Who we are

Our website address is: https://cysecaware.co.uk.

What personal data we collect and why we collect it

Contact forms

If you choose to get in touch with us via our contact form an email is automatically sent to us containing the information in the form. This information is NOT retained on our website or in any database on our website. We will use this information to make contact with you to discuss our services as requested. If you choose to engage with our services we will retain this data in accordance with our customer privacy policy which will be sent to you as part of our contracting process. If you do not engage with our services we will delete your data no later than 3 months after submission. We do not share this information or send any marketing emails.

Emails

If you choose to get in touch with us via email, we will use this information to make contact with you to discuss our services as requested. If you choose to engage with our services we will retain this data in accordance with our customer privacy policy which will be sent to you as part of our contracting process. If you do not engage with our services we will delete your data no later than 3 months after submission. We do not share this information or send any marketing emails.

Analytics

We gather information about site usage to help the development and improvement of services to the public, and to protect the integrity of our systems from malicious users. At the moment this information consists of: 

  • Statistical information obtained using Google Analytics. No information collected can be used to identify individual users. For more details about how this affects your privacy please visit the Google Analytics Privacy Centre. If you don’t want to send information to Google Analytics, an Opt-out Browser Add-on is also available or you can configure your browser to let you to choose which, if any, cookies are allowed to be created.
  • Information obtained by our content management system to examine what people are searching for, what they find and occasions where no results are returned. Information collected can’t be used to identify individual users.

We don’t try to monitor the browsing behaviour of individual users through any hidden means.

The IP address of visitors and username of failed login attempts are conditionally logged to check for malicious activity and to protect the site from specific kinds of attacks. Examples of conditions when logging occurs include login attempts, log out requests, requests for suspicious URLs, changes to site content, and password updates. This information is retained for 60 days.

The Use of Cookies

Cookies are used on this website to improve user experience and for essential functionality; they are not used for identification purposes.

We use the following cookies on the website for the reasons explained below.

Google Analytics and Google Tag Manager

These cookies help us accurately estimate the number of visitors to the website and provide us with a better understanding of how our customers use it.   

Google Analytics sets the following cookies:         

Google Analytics
Cookie nameExpiration timePurpose
_gaTwo yearsThis cookie is used to distinguish users, which helps us count how many people visit our website and understand which pages are useful
_gid24 hoursThis cookie is used to distinguish users, which helps us count how many people visit our website and understand which pages are useful
_gatTen minutesUsed to manage the rate at which page view requests are made
Cookie nameExpiration timePurpose
_utmaTwo yearsLike _ga, this lets us know if you’ve visited before, so we can count how many of our visitors are new to the site or to a certain page
_utmb30 minutesThis works with _utmc to calculate the average length of time you spend on the site
_utmcWhen you close browserThis works with _utmb to calculate when you close your browser
_utmt10 minutesUsed to manage the rate at which page view requests are made
_utmzSix monthsThis tells us how you reached the site (eg from another website or a search engine)

If you don’t want to send information to Google Analytics, an opt-out browser add-on is also available or you can configure your browser to enable you to choose which, if any, cookies are allowed to be created.

Site messages

You may see pop-up messages on our site.  For example, a pop-up explaining our use of cookies on this site. Once you have seen these messages we store cookies to ensure we do not show you the same message again.

Managing cookies

The cookies we use will be sent to your browser and stored in the cookies directory on your computer.

To find out how to reject, delete or update your cookie preferences in your browser you need to know what browser you use and what version of it you’re using. Most browsers have guidelines on how to adjust cookie settings, use the ‘Help’ menu to find out this information.

You can learn more about managing cookies at About Cookies.

Data Processing

The use and disclosure of personal data is governed in the United Kingdom by the Data Protection Act 2018. CySec Aware LLP is obliged to ensure that it handles all personal data in accordance with the Act. 

Where We Send Your Data

All data remains within the United Kingdom. We do not process any data outside this.

How We Protect Your Data

Emails are protected by security provided by our third-party, UK based hosting provider. They ensure that the servers are kept up to date with all security patches. They maintain security patching of the Content Management System used by our website. They use dedicated intrusion detection and prevention systems. All use of our website is over encrypted communication (HTTPS). We use a third-party service to monitor our website for indicators of compromise and we use a security enhancement plugin for our CMS to ensure this uses the best secure configuration.

The IP address of visitors, user ID of logged in users, and username of login attempts are conditionally logged to check for malicious activity and to protect the site from specific kinds of attacks. Examples of conditions when logging occurs include login attempts, log out requests, requests for suspicious URLs, changes to site content, and password updates. This information is retained for 60 days. Our system automatically blocks connections from IP addresses when there are indications of attempted malicious activity.

All of our accounts are protected by long, strong passwords and 2 Factor Authentication. All staff receive training in cyber security best practices.

Reporting a Problem

Should you wish to contact us regarding a privacy or security issue please email security@cysecaware.co.uk