This Privacy Statement outlines how Royal Cyber, its affiliated entities, and subsidiary branches (collectively referred to as “Royal Cyber,” “we,” or “our”) handle and process your personal data. It covers the methods, purposes, and rights of processing your personal information using Royal Cyber’s websites and services.
Please note that specific policies or contractual agreements govern personal data processing for Royal Cyber’s employees, clients, and service providers. However, contact information for clients and service providers may be subject to this Privacy Statement if registered on Royal Cyber’s website or used for marketing.
This Privacy Statement adheres to the global standard of the General Data Protection Regulation (GDPR) and other applicable laws in countries where Royal Cyber operates. It may be revised periodically to reflect changes in laws or data handling approaches. Certain sections, such as those related to recruitment, may contain links to third-party privacy statements.
Role of Royal Cyber in Processing Personal Data
According to the GDPR, Royal Cyber acts as a “data controller” for personal data related to its websites or services. It also serves as a “data processor” when handling personal data for another company, such as a client. The Privacy Statement includes information about Data Protection Managers and the Group Data Protection Officer.
Collection of Personal Data
Directly collected data may include your name, job title, company address, email, and contact details. Indirectly collected data includes standard internet log information, IP address, browser type, geolocation, and other details. As explained in the Cookie Statement, cookies and web beacons may also be used for data collection.
Royal Cyber may collect your personal data as a job applicant, website user, business partner, or shareholder. The type of data collected depends on your interactions and may be obtained directly or indirectly through website usage, via consent from partners, or publicly available sources. Sensitive information is not sought unless required by local law.
Use of Personal Data
This section details the legal basis we rely on to process your personal data and the purposes for which we process them.
In compliance with GDPR and Other Applicable Laws, we process your personal data:
- Because you have given your consent to the processing of your personal data for a determined purpose.
- To perform a contract to which you are a party or to take steps at your request prior to entering into a contract.
- To comply with a legal obligation to which we are subject.
- When the processing is necessary for the legitimate interests pursued by us or a third party (e.g., partners, service providers), except where such interests are overridden by your interests or fundamental rights and freedoms that require protection of personal data unless the country law does not accept legitimate interest as a legal ground.
Depending on how you interact with us, we may process your personal data in connection with our services or for other business purposes to:
- Administer accounts or profiles related to you or your organization, which may include registration, subscription, purchase, billing events, and/or payments.
- Answer your questions and requests.
- Enable you to access certain restricted parts of our websites.
- Enable you to download specific documentation (e.g., white papers).
- Enable you to attend a hosted event or a webinar.
- Enable us to manage and secure our website or service.
- Compile aggregate statistics regarding the use of the websites.
- For marketing or research purposes and development purposes for new content, services, and/or products aiming at improving, testing, and enhancing features of current services.
- Send you offers and promotional materials or communications regarding our services that we feel may be of interest to you, provided that you have given us your express consent by any means.
- Perform matched audience with third-party social media (i.e., LinkedIn, Facebook, and Instagram) to share our content with you through them.
- Provide you with personalized advertising.
- Manage the forums in which you may take part.
- Conduct satisfaction surveys and feedback on our services.
- For recruitment purposes, when you submit a resume or a job application online.
- Fulfill our contractual obligations towards you.
- Comply with your instructions or fulfill other specified purposes for which you have consented.
- Comply with the law and legal obligations.
- Respond to a request or order from a court, regulator, or authority when required by law.
- Exercise our rights and protect others’ rights and/or property.
Disclosure of Personal Data
As a global organization, Royal Cyber may share personal data with its entities, business partners, service providers, and social media platforms. This may involve transferring data to countries with different data protection rules. Adequate safeguards, such as Standard Contractual Clauses, are implemented for such transfers.
Security of Personal Data
The security of your personal data is our priority. Taking into account the nature, scope, context, and purposes of each data processing, as well as the risks of varying likelihood and severity for your rights and freedoms, we implement all appropriate technical and organizational measures and policies to ensure the protection of your personal data and prevent any accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to personal data transmitted, stored, or otherwise processed by Royal Cyber.
Regarding Royal Cyber websites, we have in place reasonable commercial standards of technology and implement technical and organizational security measures to protect all information you may provide to us from unauthorized access, disclosure, alteration, or destruction. If you registered on our websites, you must maintain the confidentiality of your identifiers to prevent illicit use of your account.
Rights on your Personal Data
In some cases, local data privacy laws may give you rights regarding your personal data, primarily if you reside in certain countries (e.g., within the EU, UK, Canada, or California). In such cases, the below-mentioned rights may be available to you.
For European Union, Switzerland, and United Kingdom residents
Following the GDPR and the UK DPA, you can exercise your rights of access, rectification, and erasure of your personal data, your right to restriction of processing related to your personal data, and your right to data portability. For legitimate reasons, you may also object to processing your personal data. You are not required to pay any charge for exercising your rights. If you make a request, we have one month to respond to you. That period may be extended by two further months where necessary, considering the complexity and number of the requests. You can exercise these rights anytime by sending proof of identity to Royal Cyber’s relevant local Data Protection Manager and/or to the Data Protection Officer as listed below (Contact Us section).
For California residents
Under the CCPA, you can exercise your rights of access, your right of correction or deletion of your personal data, and your right to opt-out, i.e., your right to request Royal Cyber not to “sell” personal information to third parties or stop sharing your personal information for cross-context behavioral advertising, and limit the use or disclosure of your sensitive personal information, which can be found at the top of this Privacy Statement (Introduction section). If you make a request, we will respond to you within forty-five days of receipt.
For Canadian residents
Under Canadian Laws, you can exercise your right to access and correct your personal data where there is an error or omission in the data, erasure, deindexation, and cease dissemination. Royal Cyber will respond within thirty days of receipt if you make a request. You can exercise these rights at any time by writing to Royal Cyber’s relevant local Data Protection Manager and/or to the Data Protection Officer as listed below (Contact Us section)
Nevertheless, the collection and processing of your personal data are strictly necessary to provide the service you requested; you acknowledge that you don’t have an absolute right to erasure or restrict the processing and to oppose the processing of such personal data. There may be circumstances under which Royal Cyber could have grounds to refuse to grant your request to exercise your data protection rights.
When processing your personal data is based on collecting your consent, you may withdraw this consent at any time, particularly by clicking on the unsubscription link contained in communications sent by Royal Cyber and generated in response to your registration on the Royal Cyber websites.
Under applicable data protection regulations, if you have any concerns about our use of your personal data, you also have the right to complain to a supervisory authority.
Retention of Personal Data
Personal data is retained for the time necessary to fulfill purposes, comply with regulations, or meet legal obligations. Retention periods vary based on the type of data and its usage, with marketing and recruitment data typically retained for a maximum of 2 years.
Changes to our Privacy Statement
This Privacy Statement may be modified periodically at Royal Cyber’s discretion. Changes will be reflected in the revision date at the top of the page. Users are encouraged to check the statement regularly for updates.
Children's Privacy Protection
The website is not intended for children under 16, and Royal Cyber does not knowingly collect or maintain information about individuals under this age. If you are under 16, please refrain from registering for services or providing personal data.
We appreciate your visit and welcome suggestions or feedback on our products/services.
Don’t hesitate to contact us at [email protected] with any suggestions or feedback.