Privacy Policy

Cyber4Directors is committed to the responsible management of personal information collected through our website https://cyber4directors.com, and any related interactions. Our primary goals in processing this information include:

  • Enhancing the user experience on our platform by understanding customer needs and preferences.

  • Providing timely support and responding to inquiries or service requests.

  • Improving our products and services to meet the evolving demands of our users.

  • Conducting necessary business operations, such as billing and account management.

It is our policy to process personal information with the utmost respect for privacy and security. We adhere to all relevant regulations and guidelines to ensure that the data we handle is protected against unauthorized access, disclosure, alteration, and destruction. Our practices are designed to safeguard the confidentiality and integrity of your personal information, while enabling us to deliver the services you trust us with. The Website is referring to our services as “Training”, “Talk”, “Consultation” or “Self-Assessment (combined referred to as “Services”).

Cyber4Directors (https://www.cyber4directors.com, the “Website”) is operated by ACOYVIS LIMITED, a UK Limited company registered in England and Wales under company number 12647153. Our registered office is at: at 2nd Floor, 15 Montpelier Vale, London, SE3 0TA. We do have a designated Data Protection Officer (DPO). Should you have any questions or require further information about how we manage personal information, please feel free to contact Susanne.Alfs@acoyvis.com.

The Website contains linksto third party websites, which are not covered by this policy. Please review the policies of the third parties to understand their data privacy practices.

Cyber4Directors will process your personal information transparently and with your safety in mind. This extends to our collaboration with third-party services that may process personal information on our behalf, such as in the case of sending invoices.

Our privacy policy is designed to protect the personal information of all our stakeholders, including all users of the Website and customers of Cyber4Directors. Our commitment to transparency and data protection extends to how we collect and use your personal information. We gather personal data through various interactions, including but not limited to, when you utilize our services (Book Appointments, Download Forms or contact us), or directly provide information to us. The following list details the types of personal information we may process:

  • First and Last Name: To personalize our communication and services.

  • Address and City: Necessary for billing, shipping, and providing localized services.

  • Telephone Number and Email Address: Essential for direct communication and support.

  • Company Name and Company Information: For business-to-business interactions and services.

  • IP Address and Location Details: Used to customize our services and for analytical purposes.

  • Information about Your Activity on Our Website: Helps us improve website usability and service offerings.

  • Browser Fingerprint: Assists in preventing fraud and enhancing security.

  • VAT Number: Required for processing business transactions.

  • Contact History: Maintains a record of our interactions to provide ongoing support.

We only process information that is essential for delivering our services, complying with legal obligations, or enhancing your user experience. Here are the key ways in which we use the personal information collected:

  • To Provide and Improve Our Services: Your information helps us tailor our offerings to meet your needs more effectively. Personal details like your name, email address, and activity on our website enable us to personalize your experience and offer relevant content.

  • Customer Support and Communication: Contact information such as your telephone number and email address is vital for addressing inquiries, providing support, and communicating important updates or offers.

  • Business Operations and Transactions: Information like your address, VAT number, and company details are essential for processing orders, billing, and fulfilling legal and tax obligations.

  • Security and Fraud Prevention: Data such as IP addresses, location details, and browser fingerprints are used to enhance the security of our services, protecting both you and us from fraudulent activities.

  • Analysis and Development: We analyze information about your use of our website to improve our site's functionality, design, and the services we offer. This includes developing new features and offerings that match our users' interests and preferences.

  • Academic Research: We invite you to participate in academic research. The processing of your data is registered with King’s College London in accordance with the UK General Data Protection Regulation (UK GDPR). This research was granted ethical approval and has been registered with the Research Ethics Management Application System (REMAS) under Project ID: 43003. For further information on how this research project processes your data, please contact Susanne.Alfs@kcl.ac.uk.

  • Legal Compliance and Enforcement: We may use your information to comply with applicable laws, respond to legal requests, and enforce our terms and conditions.

  • Direct Marketing: With your consent, we may use your contact information to send you promotional messages about new products, special offers, or other information we think you might find interesting.

Cyber4Directors is committed to ensuring that your data is used solely for the purposes for which it was collected and in ways that you have authorized. We employ a variety of measures to protect the integrity and confidentiality of the data we collect. Below, we outline our practices regarding data storage and protection:

Data Storage

  • Location: Personal information is stored in secure servers located in EU, UK, USA. For services that require international data transfer, we ensure that such transfers comply with all applicable laws and maintain data protection standards equivalent to those in our primary location.

  • Data Hosting Partners: We partner with reputable data hosting providers committed to using state-of-the-art security measures. These partners are selected based on their adherence to stringent data protection standards.

Data Protection Measures

  • Encryption: To protect data during transfer and at rest, we employ robust encryption technologies.

  • Access Control: Access to personal information is strictly limited to authorized personnel who have a legitimate business need to access the data. We enforce strict access controls and regularly review permissions.

Data Retention

  • Retention Period: We retain personal information only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. Specific retention periods depend on the nature of the information and the purposes for processing it.

  • Deletion Policy: Once the retention period expires, personal data is securely deleted or anonymized, so it can no longer be associated with an individual.

Cyber4Directors it treating your data with the utmost respect. This extends to how we handle the sharing and disclosure of your data. Below we outline our practices in this area:

Sharing Personal Information

  • Third-Party Service Providers: We may share your information with Alphabet (Google), Calendly, Dropbox and Microsoft who perform services on our behalf, including but not limited to data analysis, email delivery, hosting services, customer service, and marketing assistance. These partners are prohibited from using your personal information for any purpose other than to provide these services to Cyber4Directors, and they are required to maintain the confidentiality of your information.

  • Legal Requirements and Law Enforcement: Under certain circumstances, Acoyvis Limited may be required to disclose your personal information if required by law or in response to valid requests by public authorities (e.g., a court or a government agency).

  • ·Additionally, we may disclose your personal information in the good faith belief that such action is necessary to: Comply with a legal obligation; Protect and defend the rights or property of ACOYVIS LIMINTED; Prevent or investigate possible wrongdoing in connection with the Service; Protect the personal safety of users of the Service or the public; Protect against legal liability

Data Processing Agreements

When we share your data with third-party service providers, we do so under the protection of Data Processing Agreements (DPAs) that ensure your information is managed in accordance with GDPR and other relevant data protection laws. These agreements mandate that third parties implement adequate technical and organizational measures to ensure the security of your data.

Cyber4Directors is ensuring you can exercise your rights effectively. Below is an overview of your rights and how you can exercise them:

Your Rights

  • Right of Access (Article 15 GDPR): You have the right to request access to the personal information we hold about you and to obtain information about how we process it.

  • Right to Rectification (Article 16 GDPR): If you believe that any personal information we hold about you is incorrect or incomplete, you have the right to request its correction or completion.

  • Right to Erasure (the Right to be Forgotten) (Article 17 GDPR): You have the right to request the deletion of your personal information when it is no longer necessary for the purposes for which it was collected, among other circumstances.

  • Right to Restriction of Processing (Article 18 GDPR): You have the right to request that we restrict the processing of your personal information under certain conditions.

  • Right to Data Portability (Article 20 GDPR): You have the right to receive your personal information in a structured, commonly used, and machine-readable format and to transmit those data to another controller.

  • Right to Object (Article 21 GDPR): You have the right to object to the processing of your personal information, under certain conditions, including processing for direct marketing.

  • Right to Withdraw Consent (Article 7(3) GDPR): Where our processing of your personal information is based on your consent, you have the right to withdraw that consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

  • Right to Lodge a Complaint (Article 77 GDPR): You have the right to lodge a complaint with a supervisory authority if you believe our processing of your personal information violates applicable data protection laws.

Exercising Your Rights

To exercise any of these rights, please contact Susanne.Alfs@acoyvis.com. We will respond to your request in accordance with applicable data protection laws and within the timeframes stipulated by those laws. Please note, in some cases, we may need to verify your identity as part of the process to ensure the security of your personal information. We are committed to facilitating the exercise of your rights and to ensuring you have full control over your personal information. If you have any questions or concerns about how your personal information is handled, please do not hesitate to get in touch with us.

Cyber4Directors values your privacy and is committed to being transparent about our use of cookies and other tracking technologies on our website. These technologies play a crucial role in ensuring the smooth operation of our digital platforms, enhancing your user experience, and providing insights that help us improve.

Understanding Cookies and Tracking Technologies

Cookies are small data files placed on your device that enable us to remember your preferences and collect information about your website usage. Tracking technologies, such as web beacons and pixel tags, help us understand how you interact with our site and which pages you visit.

How We Use These Technologies

  • Essential Cookies: Necessary for the website's functionality, such as authentication and security. They do not require consent.

  • Performance and Analytics Cookies: These collect information about how visitors use our website, which pages are visited most frequently, and if error messages are received from web pages. These cookies help us improve our website.

  • Functional Cookies: Enable the website to provide enhanced functionality and personalization, like remembering your preferences.

  • Advertising and Targeting Cookies: Used to deliver advertisements more relevant to you and your interests. They are also used to limit the number of times you see an advertisement and help measure the effectiveness of the advertising campaign.

Your Choices and Consent

Upon your first visit, our website will present you with a cookie consent banner, where you can:

  • Accept All Cookies: Consent to the use of all cookies and tracking technologies.

  • Reject Non-Essential Cookies: Only essential cookies will be used to provide you with necessary website functions.

  • Customize Your Preferences: Choose which categories of cookies you wish to allow.

You can change your cookie preferences at any time through our Cookie settings feature. Additionally, your web browser allows you to control and limit cookies on your device.

Changes to Our Cookie Use

We may update our use of cookies and tracking technologies to improve our services or comply with legal requirements. We will notify you of any significant changes and seek your consent where necessary.

Cyber4Directors may transfer your personal information to locations outside of your country of residence, including to countries that may have different data protection laws than those in your jurisdiction. We want to assure you that any such transfers are conducted with the utmost care and in compliance with applicable data protection regulations, including the General Data Protection Regulation (GDPR).

Legal Basis for International Data Transfers

As explained in this privacy policy, we use services whose providers are partly located in so-called third countries (outside the European Union or the European Economic Area) or process personal data there, i.e. countries whose level of data protection does not correspond to that of the European Union. Where this is the case and the European Commission has not issued an adequacy decision (Art. 45 GDPR) for these countries, we have taken appropriate precautions to ensure an adequate level of data protection for any data transfers. These include, among others, the standard contractual clauses of the European Union or binding internal data protection regulations.

If a third country transfer is provided for and no adequacy decision or appropriate safeguards are in place, it is possible and there is a risk that authorities in the respective third country (e.g. intelligence services) may gain access to the transferred data in order to collect and analyze it, and that enforceability of your data subject rights cannot be guaranteed.

Your Rights and Protections

Your rights and protections regarding the processing and transfer of your personal information remain unaffected by any international data transfers. We are committed to ensuring that your data is treated securely and in accordance with this privacy policy, regardless of where it is processed or stored.

Questions and Contact Information

If you have any questions or concerns about international data transfers or how your personal information is handled, please contact Susanne.Alfs@acoyvis.com. Cyber4Directors is protecting the privacy of children who use our services. We recognize the importance of safeguarding the personal information of minors, and we take steps to ensure compliance with applicable laws and regulations, including the Children's Online Privacy Protection Act (COPPA) in the United States and similar regulations in other jurisdictions.

Cyber4Directors may use your personal information to send you direct marketing communications about our products, services, promotions, and other relevant information that we believe may be of interest to you. We are committed to ensuring that our direct marketing practices are transparent, lawful, and in compliance with applicable data protection laws, including the General Data Protection Regulation (GDPR) and the ePrivacy Directive.

Obtaining Consent for Direct Marketing

  • Opt-In Consent: We will obtain your explicit opt-in consent before sending you direct marketing communications, where required by law. This means that you will have the opportunity to actively consent to receiving marketing messages from us before we send them to you.

  • Unsubscribe Option: Every direct marketing communication we send will include clear instructions on how to unsubscribe or opt-out from receiving future marketing communications. You can exercise your right to opt-out at any time, and we will promptly honor your request to stop sending you marketing messages.

Types of Direct Marketing Communications

We may use your personal information to send you direct marketing communications via various channels, including:

  • Email

  • Social media platforms

Managing Your Preferences

You have control over the direct marketing communications you receive from us. You can manage your communication preferences by:

  • Using the unsubscribe link provided in our marketing emails or text messages.

  • Contacting us directly to update your preferences or opt-out of specific marketing channels.

Compliance with Data Protection Laws

Our direct marketing practices are conducted in accordance with applicable data protection laws, including the GDPR and the ePrivacy Directive. We respect your rights and preferences regarding direct marketing communications and are committed to ensuring that our marketing activities are conducted responsibly and ethically.

Contact Us

If you have any questions or concerns about our direct marketing practices or wish to update your communication preferences, please contact Susanne.Alfs@acoyvis.com. We are here to assist you and ensure that your preferences regarding direct marketing communications are respected.

We understand the importance of protecting your personal information and take proactive measures to safeguard it. In the event of a data breach that poses a risk to your privacy rights and freedoms, we have established clear procedures for promptly identifying, assessing, and mitigating the impact of the breach. Our data breach notification procedures are designed to comply with applicable data protection laws and regulations, including the General Data Protection Regulation (GDPR).

Detection and Assessment

  • Internal Monitoring: We employ robust security measures and monitoring systems to detect and respond to potential data breaches promptly.

  • Assessment of Breach Impact: Upon discovery of a data breach, we will conduct a thorough assessment to determine the nature and scope of the breach, including the types of personal information involved and the potential impact on affected individuals.

Notification Obligations

Regulatory Authorities: If required by law, we will notify the relevant data protection authorities (the Information Commissioners Office in the UK) of the data breach within 24 hours of becoming aware of the essential facts of the breach, following the procedures specified by applicable regulations.

Affected Individuals: If a data breach poses a significant risk to your privacy rights and freedoms, we will notify you within 72 hours, providing clear and concise information about the breach, the types of personal information affected, and the steps you can take to protect yourself.

Communication Channels

  • Email Notification: We may notify affected individuals via email, using the contact information provided to us, if feasible and appropriate.

Support and Assistance

  • Support Resources: In the event of a data breach, we are committed to providing affected individuals with the support and assistance they need, including guidance on steps they can take to mitigate the potential risks associated with the breach.

  • Point of Contact: If you have any questions or concerns about a data breach or believe you may have been affected, please contact Susanne.Alfs@acoyvis.com.

We have implemented the following accountability and compliance measures:

Data Protection Policies and Procedures

  • Employee Training: Our team members receive regular training on data protection laws, privacy best practices, and our organization's policies and procedures to ensure that they understand their roles and responsibilities.

  • Security Controls: We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, disclosure, alteration, and destruction.

  • Feedback Mechanisms: We welcome feedback from our users and stakeholders regarding our data protection practices and use this feedback to inform continuous improvement initiatives.

We continually review and update our security practices in response to evolving threats and advancements in technology to ensure the highest level of protection for your personal information. This policy was last updated on August 23, 2024. We may update this privacy policy from time to time to reflect changes in legal requirements, industry standards, or our business operations. We want to assure you that any updates will be communicated transparently and in accordance with applicable data protection laws.