Privacy Statement

Effective Date: January 2026

CybeRise Solutions (“CybeRise,” “we,” “our,” or “us”) is committed to protecting the confidentiality, integrity, and availability of information entrusted to us. This Privacy Statement explains how we collect, use, protect, and manage information in alignment with recognized security and privacy best practices, including principles reflected in SOC 2 and ISO/IEC 27001.

Information We Collect

We collect limited information for legitimate business and communication purposes only. This may include:

  • Contact Information - such as email address, when voluntarily submitted through forms, email communications, or consultation requests.
  • Technical Information - limited metadata (such as browser or device information) used solely for security, performance, and operational purposes.

We do not knowingly collect sensitive personal data unless explicitly required for a contracted engagement and governed by appropriate agreements.

How We Use Information

Information is used strictly to:

  • Respond to inquiries and consultation requests
  • Communicate about services and engagements
  • Improve service delivery, security, and website performance
  • Meet legal, regulatory, or contractual obligations

CybeRise does not sell, rent, or trade personal information.

Data Protection & Security Practices

CybeRise applies administrative, technical, and organizational safeguards designed to protect information against unauthorized access, disclosure, alteration, or destruction. These practices are aligned with industry best practices and include:

  • Role-based access controls and least-privilege principles
  • Secure systems and monitored environments
  • Encryption and secure data handling where applicable
  • Ongoing risk assessment and security oversight

Our internal security practices support alignment with recognized frameworks, including SOC 2 Trust Services Criteria and ISO/IEC 27001 principles.

Third-Party Services

We may use trusted third-party services (such as Microsoft 365 and Microsoft Forms) to support business operations. These providers are selected based on their security posture and contractual commitments to data protection.

Information is shared with third parties only as necessary to deliver services or meet legal obligations.

Data Retention

Information is retained only for as long as necessary to fulfill its intended purpose, comply with legal or contractual requirements, or support legitimate business operations. Data is securely deleted or anonymized when no longer required.

Your Rights

Where applicable, you may request access to, correction of, or deletion of your information. Requests can be submitted using the contact details below.

Global Privacy & Regulatory Alignment

CybeRise Solutions operates globally and aligns its privacy and data protection practices with internationally recognized privacy principles, including those reflected in:

  • The EU General Data Protection Regulation (GDPR)
  • UK GDPR
  • Other applicable data protection and privacy regulations worldwide

Our approach emphasizes:

  • Lawful, fair, and transparent data handling
  • Purpose limitation and data minimization
  • Appropriate technical and organizational safeguards
  • Respect for individual data rights, where applicable

Where personal data is processed in connection with client engagements, CybeRise supports contractual and operational measures appropriate to the applicable regulatory context.

CybeRise does not provide legal advice; clients remain responsible for determining their specific regulatory obligations.

Contact

For privacy-related questions or requests:

Updates

This Privacy Statement may be updated periodically to reflect changes in practices or requirements. Updates will be posted on this page with a revised effective date.