Privacy Policy

Last Updated: 15th January 2026

Cybernexis Ltd ("we", "us", or "our") is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, and protect your information when you visit our website or use our services.

Data Controller Information

The data controller for your personal information is Cybernexis Ltd, a company registered in Cyprus with registration number HE794613. Our registered address is Agiou Andreou Street 74, Nicosia, 1016, Cyprus.

Data Collection

We collect personal data that you provide to us directly and information that is collected automatically when you visit our website. The data we collect includes:

• Contact information such as your name, email address, phone number, and company details
• Information you provide in enquiry forms or when requesting our services
• Technical information including IP address, browser type, and device information
• Website usage data through cookies and similar technologies
• Communication records when you contact us via email or telephone

How We Use Your Information

We use the personal data we collect for the following purposes, based on legitimate business interests and your consent where required:

• To respond to your enquiries and provide information about our ERP comparison services
• To deliver our consultation services and maintain our business relationship
• To improve our website functionality and user experience
• To send you relevant information about our services (with your consent)
• To comply with legal obligations and protect our legitimate business interests
• For analytics purposes to understand how our website is used and improve our services

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner or by visiting our cookie policy page for detailed information about the cookies we use.

Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: For marketing communications and non-essential cookies
• Contract: To provide our services and fulfil our contractual obligations
• Legitimate Interest: For business operations, website analytics, and improving our services
• Legal Obligation: To comply with applicable laws and regulations

Data Sharing and Third Parties

We do not sell your personal data to third parties. We may share your information with:

• Service providers who assist us in delivering our services (under strict confidentiality agreements)
• Analytics providers such as Google Analytics to understand website usage
• Legal authorities when required by law or to protect our rights
• Professional advisors such as lawyers and accountants when necessary

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes for which it was collected. Generally, we keep contact information and communication records for up to 7 years for business and legal compliance purposes. Website analytics data is typically retained for 26 months. You can request deletion of your data at any time, subject to our legal obligations.

International Data Transfers

As we use services such as Google Analytics and Google Ads, your data may be transferred to countries outside the European Economic Area. We ensure that appropriate safeguards are in place, including adequacy decisions or standard contractual clauses, to protect your data during such transfers.

Your Rights

Under GDPR and applicable data protection laws, you have the following rights regarding your personal data:

• Right of Access: Request a copy of the personal data we hold about you
• Right of Rectification: Request correction of inaccurate or incomplete data
• Right of Erasure: Request deletion of your personal data in certain circumstances
• Right to Restrict Processing: Request limitation of how we process your data
• Right to Data Portability: Request transfer of your data to another service provider
• Right to Object: Object to processing based on legitimate interests or for marketing purposes
• Right to Withdraw Consent: Withdraw consent for processing that relies on your consent

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. This includes encryption, access controls, regular security assessments, and staff training on data protection principles.

Children's Privacy

Our services are not directed at children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, regulatory, or operational reasons. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date.

Contact Information

If you have any questions about this Privacy Policy, wish to exercise your rights, or need to contact us about privacy matters, please reach out to us:

Supervisory Authority

You have the right to lodge a complaint with the relevant data protection supervisory authority if you believe we have not handled your personal data in accordance with applicable data protection laws. In Cyprus, the supervisory authority is the Office of the Commissioner for Personal Data Protection.