CYBER TEC ASSISTANTS LTD

Privacy Policy

Last updated: March 14, 2026

Effective date: March 14, 2026

1. Introduction

CYBER TEC ASSISTANTS LTD ("we", "us", "our") is a company registered in England and Wales (Company Number: 17084590) with registered office at 71-75 Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ.

We are committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your personal information when you purchase our one-time service packages or use our website.

This policy complies with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. We are the data controller for the purposes of UK data protection law.

2. Information We Collect

2.1 Information You Provide to Us

When you purchase our services or contact us, we collect:

  • Contact Information: Name, email address, phone number, company name, job title
  • Billing Information: Billing address, company registration details (if applicable)
  • Transaction Information: Details of services purchased, transaction amount, date of purchase
  • Communication Records: Correspondence via email, contact forms, or support tickets
  • Business Requirements: Information about your workflow, technical requirements, and project specifications

2.2 Information Collected Automatically

When you visit our website, we automatically collect:

  • Technical Information: IP address, browser type and version, operating system, device information
  • Usage Data: Pages visited, time spent on pages, referring website, date and time of visit
  • Cookies: See our Cookie Policy for detailed information about cookies we use

2.3 Information from Third Parties

We receive information from:

  • Payment Processors: Transaction confirmation and status from our payment service providers
  • Analytics Providers: Aggregated website usage statistics (anonymized where possible)

3. Legal Basis for Processing

We process your personal data under the following legal bases:

  • Contract Performance: Processing necessary to fulfill our service delivery obligations when you purchase from us
  • Legal Obligation: Compliance with tax, accounting, and regulatory requirements
  • Legitimate Interests: Improving our services, preventing fraud, and maintaining security
  • Consent: Marketing communications (where you have opted in)

4. How We Use Your Information

4.1 Service Delivery

  • Process and fulfill your one-time service purchase
  • Deliver implementation, migration, and consulting services
  • Provide technical support and customer service
  • Communicate about your project status and deliverables

4.2 Business Operations

  • Issue invoices and process payments
  • Maintain accounting records and comply with tax obligations
  • Manage customer relationships and service quality
  • Respond to inquiries and support requests

4.3 Legal and Security

  • Comply with legal and regulatory requirements
  • Prevent fraud, unauthorized access, and security incidents
  • Enforce our Terms & Conditions and other agreements
  • Protect our rights, property, and safety

4.4 Service Improvement

  • Analyze usage patterns to improve our services
  • Conduct research and development
  • Test new features and functionality

5. Data Sharing and Disclosure

5.1 Service Providers

We share data with trusted third-party service providers who assist us:

  • Payment Processors: To process transactions securely (subject to their own privacy policies)
  • Cloud Hosting Providers: To store and process data (AWS, UK-based data centers)
  • Email Service Providers: To send transactional and service-related emails
  • Analytics Providers: To understand website usage (anonymized data where possible)

All service providers are contractually obligated to protect your data and use it only for specified purposes.

5.2 Legal Requirements

We may disclose your information when required by law:

  • To comply with legal obligations, court orders, or regulatory requests
  • To enforce our Terms & Conditions or other agreements
  • To protect our rights, property, or safety, or that of others
  • In connection with fraud prevention or security investigations

5.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal data may be transferred to the acquiring entity, subject to the same privacy protections.

5.4 What We Don't Do

  • We do NOT sell your personal data to third parties
  • We do NOT share your data with advertisers
  • We do NOT use your data for marketing without your explicit consent

6. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes outlined in this policy:

  • Transaction Records: 7 years (UK tax and accounting requirements)
  • Customer Communication: Duration of business relationship plus 2 years
  • Technical Logs: 90 days (unless required for security investigations)
  • Marketing Consent: Until you withdraw consent or 2 years of inactivity

After the retention period expires, we securely delete or anonymize your personal data. You may request earlier deletion subject to our legal obligations.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

7.1 Technical Measures

  • Encryption of data in transit (TLS 1.3) and at rest (AES-256)
  • Secure authentication and access controls
  • Regular security updates and vulnerability assessments
  • Automated backup systems with encryption
  • Network security controls and firewalls

7.2 Organizational Measures

  • Access to personal data limited to authorized personnel only
  • Staff training on data protection and security
  • Confidentiality agreements with employees and contractors
  • Regular security audits and compliance reviews
  • Incident response procedures

7.3 Data Breach Notification

In the event of a data breach that poses a risk to your rights and freedoms, we will notify you and the Information Commissioner's Office (ICO) within 72 hours as required by UK GDPR.

8. Your Rights Under UK GDPR

You have the following rights regarding your personal data:

8.1 Right of Access

You can request a copy of the personal data we hold about you. We will provide this within one month of your request, free of charge.

8.2 Right to Rectification

You can request correction of inaccurate or incomplete personal data. We will update your information promptly.

8.3 Right to Erasure ("Right to be Forgotten")

You can request deletion of your personal data, subject to legal retention requirements (e.g., tax records must be kept for 7 years).

8.4 Right to Restrict Processing

You can request that we limit how we use your data in certain circumstances (e.g., while we verify accuracy of disputed data).

8.5 Right to Data Portability

You can request your data in a structured, commonly used, machine-readable format to transfer to another service provider.

8.6 Right to Object

You can object to processing based on legitimate interests or for direct marketing purposes. We will stop processing unless we have compelling legitimate grounds.

8.7 Rights Related to Automated Decision-Making

We do not use automated decision-making or profiling that produces legal or similarly significant effects.

8.8 How to Exercise Your Rights

To exercise any of these rights, contact us using the details in Section 13. We will respond within one month. If your request is complex, we may extend this by two months and will inform you of the extension.

9. International Data Transfers

Your data is primarily stored and processed in the United Kingdom. If we transfer data outside the UK, we ensure adequate safeguards are in place:

  • Transfers to countries with adequacy decisions from the UK government
  • Use of Standard Contractual Clauses approved by the ICO
  • Binding Corporate Rules for intra-group transfers

We do not routinely transfer personal data outside the UK. Any transfers are documented and protected by appropriate safeguards.

10. Cookies and Tracking Technologies

We use cookies and similar technologies to improve your experience on our website. For detailed information, please see our Cookie Policy.

You can control cookies through your browser settings. Note that disabling cookies may affect website functionality.

11. Children's Privacy

Our services are not directed at children under 16. We do not knowingly collect personal data from children. If you believe we have collected data from a child, please contact us immediately and we will delete it.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

We will notify you of material changes by:

  • Posting the updated policy on our website with a new "Last updated" date
  • Sending an email notification to registered customers (for significant changes)

Your continued use of our services after changes become effective constitutes acceptance of the updated policy.

13. Contact Us

For questions, concerns, or to exercise your data protection rights, please contact us:

CYBER TEC ASSISTANTS LTD
71-75 Shelton Street
Covent Garden
London, United Kingdom
WC2H 9JQ

Data Protection Inquiries: Please use our contact form or email us (contact details available on our Contact page)

We are committed to resolving any concerns quickly and fairly. We maintain a customer-friendly approach to all inquiries and are ready to provide refunds in accordance with ourRefund Policy when appropriate.