Legal

Privacy Policy

Last updated: 12 April 2026

1. Data Controller

The controller of your personal data is VIVO Finanse sp. z o.o., with its registered office at Kopycińskiego 41/3, Poland, NIP: 8992914597 ("CyberCerber", "we", "us").

Contact for data protection matters: contact@cybercerber.com

2. What Personal Data We Collect

We may collect and process the following categories of personal data:

  • Contact data: name, email address, phone number, company name.
  • Communication data: content of messages sent via our contact form or email.
  • Technical data: IP address, browser type, operating system, pages visited, time of visit — collected automatically via server logs and analytics tools.
  • Cookie data: as described in our Cookie Policy.

We do not collect or process special categories of personal data (Article 9 GDPR) about website visitors.

3. Purposes and Legal Bases for Processing

3.1 Responding to Enquiries

Purpose: To process and respond to contact form submissions and email enquiries, including conducting free pre-scans requested by you.
Legal basis: Article 6(1)(b) GDPR — processing necessary for the performance of a contract or to take steps prior to entering into a contract; and/or Article 6(1)(a) GDPR — your consent.

3.2 Service Delivery

Purpose: To deliver vulnerability assessment services to clients who have entered into a contract with us.
Legal basis: Article 6(1)(b) GDPR — performance of a contract.

3.3 Website Analytics

Purpose: To understand how visitors use our website and improve our services.
Legal basis: Article 6(1)(f) GDPR — our legitimate interest in operating and improving our website; or Article 6(1)(a) GDPR — your consent (where required by applicable law).

3.4 Legal Obligations

Purpose: To comply with legal obligations, including tax, accounting, and anti-money laundering requirements.
Legal basis: Article 6(1)(c) GDPR.

4. How Long We Keep Your Data

  • Contact form data: retained for up to 2 years from the date of your enquiry, or for the duration of any resulting business relationship.
  • Client data: retained for the period required by applicable law (typically 5 years for accounting purposes) from the end of the contractual relationship.
  • Analytics data: retained in accordance with the retention periods of the applicable third-party tool (see Cookie Policy).

5. Recipients of Personal Data

We may share your personal data with:

  • IT and hosting providers processing data on our behalf under data processing agreements.
  • Email and communication tools (e.g., Web3Forms for form submissions).
  • Analytics providers (e.g., Google Analytics — see Cookie Policy).
  • Professional advisors (lawyers, accountants) where required.
  • Public authorities where required by law.

We do not sell, rent or otherwise transfer your personal data to third parties for their own marketing purposes.

6. International Transfers

Some of our service providers are located outside the European Economic Area. In such cases, transfers are subject to appropriate safeguards, including Standard Contractual Clauses approved by the European Commission.

7. Your Rights

Under GDPR, you have the following rights:

  • Right of access — to obtain a copy of the personal data we hold about you.
  • Right to rectification — to correct inaccurate or incomplete data.
  • Right to erasure ("right to be forgotten") — to request deletion of your data in certain circumstances.
  • Right to restriction of processing — to request that we limit how we use your data.
  • Right to data portability — to receive your data in a structured, machine-readable format.
  • Right to object — to object to processing based on legitimate interests.
  • Right to withdraw consent — where processing is based on consent, you may withdraw it at any time without affecting the lawfulness of prior processing.

To exercise any of these rights, contact us at contact@cybercerber.com. We will respond within 30 days.

You also have the right to lodge a complaint with the Polish Data Protection Authority (Urząd Ochrony Danych Osobowych, uodo.gov.pl).

8. Cookies

We use cookies and similar tracking technologies. For full details, please see our Cookie Policy.

9. Links to Third-Party Websites

Our website may contain links to third-party websites. We are not responsible for the privacy practices of those sites and recommend you review their privacy policies.

10. Children

Our services are directed at businesses and professionals. We do not knowingly collect personal data from individuals under 16 years of age.

11. Changes to This Policy

We may update this Privacy Policy from time to time. The "Last updated" date at the top of this page reflects the most recent revision. Continued use of our website after a material change constitutes acceptance of the updated policy.

12. Contact

For any questions about this Privacy Policy or our data practices:
VIVO Finanse sp. z o.o.
Kopycińskiego 41/3, Poland
NIP: 8992914597
Email: contact@cybercerber.com