Privacy Policy

1. Scope

This policy describes how MemCyber (“we”) collects and processes personal data in connection with the memcyber.com website and our security assessment services. It does not cover data handling during a specific engagement — that is governed by the Master Services Agreement and Rules of Engagement signed with the client.

2. What we collect

When you interact with this website, we collect:

• Information you submit via the contact form: name, email, company, project details.
• Standard server-side request logs from our hosting provider (IP address, user agent, timestamps) for security and availability purposes.

We do not use advertising cookies, fingerprinting scripts, or third-party analytics trackers.

3. How we use it

Contact form submissions are used solely to respond to your inquiry and scope a potential engagement. Server logs are used for abuse prevention and infrastructure security.

4. Third-party processors

Contact form delivery is handled by Web3Forms, which relays submissions to our email. Hosting is provided by our deployment platform (Vercel / Cloudflare). These providers process data on our behalf and are bound by their own privacy practices.

5. Retention

Contact form correspondence is retained for up to 24 months after last contact, then deleted unless required for an ongoing legal or contractual obligation.

6. Your rights

Depending on your jurisdiction (including under the EU GDPR, UK GDPR, and KVKK for Türkiye), you may have rights to access, correct, or request deletion of your personal data. Contact security@memcyber.com to exercise these rights.

7. Changes

We will update the “last updated” date above when this policy changes. Material changes will be highlighted on the homepage.