At Cyberlaw Solutions Group, we consider the protection of privacy, confidentiality, and the secure handling of personal data to be a fundamental component of our professional ethics, internal compliance culture, and operational standards. We are committed to maintaining high levels of transparency and accountability in relation to the collection and processing of personal data of individuals who visit our website, contact us, request a consultation, submit a form, or otherwise interact with our services. This Privacy Policy (“Policy”) is designed to provide you with clear, detailed, and comprehensive information regarding how we collect, store, use, disclose, and protect personal data, including the purposes for which such data is processed, the legal bases relied upon, the categories of recipients who may receive the data, the retention periods applicable, and the rights available to you as a data subject. We process personal data in accordance with applicable laws and regulations, including, where applicable, the General Data Protection Regulation (EU) 2016/679 (“GDPR”), as well as other relevant national and international privacy, confidentiality, and data protection standards. By accessing our website, using our services, submitting your information through the website or communication channels, or otherwise providing personal data to us, you acknowledge that you have read and understood this Policy. Where required by law, we will request your explicit consent for specific processing activities.
2. Definitions
For the purposes of this Policy, the following terms shall have the meanings set forth below:
Personal Data means any information relating to an identified or identifiable natural person, including information that can directly or indirectly identify an individual.
Processing means any operation or set of operations performed on Personal Data, whether or not by automated means, including collection, recording, structuring, storage, adaptation, retrieval, consultation, use, disclosure, transmission, restriction, erasure, or destruction.
Controller means the entity that determines the purposes and means of the processing of Personal Data. For the purposes of this Policy, the Controller is Cyberlaw Solutions Group.
Data Subject means the natural person whose Personal Data is processed.
Recipient means any natural or legal person, public authority, agency, or other body to which Personal Data is disclosed.
3. Information
We CollectWe may collect and process the following categories of information, depending on how you interact with our website and services:
3.1. Information Provided Directly by You
This may include, without limitation:
Full name and identification details (where voluntarily provided);
Contact details such as email address, phone number, country of residence, and preferred communication channel;
Information submitted via forms, email communications, messages, or phone calls;
Case-related details provided voluntarily by you, including descriptions of events, relevant counterparties, transaction references, platform details, and supporting documents;
Any additional information that you choose to provide, including documents, screenshots, correspondence, or other materials relevant to your inquiry.
3.2. Information Collected Automatically
When you access or use our website, certain data may be collected automatically, including:
IP address, device identifiers, browser type and version, operating system, language, time zone settings, and approximate location data;
Website usage information such as pages visited, time spent on pages, navigation patterns, and interactions with forms or links;
Technical logs, security events, and diagnostic data used to protect our systems and prevent abuse;
Cookies and tracking technologies as described in Section 6.
3.3. Information Obtained from Third Parties
Where legally permissible and relevant to your request, we may receive information from:
Publicly available sources and open registers;
Third-party service providers or professional advisers engaged by you or by us (where applicable);
Counterparties, institutions, or authorities, where disclosure is lawful and necessary for the handling of your inquiry;
References or verification providers, where such checks are legally permissible and proportionate.
4. Purposes of Data Processing
We may process Personal Data for one or more of the following purposes:
Provision of services and case assessment: to review your inquiry, evaluate the information provided, determine potential options, and provide an initial consultation or guidance consistent with our scope of services.
Communication and client support: to contact you regarding your request, provide responses, request clarifications, schedule consultations, and send administrative messages related to your interaction with us.
Compliance and legal obligations: to comply with applicable laws, regulations, court orders, lawful requests by authorities, and internal compliance requirements.
Fraud prevention and security: to protect our website and systems, prevent unauthorized access, mitigate cybersecurity risks, detect harmful activity, and maintain the integrity of our infrastructure.
Website operations and improvements: to administer the website, monitor performance, perform analytics, troubleshoot issues, and enhance user experience.
Marketing and informational communications (where lawful): to send service updates, informational content, or promotional communications, subject to your preferences and consent requirements.
5. Legal Bases for Processing
Where GDPR applies, we process Personal Data based on one or more legal grounds, including:
Consent (Art. 6(1)(a)) — where you have given explicit consent for specific purposes (e.g., marketing communications or certain non-essential cookies).
Contractual necessity (Art. 6(1)(b)) — where processing is necessary to take steps at your request prior to entering into a contract or for performance of a contract.
Legal obligation (Art. 6(1)(c)) — where processing is required to comply with legal or regulatory obligations.
Legitimate interests (Art. 6(1)(f)) — where processing is necessary for our legitimate operational interests, such as safeguarding our systems, improving our website, and responding to requests, provided such interests are not overridden by your fundamental rights and freedoms.
Where required by law, we will provide additional notices and obtain explicit consent prior to processing.
6. Cookies and Tracking Technologies
We may use cookies and similar tracking technologies to improve website functionality and performance, maintain security, and understand how visitors interact with the website. Cookies may be used for:
Ensuring essential site functionality and user session stability;
Security and abuse prevention;
Aggregated analytics and performance measurement;
Improving user experience and website content.
You may disable cookies through your browser settings. However, disabling certain cookies may result in limited website functionality. Where required, we provide cookie choices and consent options in accordance with applicable law.
7. Data Sharing and Disclosure
We treat Personal Data as confidential and do not disclose it to third parties except in limited circumstances and only to the extent necessary, including:
Internal access: authorized personnel, contractors, and representatives with a strict need-to-know basis, subject to confidentiality obligations.
Service providers: hosting providers, IT support, analytics providers, and other vendors who process data on our behalf under contractual safeguards and confidentiality commitments.
Professional advisers and partners (where applicable): only where necessary to handle your request and where legally permissible.
Authorities and legal requirements: regulators, courts, law enforcement, or other authorities where disclosure is required by law or lawful request.
We do not sell, rent, or commercially trade Personal Data.
8. Data Storage and Retention
We implement reasonable and appropriate safeguards to store Personal Data securely and restrict access to authorized persons. Personal Data is retained only for as long as necessary to achieve the purposes outlined in this Policy, including compliance with legal obligations and resolution of disputes. Retention periods may vary depending on:
the nature of the request and services provided;
legal and regulatory requirements;
the need to maintain records for legitimate business or compliance purposes.
After the retention period expires, data is securely deleted, anonymized, or otherwise rendered inaccessible, subject to technical feasibility and legal requirements.
9. Your Rights as a Data Subject
Where GDPR applies (and where applicable under other laws), you may have the following rights:
Right of access to your Personal Data;
Right of rectification of inaccurate or incomplete data;
Right of erasure (“right to be forgotten”), subject to legal limitations;
Right to restriction of processing in certain cases;
Right to data portability where applicable;
Right to object to processing based on legitimate interests;
Right to withdraw consent at any time where processing is based on consent (without affecting the lawfulness of processing prior to withdrawal);
Right to lodge a complaint with a supervisory authority.
Requests should be submitted in writing using the contact details in Section 12. We may request reasonable verification of identity to protect data security and prevent unauthorized access.
10. Security Measures
We apply technical and organizational measures designed to protect Personal Data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. Such measures may include access controls, encrypted communication channels where appropriate, secure hosting environments, monitoring systems, and internal confidentiality controls. Despite our efforts, no method of transmission over the internet and no storage system can be guaranteed to be absolutely secure. You acknowledge that you provide information at your own risk. In the event of a data breach that is likely to result in a risk to the rights and freedoms of individuals, we will notify the relevant authority and/or affected individuals where required by law.
11. International Data Transfers
Where Personal Data is transferred outside the European Economic Area (EEA), we will ensure appropriate safeguards are in place, such as Standard Contractual Clauses approved by the European Commission, or other legally recognized transfer mechanisms. Transfers will be conducted only where necessary and only to the extent permitted by applicable law.
12. Contact Information
For any questions, requests, or concerns relating to this Policy or your Personal Data, contact:
We reserve the right to amend, update, or revise this Privacy Policy at any time to reflect changes in legislation, regulatory guidance, industry practice, or our internal procedures. The updated version will be published on our website with the revised “Effective Date” indicated at the top of this Policy.