Skip to main content
0333 939 8454

Privacy notice and cookie policy

This Privacy Notice outlines the information we may collect about you (“personal data”) in relation to your use of our website and/or related services and how we may use that personal data.

DeCyber Limited, part of the Risk Transfer Group, is the Data Controller and decides how your personal data is processed and for what purpose.

How we use your information

Through introducing you to various products and services and to allow selected contracts to form, we will collect certain personal information from you. This will include contact name, email address, telephone number and payment card information. We will share relevant information with the selected service provider, which will act as a Data Controller in their own right, and which will contact you directly thereafter.

We will communicate with you as necessary for our legitimate interests in supporting you with your cyber security.

How we process your data

We comply with our obligations under Data Protection law by keeping your personal data up to date; storing and destroying it securely; we will not collect or retain data which we do not need for the above-mentioned purposes. We also protect your personal data from loss, misuse, unauthorised access and disclosure by ensuring that appropriate technical measures are embedded within our IT systems

Why we collect this information

We collect and maintain your personal data to enable us to provide the selected services to you and ensure maintenance thereafter. We will not use your data to market other products, unless we have your consent to do so.

What we do with your information

The personal data which is collected will be treated as confidential and will be shared only with the product/service providers selected. Each provider with which we share your data will act as a controller in their own right and will determine how the data is processed when in their control.

The data we collect from you will only be transferred outside the UK & EU if:

  • the recipient country is certified by UK & EU authorities as providing adequate levels of data protection; or
  • where approved safeguards such as standard contractual clauses or binding corporate rules have been implemented.

How long we keep your information

We keep the data collected for the duration of our relationship and for 3 years thereafter. Any complaint data is held for 5 years following closure of the complaint. If you undertake a health check and do not continue to purchase, we will keep your data for 12 months.

Visitors to our website

When someone visits we use a third-party service, Google Analytics, to collect standard internet log information and details of visitor behaviour patterns. We do this to find out things such as the number of visitors to the various parts of the site. This information is processed in a way which does not identify anyone. We do not make, and do not allow Google to make, any attempt to find out the identities of those visiting our website. See Google Analytics’ Cookie Usage page for more details for specific cookies for more information.

If we do want to collect personally identifiable information through our website, we will be up front about this and gain appropriate consent in order to do so. We will make it clear why we collect it and what we intend to do with it.

Use of cookies

Cookies are small text files that are placed on your computer by websites that you visit. They are widely used in order to make websites work more efficiently as well as to provide information to the owners of the site. Decyber Limited use cookies to provide information to the Google analytics tool.

To opt out of being tracked by Google Analytics across all websites visit:

Google analytics uses HTTP Cookies to ‘remember’ what a user has done on previous pages / interactions with the website. Google Analytics supports three JavaScript libraries (tags) for measuring website usage: gtag.js, analytics.js, and ga.js.

Woocommerce Cookies keep track of cart data, WooCommerce makes use of 3 cookies

  • woocommerce_cart_hash,
  • woocommerce_items_in_cart,
  • wp_woocommerce_session_,

The first two of these contain information about the cart as a whole and help WooCommerce know when the cart data changes. The final cookie contains a unique code for each customer so that it knows where to find the cart data in the database for each customer. No personal information is stored within these cookies.

WordPress Cookies store your login session so that you remain logged into the site. This cookie is removed when you log out.

  • wordpress_test_cookie is used to check if cookies are enabled / allowed;
  • wordpress_logged_in {hash value} is used to store a logged in session
  • wp-settings-1
  • wp-settings-time-1

Health Check Form is used to store values from the Health Check Form to same time in future enquiries or to complete an enquiry. This cookie expires after 30 days:

  • health_check_values

People who email us

We monitor any emails sent to us, including file attachments, for viruses or malicious content. Please be aware that you have a responsibility to ensure that any email you send is within the bounds of the law.

Decyber Limited Contact

You can contact us:
By post: Decyber Limited
20 Gracechurch Street
By email:
Please address your correspondence for the attention of Data Protection Officer (DPO).

Your rights over your information (EU & UK residents)

By law, you can ask us what information we hold about you, and you can ask us to correct it if it is inaccurate. You can also ask for us to give you a copy of the information or request the transfer of the information to a third party.

Your right to complain (EU & UK residents)

If you have a complaint about our use of your information, you can contact us at the above noted address or the Information Commissioner’s Office via their website at or write to them at:

Information Commissioner’s Office
Wycliffe House
Water Lane

People who make a complaint to us (EU & UK residents)

If we receive a complaint from a person this is logged, and an assessment undertaken. This normally contains the identity of the complainant and any other individuals involved in the complaint. We will only use the personal information we collect to investigate the complaint and provide a conclusion to the complainant. We usually disclose the complainant’s identity to whoever the complaint is about. This is inevitable where the accuracy of the complaint is in dispute however, if a complainant doesn’t want information identifying him or her to be disclosed, we will try to respect that.

We will keep personal information contained in complaint logs and supporting information in line with our retention policy. This means that information relating to a complaint will be retained for three years from closure. It will be retained in a secure environment and access to it will be restricted according to the ‘need to know’ principle.  

We may change this notice from time to time by updating this page. You should check this page from time to time to ensure that you are happy with any changes. This notice is effective from 10th October 2018 and will be reviewed on a minimum of an annual basis and changed, where necessary.

Our Partners and Providers