Privacy Policy

Protecting your data is at the core of what we do. This policy explains how O-Range Cybersecurity collects, uses, and protects your information in compliance with NDPR and GDPR regulations.

Last Updated: December 2025

1. Introduction

Welcome to O-Range Cybersecurity Training & Services Hub ("we," "our," "us"). We are committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website o-rangecybersecurity.com or use our services.

We comply with the Nigeria Data Protection Regulation (NDPR) 2019, the General Data Protection Regulation (GDPR), and other applicable data protection laws. By using our services, you consent to the data practices described in this policy.

Our Commitment

As a cybersecurity company, data protection is not just a legal requirement for us—it's our core expertise and commitment to you.

2. Information We Collect

We collect information that you provide directly to us and automatically when you use our services:

2.1 Information You Provide:

  • Contact Information: Name, email address, phone number
  • Account Information: Username, password (encrypted)
  • Service Information: Course enrollment details, service requests
  • Payment Information: Transaction details (processed securely by third-party processors)
  • Communication Data: Messages, emails, support requests

2.2 Information Collected Automatically:

  • Technical Data: IP address, browser type, device information
  • Usage Data: Pages visited, time spent, click patterns
  • Cookies Data: Session cookies, preference cookies (see Cookie Policy below)

2.3 SIM Verification Data:

For our SIM Verification Service, we collect:

  • Phone number for verification purposes
  • Verification reason (suspected recycling, security concerns, etc.)
  • Network type detection
  • Timestamp of verification request

3. How We Use Your Information

Purpose Legal Basis
To provide and maintain our services Contractual necessity
To process payments and prevent fraud Legitimate interest
To communicate with you (updates, support) Consent/Contractual necessity
To improve our website and services Legitimate interest
To comply with legal obligations (NDPR/GDPR) Legal obligation
To provide SIM verification services Consent
To send marketing communications (with consent) Consent

4. Data Sharing and Disclosure

We do not sell your personal data. We may share information with:

  • Service Providers: Payment processors, email services, analytics providers
  • Legal Authorities: When required by law or to protect our rights
  • Business Transfers: In case of merger, acquisition, or asset sale
  • With Your Consent: When you explicitly agree to sharing

International Transfers

Your data may be transferred to and processed in countries outside Nigeria. We ensure adequate safeguards are in place, including Standard Contractual Clauses and data protection agreements.

5. Data Security

As cybersecurity experts, we implement robust security measures:

  • Encryption: SSL/TLS encryption for data in transit
  • Access Controls: Role-based access to sensitive data
  • Regular Audits: Security assessments and penetration testing
  • Employee Training: Regular data protection training
  • Incident Response: Breach notification procedures in place

Despite our best efforts, no security system is impenetrable. We cannot guarantee absolute security but we continuously work to protect your data.

6. Data Retention

We retain personal data only as long as necessary:

  • Active Clients: Data retained while you use our services + 3 years
  • Course Participants: Training records kept for 5 years
  • SIM Verification Data: Retained for 1 year for audit purposes
  • Marketing Data: Until consent is withdrawn
  • Legal Requirements: As required by Nigerian law

7. Your Data Protection Rights

Under NDPR and GDPR, you have the following rights:

Your Rights Include:

  • Right to Access: Request copies of your personal data
  • Right to Rectification: Correct inaccurate or incomplete data
  • Right to Erasure: Request deletion of your data ("right to be forgotten")
  • Right to Restrict Processing: Limit how we use your data
  • Right to Object: Object to certain processing activities
  • Right to Data Portability: Receive your data in a structured format
  • Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, contact us at dpo@o-rangecybersecurity.com. We respond within 30 days as required by law.

8. Cookies Policy

We use cookies and similar tracking technologies:

8.1 Types of Cookies:

  • Essential Cookies: Necessary for website functionality
  • Analytics Cookies: Help us understand website usage
  • Preference Cookies: Remember your settings
  • Marketing Cookies: Used for advertising (with consent)

8.2 Cookie Management:

You can control cookies through your browser settings. Our cookie consent banner allows you to choose which cookies to accept. Note that disabling essential cookies may affect website functionality.

9. Children's Privacy

Our services are not directed to individuals under 18. We do not knowingly collect data from children. If you believe a child has provided us with personal data, please contact us immediately.

10. Third-Party Links

Our website may contain links to third-party sites. We are not responsible for their privacy practices. We encourage you to review their privacy policies.

11. Changes to This Privacy Policy

We may update this policy periodically. We will notify you of significant changes via email or website notice. The "Last Updated" date at the top indicates when changes were made.

Contact Our Data Protection Officer

For privacy-related inquiries or to exercise your rights:

Email: dpo@o-rangecybersecurity.com

Phone: +234 9034 847995

Address: 23 Taiwo Akinsanya St, Isolo, Lagos, Nigeria

Contact Us