Privacy Policy

This Privacy Policy explains how Kybernis handles personal information in connection with the Kybernis website, audit and sales intake flows, dashboard, APIs, SDKs, and related services.

The information we collect depends on how you interact with Kybernis. For example, the information involved in requesting an audit differs from the information involved in using an authenticated dashboard experience.

We may collect contact and identity details such as your name, work email address, role, organization, and information you submit through sales, contact, or audit intake forms.

We may collect account and organizational information when you use authenticated parts of the service, including identity-provider information, account metadata, tenant identifiers, and related access information.

We may collect technical, diagnostic, and usage data such as IP address, browser and device information, request metadata, audit events, API usage data, and website interaction analytics used to operate, secure, and improve the service.

If you voluntarily provide workflow descriptions, prompts, operational notes, or other business context during an audit, sales, or support process, we may collect and use that information to scope, deliver, or improve the requested service.

We use information to operate the website and services, respond to inquiries, deliver requested audits or sales follow-up, authenticate users, secure accounts, troubleshoot issues, and maintain auditability and service integrity.

We also use information to improve the product, understand service usage, plan capacity, evaluate reliability, prevent abuse, and communicate about service updates, releases, policies, or commercial follow-up where appropriate.

Where permitted, we may use business contact details to send follow-up communications related to the inquiry, evaluation, deployment, or commercial discussion you initiated.

We may share information with service providers and sub-processors that help us operate the service, such as hosting providers, infrastructure providers, identity providers, email delivery providers, analytics providers, and similar operational vendors acting on our instructions.

We may disclose information where required to comply with law, legal process, or governmental request, or where necessary to protect the rights, security, and operations of Kybernis, our customers, or others.

We may also disclose information in connection with a corporate transaction such as a financing, merger, acquisition, reorganization, or sale of assets, subject to appropriate confidentiality protections.

We do not describe the service as selling personal information in the ordinary course of operating the product website and services.

Kybernis may use cookies, local storage, analytics tags, and similar technologies to keep the site functioning, preserve session state, understand engagement, and improve the product and website experience.

Some site functionality and follow-up instrumentation may also rely on third-party providers. For example, website analytics, identity sessions, and outbound follow-up workflows may involve third-party systems configured by Kybernis.

You can often control cookies and similar technologies through your browser settings, but some site features may not function correctly if those controls are disabled.

Kybernis uses administrative, technical, and organizational safeguards designed to protect information against unauthorized access, loss, misuse, and alteration. No system is completely secure, and we cannot guarantee absolute security.

We retain information for as long as reasonably necessary to operate the service, maintain logs and auditability, comply with legal obligations, resolve disputes, enforce agreements, and pursue legitimate business purposes.

Retention periods vary depending on the type of data, the purpose for which it was collected, customer configuration, and applicable legal or contractual obligations.

Depending on your jurisdiction, you may have rights to request access to, correction of, deletion of, or export of certain personal information, or to object to or restrict certain processing activities.

You may also opt out of certain communications by following the unsubscribe instructions in the message where available, or by contacting us through the Kybernis contact flow and identifying the request clearly.

We may need to verify your identity and authority before acting on a request, particularly where the request concerns organization-linked or security-sensitive information.

Kybernis and its service providers may process information in multiple jurisdictions depending on service architecture, hosting choices, and operational support arrangements.

Where information is transferred across borders, Kybernis will use appropriate safeguards that are commercially reasonable and legally required for the relevant transfer context.

Kybernis services are intended for business and professional use and are not directed to children. We do not knowingly collect personal information from children in a manner intended for consumer child-directed services.

We may update this Privacy Policy from time to time. If we make material changes, we may provide notice through the website, dashboard, or another reasonable channel. The effective date on this page will be updated when changes are made.

If you have a privacy question or want to exercise a rights request, use the contact flow on the Kybernis website and identify the request as a privacy inquiry so it can be routed appropriately.