Privacy Policy
Last updated: 10 November 2025. SpecVocTrainKB respects the confidentiality of mission-driven organizations. This Privacy Policy outlines how we handle personally identifiable information, operational data, and anonymized telemetry generated through our platform and services.
Information we collect
We collect only the data required to provide secure knowledge services and fulfil contractual obligations.
- Account information: Names, work emails, organization details, and role-based access preferences.
- Operational telemetry: Session metrics, training progress, and scenario performance collected for readiness analytics.
- Support intake: Incident descriptions, deployment context, and attachment data submitted to our support desks.
- Integrations: API payloads exchanged with approved systems (e.g., LMS, HRIS) in accordance with client configurations.
How we use information
- Deliver tailored learning paths, certification tracking, and readiness dashboards.
- Operate immersive labs, analytics engines, and support channels with appropriate access controls.
- Improve platform stability, detect anomalies, and comply with audit or regulatory requirements.
- Provide clients with anonymized trend reports to refine mission training strategies.
We do not sell personal data. Any disclosure to third parties occurs only under contractual confidentiality agreements or when mandated by law.
Data retention & security
SpecVocTrainKB employs encryption at rest and in transit, segmented hosting zones, and least-privilege role assignments. Retention periods are defined by contractual terms, regulatory obligations, and legitimate business needs.
- Mission telemetry is retained for up to 24 months unless clients request earlier deletion.
- Support records are archived for 36 months to maintain service continuity and auditability.
- Access logs are monitored continuously for security incident response.
Your choices
- Request access, correction, or deletion of personal data via `kiaradelma@gmail.com`.
- Update notification preferences and data sharing settings within the admin console.
- Invoke contractual data processing addenda to align with jurisdictional requirements.
For clients operating within GDPR, CCPA, or similar frameworks, we provide supplementary agreements addressing controller and processor responsibilities.
Contact
Questions about this Privacy Policy can be directed to our Data Protection Office at `kiaradelma@gmail.com`. We respond to verified requests within 30 days or sooner when mandated.