Expert Cybersecurity for Regulated Businesses

Last updated: January 2025

1. Who We Are

RDA Cyber is cybersecurity consultancy. We are the data controller for personal data you provide to us.

2. What Data We Collect

When you contact us via our website, we collect:

• Your name
• Business email address
• Company name
• Message content

3. Legal Basis & How We Use Your Data

We process your data on the basis of legitimate interests to respond to your enquiry and provide our professional services. We use your information to:

• Respond to your enquiries
• Provide quotes and proposals
• Deliver our consultancy services
• Maintain client relationships

4. Data Retention

We retain your contact information for 3 years after our last contact, or for the duration of our business relationship plus 7 years for legal and compliance purposes.

5. Your Rights Under UK GDPR

You have the right to:

• Access your personal data
• Rectify inaccurate information
• Erase your data (right to be forgotten)
• Restrict processing
• Data portability
• Object to processing

6. Data Security

We implement appropriate technical and organisational measures to protect your personal data, including encryption, access controls, and regular security reviews.

7. Third-Party Sharing

We do not sell or rent your data. We may share information only with:

• Secure hosting providers (under strict data processing agreements)
• Professional advisers when legally required

8. Cookies

Our website uses minimal essential cookies for functionality only. We do not use tracking or advertising cookies.

9. Contact Us

For any privacy-related questions or to exercise your rights, please contact us via our website form or email.

Complaints: You have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk

Last updated: January 2025

1. Agreement

By using this website or engaging our services, you agree to these Terms of Service. If you disagree, please do not use our services.

2. Services

RDA Cyber provides professional cybersecurity consultancy services including audits, compliance implementation, penetration testing, and strategic advisory services. Specific scope, deliverables, and fees are defined in individual engagement agreements.

3. Professional Standards

Our services are provided with reasonable care and skill in accordance with professional standards. However:

• No security service can guarantee complete protection
• Recommendations are advisory, not guarantees
• Implementation responsibility rests with the client

4. Limitation of Liability

To the maximum extent permitted by law:

• Our liability is limited to the fees paid for the specific service
• We are not liable for indirect, consequential, or business losses
• Nothing excludes liability for death, personal injury, fraud, or fraudulent misrepresentation

5. Client Responsibilities

You agree to:

• Provide accurate and complete information
• Act on our recommendations in good faith
• Maintain confidentiality of sensitive findings
• Not misuse our reports or credentials

6. Intellectual Property

All methodologies, frameworks, and tools remain our property. Reports and deliverables are licensed to you for internal use only.

7. Confidentiality

Both parties agree to maintain confidentiality of sensitive information disclosed during the engagement, except where required by law.

8. Termination

Either party may terminate an engagement with written notice. Fees for work completed remain payable.

9. Governing Law

These Terms are governed by the laws of England and Wales. Disputes shall be resolved in the courts of England and Wales.

10. Changes to Terms

We may update these Terms. Continued use of our services after changes constitutes acceptance.

11. Contact

For questions about these Terms, please contact us via our website form.