Cyber London, in collaboration with our strategic partners, is dedicated to promoting innovation and identifying opportunities for collaboration, inward investment, and ongoing support. Our mission is to position London at the forefront of technology through funding, networking, knowledge exchange, sharing best practices, and identifying opportunities for national and international growth.

Who is Collecting My Data?

This Privacy Policy sets out how we collect, use, and protect your personal information.

This website, www.cyberlondon.com (the “Website”), is owned by Cyber London (“Company”, “we” or “us”), a company registered in England and Wales under company number 15080724, whose registered office is at 162 Farringdon Road, London, United Kingdom, EC1R 3A.

We are the Data Controller of any personal information you provide on this Website and are registered as a Data Controller with the Information Commissioner’s Office (ICO).

Please take the time to read this Privacy Policy, which is part of our Terms and Conditions. If you have any questions about this Privacy Policy or our use of your information, you can contact us at info@cyberlondon.com.

You also have the right to make a complaint to the relevant Supervisory Authority about our use of your information (in most cases under this Privacy Policy, this will be the ICO).

How to Complain

If you have any concerns about how Cyber London handles your personal data or wish to make a complaint, please contact our Data Protection Officer at:

Data Protection Officer

Cyber London

162 Farringdon Road

London

EC1R 3AS

United Kingdom

Email: info@cyberlondon.com

Subject: ATT: DPO Cyber London | Complain

If you believe your data has been misused or mishandled, you can also contact the ICO:

Information Commissioner’s Office (ICO)

Wycliffe House, Water Lane, Wilmslow, Cheshire, SK9 5AF

Phone: 0303 123 1113

Website: www.ico.org.uk

Complaints to the ICO do not affect your right to seek redress through the courts.

Purpose of this Privacy Notice

This notice is provided in accordance with Articles 13 and 14 of the UK Data Protection Act 2018. It outlines how we will use your personal information to meet our legal obligations regarding data protection.

What is Personal Information?

Personal information refers to any data relating to an identified or identifiable living person (a ‘data subject’). This includes:

• Names, identification numbers, location data, online identifiers
• Data related to physical, physiological, genetic, mental, economic, cultural, or social identity

What Data Do We Collect?

Most data we collect and process is provided directly by you, including:

• Questions, queries, or feedback you leave, including your email address if you contact us
• Your Name, Surname and email address when you sign up for our email alerts
• Tracking information on email interactions (e.g., links you open)
• Your Internet Protocol (IP) address and web browser details
• Information on how you use the site through cookies (see our Cookie Policy)
• Photos and videos taken at our events.

We may also receive data indirectly from third-party sources. Please review their privacy policies for details on how they manage your data.

How Will We Use Your Data?

We use your data to:

• Improve our services
• Send periodic emails about new initiatives, company updates, events, and other relevant information
• Share general information, news, and updates about our cluster and the wider global cyber security ecosystem
• Contact you for market research purposes
• Photos taken at our events may be used for marketing purposes, including on our website, social media, and in newsletters. 
•  

We will never sell your information and will only collect necessary and relevant personal data.

Legal Basis for Processing Your Data

Our legal basis for collecting and processing personal information is your freely given consent, in accordance with Article 6(1) of the UK Data Protection Act 2018. You will always be informed about what you are consenting to and how you can withdraw your consent.

What Happens If I Do Not Provide This Information?

If you do not sign up for our e-newsletters and provide your contact details, you will not receive updates.

Who Will Your Data Be Shared With?

We may share your data in the following cases:

UKC3 Data Sharing:  From time to time, we may share limited member details with UKC3, a key organisation supporting the UK cyber security ecosystem and clusters in the UK.

For more details on how UKC3 handles data, please visit their website: UKC3 Website.

Event Sponsor Data Sharing: If you attend an event hosted by Cyber London, we may share your contact details with our event sponsors for post-event follow-up only.

This ensures that you receive relevant insights, opportunities, and further engagement based on your participation.

We will inform you if we plan to share your data with other organisations and whether you can opt-out. You can also request details of our data-sharing agreements.

Photography and Media Use at Events

At Cyber London, we occasionally take photographs and capture moments at our events to celebrate and showcase our community. These images may be used on our website, social media platforms, and in some cases shared with partners such as the UK Cyber Cluster Collaboration (UKC3) for inclusion in their newsletters or related communications. We may also share selected event photos with attendees after the event as part of our follow-up communications.

If you would prefer not to be photographed or included in any media, please reach out to us before the event so we can make the appropriate arrangements to respect your wishes.

Information Retention

We do not store or transfer your personal data outside of the United Kingdom. If this becomes necessary, we will inform you and seek your consent.

We follow strict security procedures regarding how your personal information is stored and used. Our measures include: (I have removed the other stuff – I only have PI on SharePoint , Email & Website database. There is no backup for Share Point).

Access controls to limit who can view your data

Despite our best efforts, no Internet transmission is 100% secure. We cannot accept liability for any loss, theft, or misuse of personal information due to a security breach.

Your Data Protection Rights

Under the UK Data Protection Act 2018, you have rights regarding your personal data, including:

• The right to access your data
• The right to rectify inaccurate data
• The right to erase your data (right to be forgotten)
• The right to restrict processing
• The right to data portability
• The right to object to processing
• The right to withdraw consent at any time

Even if you have previously consented to your data being used for marketing purposes, you can ask us to stop processing your data at any time by emailing info@cyberlondon.com.

If you request access to your data, we will ask you to verify your identity before sharing it. In some cases, a reasonable fee may apply for excessive or repeated requests.

Changes to Our Privacy Policy

We may update this Privacy Policy from time to time. The “Last Updated” date at the bottom of this document will reflect any changes. If updates significantly affect how we process your data, we will take reasonable steps to inform you.

Definitions

For the purposes of this Privacy Policy:

“Data Protection Legislation” means all applicable data protection laws in force in the UK, including the UK GDPR, the Data Protection Act 2018, and the Privacy and Electronic Communications Regulations 2003 (SI 2003/2426).

“Personal Data”, “Controller”, “Processor”, “Data Subject”, and “Supervisory Authority” shall have the meanings given in UK Data Protection Legislation.

Last Updated: 12.02.2025