Privacy Policy

Last updated: April 2026

1. Introduction

CYDER ("we," "our," or "us") operates the cyderagent.ai website and the CYDER Agentic AI SOC platform. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services. We are committed to protecting your privacy in accordance with the Saudi Personal Data Protection Law (PDPL) and applicable regulations issued by the Saudi Data & AI Authority (SDAIA).

2. Information We Collect

Information you provide directly:

  • Contact information (name, email address, phone number, company name, job title) when you request a demo, fill out forms, or contact us
  • Account credentials if you create an account on our platform
  • Communication records when you correspond with us via email, chat, or phone
  • Payment information processed through secure third-party payment processors

Information collected automatically:

  • Device and browser information (browser type, operating system, device type)
  • IP address and approximate geographic location
  • Website usage data (pages visited, time spent, referral source)
  • Cookies and similar tracking technologies (see Section 7)

Information from third parties:

  • Business contact information from publicly available sources
  • Analytics data from our website analytics providers

3. How We Use Your Information

We use the information we collect to:

  • Provide, operate, and maintain our website and services
  • Process and respond to your demo requests and inquiries
  • Send you relevant information about our products and services (with your consent)
  • Improve our website, products, and user experience
  • Comply with legal obligations and regulatory requirements
  • Detect, prevent, and address technical issues and security threats
  • Communicate with you about updates, security alerts, and support messages

4. Legal Basis for Processing

Under the PDPL, we process your personal data based on:

  • Your explicit consent (e.g., when you submit a demo request form)
  • Performance of a contract or pre-contractual measures
  • Compliance with legal obligations under Saudi law
  • Our legitimate interests (e.g., improving our services, ensuring security)

5. Data Sharing and Disclosure

We do not sell your personal data. We may share your information with:

  • Service providers who assist us in operating our website and services (e.g., hosting, analytics, email delivery)
  • Professional advisors (legal, accounting, audit) as necessary
  • Government authorities when required by Saudi law or regulation
  • Business partners with your explicit consent

All third-party service providers are contractually obligated to protect your data and use it only for the purposes we specify.

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, unless a longer retention period is required by law.

  • Demo request data is retained for 24 months
  • Website analytics data is retained for 12 months
  • Account data is retained for the duration of your account plus 12 months after closure

7. Cookies and Tracking Technologies

Our website uses cookies and similar technologies to enhance your experience. We use:

  • Essential cookies required for website functionality
  • Analytics cookies to understand how visitors interact with our website
  • Marketing cookies to deliver relevant content (only with your consent)

You can manage your cookie preferences through your browser settings.

8. Your Rights Under PDPL

Under the Saudi Personal Data Protection Law, you have the right to:

  • Access your personal data that we hold
  • Request correction of inaccurate data
  • Request deletion of your data (subject to legal retention requirements)
  • Withdraw your consent at any time
  • Object to processing based on legitimate interests
  • Request data portability
  • File a complaint with SDAIA if you believe your rights have been violated

To exercise any of these rights, contact us at privacy@cyderagent.ai.

9. Data Security

We implement appropriate technical and organizational security measures to protect your personal data, including encryption in transit (TLS 1.3), access controls, and regular security assessments. Our platform is designed to meet NCA ECC-2 security standards.

10. International Data Transfers

Your data is processed and stored within the Kingdom of Saudi Arabia on Alibaba Cloud infrastructure in the Riyadh region. If any data transfer outside Saudi Arabia is necessary, we will ensure adequate protection measures are in place in accordance with PDPL requirements and SDAIA guidelines.

11. Children's Privacy

Our website and services are not directed at individuals under the age of 18. We do not knowingly collect personal data from children.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the updated policy on this page with a revised "Last updated" date.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us: