CyberX
Online
Legal Document

Privacy Policy

Last updated: 14 June 2026

CyberX ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

1. Information We Collect

Personal Information

We may collect personal information that you voluntarily provide to us when you:

  • Register for our services or create an account
  • Submit a contact form or request information
  • Subscribe to our newsletter
  • Purchase our products or services
  • Participate in surveys or promotions

This information may include: name, email address, phone number, company name, job title, and billing information.

Automatically Collected Information

When you visit our website, we automatically collect certain information, including:

  • IP address and location data
  • Browser type and version
  • Operating system
  • Pages visited and time spent on each page
  • Referring website or source
  • Device identifiers

Security Scanner Data

When you use our Security Scanner tool, we collect:

  • Domain names submitted for scanning
  • Scan results and security assessment data
  • Token information for Pro access verification

2. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain our services
  • Process transactions and send related information
  • Respond to your inquiries and provide customer support
  • Send promotional communications (with your consent)
  • Improve our website and services
  • Detect and prevent fraud or security incidents
  • Comply with legal obligations
  • Enforce our terms and conditions

3. Legal Basis for Processing (GDPR)

Under the UK GDPR and EU GDPR, we process your personal data based on the following legal grounds:

  • Consent: Where you have given explicit consent for specific processing activities
  • Contract: Where processing is necessary to perform our contractual obligations
  • Legal Obligation: Where we must comply with legal requirements
  • Legitimate Interests: Where processing is necessary for our legitimate business interests, provided these do not override your rights

4. Sharing Your Information

We may share your information with:

  • Service Providers: Third-party vendors who assist in operating our business (payment processors, email services, cloud hosting)
  • Business Partners: X Group companies (TechX, CodeX) where relevant to providing services
  • Legal Requirements: When required by law, court order, or government request
  • Business Transfers: In connection with any merger, acquisition, or sale of assets

We do not sell your personal information to third parties.

5. International Data Transfers

Your information may be transferred to and processed in countries outside the UK and European Economic Area (EEA). When we transfer data internationally, we ensure appropriate safeguards are in place, including:

  • Standard Contractual Clauses approved by the UK ICO or European Commission
  • Binding Corporate Rules for intra-group transfers
  • Adequacy decisions where applicable

6. Your Rights

Under UK and EU data protection laws, you have the following rights:

  • Right of Access: Request a copy of your personal data
  • Right to Rectification: Request correction of inaccurate data
  • Right to Erasure: Request deletion of your personal data
  • Right to Restrict Processing: Request limitation of processing
  • Right to Data Portability: Receive your data in a structured format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time

To exercise these rights, please contact us at support@cyberxhubs.com

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:

  • Account information: Duration of your account plus 6 years
  • Transaction records: 7 years for tax and legal compliance
  • Security scanner data: 90 days unless you request earlier deletion
  • Marketing preferences: Until you unsubscribe

8. Security Measures

We implement appropriate technical and organizational measures to protect your personal data, including:

  • Encryption of data in transit and at rest
  • Regular security assessments and penetration testing
  • Access controls and authentication mechanisms
  • Staff training on data protection
  • Incident response procedures

9. Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

10. Contact Us

If you have questions about this Privacy Policy or wish to exercise your rights, please contact:

CyberX - Data Protection

Part of X Group

Email: support@cyberxhubs.com

You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk