Privacy Policy
Cyber Nerve Center ("Cyber Nerve Center," "we," "us," or "our") provides a continuous-compliance and governance-risk-compliance (GRC) platform. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit our website or use our services (together, the "Services").
1. Information We Collect
- Information you provide. Contact details (such as name, email, company) when you reach out, request a walkthrough, or create an account.
- Customer content. Data you submit to the platform, including compliance evidence and control information, processed on your behalf to deliver the Services.
- Usage and device data. Log data, IP address, browser type, and interactions with the Services, collected to operate and improve them.
2. How We Use Information
- To provide, maintain, secure, and improve the Services.
- To communicate with you about your account, inquiries, and updates.
- To monitor security, prevent abuse, and comply with legal obligations.
3. How We Share Information
We do not sell your personal information. We share information only with service providers that help us operate the Services (for example, cloud hosting on Google Cloud) under appropriate confidentiality and data-protection obligations, or where required by law.
4. Data Security
We apply administrative, technical, and organizational safeguards designed to protect information, including encryption in transit and at rest, tenant data isolation, and least-privilege access controls. No method of transmission or storage is completely secure.
5. Data Retention
We retain information for as long as needed to provide the Services and for legitimate business or legal purposes. Customer content is retained per your agreement with us and deleted or returned on termination as described therein.
6. Your Rights
Depending on your location, you may have rights to access, correct, delete, or restrict the processing of your personal information, and to data portability, under laws such as the GDPR and CCPA/CPRA. To exercise these rights, contact us at the address below.
7. Cookies
Our website uses only essential cookies necessary for basic functionality. We do not use advertising cookies. Where required, we will request consent for any non-essential cookies.
8. International Transfers
We may process information in the United States and other countries. Where required, we use appropriate safeguards for cross-border transfers.
9. Children's Privacy
The Services are intended for businesses and are not directed to children under 16. We do not knowingly collect personal information from children.
10. Changes to This Policy
We may update this Policy from time to time. Material changes will be reflected by updating the "Last updated" date above.
11. AI Features & Automated Processing
The Services use artificial intelligence and machine learning to generate summaries, risk intelligence, and recommendations. To provide these features, we process Customer Content and usage data. We do not use your Customer Content to train third-party foundation models, and we do not sell your information. AI outputs are assistive and intended to support—not replace—human judgment; see our Terms of Service. Where we rely on third-party AI providers, they process data under contractual confidentiality and data-protection obligations and do not use your data to train their models except as permitted by your agreement with us.
12. Contact Us
Questions about this Policy or our data practices? Email hello@cybernervecenter.com.