Privacy Policy

Introduction

cyphervollta ("we," "our," or "us") is committed to protecting the privacy and security of personal information entrusted to us. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI security services, visit our website, or interact with us in any capacity.

This policy applies to all personal data we process in connection with our business activities. We comply with the Personal Data Protection Act 2012 (PDPA) of Singapore and applicable international data protection regulations where relevant.

Information We Collect

Contact Information

We collect names, email addresses, phone numbers, company names, job titles, and business addresses when you inquire about our services, request consultations, or engage with us professionally.

Professional Information

During service engagements, we may collect information about your organization's AI implementations, technical architectures, security practices, and business requirements necessary to provide our services effectively.

Communication Data

We maintain records of communications with clients and prospects, including emails, phone conversations, meeting notes, and other correspondence relevant to our business relationship.

Website Usage Data

When you visit our website, we automatically collect certain information including IP addresses, browser types, referring pages, pages visited, time spent on pages, and similar usage statistics through cookies and similar technologies.

Legal Basis for Processing

We process personal data based on the following legal grounds:

• • Consent: Where you have provided explicit consent for specific processing activities
• • Contract Performance: Processing necessary to fulfill service engagements and contractual obligations
• • Legitimate Interests: Processing necessary for our legitimate business interests, such as improving services and marketing
• • Legal Obligation: Processing required to comply with applicable laws and regulations

How We Use Your Information

We use collected information for the following purposes:

• • Providing AI security assessment, implementation, and risk management services
• • Communicating about services, engagements, and business matters
• • Improving our services and developing new offerings
• • Maintaining business records and documentation
• • Complying with legal and regulatory requirements
• • Website operation, analytics, and security

Data Retention

We retain personal data for as long as necessary to fulfill the purposes for which it was collected, including:

• • Client Data: Duration of engagement plus 7 years for business and legal compliance purposes
• • Communication Records: 3 years from last contact or as required for legal purposes
• • Marketing Data: Until consent is withdrawn or data is no longer relevant
• • Website Analytics: 26 months maximum

When data is no longer required, we securely delete or anonymize it in accordance with our data retention and disposal procedures.

Data Security

We implement appropriate technical and organizational security measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. Our security practices include:

• • Encryption of data in transit and at rest
• • Access controls limiting data access to authorized personnel only
• • Regular security assessments and audits
• • Incident response procedures for security breaches
• • Employee training on data protection and security practices

While we implement robust security measures, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security but commit to maintaining industry-standard protections.

Your Rights

Under applicable data protection laws, you have the following rights regarding your personal data:

• • Right to Access: Request confirmation of whether we process your personal data and obtain a copy of such data
• • Right to Rectification: Request correction of inaccurate or incomplete personal data
• • Right to Erasure: Request deletion of personal data under certain circumstances
• • Right to Restrict Processing: Request limitation of processing in specific situations
• • Right to Data Portability: Receive personal data in a structured, commonly used format
• • Right to Object: Object to processing based on legitimate interests or for direct marketing purposes
• • Right to Withdraw Consent: Withdraw previously given consent for specific processing activities

To exercise these rights, contact us at [email protected]. We will respond to requests within the timeframes required by applicable law, typically within 30 days.

Third-Party Services

We may use third-party service providers to support our operations, including:

• • Analytics Providers: Google Analytics for website usage analysis
• • Communication Tools: Email service providers for business communications
• • Hosting Services: Cloud infrastructure providers for data storage and processing

These third parties have access to personal data only as necessary to perform their functions and are obligated to maintain confidentiality and security. We ensure appropriate contractual safeguards are in place with all service providers.

International Data Transfers

Our primary operations are based in Singapore. If we transfer personal data to countries outside Singapore, we ensure appropriate safeguards are in place, such as standard contractual clauses, adequacy decisions, or other legally recognized transfer mechanisms to protect your information in accordance with applicable data protection laws.

Cookies

Our website uses cookies and similar technologies to enhance user experience and analyze website usage. For detailed information about our cookie practices, including the types of cookies we use and how to manage them, please refer to our Cookie Policy.

Policy Updates

We may update this Privacy Policy periodically to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will notify you by updating the "Last Updated" date at the top of this policy and, where appropriate, provide additional notice such as email notification. We encourage you to review this policy regularly to stay informed about how we protect your information.

Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: