Privacy Policy
Privacy Policy
CyberSanso (“we,” “us,” or “our”) operates cybersanso.com, a free, independent intelligence platform for the global cybersecurity, AI, and SaaS community. This Privacy Policy explains how we collect, use, disclose, and protect your information, and the rights available to you under regulations including the EU GDPR and India’s Digital Personal Data Protection Act (DPDPA), 2023. Last Updated: June 2026.
Effective Date
June 2026
Applies To
cybersanso.com
Compliance
GDPR & India DPDPA
Data Sold
Never
On This Page
- 1. Information We Collect
- 2. How We Use Your Information
- 3. Legal Basis for Processing (GDPR — EU/EEA Visitors)
- 4. India's Digital Personal Data Protection Act (DPDPA), 2023
- 5. Cookies
- 6. Third-Party Service Providers
- 7. Affiliate Links & Sponsored Content
- 8. Your Privacy Rights
- 9. Data Sharing and Disclosure
- 10. International Data Transfers
- 11. Data Retention
- 12. Data Security
- 13. Children's Privacy
- 14. Do Not Track Signals
- 15. Changes to This Privacy Policy
- 16. Contact Us
1. Information We Collect
1.1 Information You Provide to Us
We collect information you voluntarily provide when you:
- Subscribe to our newsletter (“CyberSanso Weekly”) — your email address.
- Contact us through a contact form or by email (general enquiries, vendor submissions, partnership/sponsorship requests, editorial/press, or bug reports) — your name, email address, and the content of your message.
- Submit a vendor listing or other content for review — business and contact details you choose to provide.
1.2 Information Collected Automatically
When you browse the Site, certain information is collected automatically, including your IP address, browser type and version, device type and operating system, pages visited, time spent on pages, referring/exit pages, and general location data inferred from your IP address (country/region level). This information is collected via our analytics provider, our content delivery network, and standard server logs.
1.3 Cookies and Similar Technologies
We use cookies and similar tracking technologies to operate the Site, remember preferences, and understand how visitors use our content. See Section 5 (Cookies) below for details and how to manage your preferences. We do not require account creation to access our core database, glossary, CVE tracker, or free tools, and we do not collect payment information, since these are offered free of charge.
2. How We Use Your Information
We use the information we collect to:
- Operate, maintain, and improve the Site and its free tools
- Send the CyberSanso Weekly newsletter to subscribers (you may unsubscribe at any time)
- Respond to enquiries, vendor submissions, partnership proposals, editorial requests, and bug reports
- Monitor and analyze usage trends to improve content and site performance
- Detect, prevent, and address technical issues, fraud, or security threats
- Comply with legal obligations
We do not sell your personal information to third parties.
3. Legal Basis for Processing (GDPR — EU/EEA Visitors)
Where the GDPR applies, we rely on the following legal bases to process your personal data:
- Consent — for newsletter sign-ups and non-essential cookies
- Legitimate interests — for site analytics, security, and improving our content and services
- Contractual necessity — for responding to enquiries you initiate
- Legal obligation — where processing is required by applicable law
You may withdraw consent at any time where processing is based on consent, without affecting the lawfulness of processing carried out before withdrawal.
4. India's Digital Personal Data Protection Act (DPDPA), 2023
For users located in India, we process personal data (such as your name and email address submitted via forms or newsletter sign-up) consistent with the DPDPA. We collect only the personal data necessary for the stated purpose, obtain consent where required, and provide a mechanism to withdraw consent and exercise your rights as a Data Principal (see Section 8).
Grievance Officer / Contact for Data Protection Matters:
Isabella Grace
Email: info@cybersanso.com
5. Cookies
We use the following categories of cookies:
- Strictly Necessary — required for core site functionality and security (e.g., Cloudflare security cookies)
- Analytics — help us understand site usage via Google Analytics 4
- Functional — remember preferences such as previously viewed categories or tools
You can control or disable cookies through your browser settings. Disabling certain cookies may affect site functionality. Where required by law, we will request your consent before placing non-essential cookies.
6. Third-Party Service Providers
We use the following third-party services to operate the Site. Each provider processes data according to its own privacy policy:
- Google Analytics 4 — website traffic and usage analytics
- Google Search Console — search performance monitoring
- Mailchimp / MailPoet — newsletter delivery and subscriber management
- Cloudflare — content delivery network (CDN) and security
- Wordfence — website security and threat monitoring
- ShortPixel — image optimization (does not process personal data)
These providers may collect information directly via cookies or similar technologies operating under their own respective privacy policies. We encourage you to review the privacy policies of these third parties.
7. Affiliate Links & Sponsored Content
Some links on CyberSanso may be affiliate links. We may earn a commission if you purchase or sign up through these links, at no additional cost to you. Clicking an affiliate link may result in the third-party vendor collecting information about your visit in accordance with their own privacy policy. Our editorial content and rankings are not influenced by affiliate relationships, and all sponsored content is clearly labelled as such.
8. Your Privacy Rights
Depending on your location, you may have the right to:
- Access the personal data we hold about you
- Correct inaccurate or incomplete data
- Delete your data (right to erasure)
- Restrict or object to certain processing
- Withdraw consent at any time, including unsubscribing from our newsletter
- Request a portable copy of your data
- Lodge a complaint with your local data protection authority or India's Data Protection Board
To exercise any of these rights, contact us at info@cybersanso.com. We will respond within the timeframe required by applicable law.
9. Data Sharing and Disclosure
We do not sell personal data. We may share information with:
- Service providers listed in Section 6, solely to operate the Site
- Law enforcement or regulators where required by law
- A successor entity in the event of a merger, acquisition, or sale of assets
10. International Data Transfers
As a global platform, your information may be processed in countries other than your own, including the United States, where data protection laws may differ from those in your jurisdiction. Where required, we take appropriate steps (such as standard contractual clauses or equivalent safeguards) to ensure your data remains protected in line with this Policy.
11. Data Retention
We retain personal data only as long as necessary for the purposes outlined in this Policy, to comply with legal obligations, resolve disputes, and enforce our agreements. Newsletter subscriber data is retained until you unsubscribe; contact form submissions are retained only as long as needed to address your enquiry.
12. Data Security
We implement reasonable technical and organizational measures — including the use of Cloudflare and Wordfence — to protect personal data against unauthorized access, alteration, disclosure, or destruction. However, no method of transmission or storage over the internet is 100% secure, and we cannot guarantee absolute security.
13. Children's Privacy
CyberSanso is intended for a professional, adult audience (CISOs, IT managers, security researchers, investors, and similar) and is not directed at children under 16. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us so we can delete it.
14. Do Not Track Signals
Some browsers offer a “Do Not Track” (DNT) feature. As there is no industry-standard approach to DNT signals, our Site does not currently respond to DNT browser signals.
15. Changes to This Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. The “Last Updated” date at the top of this page will reflect the most recent revision. We encourage you to review this page periodically.
16. Contact Us
If you have questions about this Privacy Policy or our data practices, please contact us:
- General Enquiries: info@cybersanso.com
- Technical / Bug Reports: tech@cybersanso.com
- Website: https://cybersanso.com
- LinkedIn: linkedin.com/company/cybersanso
- Twitter / X: @CyberSanso