PhishFortress
    Features

    Phishing Simulation

    Test employee awareness with realistic phishing campaigns

    Security Training

    Interactive modules to educate your team

    Threat Detection

    AI-powered detection of sophisticated phishing attempts

    Incident Response

    Automated workflows to contain and remediate threats

    Solutions

    Financial Services

    Protect sensitive financial data and customer trust

    Healthcare

    Secure patient data and medical systems

    Government

    Defend critical infrastructure and sensitive data

    Education

    Protect student data and research

    Enterprise

    Comprehensive protection for large organizations

    Pricing
    Resources

    Blog

    Latest insights on phishing and security

    Documentation

    Detailed guides and API references

    Webinars

    Educational sessions with security experts

    Case Studies

    Success stories from our customers

    About
    Sign inSign up free

    Privacy Policy

    PhishFortress Data Protection & Privacy Statement

    Last Updated: February 2024

    1. Introduction

    PhishFortress ("we", "our", or "us") operates the phishing simulation and detection platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our Service.

    We are committed to protecting your privacy and ensuring transparent data practices. This policy applies to all data collected through PhishFortress, including account information, campaign data, user engagement metrics, and threat intelligence.

    2. Compliance Framework

    PhishFortress operates in compliance with:

    • GDPR (General Data Protection Regulation) for EU residents
    • CCPA/CPRA for California residents
    • SOC 2 Type II certification requirements
    • HIPAA standards for healthcare data where applicable
    • Local and international data protection laws
    3. Data Controller vs. Processor

    Your Organization is the Data Controller. You determine the purposes and means of processing personal data in phishing simulations.

    PhishFortress is the Data Processor. We process data on your behalf according to your instructions and this Privacy Policy. We execute a Data Processing Agreement (DPA) with all enterprise customers.

    This Privacy Policy is designed specifically for PhishFortress security awareness platform. Your privacy is important to us.

    PhishFortress

    Protecting organizations from sophisticated phishing attacks with AI-powered detection, simulation, and response capabilities.

    Product

    • Features
    • Pricing
    • Security
    • Enterprise
    • Customer Stories

    Resources

    • Documentation
    • Guides
    • API Reference
    • Blog
    • Community

    Company

    • About Us
    • Careers
    • Contact
    • Partners

    © 2026 PhishFortress. All rights reserved.

    Privacy PolicyTerms of ServiceCookie PolicyData Processing Agreement