CyberXplore LLC (“CyberXplore”, “we”, “us”, or “our”) is committed to protecting your personal information. This Privacy Policy explains what data we collect through our website (https://cyberxplore.com), how we use it, and the rights you have over it.
Our registered address is 838 Walker Rd, Suite 21-2, Dover, Delaware 19904, United States. For privacy enquiries, contact us at [email protected].
1. Data We Collect
We collect personal data only when you voluntarily provide it to us through our contact form or quote request form. The categories of data we collect include:
Name - to address you correctly in correspondence.
Email address - to respond to your enquiry or quote request.
Company name - to understand the context of your request.
Phone number (optional) - if you choose to provide it for a callback.
Message content - the details of your enquiry or scope description.
We do not use tracking cookies, analytics cookies, or any third-party advertising pixels on this website beyond what is strictly necessary for operation.
2. How We Use Your Data
We use the personal data you submit solely for the following purposes:
Responding to enquiries - replying to your contact or quote request via email or phone.
Providing our services - scoping, proposing, and delivering security engagements you have requested.
Internal coordination - routing your submission to the right team member for follow-up.
We do not use your data for unsolicited marketing, profiling, or automated decision-making.
3. Legal Bases for Processing (GDPR)
If you are located in the European Economic Area (EEA) or United Kingdom, we process your personal data under the following legal bases:
Legitimate interests (Article 6(1)(f) GDPR) - to respond to business enquiries you have initiated. Our legitimate interest is to communicate with prospective and existing clients.
Consent (Article 6(1)(a) GDPR) - where you have explicitly opted in to receiving follow-up communications beyond your initial enquiry.
Performance of a contract (Article 6(1)(b) GDPR) - where processing is necessary to fulfil a security engagement you have contracted with us.
4. Data Sharing
We do not sell, rent, or trade your personal data to any third party.
Form submissions are forwarded to our internal team via Slack (operated by Salesforce, Inc.) as part of our notification workflow. Slack processes this data as a data processor under a Data Processing Agreement with us. No other third parties receive your personal data unless required by law.
5. Data Retention
We retain enquiry data for as long as is necessary to respond to and fulfil your request, typically no longer than 24 months from the date of submission. Data relating to active client engagements is retained for the duration of the engagement and for a reasonable period thereafter as required for legal and auditing purposes.
You may request deletion of your data at any time (see Section 6).
6. Your Rights (GDPR and Applicable Law)
Subject to applicable law, you have the following rights regarding your personal data:
Right of access - to request a copy of the personal data we hold about you.
Right to rectification - to ask us to correct inaccurate or incomplete data.
Right to erasure- to request deletion of your personal data (“right to be forgotten”).
Right to restriction - to ask us to limit how we use your data while a dispute is resolved.
Right to data portability - to receive your data in a structured, machine-readable format.
Right to object - to object to processing based on legitimate interests.
Right to withdraw consent - where processing is based on consent, to withdraw it at any time without affecting lawfulness of prior processing.
To exercise any of these rights, email us at [email protected]. We will respond within 30 days.
7. Security
We apply appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction. As an offensive security firm certified to ISO 27001, information security is not an afterthought - it is core to how we operate.
All data transmitted via our website is encrypted in transit using TLS. We do not store payment card data.
8. Changes to This Policy
We may update this Privacy Policy from time to time. When we do, we will update the “Last updated” date at the top of this page. Material changes will be communicated via our website. Continued use of our website after changes take effect constitutes acceptance of the revised policy.
9. Contact
For any questions about this Privacy Policy or to exercise your rights, contact us at:
CyberXplore LLC 838 Walker Rd, Suite 21-2 Dover, Delaware 19904 United States [email protected]
¿Listo para ver lo que ven los atacantes?
Reciba un alcance y un presupuesto personalizados en 24 horas. Sin presiones ni tecnicismos, solo claridad sobre su riesgo.