The demos on phishing simulation and e-learning (hereinafter: demo) are offered by IT-Seal GmbH, hereinafter IT-Seal (specialist for employee sensibilization through social engineering). Company representatives can thus get to know and test the services of IT-Seal GmbH. 

Phishing simulation process

The phishing demo allows its participants to get a glimpse of IT-Seal’s spearphishing simulation training.

If you want to try IT-Seal’s phishing demo, enter your data in the registration form. After submitting the registration form, we will send you an e-mail with a confirmation link. During the registration process, we will ask for your name, professional e-mail address and phone number.

Furthermore, when you sign up for the phishing demo, you authorize IT-Seal to send you phishing emails during the 7-day period following the completion of your registration, but these emails will not link to dangerous websites or distribute dangerous attachments. The sole purpose of the phishing emails is to direct you to an IT-Seal landing page with further explanations when you click.

When you register, you authorize IT-Seal to conduct research on relevant sites to determine background information about you and your company. This information is used to send you realistic phishing e-mails. Among other things, e-mails may and should be sent in the name of colleagues. We will mark the phishing emails with a banner. These e-mails may only be used by yourself and may not be forwarded – especially not outside the company.

The phishing emails contain a link to a “Teachable Moment”: this is an explanation page from IT-Seal. On this explanation page, the corresponding phishing email is presented again and a short, interactive training is conducted, which educates the participant about the specific phishing trick and the detection features.

After a period of about one week you will receive a call from us in which we would like to briefly discuss with you whether the e-mails arrived, whether you were able to detect them or even fell for them. Furthermore, we would like to find out whether the e-mails corresponded to your expectations: Our emails vary greatly – unfortunately, with only 4 emails, it is not possible to cover the entire spectrum.

Collection and use of data during phishing simulation and e-learning test accesses

The legal basis for the transmission of data is your consent. In the course of the registration, you provide IT-Seal with your name, business e-mail address and telephone number. The purpose of transmitting the data is to test the simulation training or e-learning as well as to enable a member of IT-Seal staff to contact you to discuss the results of the phishing simulation and demo.

The data is deleted as soon as it is no longer required. For the personal data from the demo registration, this is the case when the demo is completed and related queries have been answered and no further contact is required. Mandatory legal provisions – in particular retention periods – remain unaffected.

In addition, you have the right to information, correction, deletion or restriction of the processing of your stored data at any time, a right to object to the processing as well as a right to data portability and to lodge a complaint in accordance with the requirements of data protection law. Details can be found in our Privacy Policy.

To make the phishing demo as realistic as possible, we will research public, generally accessible data about you and your work environment and use it to create the emails. Among other things, names of colleagues will be researched and used, as far as they are publicly and generally available.

By accepting these Conditions of Participation, you agree to be contacted by IT-Seal by phone and email.

For the reliable sending of e-mails, we use the mail relay service provider dnsexit.com, to which we only forward your e-mail address. Beyond that, your data will not be passed on to third parties.