Privacy Policy

Your privacy and data protection are fundamental to how we operate

Last updated: November 5, 2025

Contact Information

Company: Cyber Vault

Address: 42 Franklin Roosevelt Avenue, 3011 Limassol, Cyprus

Email: info@domain.com

Phone: +357 25 924 758

Our Commitment to Data Protection

Cyber Vault is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy explains how we collect, use, store, and protect information you provide when using our website and services. We comply with the General Data Protection Regulation (GDPR) and applicable Cyprus data protection laws.

As a cybersecurity services provider, we understand the critical importance of data protection. This policy reflects our professional commitment to maintaining the highest standards of privacy and security for all information entrusted to us.

Information We Collect

Information You Provide Directly

When you interact with our services, you may voluntarily provide personal information including:

  • Contact Information: Name, email address, phone number, and company name when submitting inquiry forms
  • Communication Data: Content of messages, inquiries, and correspondence with our team
  • Service Information: Details about your security needs, infrastructure, and technical requirements during consultations
  • Professional Information: Job title, industry sector, and organizational details relevant to our services

Information Collected Automatically

When you visit our website, we may automatically collect certain technical information:

  • Device Information: IP address, browser type, operating system, and device identifiers
  • Usage Data: Pages visited, time spent on pages, click patterns, and navigation paths
  • Referral Information: Source of website visits and referring URLs
  • Cookie Data: Information stored through cookies and similar technologies (see our Cookie Policy)

Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: You have given explicit consent for specific processing activities
  • Contract Performance: Processing is necessary for providing services you've requested
  • Legitimate Interest: Processing serves legitimate business interests while respecting your rights
  • Legal Obligation: Processing is required to comply with applicable laws and regulations

How We Use Your Information

We use collected information for specific, legitimate purposes that support our service delivery and business operations:

Service Delivery and Communication

Responding to inquiries, arranging consultations, providing security assessments, delivering requested services, and maintaining ongoing communication about your security needs and our services.

Website Improvement and Analytics

Analyzing website usage patterns, identifying technical issues, improving user experience, optimizing content and navigation, and understanding visitor behavior to enhance our digital presence.

Marketing and Outreach

Sending relevant security updates, service announcements, educational content about cybersecurity topics, and information about our offerings when you've opted in to receive such communications.

Legal Compliance and Security

Maintaining records for legal and regulatory compliance, detecting and preventing fraud, protecting against security threats, enforcing our terms and policies, and responding to legal requests from authorities.

Business Development

Understanding market needs, developing new services, improving existing offerings, conducting research to advance cybersecurity practices, and identifying opportunities to better serve our clients.

Data Sharing and Third Parties

We do not sell your personal data. We may share information with carefully selected third parties under specific circumstances:

  • Service Providers:

    Trusted partners who assist with website hosting, analytics, email communications, and other operational needs. These providers are contractually bound to protect your data and use it only for specified purposes.

  • Professional Advisors:

    Lawyers, accountants, and consultants who require access to information to provide professional services to our organization, all bound by confidentiality obligations.

  • Legal Authorities:

    Government agencies, regulators, or law enforcement when required by law, legal process, or to protect rights, property, or safety.

  • Business Transfers:

    In the event of a merger, acquisition, or sale of assets, your information may be transferred to the new entity, with appropriate protections maintained.

All third parties are carefully vetted and required to maintain appropriate security measures and comply with applicable data protection regulations.

Data Protection Measures

As cybersecurity professionals, we implement comprehensive security measures to protect your data:

Technical Safeguards

  • Encryption of data in transit and at rest
  • Secure server infrastructure with regular updates
  • Firewall protection and intrusion detection
  • Regular security audits and vulnerability assessments
  • Secure backup and disaster recovery procedures

Organizational Safeguards

  • Strict access controls and authentication
  • Staff training on data protection practices
  • Confidentiality agreements for all personnel
  • Incident response procedures and breach protocols
  • Regular policy reviews and updates

Data Retention: We retain personal data only for as long as necessary to fulfill the purposes outlined in this policy or as required by law. Contact form data is typically retained for 3 years, website analytics data for 26 months, and service-related data for the duration of our business relationship plus applicable legal retention periods.

Breach Notification: In the unlikely event of a data breach affecting your personal information, we will notify you and relevant authorities within 72 hours as required by GDPR, providing information about the incident and steps being taken to address it.

Your Rights Under GDPR

You have several important rights regarding your personal data under GDPR and Cyprus law:

Right to Access

You can request confirmation of whether we process your personal data and obtain a copy of that data. We will provide this information free of charge, typically within one month of your request.

Right to Rectification

If your personal data is inaccurate or incomplete, you have the right to request correction or completion of your information.

Right to Erasure (Right to be Forgotten)

You can request deletion of your personal data when it's no longer necessary for the purposes collected, you withdraw consent, or you object to processing. Some legal obligations may require us to retain certain information.

Right to Data Portability

You can receive your personal data in a structured, commonly used, machine-readable format and transmit it to another service provider where technically feasible.

Right to Object

You can object to processing based on legitimate interests or for direct marketing purposes. We will cease processing unless we have compelling legitimate grounds that override your interests.

Right to Restrict Processing

You can request limitation of processing in specific circumstances, such as while we verify data accuracy or assess whether our legitimate interests override yours.

Right to Withdraw Consent

Where processing is based on consent, you can withdraw that consent at any time. This will not affect the lawfulness of processing before withdrawal.

Right to Lodge a Complaint

You have the right to lodge a complaint with the Cyprus Commissioner for Personal Data Protection or your local supervisory authority if you believe your data protection rights have been violated.

To exercise any of these rights, please contact us using the information provided at the top of this policy. We will respond to your request within one month, though this may be extended by two additional months for complex requests.

Your Rights and Opt-Out Instructions

You are not required to provide any personal information when using this website. If you prefer not to share your data, you may:

  • Avoid filling out contact forms, account registrations, or any data-submitting features
  • Disable cookies through your browser settings (see our Cookie Policy for more details)
  • Contact us directly to request the deletion of any previously shared personal data

We respect your privacy choices. If you would like us to delete your data, please reach out to us at the contact details provided above. We will process your request promptly in accordance with applicable data protection laws.

International Transfers

Your data is primarily stored and processed within the European Economic Area (EEA). If we transfer data outside the EEA, we ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission or transfers to countries with adequacy decisions.

Changes to This Policy

We may update this Privacy Policy periodically to reflect changes in our practices, legal requirements, or business operations. We will notify you of significant changes by posting a notice on our website or sending you an email if we have your contact information. The "Last updated" date at the top indicates when changes were last made.