Privacy Policy

Effective Date: July 2025

Domain: https://www.cyblink.ai

Cyblink Ltd. ("Cyblink," "we," "us," or "our") operates the Cyblink platform at www.cyblink.ai (the "Platform") and related pages, subdomains, and features (together, the "Services"). We respect your privacy and are committed to protecting it.

This Privacy Policy explains what personal data we collect, how we use it, with whom we share it, how we secure it, and the choices and rights available to you.

By using the Services, you agree to this Privacy Policy.

1. Who this policy covers

  • Visitors – individuals browsing our site.
  • Customers – organizations seeking to address cyber-risk needs.
  • Vendors – providers offering cybersecurity products/services.
  • Prospects/Partners – business contacts we interact with commercially.

2. What we collect

We collect data in three ways: you provide it, it's collected automatically, or we receive it from third parties.

Data you provide:

  • Contact and business details (e.g., name, work email, phone, company, role).
  • Account credentials (usernames; passwords are stored hashed).
  • Materials you upload or submit (e.g., RFPs, questionnaires, risk summaries).
  • Communications with us (support tickets, email, chat, calls/meetings—recorded only with notice/consent).

Data collected automatically:

  • Technical/usage data: IP address, device/OS/browser, pages viewed, timestamps, referring URLs, general location (city/region), and interactions with the Services.
  • Cookies and similar technologies.

Data from third parties:

  • Business contact details and role information from event organizers, referral partners, or public/professional sources (e.g., LinkedIn, data-enrichment tools), subject to their notices and your choices.

No end-user customer data:

  • Cyblink is a B2B marketplace. Customers should not supply personal data about their own end users to us via the Platform.
  • If you are an end user of a Customer, please contact that Customer regarding their privacy practices.

3. How we use personal data

We use personal data to:

  • Provide and operate the Services (account creation, matchmaking, messaging, support).
  • Authenticate and secure accounts (fraud/abuse prevention, access controls).
  • Facilitate matchmaking between Customers and Vendors with explicit mutual consent.
  • Improve and develop the Services (including analytics, troubleshooting, A/B testing).
  • Communicate service updates, notices, and—where permitted—marketing/newsletters (you can opt out of marketing at any time).
  • Comply with laws, enforce our Terms, and protect rights, safety, and property.

We may create aggregated, de-identified insights (non-personal data) for statistics and service improvement.

Legal bases (EEA/UK users): performance of contract, legitimate interests (to provide, secure, and improve the Services), consent (e.g., for certain cookies/marketing), and legal obligations.

4. How we share personal data

We do not sell personal data and do not share it for cross-context behavioral advertising.

We may share personal data with:

  • Service Providers / processors that help us operate the Services (hosting, security, analytics, email/SMS delivery, payment processing, CRM/support). They may only process data under our instructions and must protect it appropriately.
  • Your organization (for Users acting on behalf of a Customer/Vendor) so authorized colleagues can view/manage account-related information.
  • Partners involved in an event, webinar, referral or co-marketing activity (only as appropriate and subject to lawful bases).
  • Legal and safety recipients where required by law, court order, or to protect rights/safety.
  • Corporate transactions (merger, acquisition, financing). Successors will be bound by terms no less protective than these.

Any Customer–Vendor engagement (SOW, order, agreement, deliverables) is strictly between those parties (see our Terms of Use). Cyblink is not a party to those contracts.

5. International transfers

We host and process data on reputable cloud infrastructure (e.g., AWS) in locations that may include the U.S., EU/EEA, UK, and Israel. When transferring personal data internationally, we use appropriate safeguards (e.g., Standard Contractual Clauses, UK IDTA/Addendum, and other mechanisms as applicable).

6. Data retention

We retain personal data for as long as needed to provide the Services, comply with legal obligations, resolve disputes, and enforce agreements—then delete or de-identify it in accordance with our retention policy. You can request deletion.

7. Security

We implement administrative, technical, and physical safeguards to protect personal data—such as TLS 1.3 in transit, AES-256 at rest, access controls (e.g., MFA for admin access), logging, and least-privilege practices. No system is 100% secure; we continuously work to improve our defenses.

8. Cookies & similar technologies

We use cookies and similar technologies to operate, secure, and improve the Services (e.g., session management, analytics). You can manage cookie preferences in your browser; disabling some cookies may affect site functionality. Where required, we obtain consent for non-essential cookies.

9. Your privacy rights

Depending on your location, you may have rights to access, rectify, delete, object or restrict processing, and port your data, as well as to withdraw consent (where processing is based on consent). To exercise rights, contact privacy@cyblink.ai. We may need to verify your identity. You also have the right to lodge a complaint with your local supervisory authority.

Marketing choices: you can opt out of marketing emails at any time via the link in the email or by contacting us.

10. Children

The Services are not intended for individuals under 18. We do not knowingly collect personal data from children. If you believe a child has provided us data, contact privacy@cyblink.ai and we will take appropriate action.

11. Third-party sites & services

Our Services may link to or integrate with third-party websites and tools. Their privacy practices are governed by their own policies. Please review those policies before using such services.

12. Changes to this policy

We may update this Privacy Policy from time to time. We will post the updated version with a new "Effective Date." Material changes will be highlighted on the site. Your continued use of the Services after changes take effect means you accept the updated Policy.

13. Contact us (Data Controller)

Cyblink Ltd.

Email: privacy@cyblink.ai