About Training Support Contact Us
Customer Data Privacy Policy

Purpose

Red Team Thinking is committed to protecting the privacy, confidentiality, and security of the information entrusted to us by our customers. This policy outlines how we collect, use, safeguard, and retain customer information in the course of conducting our business.

Scope

This policy applies to all employees, contractors, consultants, and other authorized individuals who access customer information while performing work on behalf of Red Team Thinking.

Information We Collect

We collect only the information reasonably necessary to conduct our business and provide our products and services. Depending on the nature of the engagement, this may include:

  • Customer and participant names

  • Company and job title

  • Business email addresses and telephone numbers

  • Billing contact information and transaction records

  • Customer communications

  • Training registration and participation information

  • Information voluntarily provided by customers during the course of business

We do not intentionally collect sensitive personal information unless it is required for a specific business purpose and has been appropriately authorized.

Billing and Payment Information

Red Team Thinking does not store customer payment card information on its systems.

Payment processing is performed by trusted third-party payment service providers. These providers are responsible for collecting, processing, storing, and protecting payment information in accordance with applicable industry security standards, including the Payment Card Industry Data Security Standard (PCI DSS), where applicable.

Red Team Thinking receives only the information necessary to confirm payment, maintain accounting records, provide customer support, and fulfill contractual obligations.

Use of Customer Information

Customer information is used solely for legitimate business purposes, including:

  • Delivering products and services

  • Managing customer relationships

  • Processing registrations and orders

  • Providing customer support

  • Communicating regarding products, services, and events

  • Maintaining business and financial records

  • Meeting legal, contractual, and regulatory obligations

  • Improving our products and services

Red Team Thinking does not sell customer personal information.

Sharing of Customer Information

Customer information is shared only when necessary to:

  • Deliver contracted products or services

  • Process payments through authorized third-party providers

  • Work with trusted service providers acting on our behalf

  • Comply with applicable laws or legal processes

  • Protect the rights, safety, or security of our customers or our company

When third-party providers process customer information on our behalf, they are expected to maintain appropriate confidentiality and security safeguards.

Information Security

Customer information is treated as confidential and is never disclosed outside Red Team Thinking except as required to deliver contracted services, comply with legal obligations, or with the customer's authorization.

Red Team Thinking maintains reasonable administrative, technical, and physical safeguards designed to protect customer information against unauthorized access, disclosure, alteration, or destruction.

Security measures may include:

  • Role-based access controls

  • Password-protected systems

  • Multi-factor authentication where available

  • Secure cloud-based business applications

  • Encryption of data in transit where supported

  • Regular software updates and security maintenance

Access to customer information is limited to individuals who require it to perform their assigned responsibilities.

Data Retention

Customer information is retained only for as long as necessary to:

  • Deliver products and services

  • Meet contractual obligations

  • Satisfy legal, accounting, tax, or regulatory requirements

  • Resolve disputes

  • Enforce contractual agreements

When customer information is no longer required, it is securely deleted or destroyed when practical and appropriate.

Customer Rights

Where required by applicable law, customers may request to:

  • Access their personal information

  • Correct inaccurate information

  • Request deletion of personal information

  • Restrict certain processing activities

  • Withdraw consent where processing is based on consent

Requests should be submitted using the contact information provided below.

Security Incident Response

Any suspected unauthorized access, disclosure, or loss of customer information must be reported immediately to company management.

Red Team Thinking will investigate security incidents promptly and will provide any notifications required under applicable laws or contractual obligations.

Employee Responsibilities

All personnel with access to customer information are expected to:

  • Maintain the confidentiality of customer information

  • Use customer information only for authorized business purposes

  • Follow all applicable security policies and procedures

  • Report suspected privacy or security incidents promptly

Failure to comply with this policy may result in disciplinary action or termination of contractual relationships.

Policy Review

This policy will be reviewed periodically and updated as business practices, technology, legal requirements, or regulatory obligations evolve.

Contact Information

Questions regarding this policy or our handling of customer information may be directed to:

Privacy Officer
Red Team Thinking
Email: support@redteamthinking.com
Website: https://www.redteamthinking.com