Data Protection and Cybersecurity Statement

DATA PROTECTION AND CYBERSECURITY STATEMENT

Enigma Business School (EBS) is committed to ensuring the privacy, security, and protection of all data entrusted to us by students, faculty, staff, alumni, partners, and website visitors. As a global online institution, EBS upholds rigorous standards in safeguarding personal information and maintaining a secure digital learning environment.

This statement outlines EBS’s principles, responsibilities, and technological measures for protecting data and ensuring cybersecurity across all platforms, including the Virtual Campus, Student Portal, Tutor LMS Pro, and official communication systems.

OUR COMMITMENT TO DATA PROTECTION

EBS adheres to internationally recognized data protection principles, including:

  • Lawfulness, fairness, and transparency

  • Purpose limitation (data used only for legitimate academic or administrative purposes)

  • Data minimization (collecting only what is necessary)

  • Accuracy and regular updates

  • Storage limitation with controlled retention periods

  • Integrity and confidentiality through strong security measures

EBS respects the privacy rights of all users and does not share personal data with third parties except as required for academic delivery, payment processing, legal compliance, or student-requested services.

TYPES OF DATA WE COLLECT

EBS may collect and process the following categories of personal data:

1. Academic Data

  • Enrollment records

  • Assignments, quizzes, and exam submissions

  • Transcript and certification information

  • Learning progress through LMS

2. Personal Identification Data

  • Name, nationality, date of birth

  • Contact details (email, phone number)

  • Identification documents submitted for verification

3. Financial Data

  • Tuition payments

  • Transaction information

  • Billing details (processed securely via payment gateways)

4. Technical & Usage Data

  • IP address and device information

  • Login activities

  • Interaction data within LMS

  • Browser and system performance logs

5. Communication Records

  • Emails, support tickets, and academic correspondence

All data is processed for academic, administrative, and operational purposes only.

DATA STORAGE AND SECURITY CONTROLS

EBS employs advanced security measures to protect stored data, including:

Encryption

  • All data transmitted between user devices and EBS servers is encrypted using SSL/TLS protocols.

  • Sensitive information is stored using industry-standard encryption methods.

Secure Servers

  • Academic and administrative data are hosted on secure cloud platforms with restricted access.

  • Regular vulnerability assessments are performed.

Access Control

  • Role-based access ensures data is only accessible to authorized staff.

  • Multi-factor authentication (MFA) may be required for specific administrative functions.

Backups and Recovery

  • Redundant backups ensure data continuity.

  • Disaster recovery protocols allow rapid restoration in case of system failure.

Monitoring and Threat Detection

  • Real-time monitoring tools detect unusual login behavior, brute-force attempts, or suspicious activities.

  • Automated alerts notify administrators of potential threats.

CYBERSECURITY IN THE LEARNING ENVIRONMENT

To maintain a secure virtual academic ecosystem, EBS implements:

  • Protected LMS environment with secure login

  • Restricted exam access and identity verification

  • AI-based plagiarism and integrity monitoring tools

  • Secure portals for certificate and degree verification

  • Authenticated communication channels using official institutional domains

EBS continuously upgrades its systems to counter emerging cybersecurity risks.

STUDENT AND USER RESPONSIBILITIES

While EBS provides strong protection mechanisms, users share responsibility for maintaining security by:

  • Keeping login credentials confidential

  • Changing passwords regularly

  • Avoiding file-sharing or unauthorized access

  • Ensuring personal devices are protected with antivirus software

  • Reporting suspicious activity immediately

Users must refrain from:

  • Hacking or attempting unauthorized system access

  • Sharing academic or confidential data without permission

  • Using VPNs or anonymizers to manipulate exam conditions

  • Engaging in fraudulent digital activities

Violations may lead to disciplinary or legal consequences.

THIRD-PARTY SERVICES AND DATA PROCESSING

EBS partners with trusted third-party providers for:

  • Payment processing (PayPal, Wise, Stripe, credit card gateways)

  • LMS infrastructure

  • Cloud hosting

  • Verification systems

All partners comply with international data security standards and are contractually obligated to protect EBS data.

EBS does not sell, trade, or disclose personal data to unauthorized third parties.

DATA RETENTION POLICY

Data is retained only for as long as necessary to:

  • Fulfill academic and administrative requirements

  • Satisfy legal obligations

  • Maintain academic records for verification

Certain records, such as transcript data, may be stored indefinitely to support alumni verification.

INCIDENT RESPONSE AND BREACH MANAGEMENT

In the event of a data breach or cybersecurity incident, EBS will:

  1. Immediately investigate the breach

  2. Contain and mitigate the impact

  3. Notify affected users promptly

  4. Take corrective action to prevent recurrence

  5. Report serious incidents to regulatory authorities (if applicable)

EBS maintains a formal Cybersecurity Response Protocol for rapid resolution.

USER RIGHTS REGARDING PERSONAL DATA

Students and users may request:

  • Access to their personal data

  • Correction of inaccurate information

  • Deletion of data (where applicable)

  • Restriction of processing

  • Explanation of how their data is used

Requests can be made through Academic Services or Data Protection Support.

INSTITUTIONAL STATEMENT

EBS is fully committed to upholding the highest standards of data protection and cybersecurity. As a global online business school, maintaining a secure digital environment is essential to academic integrity, institutional credibility, and student trust.

Through proactive governance, continuous technological improvement, and a shared commitment to responsibility, EBS ensures that every member of its global community can learn, work, and grow in a safe and secure digital space.

Enigma Business School (EBS)