Privacy Policy

‍

Effective Date: 7th June 2025

1. Introduction

Cybertify Pty Ltd (referred to as "Cybertify", "we", "us", or "our") is Australia's premier compliance-first cybersecurity consulting firm. We are committed to protecting the privacy of your personal information and ensuring it is handled in accordance with the Australian Privacy Principles (APPs) set out in the Privacy Act 1988 (Cth). This Privacy Policy outlines how we collect, use, disclose, store, and protect your personal information when you interact with our website, use our services, or communicate with us.

2. Collection of Personal Information

We collect personal information to provide cybersecurity and consulting services, improve our offerings, and communicate with clients and prospective clients. The types of personal information we may collect include:

• Full name
• Job title
• Company/organisation
• Email address
• Phone number
• Region and sector
• Information submitted through our website forms
• IP address, browser data, geolocation, and activity logs (when interacting with our website)
• Any other information relevant to enquiries, transactions, or engagements with Cybertify

We also collect non-personal information through cookies and analytics tools (see Section 8).

We collect personal information directly from you when you:

• Submit an enquiry through our website contact forms.
• Communicate with us via phone or email.
• Engage us for our services.
• Subscribe to our newsletters or updates.
• Through meetings, calls, or live events
• From third-party platforms integrated with our systems, such as Salesforce, Make.com, or analytics tools

We may also collect personal information indirectly from third-party sources where it is unreasonable or impracticable to collect it directly from you. This may include publicly available information or information from industry partners, always in accordance with applicable privacy laws.

3. Purposes for Collection and Use of Personal Information

We collect, hold, use, and disclose your personal information for the following purposes:

• To provide you with our cybersecurity consulting services.
• To respond to your enquiries, requests for information, or support needs.
• To manage our relationship with you and provide ongoing service delivery.
• To communicate with you about our services, updates, or industry insights that may be of interest (where you have consented or where permitted by law).
• To improve our website, services, and user experience, including through analytics and feedback.
• To conduct research and analysis to better understand market needs and trends.
• To comply with our legal and regulatory obligations in Australia and internationally.
• To protect our rights, property, or safety, and that of our clients or others.
• For billing and debt recovery purposes.

4. Disclosure of Personal Information

We may disclose your personal information to third parties in the following circumstances:

• Service Providers: To third-party service providers who assist us in operating our business (e.g., IT infrastructure providers, CRM providers like Salesforce, email communication services, professional advisors), provided they adhere to strict confidentiality obligations and handle your information in accordance with privacy laws.
• With Your Consent: Where you have given us your explicit consent to do so.
• Legal Requirements: Where we are required or authorised by law to do so, including in response to a court order or other legal process.
• Business Transfers: In the event of a merger, acquisition, or sale of all or part of our assets, your personal information may be transferred as part of that transaction.
• Protecting Our Rights: To protect the rights, property, or safety of Cybertify, our clients, or others.

We do not sell or rent your personal information to third parties for marketing purposes.

5. Data Quality, Storage, and Security

Cybertify is a cybersecurity firm, and as such, we take the security of personal information very seriously. We implement robust physical, technical, and administrative safeguards to protect the personal information we hold from misuse, interference, loss, unauthorised access, modification, or disclosure. These measures include:

• Implementing strong access controls and authentication mechanisms.
• Utilising encryption for data in transit and at rest where appropriate.
• Regularly conducting security assessments, penetration testing, and vulnerability management.
• Maintaining strict internal policies and procedures for data handling and access.
• Ensuring our third-party service providers meet our security standards.

We retain personal information only for as long as necessary to fulfil the purposes for which it was collected or as required by law. When personal information is no longer needed, we take reasonable steps to destroy or de-identify it.

6. Accessing and Correcting Your Personal Information

You have the right to request access to the personal information we hold about you. You also have the right to request that we correct any personal information that you believe is inaccurate, incomplete, or out of date.

To request access or correction, please contact us using the details provided in Section 11. We will respond to your request within a reasonable timeframe and in accordance with the Privacy Act 1988 (Cth). We may charge a reasonable fee for providing access, particularly if the request is complex.

7. Complaints

If you believe that we have breached the Australian Privacy Principles or a registered APP Code, you have the right to make a complaint. Please contact us using the details provided in Section 11, outlining the nature of your complaint. We will investigate your complaint promptly and endeavour to resolve it within a reasonable timeframe.

If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC) for further assistance:

Office of the Australian Information Commissioner (OAIC)

GPO Box 5218

Sydney NSW 2001

Phone: 1300 363 992

Website: www.oaic.gov.au

8. Cookies and Tracking Technologies

Our website uses "cookies" and other tracking technologies (e.g., Meta Pixel, LinkedIn Insight Tag, Google Analytics) to enhance your Browse experience, analyse website traffic, understand user behaviour, and support our marketing and advertising efforts.

• What are Cookies? Cookies are small text files placed on your device by websites that you visit. They are widely used to make websites work, or work more efficiently, as well as to provide information to the owners of the site.
• How We Use Cookies: We use cookies to:
• • Remember your preferences and improve functionality.
  • Collect anonymous statistical data on how our website is used.
  • Assist with our advertising campaigns and deliver relevant content.
• Managing Cookies: You can control and/or delete cookies as you wish. You can delete all cookies that are already on your computer and you can set most browsers to prevent them from being placed. However, if you do this, you may have to manually adjust some preferences every time you visit a site and some services and functionalities may not work.

By continuing to use our website, you consent to the use of cookies and tracking technologies as described in this Privacy Policy.

9. Links to Other Websites

Our website may contain links to third-party websites that are not operated by us. We are not responsible for the privacy practices or the content of these third-party websites. We encourage you to review the privacy policies of any third-party sites you visit.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. Any changes will be posted on this page, and the "Effective Date" at the top of the policy will be updated. We encourage you to review this Privacy Policy periodically.

11. Contacting Us

You may request access to the personal information we hold about you, request corrections, or make a complaint by contacting us at: privacy@cybertify.com.au.

‍