Privacy Policy
How we collect, use and protect your personal data — and the rights you have under the GDPR.
This policy explains how PsyBear Security ("we", "us", "our") handles personal data collected through our website, psybearsecurity.io, and in the course of providing our services. We are committed to protecting your privacy and handling your data in line with the EU General Data Protection Regulation (GDPR) and applicable Irish data protection law.
1. Who we are
PsyBear Security is a cybersecurity consultancy based in Dublin, Ireland, and is the data controller for the personal data described in this policy. If you have any questions about this policy or your data, contact us at info@psybearsecurity.io.
2. The data we collect
We only collect personal data that you choose to provide, or that is necessary to operate our website and deliver our services:
- Enquiry & consultation data — when you submit our contact form, we collect the details you provide, such as your name, email address, phone number, company, company size, what you're interested in, and the contents of your message.
- Correspondence — if you email us, we keep a record of that correspondence so we can respond and maintain our business relationship.
- Service-delivery data — where you engage us, we may process information necessary to carry out the agreed work, under the terms of a separate engagement agreement and confidentiality arrangement.
- Technical data — our hosting provider may automatically log basic technical information (such as IP address and browser type) for security and to keep the site running. We do not use this to identify individuals.
3. How we use your data, and our lawful basis
We use your personal data to:
- Respond to your enquiry and provide the information or consultation you've requested — on the basis of steps taken at your request prior to entering a contract, and our legitimate interest in responding to business enquiries.
- Provide, manage and improve our services to you — on the basis of performance of a contract.
- Meet our legal and regulatory obligations — on the basis of legal obligation.
We do not send marketing emails without your consent, and we do not sell your data to anyone.
4. Sharing your data
We do not sell or rent your personal data. We share it only where necessary, with:
- Service providers who act on our behalf — for example, our website host and the form-handling service that delivers your enquiry to our inbox. These providers process data under our instructions.
- Professional advisers or authorities — where we are required to do so by law.
Our contact form is delivered using a third-party form service, and our website loads fonts from Google Fonts; in doing so, limited technical data (such as your IP address) may be processed by those providers to deliver the request. Where any provider processes data outside the European Economic Area, we rely on appropriate safeguards such as the European Commission's Standard Contractual Clauses.
5. How long we keep it
We keep enquiry and correspondence data only as long as needed to deal with your request and for our legitimate business records, after which it is securely deleted. Where you become a client, we retain data for the duration of our engagement and for any period required by law or our professional obligations.
6. Your rights
Under the GDPR you have the right to:
- Access the personal data we hold about you;
- Have inaccurate data corrected;
- Have your data erased in certain circumstances;
- Restrict or object to our processing of your data;
- Data portability, where applicable;
- Withdraw consent at any time, where we rely on consent.
To exercise any of these rights, email info@psybearsecurity.io. We will respond within the timeframes set by law.
7. Cookies
Our website does not use tracking or advertising cookies. Any storage used is strictly necessary for the site to function. Third-party resources (such as Google Fonts) may be loaded as described above.
8. Security
Security is our profession. We apply appropriate technical and organisational measures to protect personal data against unauthorised access, loss or misuse. No method of transmission over the internet is completely secure, but we work hard to safeguard your information.
9. Changes to this policy
We may update this policy from time to time. The "last updated" date above shows when it was last revised. Material changes will be reflected here.
10. Contact & complaints
For any privacy question or request, contact us at info@psybearsecurity.io.
If you are unhappy with how we have handled your data, you have the right to lodge a complaint with the Irish Data Protection Commission (dataprotection.ie), or your local supervisory authority.
This policy is provided for transparency and general information. We recommend having it reviewed by your own legal adviser to ensure it fully reflects your final processing activities and providers.