Privacy Policy

Effective Date: 09/11/2024

Last Updated: 09/04/2025

1. Introduction

Cyber Sentinel Solutions Ltd (“Company”, “we”, “our”, or “us”) is committed to protecting your personal

data in accordance with the UK General Data Protection Regulation (UK GDPR) and the Data Protection

Act 2018. This Privacy Policy outlines how we collect, use, and safeguard your information when you

visit our website (https://cybersentinelsolutionsltd.co.uk/) or engage with our cybersecurity services.

By using our services, you acknowledge and accept the practices described in this policy.

2. Personal Data We Collect

We may collect and process the following categories of personal data:

Contact Data: Name, email address, phone number, job title, and company.

Technical Data: IP address, browser type, device identifiers, and interaction logs.

Client Assessment Data: Information provided for penetration tests or security audits, which may

include internal systems, configuration files, or data classified as personal.

Cookies and Analytics Data: For further details, refer to our Cookie Policy.

3. Legal Bases for Processing

We process your data under the following lawful bases under UK GDPR:

Consent (Article 6(1)(a)) – where you have explicitly agreed to processing (e.g. marketing).

Contractual Necessity (Article 6(1)(b)) – for fulfilling our contract with you.

Legal Obligation (Article 6(1)(c)) – to comply with regulatory or legal duties.

Legitimate Interests (Article 6(1)(f)) – to manage and improve our services, provided your rights

do not override these interests.

4. How We Collect Your Data

Your data is collected via:

Direct interactions (e.g., service inquiries, on boarding).

Automated technologies (cookies, logs, monitoring).

Third-party sources (business partners, regulators).

5. How We Use Your Data

To provide and manage cybersecurity services (e.g. vulnerability assessments).

To meet legal obligations (including under NCSC guidance or audit requirements).

For communication and service updates.

To protect against fraud or misuse of our systems.

6. Sharing Your Personal Data

We may share your data with:

Regulatory or enforcement authorities, as legally required.

Third-party processors, under binding data processing agreements.

Acquirers or successors in the event of a merger or asset sale.

We do not sell or rent your personal data.

7. Data Security Measures

We maintain appropriate technical and organisational measures including:

Data encryption (at rest and in transit)

Access control and role-based restrictions

Penetration testing and internal audits

8. Data Retention

Personal data is retained only for as long as necessary, typically:

For service delivery and contractual obligations

In accordance with legal or regulatory requirements

Data is anonymised or securely deleted when no longer needed.

9. Your Rights Under UK GDPR

You have the right to:

Access your personal data.

Rectify inaccurate or incomplete information.

Request erasure (subject to legal exceptions).

Restrict or object to certain forms of processing.

Data portability (where applicable).

Withdraw consent at any time.

To exercise these rights, contact us at: support@cybersentinelsolutionsltd.co.uk

If you are dissatisfied, you also have the right to lodge a complaint with the Information

Commissioner's Office (ICO) at https://ico.org.uk/.

10. International Transfers

Where data is transferred outside the UK or EEA, we ensure appropriate safeguards such as:

UK International Data Transfer Agreements (IDTAs)

Standard Contractual Clauses (SCCs)

Binding corporate rules or adequacy decisions where applicable

11. Cookies and Tracking

We use cookies to personalise content and analyse site traffic. See our Cookie Policy for full details.

12. Updates to This Policy

We may revise this policy from time to time. Changes will be posted on this page with an updated “Last

Updated” date.

13. Contact Us

Cyber Sentinel Solutions Ltd

Bristol, England

📧 Email: support@cybersentinelsolutionsltd.co.uk

📞 Phone: 08008620258