Privacy Policy

🔍 1. What Personal Data We Collect

When you use the vCiso.co website, we may collect and process the following types of personal data:

a) Information You Provide Directly

  • Name, email address, phone number, job title, and organisation

  • Details submitted through contact forms or newsletter sign-ups

  • Payment or billing information if you make a purchase or register for a service

b) Device & Usage Data (Automatically Collected)

  • IP address, browser type, operating system

  • Time zone settings, referring URLs

  • Pages visited, time spent on site, and site interactions

  • Cookie data (see our Cookie Policy)

We refer to this as “Device Information.” While this data is not used to identify you directly, it may be combined with other data for security and analytical purposes.

🎯 2. Why We Process Your Data

We process your personal data to:

  • Provide and manage services you request

  • Communicate with you, including responding to enquiries

  • Send updates, marketing, and insights (with your consent)

  • Detect, prevent, and address technical issues or fraud

  • Comply with legal and regulatory obligations

Lawful Bases for Processing:

We rely on one or more of the following lawful grounds:

  • Consent (e.g. newsletter subscriptions)

  • Contractual necessity (e.g. fulfilling service agreements)

  • Legitimate interests (e.g. improving site performance, security)

  • Legal obligations (e.g. maintaining records for tax or regulatory purposes)

🛡 3. How We Protect Your Data

We implement appropriate technical and organisational measures to:

  • Keep your data secure

  • Prevent unauthorised access, disclosure, or alteration

These include encryption, firewalls, access controls, and staff training. While no system is 100% secure, we work continuously to keep your data safe.

🌍 4. International Data Transfers

Some of your data may be transferred outside the UK/EEA, including to countries such as the United States or Canada. In such cases, we ensure that appropriate safeguards are in place, such as:

  • Standard Contractual Clauses (SCCs)

  • Transfers to jurisdictions deemed adequate by the UK

👤 5. Your Data Rights

Under the UK GDPR, you have the following rights:

  • Right to be informed – Know how we use your data

  • Right of access – Request a copy of your data

  • Right to rectification – Fix inaccuracies

  • Right to erasure – Ask us to delete your data

  • Right to restrict processing – Limit how we use your data

  • Right to data portability – Move your data elsewhere

  • Right to object – Challenge certain uses (like direct marketing)

  • Rights related to automated decision-making – Where applicable

📧 To exercise your rights, contact us at: info@vciso.co

🍪 6. Cookies and Analytics

We use cookies and similar technologies to:

  • Enhance website functionality

  • Monitor performance and usage

  • Tailor marketing and content

You can control cookies through your browser settings. See our [Cookie Policy] for details.

🔗 7. Links to Third-Party Sites

Our website may link to other sites not operated by us. We are not responsible for the privacy practices or content of third-party sites. Please review their privacy policies before submitting data.

⚖️ 8. Legal Obligations and Disclosures

We may disclose your personal data where required to:

  • Comply with legal obligations or valid legal requests

  • Investigate and prevent fraud or threats to security

  • Protect our rights or the rights of others

📬 9. Contact Us

If you have questions about this Privacy Notice or how we handle your data, please contact us:

VCiso
Email: info@vciso.co
Website: https://www.vciso.co

You also have the right to lodge a complaint with the UK Information Commissioner’s Office (ICO) if you believe your data has been mishandled: https://ico.org.uk/

Security

Expert CISO services for your organization's protection.

Compliance

Leadership

info@vciso.co

02071752476

© 2025. All rights reserved.