Privacy Statement

Information We Collect

We collect only the data necessary to deliver and improve our cyber security services. This may include:

• Contact information such as name, email address, phone number, and company details
• Technical information such as IP addresses, device identifiers, system logs, and security event data
• Service related information you provide during assessments, monitoring, or support activities

We do not collect more data than necessary. Sensitive data is avoided unless it is essential for a specific service and supported by a lawful basis.

Legal Bases for Processing

We process personal data based on one or more of the following legal grounds:

• Performance of a contract when delivering our services
• Legitimate interests for security monitoring and service improvement
• Compliance with legal obligations related to cyber security and incident reporting
• Consent, when required, such as for optional communications

How We Use Your Information

Your information is used to:

• Deliver security assessments, monitoring, threat analysis, and support
• Detect, prevent, and respond to security incidents
• Maintain and strengthen the resilience of our systems
• Communicate service updates, technical notices, and account related matters
• Meet regulatory and legal requirements within the Netherlands and the European Union

We never sell personal data.

How We Protect Your Information

We apply strong administrative, technical, and physical safeguards. These include encryption, strict access controls, network segmentation, secure development practices, and continuous monitoring. Our personnel are trained to handle data securely and confidentially.

Sharing of Information

We may share information with trusted partners that support our operations, such as secure cloud hosting providers or specialized technical vendors. All partners operate under agreements requiring compliance with GDPR and Dutch data protection standards.

We may also disclose information if required by Dutch authorities or EU regulators, or when necessary to protect clients, employees, or systems from security threats.

Data Transfers Outside the EU

Personal data is processed and stored within the European Union. Transfers outside the EU occur only when strictly necessary for service delivery or legal compliance.

When such transfers are required, appropriate safeguards are applied. These may include Standard Contractual Clauses, assessments of the recipient’s data protection practices, or other legally recognized measures that ensure an adequate level of protection.

Data Retention

Personal data is retained only for as long as necessary to provide services, fulfill contractual obligations, or comply with legal requirements in the Netherlands. When data is no longer required, it is securely deleted or anonymized.

Your Rights

Under GDPR, you have the right to:

• Access your personal data
• Request correction or deletion
• Restrict processing
• Object to certain processing activities
• Request data portability
• Withdraw consent where processing is based on consent

You may exercise these rights by contacting us.

Contact Us

If you have questions about this Privacy Statement or wish to exercise your rights, contact our privacy team:

Email: [email protected]
Address: Stationsplein 45, 3013AK, Rotterdam, The Netherlands
Phone: +31 (0)85 303 1267