Phish Insight data is hosted in an AWS Datacenter in Dublin, Ireland.
You have full control over the data you upload into Phish Insight. To launch a phishing simulation or training program, you will have to upload the email address and name of the recipient at a minimum. We will then report whether the email was opened, clicked on or credentials entered. Similarly, for training campaigns, we will report on the user's training completion status. For more detail on this please click here.
Employee data that is uploaded in to Phish Insight is not used for any marketing purposes. The only person that will be contacted by Trend Micro is the individual who signed up for the service.
If you have not used the product for a duration of three years we will irreversibly obfuscate your data. A customer can request to have their data obfuscated at any time.