/specific pieces of personal information,

  • deletion,

  • correction,

  • portability,

  • opt-out of targeted advertising and certain data sharing,

  • non-discrimination for exercising rights (where required).

To submit a request: email [email protected] (subject “Privacy Request”).

12.5 EU/UK Rights (If Applicable)

If GDPR/UK GDPR applies to you, you may have rights to access, rectify, erase, restrict processing, object, and data portability, and to withdraw consent where processing is based on consent.

13) International Transfers

Your information may be processed and stored in the United States and other countries where we or our service providers operate. If you access the Services from outside the U.S., you understand your information may be transferred to and processed in jurisdictions that may have different data protection laws.

14) Sensitive Information

We do not intentionally collect sensitive personal information (such as government ID numbers, financial account numbers, health data, or precise biometric data) through the Services. Do not send us sensitive information unless we explicitly request it.

15) Children’s Privacy

The Services are intended for adults. We do not knowingly collect personal information from children under 13. If we learn we collected such information, we will delete it.

16) Third-Party Links and Services

The Services may include links to third-party websites or rely on third-party services. Their privacy practices are governed by their own policies. We are not responsible for third-party practices.

17) Changes to This Privacy Notice

We may update this Privacy Notice from time to time. The updated version will be posted with a new “Last Updated” date. Continued use of the Services after changes means you accept the updated Notice.

18) Contact

Email: [email protected]
Subject line: “Privacy”