RNT Cyber Academy Privacy Policy (EU‑inclusive)

Last updated: 9 March 2026

1. Introduction

RNT Cyber Academy (“we,” “us,” “our”) is committed to protecting the privacy and security of visitors to our website (“Site”) and individuals who inquire about or enroll in our programs. This Privacy Policy explains how we collect, use, disclose, and protect your information when you use our Site or interact with us, including if you are located in the European Economic Area (EEA), the United Kingdom (UK), or other regions with data protection laws such as the EU General Data Protection Regulation (“GDPR”).

By using this Site, you agree to the practices described in this Privacy Policy.

2. Data Controller and Contact Details

For purposes of GDPR and similar laws, the data controller is:

RNT Cyber Academy, LLC
3030 Northwest Expressway, Suite 200, Oklahoma City, OK 73112
privacy@RNTCyberAcademy.com
405.779.7148

If we appoint a Data Protection Officer (DPO) or EU/UK representative, we will list their contact details here.

3. Information We Collect

We may collect the following categories of personal data:

Identification and contact information: Name, email address, phone number, mailing address, employer or organization, job title.

• Educational and professional information: Course interests, enrollment history, certifications pursued, completion status, professional background, training objectives.
• Account and communication information: Login details (if applicable), preferences, inquiries, feedback, survey responses, event registrations.
• Payment and billing information: Limited billing details (e.g., invoicing info, transaction identifiers). Full card data, if collected, is processed by third‑party payment processors, not stored by us.
• Technical and usage data: IP address, browser type, device identifiers, operating system, pages visited, referring pages, time and date of visits, and similar analytics data collected via cookies and similar technologies.

We may receive information directly from you (for example, when you fill out a form or enroll) or indirectly from third parties such as analytics providers, marketing partners, or certification bodies.

4. Legal Bases for Processing (GDPR/EEA/UK)

Where GDPR or similar laws apply, we process personal data on the following legal bases:

• Consent: For example, sending certain marketing emails, using non‑essential cookies/analytics, or collecting optional information where you explicitly agree.
• Contract: To process enrollments, deliver training, manage your account, and provide related support.
• Legal obligation: To comply with laws, accreditation rules, accounting and tax requirements, or regulatory requests.
• Legitimate interests: To improve our Site and services, secure our systems, prevent fraud, and communicate with current or prospective learners and partners, provided your rights and freedoms do not override these interests.

Where we rely on consent, you may withdraw your consent at any time as described in this Policy.

5. How We Use Your Information

We use personal data for the following purposes:

• To respond to inquiries, provide information about our programs, and communicate with you.
• To process applications and enrollments, manage course registrations, deliver training services, and provide learner support.
• To send administrative messages (e.g., confirmations, reminders, updates, policy changes).
• To send marketing communications about programs, certifications, events, and partnership opportunities, where permitted by law and your preferences.
• To conduct analytics, improve the Site, optimize user experience, and develop new programs.
• To comply with legal, regulatory, accreditation, and contractual obligations.
• To maintain the security, integrity, and availability of our systems and learning environment.

6. Cookies and Similar Technologies

Our Site uses cookies and similar technologies. We group them into the following categories:

• Strictly necessary cookies: Required for core site functionality (e.g., security, page navigation, basic forms). These are always active and do not require consent.
• Analytics cookies: Help us understand how visitors use the Site so we can improve performance and content (e.g., page views, time on page).
• Functional cookies: Remember choices and settings (e.g., language preference) to enhance your experience.
• Marketing / advertising cookies: Used to deliver relevant content or ads and measure campaign effectiveness, where applicable.

For visitors in the EEA/UK and other regions where consent is required, we will only set non‑essential (analytics, functional, marketing) cookies after you provide consent via our cookie banner or preference center. You can change or withdraw your consent at any time using the “Cookie Settings” link available in the website footer.

Your browser may allow you to block or delete cookies, but doing so may affect certain features of the Site.

7. How We Share Your Information

We do not sell your personal data. We may share data as follows:

• Service providers: With third‑party vendors who help us operate the Site, process payments, send communications, perform analytics, host learning platforms, or deliver training, under appropriate contracts and data protection safeguards.
• Certification and partner organizations: With certification bodies (such as EC‑Council and other credentialing organizations) and partners as necessary to register you for exams, confirm eligibility, deliver training, or report completion status.
• Legal/regulatory: Where required by law, regulation, subpoena, court order, or government request, or to protect our rights, property, safety, or that of our learners, staff, or partners.
• Business transfers: In the context of a merger, acquisition, reorganization, or similar event, subject to appropriate safeguards.

Where we share personal data with third parties outside the EEA/UK, we implement appropriate transfer safeguards, such as Standard Contractual Clauses, as required by law.

8. International Data Transfers

Because we are based in the United States, your personal data may be transferred to and processed in countries outside the EEA/UK that may not provide the same level of data protection. When we transfer personal data from the EEA/UK, we rely on appropriate safeguards such as Standard Contractual Clauses or other approved mechanisms, and we implement additional protections where necessary.

9. Data Security

We use reasonable technical and organizational measures to protect personal data against unauthorized access, disclosure, alteration, or destruction. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.

10. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes described in this Policy, including meeting legal, regulatory, accounting, or reporting obligations, resolving disputes, and enforcing our agreements. Retention periods may vary depending on the type of data and applicable requirements.

11. Your Rights

Depending on your location (for example, within the EEA, UK, or certain U.S. states), you may have the following rights regarding your personal data:

• Right of access to your personal data and information about how we process it.
• Right to rectification of inaccurate or incomplete data.
• Right to erasure (“right to be forgotten”) in certain circumstances.
• Right to restriction of processing in certain circumstances.
• Right to data portability, where applicable.
• Right to object to certain processing, including direct marketing.
• Right to withdraw consent at any time where processing is based on consent (this does not affect processing carried out before withdrawal).

To exercise these rights, please contact us using the details in Section 2. We may need to verify your identity before responding. You also have the right to lodge a complaint with your local data protection authority, particularly in the EEA/UK.

12. Children’s Privacy

Our Site and services are not directed to children under 13, and we do not knowingly collect personal data from children under 13. If we learn that we have collected such data, we will delete it as soon as reasonably practicable.

13. Do Not Track and Global Privacy Control

Some browsers and extensions send “Do Not Track” (DNT) or Global Privacy Control (GPC) signals. Where required by applicable law, we treat valid GPC or similar signals as an opt‑out of certain types of tracking and/or targeted advertising cookies, to the extent we use them. Our Site does not respond to all DNT signals in a uniform way because there is no standard, but you can manage cookie categories directly through our “Cookie Settings” tool at any time.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will revise the “Last updated” date and may provide additional notice where required by law. Your continued use of the Site after changes are posted signifies your acceptance of the updated Policy.

15. Contact Us

If you have questions about this Privacy Policy or our privacy practices, or wish to exercise your rights, please contact:

RNT Cyber Academy
PO Box 1744

Norman, OK 73070
privacy@rntcyberacademy.com

405.779.7148

Cookie / Tracking Preference Text (Granular Choice)

You can use this text in your cookie banner’s “Manage Preferences” or “Cookie Settings” panel; your web team or CMP will wire the toggles to actual cookies.

Cookie Settings

We use cookies and similar technologies to operate our website, analyze traffic, and support marketing activities. You can choose which categories of data we may use. You may change your preferences at any time by returning to this Cookie Settings panel.

• Strictly Necessary Cookies (Always Active)
  These cookies are essential for the website to function (for example, page navigation, secure login, basic form submissions). You cannot switch them off in our systems, and they do not store information that directly identifies you.
• Analytics Cookies
  These cookies help us understand how visitors use our site so we can measure and improve performance (for example, which pages are most frequently visited).
  [Toggle: On / Off]
• Functional Cookies
  These cookies allow the site to remember your choices and provide enhanced features (for example, saving preferences or improving content relevance).
  [Toggle: On / Off]
• Marketing Cookies
  These cookies may be set by our partners or us to deliver more relevant content or ads and to understand the effectiveness of our campaigns.
  [Toggle: On / Off]

Buttons for the banner (first layer):

• Accept All
• Reject Non‑Essential
• Manage Preferences

This approach—strictly necessary always on, with separate opt‑in toggles for analytics, functional, and marketing cookies, and equal “Accept”/“Reject” prominence—is aligned with current GDPR guidance on granular, freely given consent.

Would you like me to now also tune this text to explicitly reference your main tools (for example, Google Analytics, Meta pixels, email marketing platforms) once you decide which you’re actually using?