Legal
Privacy Policy
This Privacy Policy explains how CyberXDefend, operated by AI2Innovate ("we", "us", "our"), collects, uses, and protects personal data relating to visitors to cyberxdefend.com and people who interact with our platform or services. It is written to align with the EU General Data Protection Regulation (GDPR) and applicable Belgian data-protection law.
1. Who we are
The data controller is AI2Innovate, operating the CyberXDefend platform. You can reach us at info@ai2innovate.io for any privacy-related questions or to exercise your rights.
2. What we collect
- Contact information you submit through the demo-request form: first name, last name, work email, company, and the message you write.
- Technical data automatically collected when you visit the site: IP address, user agent, referrer, approximate location derived from IP, and pages viewed.
- Correspondence you send us by email or other channels.
We do not sell personal data. We do not use behavioural advertising cookies.
3. Why we process it (legal bases)
- To respond to your enquiry — legal basis: performance of pre-contractual steps and our legitimate interest in handling prospect requests.
- To operate and secure the site — legitimate interest in running a functional and secure service.
- To comply with legal obligations — for example, statutory retention of records or responding to lawful requests.
4. How long we keep it
Demo-request data is retained for up to 24 months after the last meaningful contact, then deleted or anonymised. Server access logs are retained for up to 12 months.
5. Who we share it with
We share personal data only with trusted processors acting on our instructions:
- SendGrid (Twilio Inc.) — transactional email delivery for contact-form submissions.
- Hosting and infrastructure providers operating within the EU/EEA where feasible.
Where any transfer outside the EEA is unavoidable, we rely on Standard Contractual Clauses and supplementary measures as required by the GDPR.
6. Your rights
You have the right to:
- access a copy of your personal data,
- request correction or deletion,
- object to or restrict processing,
- request data portability,
- withdraw consent where processing is based on consent,
- lodge a complaint with the Belgian Data Protection Authority (dataprotectionauthority.be).
To exercise any of these rights, contact info@ai2innovate.io. We respond within one month.
7. Cookies and analytics
This site uses only strictly necessary local-storage items required for core functionality. We offer the option to enable Google Analytics 4 (with IP anonymisation) to understand aggregate visitor behaviour — but only after you click Accept in the consent banner on your first visit.
Our consent implementation follows the Google Consent Mode v2 defaults: analytics, advertising, ad-user-data, and ad-personalisation storage are set to denied until you grant consent. If you decline, no Google Analytics script is loaded and no analytics cookies are set. You can withdraw consent at any time by clearing your browser's site data for this domain; the banner will reappear on your next visit.
When enabled, Google Analytics is operated by Google Ireland Limited as our processor. We do not share personal data with Google for advertising personalisation. Details of data Google processes are available in their Privacy Policy.
8. Security
We apply technical and organisational measures appropriate to the risk, including TLS in transit, access controls, and segregation of production data.
9. Changes to this policy
We may update this Privacy Policy. Material changes will be flagged on this page with a new "last updated" date.