Privacy Policy

Home Privacy Policy
Read More Get In Touch

1. Introduction

Welcome to Kyber Automation Ltd. (“we”, “us”, “our”). We are committed to protecting and respecting your privacy. This policy explains how we collect, process, and protect personal data.

Kyber Automation Ltd. is a company registered in England and Wales (Company No. 16568937) with its registered office at [X]. For the purpose of the UK General Data Protection Regulation (UK GDPR), we are the data controller for data related to our own business operations and a data processor for data handled on behalf of our clients.

2. Data We Collect

We may collect and process the following data:

  • Information you give us: This includes information you provide when you fill in forms on our website (www.kyberautomation.com), correspond with us by phone or email, or engage our services. It may include your name, address, email address, and phone number.
  • Information we collect automatically: When you visit our website, we may automatically collect technical information, including your IP address, browser type, and information about your visit (e.g., pages viewed). Our Cookie Policy has more details.
  • Information processed through our automation solutions: When providing services to our clients, we build and manage automation workflows. These workflows process data as instructed by our client. The type of data processed is determined by the client and the specific automation but may include customer details, employee information, or financial data.

3. How We Use Your Data

We use your information in the following ways:

  • To provide you with information and services that you request from us.
  • To carry out our obligations arising from any contracts entered into between you and us (e.g., via a Master Service Agreement and SOW).
  • To administer our website and for internal operations, including troubleshooting and data analysis.
  • To comply with legal and regulatory obligations.

When acting as a data processor, we only process data on behalf of our clients and in accordance with their documented instructions.

4. Legal Basis for Processing

Our legal basis for collecting and using the personal information described above will depend on the information concerned and the context in which we collect it. We will normally collect personal information from you only:

  • Where we need the personal information to perform a contract with you.
  • Where the processing is in our legitimate interests and not overridden by your rights.
  • Where we have your consent to do so.

5. Data Sharing and Third-Party Integrations

We do not sell your personal data. We may share your information with:

  • Business Partners and Suppliers: For the performance of any contract we enter into with them or you (e.g., our accountants, legal advisors).
  • Analytics and Search Engine Providers: That assist us in the improvement of our website.
  • Automation Platform & Sub-Processors: When we build automation solutions, data is processed by our core automation platform and may be passed between third-party applications as designated by our client (e.g., from a client’s CRM to their accounting software). All data processing occurs on secure infrastructure, and we ensure any sub-processors meet strict data protection standards. A full list of sub-processors for a given project is available in the Data Processing Agreement (DPA).

6. International Data Transfers

Data processed by our core automation platform is hosted on secure servers located within the United Kingdom or the European Economic Area (EEA). We ensure that any data transfers outside of the UK/EEA are conducted in compliance with UK GDPR, using mechanisms like the UK’s Adequacy Regulations or Standard Contractual Clauses (SCCs).

7. Data Retention

We retain personal data we collect from you where we have an ongoing legitimate business need to do so (for example, to provide you with a service you have requested or to comply with applicable legal, tax, or accounting requirements).

Data processed within our automation workflows for operational purposes (e.g., execution logs for debugging) is retained for a limited period, typically no more than 30 days, before being permanently deleted, unless a longer period is required for compliance or contractual reasons.

8. Your Data Protection Rights

Under UK GDPR, you have the following rights:

  • The right to access, correct, update, or request deletion of your personal information.
  • The right to object to processing of your personal information.
  • The right to request portability of your personal information.
  • The right to opt-out of marketing communications at any time.
  • The right to withdraw consent at any time.

To exercise any of these rights, please contact us at contact@kyberautomation.com

9. Cookie Policy

Our website uses cookies to distinguish you from other users. This helps us provide you with a good experience. For detailed information on the cookies we use and the purposes for which we use them, see our Cookie Policy page on our website.

10. Contact Information

If you have any questions or concerns about our use of your personal information, please contact our Data Protection Lead:

  • Name: Ryan Smith
  • Email: contact@kyberautomation.com

You also have the right to complain to the Information Commissioner’s Office (ICO), the UK supervisory authority for data protection issues (www.ico.org.uk).