Privacy Policy

DATA CONTROLLER

  • Company Name: CYBSER Cybersecurity Made Simple SL
  • Tax ID (NIF): B22903652
  • Registered Office: C/ Mar Caribe 2-20, Atarfe, Granada, Spain
  • Contact Email: info@cybser.es
  • Data Protection Contact: gdpr@cybser.es

PURPOSE OF DATA PROCESSING

At CYBSER, we process the information provided to us for the following purposes:

  • To manage requests for information, inquiries, or proposals received through our contact channels.
  • To provide information about requested services and maintain the necessary communication to deliver them.

The legal bases for processing your data are:

  • The data subject’s explicit consent (Article 6(1)(a) of the GDPR) to respond to information requests made through our forms.
  • The performance of a contract or pre-contractual measures (Article 6(1)(b) of the GDPR) if the communication leads to a commercial relationship.

DATA WE COLLECT

The personal data collected is the minimum necessary to handle your request: name, email address, phone number (optional), company (optional), and the content of the message you send us.

DATA RETENTION PERIOD

Personal data provided will be retained for the time strictly necessary to fulfill the purpose for which it was collected and to determine any potential liabilities that may arise from that purpose, in addition to the periods established in archival and documentation regulations.

DATA SHARING AND RECIPIENTS

As a general rule, CYBSER will not share your personal data with third parties unless there is a legal obligation to do so.

However, to provide our services, we may need to share your data with service providers who act as our data processors. We have signed the required data processing agreements with them to ensure they comply with regulations. These providers include:

  • Hosting and cloud service providers: For hosting the website and managing its functionalities (such as contact forms).
  • Web analytics providers: To perform measurements and statistical analysis of user interaction with the website.

INTERNATIONAL DATA TRANSFERS

Some of our service providers (such as hosting or web analytics providers) may be located in countries outside the European Economic Area (EEA), such as the United States. In such cases, CYBSER ensures that these data transfers are carried out under an adequacy decision from the European Commission (such as the EU-U.S. Data Privacy Framework) or by signing Standard Contractual Clauses (SCCs), guaranteeing a level of data protection equivalent to that in Europe.

RIGHTS OF THE DATA SUBJECT

As the data subject, you may exercise the following rights:

  • Right of Access: Obtain confirmation as to whether we are processing your data and access it.
  • Right to Rectification: Request the correction of inaccurate data.
  • Right to Erasure: Request the deletion of your data when it is no longer necessary.
  • Right to Object: Object to the processing of your data, especially for direct marketing purposes.
  • Right to Restriction of Processing: Request the restriction of processing under certain circumstances.
  • Right to Data Portability: Receive your data in a structured, commonly used, and machine-readable format.
  • Right to Withdraw Consent: Withdraw the consent you have given at any time, without affecting the lawfulness of prior processing.

You may exercise these rights by sending an email to gdpr@cybser.es, attaching a copy of your national ID or other equivalent identification document.

If you believe that we have not adequately addressed your rights, you have the right to lodge a complaint with the Spanish Data Protection Agency (AEPD).

SECURITY MEASURES

CYBSER has adopted the necessary technical and organizational measures to ensure the security of personal data and prevent its alteration, loss, unauthorized processing, or access, taking into account the state of the art, the nature of the data stored, and the risks to which they are exposed.

Last updated: November 1, 2025