Privacy Policy

Last Updated: August 12, 2025

This Privacy Policy describes how Secure Habits (“we,” “us,” or “our”) collects, uses, and shares information when you use https://securehabits.online (the “Site”) and related services. Secure Habits is delivered by Cerberus Security Consulting, LLC.

Who We Are

Website: https://securehabits.online
Owner/Operator: Cerberus Security Consulting, LLC (“Secure Habits”)
Contact Email: matthew.brown@cerberusmonitoring.com

What We Collect

  • Contact Forms & Lead Forms: Name, email, organization, and any message you submit. After a successful submission your browser may be redirected to URLs containing ?sent=1 or ?psent=1 to confirm delivery.
  • Email Sign-Ups: Name and email when you subscribe to our newsletter or download resources (lead magnets).
  • Analytics Data: Via Google Analytics 4 (and optionally Google Tag Manager), we receive pseudonymous information such as page views, approximate location (city/region), device/browser type, and on-site actions. IP addresses may be processed by Google to derive location and for security/anti-abuse purposes.
  • Support/Correspondence: Any info you provide when you email us.

Cookies & Tracking

We use cookies and similar technologies to operate the Site and understand usage:

  • Essential/Functional Cookies: Basic WordPress cookies (e.g., login/session, editor preferences). Rank Math may set functionality cookies but does not profile users for ads.
  • Analytics Cookies: Google Analytics 4 may set cookies like _ga and _ga_* to measure traffic and usage.

You can control cookies via your browser settings. You can also use Google’s opt-out add-on: https://tools.google.com/dlpage/gaoptout.

How We Use Your Information

  • To respond to inquiries and deliver requested materials (e.g., downloadable guides).
  • To send newsletters and updates (only if you opt in; you may unsubscribe at any time).
  • To measure and improve Site performance and content.
  • To maintain Site security and prevent abuse.

Form Submissions & Redirect Parameters

When a form is submitted successfully, we may redirect to a confirmation URL that includes ?sent=1 or ?psent=1. We use these parameters to measure successful submissions in analytics. No additional personal information is stored in the URL.

Embedded Content & External Links

Articles on this Site may include embedded content (e.g., videos, images, posts). Embedded content from other websites behaves as if you visited the other website directly and may collect data, use cookies, and track your interaction according to that site’s privacy policy.

Who We Share Your Data With

  • Hosting: EasyWP (Namecheap) hosts this Site and processes data to serve it securely and reliably.
  • Analytics: Google Analytics 4 (and optionally Google Tag Manager) processes usage data on our behalf.
  • Email Service Provider: If you subscribe or download resources, your name and email may be processed by our email platform (e.g., MailerLite/ConvertKit) to deliver emails and manage subscriptions.
  • E-commerce / Fulfillment: If we sell digital products via Payhip or a similar platform, your purchase and payment info are processed by those providers directly under their privacy policies.

We do not sell your personal information. We disclose information only as necessary to operate the Site, deliver requested services, comply with law, or protect our rights.

How Long We Retain Your Data

  • Contact/Lead Forms: Retained as long as needed to respond and maintain records; routinely reviewed and pruned.
  • Email Subscribers: Retained until you unsubscribe or request deletion.
  • Analytics: GA4 data retention follows our Google Analytics settings (commonly 2–14 months for event-level data).
  • Comments/Accounts: If enabled in the future, comments and user profiles may be retained per WordPress defaults and legal/operational needs.

Your Rights & Choices

Depending on your location, you may have rights to access, correct, delete, or restrict processing of your personal information, and to object to certain processing. You can also request a copy of your data. To exercise these rights, email us at matthew.brown@cerberusmonitoring.com.

  • Marketing Emails: Use the unsubscribe link in any email or contact us.
  • Analytics Opt-Out: See Google’s browser add-on: GA Opt-Out.

GDPR (EEA/UK) Information

Legal bases for processing may include consent (e.g., newsletters), contract performance (providing requested resources), and legitimate interests (analytics, site security). Where required, we rely on consent for non-essential cookies/analytics. You may withdraw consent at any time.

Data may be transferred outside your country, including to the United States. We take steps to ensure appropriate safeguards are in place (e.g., standard contractual clauses implemented by our processors).

California Privacy Notice (CCPA/CPRA)

We do not “sell” or “share” personal information as defined by California law. California residents may request access, correction, or deletion of personal information by emailing matthew.brown@cerberusmonitoring.com. To submit a “Do Not Sell or Share My Personal Information” request, contact the same email.

Children’s Privacy

Our Site and services are intended for use by adults and organizations. We do not knowingly collect personal information from children under 13. If you believe a child has provided personal information to us, please contact us and we will take appropriate action.

Security

We use reasonable administrative, technical, and physical safeguards appropriate to the nature of the information processed. No method of transmission or storage is 100% secure, and we cannot guarantee absolute security.

Changes to This Policy

We may update this Privacy Policy from time to time. The “Last Updated” date reflects the most recent changes. Continued use of the Site after changes are posted indicates your acceptance of the updated policy.

Contact Us

For privacy questions or requests, please email: matthew.brown@cerberusmonitoring.com

Note: This policy is provided for informational purposes and does not constitute legal advice. If you have specific compliance obligations (e.g., HIPAA, FERPA, or contractual requirements), consult with counsel to tailor this policy to your organization.