Privacy Policy

Effective date: 13 June 2026

Wyvern Security Solutions (“we”, “us”, “our”) operates wyvernsecurity.com (the “Site”). This page explains what information we collect when you visit the Site or contact us, how we use it, and the choices you have.

Who we are

Wyvern Security Solutions is an email security consultancy. For questions about this policy or about personal data we hold, write to info@wyvernsecurity.com.

Information we collect

The Site itself collects no personal data directly.

• We do not set cookies.
• We do not run analytics or tracking scripts.
• We do not embed third-party content, fonts, or social widgets.

Server logs. Our hosting provider, Cloudflare, processes standard request metadata (IP address, user-agent string, requested URL, and timestamp) to serve pages and to protect the Site against abuse. We do not access these logs other than through aggregate statistics. Cloudflare’s processing is described in their privacy notice at cloudflare.com/privacypolicy/.

Email correspondence. If you write to info@wyvernsecurity.com or any other Wyvern address, we receive whatever you choose to send: your email address, your name, and the contents of your message. We use that information only to respond to you and, if you become a client, to deliver the services you have asked for.

How we use information

We use the information described above to:

• operate and secure the Site;
• respond to enquiries you send us;
• provide consulting services to clients who have engaged us; and
• meet our legal and accounting obligations.

We do not sell personal data. We do not share it with third parties for marketing.

Legal basis (UK and EU GDPR)

Where UK GDPR or EU GDPR applies, we rely on the following legal bases:

• Legitimate interests for operating and securing the Site.
• Consent when you voluntarily send us an email.
• Contract for processing necessary to deliver consulting services.
• Legal obligation where retention or disclosure is required by law.

Data retention

We keep enquiry emails for as long as needed to answer them and, where an engagement follows, to maintain records required for tax, accounting, and professional-conduct purposes. Server-side request logs are held by Cloudflare under their published retention periods.

Sub-processors

We rely on the following providers to operate the Site and our email:

• Cloudflare, Inc. — hosting, content delivery, edge logs, and DDoS protection.
• Our email provider — receipt and storage of messages sent to Wyvern addresses.

These providers may process data outside the UK or EEA. Where that happens, we rely on the safeguards they maintain (standard contractual clauses or equivalent).

Your rights

Subject to applicable law, you may have the right to:

• request access to personal data we hold about you;
• ask us to correct or delete it;
• object to or restrict certain processing;
• lodge a complaint with a data protection authority. In the UK that is the Information Commissioner’s Office (ico.org.uk).

To exercise any of these rights, write to info@wyvernsecurity.com.

Children

The Site is not directed to children under 16, and we do not knowingly collect personal data from them.

Changes to this policy

We may revise this policy from time to time. The effective date above reflects the most recent revision. Material changes will be noted on this page.

Contact

info@wyvernsecurity.com