Privacy Policy

Introduction

CyberSec Consulting is dedicated to protecting your personal information by applying the highest standards of cybersecurity, data privacy, and information security. As a provider of cybersecurity consulting, compliance advisory, cloud security services, vulnerability assessments, penetration testing, and security operations, we are committed to ensuring the confidentiality and security of your personal data across all our platforms and service interactions. This Privacy Policy describes how CyberSec Consulting (“CyberSec Consulting,” “we,” or “us”) collects, uses, processes, stores, and safeguards your personal data when you browse our website, access our services, or reach out to us with enquiries.

We are committed to maintaining transparency and confidentiality in our practices and ensuring that all processing of personal data complies with applicable privacy and data protection laws.

In this Privacy Statement, “Personal Information” or “Personal Data” refers to any information that can identify an individual, either on its own or when combined with other details. This includes data that describes, relates to, or can reasonably be connected—directly or indirectly—to a specific person. Whenever this Privacy Policy uses the terms “you” or “your,” it refers to the individual to whom such personal data belongs.

Personal Data may include information related to identifiable characteristics such as physical, physiological, genetic, mental, economic, cultural, or social identity.

It further covers Special Categories of Personal Data, which may reveal or allow inference of sensitive attributes, including:

  • Racial or ethnic background
  • Political views
  • Religious or philosophical beliefs
  • Trade-union membership
  • Genetic information
  • Biometric identifiers
  • Health-related information
  • Sexual life or sexual orientation

This category also includes personal data concerning criminal convictions and offenses.

If you have any questions regarding our handling of personal information, please contact our privacy team at info@cybersecit.net.

Data Collection

We may collect or receive your Personal Information through one or more of the following means:

Depending on how you interact with us—whether by visiting our website, completing forms, requesting services, subscribing to updates, or applying for a role—we may collect and process certain personal data to provide, improve, and secure our services.

Examples of data collected include:

  • Website visitors: IP address, browser type, device information, cookies, and analytics data to improve user experience and maintain security.
  • Forms and enquiries: Name, email address, phone number, organization details, and message content to respond to your requests or provide services.
  • Service requests: Contact information, billing or payment details, and technical information necessary to deliver our cybersecurity services.
  • Job applications: Resume/CV, contact information, employment history, educational background, and any information you provide as part of the recruitment process.
  • Subscriptions or newsletters: Email address and preferences to send updates and relevant communications.

This data is collected only to the extent necessary for the purpose of your interaction and in accordance with applicable data protection laws.

We process the special categories of Personal Information only when necessary, such as for employment-related purposes, to fulfill our legal obligations, or to perform duties under a specific contract.

Sharing of Personal Data

We share personal data only when necessary and under secure, controlled conditions. Personal data may be disclosed in the following limited situations:

Service Providers and Technology Partners:

With trusted partners who assist in delivering our cybersecurity and consulting services.

Project-Related Vendors:

With vendors or contractors engaged in carrying out activities requested by the customer.

With Your Consent:

Where explicit consent is required or appropriate before sharing information.

Legal and Regulatory Requirements:

When disclosure is necessary to comply with applicable laws, regulations, legal processes, or governmental requests.

CyberSec Consulting does not sell, rent, or misuse personal data under any circumstances.

We do not share personal data with unrelated third parties without prior approval.

You may opt out of receiving marketing or service-related communications from CyberSec Consulting at any time.

Legal Basis for Processing Personal Information

CyberSec Consulting processes personal information only when we have a valid legal reason to do so. The lawful grounds for processing may include one or more of the following:

Legal obligations: When required by law, we process personal information to fulfill regulatory or statutory duties, such as maintaining accurate records or providing information to government authorities or law enforcement agencies.

Legitimate interests: We may process data to pursue legitimate business interests, provided that such processing does not override your privacy rights. Examples include:

  • Operating and improving our website, digital platforms, and services
  • Preventing fraud, cyber threats, or other unlawful activity
  • Protecting our technology systems and data security
  • Investigating complaints and maintaining service quality
  • Enhancing or developing our products and services

Contractual necessity: When processing is required to enter or perform a contract with you, such as delivering services or fulfilling agreed-upon obligations.

Consent: In certain cases, we process personal data based on your consent for a specific purpose. You may withdraw your consent at any time, and we will stop processing for that purpose.

For sensitive or special categories of personal information, processing occurs only when one of the following applies:

  • You have provided explicit consent for the processing
  • Processing is required by law or regulation
  • Processing is necessary to assert, exercise, or defend legal rights
  • The data has been intentionally made public by you

Even if consent is withdrawn, we may continue to process your personal information for other purposes where another legal basis applies.

Children and Minors

Our website and services are not intended for use by children under the age of sixteen (16) years. CyberSec Consulting does not knowingly collect, use, or share personal information of individuals under 16 years of age.

If you are under 16, please do not submit any personal information on our website or through our services. If we learn that we have inadvertently collected personal data from a minor, we will take steps to delete it promptly.

If a minor has provided personal information, we encourage a parent or legal guardian to contact us at info@cybersecit.net so that we can remove the data from our systems.

Your Rights Regarding Your Personal Data

Depending on the applicable data protection laws, you may have the following rights in relation to your personal data:

  • Right of Access: You can request confirmation of whether we process your personal data and obtain a copy of the data we hold about you.
  • Right to Correction: You may ask us to update or correct any incomplete, inaccurate, or outdated personal information.
  • Right to Deletion or Restriction: You can request that we delete your personal data or restrict how it is processed, subject to legal and contractual limitations.
  • Right to Object: You may object to certain types of processing, including processing based on legitimate interests or for direct marketing.
  • Right to Withdraw Consent: Where processing is based solely on your consent, you may withdraw that consent at any time.
  • Right to Data Portability: You may request a structured, commonly used, machine-readable copy of the personal data you have provided to us.
  • Right to Lodge a Complaint: You may file a complaint with the relevant data protection authority if you believe your rights have been violated.

If you wish to exercise any of these rights, please contact us using the details provided in the “Contact Information” section. Please note that if you request deletion or restrict processing, we may be unable to provide certain services or respond to some requests due to legal or contractual obligations.

Your Responsibilities

To help us maintain accurate and lawful processing, you agree to:

  • Provide accurate, complete, and truthful personal information.
  • Avoid misrepresentation or impersonation when submitting your data.
  • Notify us of any changes to your personal details.
  • Comply with all applicable data protection laws when interacting with our services.
  • Avoid submitting false or frivolous complaints to CyberSec Consulting or to regulatory authorities.

Data Retention and Erasure

CyberSec Consulting retains personal data only for as long as it is necessary to fulfill the purposes for which it was collected or to comply with applicable legal, regulatory, or contractual requirements. Retention periods may differ across jurisdictions based on local laws and professional obligations.

Where we process personal data as a data fiduciary, we will delete the data when:

  • you withdraw your consent (unless retention is required by law), or
  • The purpose for which the data was collected has been fulfilled and no longer requires retention.

You also have the right to request erasure of your personal data, subject to any legal, regulatory, or operational requirements that may require us to continue retaining certain information.

We may retain limited data for longer periods where necessary to establish, exercise, or defend legal claims, maintain business records, or meet mandatory compliance obligations.

Security Controls

CyberSec Consulting uses strong technical and organizational safeguards—such as encryption, access controls, monitoring, and firewalls—to protect your personal data from unauthorized access, misuse, or loss. Our security framework follows global standards, including ISO 27001 and NIST guidelines.

Access to personal data is limited to authorized personnel who are bound by confidentiality obligations.

While we take all reasonable steps to secure the data we hold, no internet transmission is completely secure. We strive to protect your information but cannot guarantee the security of data sent to or from us online.

Changes to This Privacy Notice

We may update this Privacy Notice from time to time to reflect changes in our services, practices, or legal obligations. Whenever we make updates, the “Last Updated” date at the top of this page will be revised.

We encourage you to review this Privacy Notice periodically to stay informed about how we manage and protect your personal data.

Contact and Grievance Redressal

If you have any questions about this Privacy Notice, our data handling practices, or wish to raise a concern regarding your personal data, you may contact us at:

Data Privacy Officer (DPO)

CyberSec Consulting

Email: info@cybersecit.net

We will review and address your query or grievance in accordance with applicable laws and our internal processes.

Your Security Journey Begins - Connect with our Experts

We offer the finest cybersecurity services and solutions across the globe, safeguarding businesses from emerging threats with innovative and proactive security measures.

Copyright © 2026 CyberSec Consulting – All Rights Reserved