PhishTrainer: The Phishing Simulation Platform Developed and Hosted in Switzerland
- May 22, 2025
- Updated on:
- Temps de lecture: 5 min
Phishing is the most widespread cyber threat in business: according to the Verizon Data Breach Investigations Report 2024, more than 90% of data breaches begin with a fraudulent email. The consequences are measurable—direct financial losses, theft of confidential data, damage to reputation, business interruption—and the average cost of a data breach reaches $4.45 million globally (IBM Cost of a Data Breach Report, 2023). Faced with increasingly sophisticated and targeted attacks, technical solutions alone cannot intercept all threats. Continuous employee training has become a strategic imperative.
It is in this context that we are launching PhishTrainer, a phishing simulation platform designed, developed, and hosted in Switzerland, in Neuchâtel, to strengthen the vigilance of your teams in a concrete and measurable way.
Why has anti-phishing training become essential?
Anti-phishing training is a practical training program that exposes employees to simulations of fraudulent emails in a secure environment, in order to develop their detection and reporting reflexes. Unlike theoretical training, it relies on real-life simulations to durably anchor good behaviors.
| Threat | Without training | With continuous training |
|---|---|---|
| Click rate on a phishing email | ~30% of employees (Proofpoint, 2024) | Reduction of up to 82% after 12 months (KnowBe4, 2023) |
| Time to detect an intrusion | 207 days on average (IBM, 2023) | Significantly reduced by proactive reporting |
| Average cost of a breach | $4.45M (IBM, 2023) | Reduced by decreasing successful incidents |
Key figure: Organizations that train their employees at least once per quarter reduce their phishing vulnerability rate by 82% in one year (KnowBe4 Phishing Industry Benchmarks, 2023).
PhishTrainer: Transform your employees into detection experts
PhishTrainer is a SaaS phishing simulation platform that allows IT and security teams to design, deploy, and analyze simulated phishing campaigns with their employees, without real risk to the organization. The platform covers the entire awareness cycle: simulation, training at the time of the error, measurement, and continuous improvement.
Key features
- Ultra-realistic simulations: Create your own phishing scenarios or select from a library of customizable email and landing page templates. Mimic well-known brands or internal communications, and adjust the level of difficulty according to the maturity of your teams.
- Targeted and planned campaigns: Segment your employees by department, function, or risk level. Plan your campaigns in advance and track their progress in real-time from a centralized dashboard.
- Detailed analysis of results: Get accurate statistics by employee and group—open rate, click rate, data submission rate, and especially active reporting rate via the integrated IMAP module.
- Simplified access management: Create and manage the rights of different administrators and managers within your organization from a unified interface.
The PhishTrainer advantage: data sovereignty, confidentiality, and integration
| Commitment | What this means in concrete terms |
|---|---|
| Developed and hosted in Switzerland | Data stored exclusively in Neuchâtel, under the protection of Swiss law (LPD). No transfer to foreign servers. |
| Client-side encryption | Option that can be activated for sensitive data (names, first names, emails of targets). You alone hold the decryption key—PhishTrainer never accesses this data in clear text. |
| IMAP Report (beyond the click) | Identifies and values employees who actively report suspicious emails, offering a complete measure of the organization's cybersecurity maturity. |
| Integration via webhooks | Real-time notifications to your internal systems (SIEM, chat tools, ticketing) for each action recorded during a campaign. |
Who is PhishTrainer for?
PhishTrainer is designed for all organizations wishing to reduce their exposure to phishing risk and meet their regulatory obligations regarding security training:
- SMEs: accessible solution, without complex infrastructure to deploy
- Large companies: large-scale segmented campaigns, SIEM integration
- Public administrations: Swiss hosting and LPD compliance guaranteed
Whether you are a CISO, IT manager, HR manager, or executive, PhishTrainer provides you with concrete indicators to manage your awareness program and demonstrate its effectiveness.
Frequently Asked Questions
What is PhishTrainer?
PhishTrainer is a Swiss SaaS phishing simulation platform that allows organizations to test and train their employees against phishing attempts, via fully customizable realistic campaigns, with detailed analysis of results and tracking of active reporting.
Where is PhishTrainer data hosted?
The data is hosted exclusively in Switzerland, in Neuchâtel, under the protection of the Swiss legal framework (LPD — Federal Law on Data Protection). No transfer to servers located abroad is carried out.
What is the client-side encryption offered by PhishTrainer?
Client-side encryption is an advanced privacy option: when activated, sensitive data (identity and email of targets, data entered in simulated forms) is encrypted with a key that only the client holds. PhishTrainer cannot access this data in clear text.
How to measure the effectiveness of a PhishTrainer campaign?
PhishTrainer provides detailed statistics: open rate, click rate, data submission rate and, thanks to the Report IMAP module, active reporting rate of suspicious emails. These indicators make it possible to monitor the progress of the cybersecurity maturity of each group of employees over time.
Is PhishTrainer suitable for SMEs?
Yes. PhishTrainer is designed to be accessible without complex technical infrastructure. SMEs can deploy their first campaigns quickly, with ready-to-use templates and a simplified management interface.
To discover all the features of PhishTrainer or request a personalized demonstration, visit www.bexxo.ch or access the demonstration version directly on www.phishtrainer.com.
