Privacy & Trust Policy

Protecting Your Information & Privacy

Cyberprobity.io Pty Ltd & Cybertest.io
Effective Date: May 20, 2025

OUR PRIVACY & TRUST COMMITMENT

We handle your data with care, transparency, and integrity. This Privacy & Trust Policy outlines what we collect, why we collect it, and how we protect it.

WHO WE ARE

Cyberprobity.io Pty Ltd (ABN 69 007 126 801) operates:
- Cyberprobity.io: Governance and trust platform
- Cybertest.io: Cyber vulnerability assessment platform

REGISTERED OFFICE

Level 19, Piccadilly Tower,
133 Castlereagh Street,
Sydney NSW 2000

CONTACT

[email protected]

CHIEF INFORMATION SECURITY OFFICER

Craig Betts

WHAT WE COLLECT AND WHY

We collect:
- Personal details (name, email, company) to serve and identify you
- Risk data and cyber exposure points to provide assessments
- Staff emails for Usecure training and behavioural risk analysis
- Website usage data for security and improvements
- Payment details (processed via Stripe)
- Client communication and collaboration info (managed via Asana)

HOW WE USE YOUR DATA

- To deliver assessments and services
- To respond to your requests
- To improve service quality and track issues
- To store, update, and allow access to your data and reports

PAYMENT HANDLING

Payments are processed through Stripe (PCI-DSS compliant).
We never store your full credit card details.

EMAIL & SMS COMMUNICATIONS

We use double opt-in for email consent. You can unsubscribe anytime via link or by replying "STOP" to texts. We don’t send unsolicited emails or texts.

TELEPHONE MARKETING

We only call clients or contacts who’ve given permission or where a legitimate relationship exists. We comply with Australia’s Do Not Call Register Act.

USE OF HUMAN RISK TESTING (UNSECURE)

We may use staff emails you provide to deliver phishing tests and awareness training. Clients must ensure employees are informed.

CLIENT COLLABORATION WITH ASANA

We use Asana to manage tasks, documents, updates, and feedback. It provides a secure and auditable collaboration trail.

OUR INTERNAL SECURITY SYSTEMS

- Vanta for continuous compliance monitoring
- Ontraport for CRM, marketing, and automation
- Usecure for training and phishing tests
- ESET for threat protection
- Asana for client collaboration

DATA RETENTION

We retain data for as long as it’s useful or legally required. Risk data and records may be kept up to 10 years. Consent logs are stored indefinitely.

COOKIES

We use cookies to personalise your experience and track analytics. You can manage preferences via our cookie banner.

YOUR RIGHTS

You can access, update, or delete your data anytime. Contact us at [email protected].

POLICY CHANGES

We may update this policy as needed. The latest version will always be at https://cyberprobity.io/privacy

QUESTIONS

Email us at [email protected] or write to:
Cyberprobity.io Pty Ltd
Level 19, Piccadilly Tower,
133 Castlereagh Street,
Sydney NSW 2000