Privacy Policy

1.1 Information You Provide Directly

We collect information you voluntarily provide when you interact with our services, including but not limited to: your full name, email address, phone number, company name and job title, billing and payment information, information submitted through contact forms, consultation requests, or service enquiries, and any other data you choose to share with us during the course of our engagement.

1.2 Information Collected Automatically

When you visit our website or use our platforms, we may automatically collect certain technical data, including: your IP address and approximate geographic location, browser type and version, operating system, device information (device type, screen resolution, unique device identifiers), pages visited, time spent on pages, and referral URLs, clickstream data and interaction patterns, and log files and diagnostic data.

1.3 Information from Third Parties

We may receive information about you from third-party sources such as business partners, marketing platforms, publicly available databases, and industry threat intelligence feeds used in the delivery of our cybersecurity services.

CycloudForte uses your personal data for the following purposes: to provide, operate, and maintain our cybersecurity services and products, to process and fulfil service requests, consultations, and security assessments, to communicate with you regarding your account, service updates, and security advisories, to send you marketing communications (with your consent), including newsletters, whitepapers, and event invitations, to improve our website, services, and user experience through analytics and feedback, to comply with applicable legal and regulatory obligations, to detect, prevent, and respond to fraud, security incidents, and unauthorized access, and to fulfil our contractual obligations to clients and partners.

We process your personal data on the following legal bases under the Nigeria Data Protection Regulation (NDPR) and the Nigeria Data Protection Act (NDPA): consent (where you have given clear consent for us to process your data for a specific purpose), contractual necessity (where processing is necessary to perform a contract with you or take pre-contractual steps at your request), legitimate interest (where processing is necessary for our legitimate business interests, provided those interests do not override your fundamental rights), and legal obligation (where processing is necessary to comply with Nigerian law or regulatory requirements).

We do not sell your personal data. We may share your information in the following circumstances:

Service Providers

We engage trusted third-party vendors who assist in delivering our services, such as cloud hosting providers, payment processors, email service providers, and analytics platforms. These providers are contractually bound to protect your data and use it only for the purposes we specify.

Legal Requirements

We may disclose your information where required by law, court order, regulatory authority, or governmental request, or where disclosure is necessary to protect our legal rights, safety, or property.

Business Transfers

In the event of a merger, acquisition, or sale of company assets, your personal data may be transferred as part of that transaction. We will notify you of any such change and ensure your data remains protected.

With Your Consent

We may share your data with third parties when you have given us explicit consent to do so.

Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyse website traffic, and understand user behaviour. The types of cookies we use include:

Essential Cookies

Required for the basic functionality of our website. These cannot be disabled.

Analytics Cookies

Help us understand how visitors interact with our website by collecting and reporting anonymised information.

Marketing Cookies

Used to track visitors across websites to display relevant advertisements. These are only placed with your consent.

You can manage your cookie preferences through your browser settings. Please note that disabling certain cookies may affect the functionality of our website.

We retain your personal data only for as long as is necessary to fulfil the purposes for which it was collected, comply with our legal obligations, resolve disputes, and enforce our agreements. Specific retention periods include: client engagement records retained for a minimum of 6 years after the end of the business relationship, marketing contact data retained until you withdraw consent or unsubscribe, website analytics data retained for up to 26 months, and security assessment reports and audit logs retained for a minimum of 5 years in accordance with industry best practices.

When personal data is no longer required, we securely delete or anonymise it using industry-standard methods.

CycloudForte Ltd is committed to complying with the Nigeria Data Protection Regulation (NDPR) 2019 and the Nigeria Data Protection Act (NDPA) 2023. In accordance with these regulations, we have implemented appropriate technical and organisational measures to protect personal data, appointed a Data Protection Officer (DPO) to oversee compliance, conducted Data Protection Impact Assessments (DPIAs) where required, maintained a lawful basis for all data processing activities, and ensured that all third-party processors comply with NDPR and NDPA requirements.

For data protection enquiries or to contact our DPO, please email info@cycloudforte.com.

Under the NDPR, NDPA, and other applicable data protection laws, you have the following rights regarding your personal data:

Right of Access

You have the right to request a copy of the personal data we hold about you.

Right to Rectification

You can request that we correct inaccurate or incomplete personal data.

Right to Erasure

You can request the deletion of your personal data, subject to certain legal exceptions.

Right to Restrict Processing

You can request that we limit how we use your personal data.

Right to Data Portability

You can request your personal data in a structured, commonly used, and machine-readable format.

Right to Object

You can object to the processing of your personal data for direct marketing or other purposes based on legitimate interest.

Right to Withdraw Consent

Where processing is based on consent, you may withdraw your consent at any time without affecting the lawfulness of processing carried out before withdrawal.

To exercise any of these rights, please contact us at info@cycloudforte.com. We will respond to your request within 30 days.

As a cybersecurity company, we take the protection of your data seriously. We implement industry-leading security measures including: encryption of data in transit (TLS 1.2+) and at rest (AES-256), multi-factor authentication for access to systems containing personal data, regular vulnerability assessments and penetration testing, access controls based on the principle of least privilege, continuous monitoring and logging of access to personal data, employee security awareness training and background checks, incident response procedures for data breach detection and notification, and regular security audits and compliance reviews.

Where we transfer personal data outside of Nigeria, we ensure that appropriate safeguards are in place in accordance with the NDPR and NDPA. These safeguards include adequacy assessments of the recipient country's data protection framework, Standard Contractual Clauses (SCCs) or equivalent transfer mechanisms, and additional technical measures such as encryption to protect data during transfer.

Our services are not directed at individuals under the age of 18. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected personal data from a child, we will take immediate steps to delete such data. If you believe we may have collected information from a child, please contact us at info@cycloudforte.com.

We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, legal requirements, or other factors. When we make material changes, we will notify you by posting the updated policy on our website and updating the "Last Updated" date. We encourage you to review this policy periodically to stay informed about how we protect your data.

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal data, please contact us:

CycloudForte Ltd Email: info@cycloudforte.com Website: www.cycloudforte.com