XT2
XT2 GROUPS
Security Standards Background
Legal Documentation

Privacy Policy

We value your privacy. This policy outlines how we collect, use, and protect your personal information.

Last Updated: January 2026
01

Overview

This Privacy Policy explains how XT2 Groups collects, uses, shares, and protects personal information when you visit our website, contact us, use our services (IT security, audit & compliance, technical security services), or participate in our training.

02

Scope

This policy applies to:

  • Visitors to our website
  • Prospective and current customers and client representatives
  • Training participants and learners
  • People who contact us by email, phone, forms, or social media
03

Information We Collect

We may collect the following categories of personal information:

A. Information you provide

  • Name, company name, job title
  • Email, phone number, address
  • Inquiry details, messages, support requests
  • Training registration details (attendance, completion status)

B. Information collected automatically

  • Device and browser data (IP address, device type, operating system)
  • Website usage data (pages visited, time spent, clicks)
  • Cookies and similar technologies (see Section 7)

C. Information from business clients (during services)

When delivering security services or audits, we may process limited personal data contained in client systems (e.g., user IDs, business emails, access logs) only as necessary to provide contracted services and under the client’s instructions.

04

How We Use Information

We use personal information to:

  • Provide and manage our services and training
  • Respond to inquiries and provide support
  • Send service updates, proposals, and administrative messages
  • Manage registrations, attendance, and training communications
  • Improve our website, services, and security
  • Maintain safety, prevent fraud, and protect our systems
  • Meet legal and contractual obligations
06

Sharing of Information

We may share personal information with:

  • Service providers who help operate our business (hosting, email, analytics, CRM, training platforms)
  • Payment processors for transactions (if applicable)
  • Professional advisors (lawyers, auditors, accountants) when necessary
  • Authorities if required by law or to protect rights and safety
  • Business transfers if we merge, restructure, or sell assets
Note We do not sell your personal information.
07

Cookies & Analytics

We may use cookies and analytics tools to understand website usage and improve performance. You can control cookies through your browser settings. If required by law in your region, we will display a cookie banner and request consent for non-essential cookies.

08

Data Security

We use reasonable administrative, technical, and physical safeguards to protect personal information. However, no method of transmission or storage is 100% secure.

09

Data Retention

We keep personal information only as long as necessary for:

  • Service delivery and training administration
  • Legal, accounting, and security needs

* Retention periods may vary depending on the purpose and legal obligations.

10

Your Rights

Depending on your location, you may have rights to:

  • Access, correct, or delete your personal information
  • Object to or restrict processing
  • Withdraw consent (where processing is based on consent)
  • Request a copy of your data (data portability)
11

International Transfers

If your information is transferred to another country, we take steps to protect it using appropriate safeguards where required.

Questions about our privacy policy?

Our team is here to help clarify any concerns.
Contact Us