Privacy Policy
Last Updated: 11th December 2025
This Privacy Statement (“Policy”) describes how Cyber Labs Services Pvt Ltd and its network of affiliated entities (“Company,” “We,” “Us,” “Our,” or “Cyber Labs”) collect, process, use, store, disclose, and otherwise handle Personal Data.
This Policy applies to Personal Data in connection with our website at cyberlabsservices.com, professional services, consultancy engagements, and all related business operations. We are committed to processing Personal Data in compliance with applicable data protection laws and professional standards.
1. WHAT PERSONAL DATA WE COLLECT
1.1 Information Collected Through Website Interaction
We may collect certain information automatically when you interact with the Website, including:
- Log data: language preferences, access times, and referring to website URLs.
- Cookies and tracking technologies: We use cookies, web beacons, and similar technologies to improve Website functionality, measure performance, and enhance your experience. For more details, check Cookie Policy.
1.2 Types of Personal Information We May Process
The personal information we process may include, but is not limited to:
- Name, email address, phone number, physical or mailing address, company name, and professional title.
- Details of your interactions with the Website, including pages visited, services requested, and content downloaded.
- Preferences, interests, and communication choices.
- Records of correspondence with us, including inquiries, complaints, or requests.
- Information required to provide services, including your participation in events, webinars, or training sessions.
We do not intentionally collect sensitive categories of personal information (such as race, religious beliefs, political opinions, or sexual orientation).
2. HOW WE COLLECT YOUR DATA
i. You provide to us directly
For example, when you interact with the webpages of this Website or submit information through forms (such as contact forms, newsletter subscriptions, Proposal requests, or other inquiries), or when you communicate with us via email, phone, or other channels referencing this Privacy Statement.
ii. Others provide to us on your behalf
For example, business partners, service providers, or other third parties assisting us in delivering services. When we receive personal information about you from others, we ensure that they have complied with applicable privacy laws and obtained any necessary permissions for us to process that information as described in this Privacy Statement.
3. HOW WE USE YOUR INFORMATION
- We use the personal information we collect through the Website to maintain, manage, and improve the functionality, performance, and security of the Website.
- We use your information to verify your identity when you access certain features or submit requests on the Website.
- We use your personal information to manage communications with you, respond to inquiries, and provide support or assistance.
- We use the information to tailor Website content and services to your preferences, interests, and needs, providing you with a more personalized experience.
- We manage our relationship with you by providing updates about our services, sending newsletters, and responding to your requests or feedback.
- We use your information to inform you about products, services, events, or programs that may be of interest to you and to conduct surveys or research to improve our offerings.
- We use the information to provide and document participation in training, webinars, or other educational content offered through the Website.
- We analyze Website usage, user behavior, and demographic trends to enhance our services and user experience.
- We only use your personal information in ways that are relevant and necessary to provide services, improve your experience on the Website, and comply with applicable laws and regulations.
4. LEGAL BASIS FOR PROCESSING PERSONAL INFORMATION
Cyber Labs processes your personal information based on clear legal grounds. The following table summarizes the main lawful bases we rely on and how they are applied:
| Legal Basis | How Cyber Labs Uses Your Personal Information |
| Legal Obligation | We process personal information to comply with legal or regulatory requirements, such as maintaining records or providing information to public authorities and law enforcement agencies. |
| Legitimate Interests | We process information for purposes that are necessary to run and improve our website, deliver services effectively, prevent fraud or security incidents, safeguard technology systems, protect business interests, investigate complaints, and develop or improve our services and products. |
| Consent | We process your personal information when you have given explicit consent for a specific purpose, such as subscribing to newsletters or receiving marketing communications. You may withdraw your consent at any time. |
Even if you withdraw consent, Cyber Labs may continue processing your personal information for other purposes where a different legal basis applies. This ensures that we can continue providing essential services, maintain Website functionality, and comply with applicable laws.
5. SHARING & DISCLOSURE OF PERSONAL INFORMATION
We share data only as necessary for our legitimate professional and business needs.
5.1 Internal Sharing
Cyber Labs may disclose personal information to its related entities and offices, including those in Sri Lanka, Australia, and Dubai, only where necessary for legitimate internal business purposes and where legally permitted. Such disclosures are limited to the minimum personal information required to support the operation, management, and security of the Website and associated services.
All internal sharing is controlled and subject to strict confidentiality and data protection measures to ensure your information is secure.
5.2 Third Party Providers
We may disclose Personal Data to trusted third-party service providers (including IT service providers, hosting partners, analytics providers etc.) who support the operation, management, and security of our website and services.
All third-party providers:
- Are contractually bound by confidentiality and data protection obligations
- May process Personal Data only on Cyber Labs’ instructions
- Are prohibited from using Personal Data for their own purposes
5.3 International Transfers
As part of our global operations, Personal Data may be transferred between Cyber Labs offices or to third-party service providers located outside your country of residence.
Where international transfers occur, we implement appropriate safeguards, including contractual protections and security measures, to ensure that Personal Data is handled in accordance with applicable data protection laws.
5.4 Prohibited Uses
We will NOT:
- Sell Personal Data to third parties for their independent marketing purposes.
- Use Personal Data for purposes other than those disclosed in this Policy without obtaining your express consent.
- Conduct targeted profiling or automated decision-making that significantly affects your rights without notice and opportunity to object.
6. DATA SECURITY AND PROTECTION
Cyber Labs implements comprehensive technical, organizational, and administrative safeguards to protect Personal Data from loss, misuse, alteration, or unauthorized access. Our measures are designed to ensure data integrity and confidentiality and include:
- Privacy by Design: Ensuring we adhere to the principle of data minimization, collecting only the data strictly necessary for our professional services.
- Encryption: Implementing strong encryption for Personal Data both in transit and at rest across all our operational systems and storage platforms.
- Access Management: Utilizing secure authentication methods and strict, role-based access controls to ensure that only authorized personnel have access to Personal Data as required by their duties.
- Continuous Auditing: Conducting regular security audits, vulnerability scanning, and penetration testing to proactively identify and mitigate system risks, ensuring a robust security posture benchmarked against recognized industry standards (such as ISO/IEC 27001:2022).
7. DATA RETENTION
We retain Personal Data only for the period necessary to satisfy the purposes for which it was collected, or as required by legal, tax, or professional record-keeping obligations. Data is securely destroyed or anonymized upon expiration of the applicable retention period.
8. YOUR PRIVACY RIGHTS
You have rights concerning your Personal Data, which we are committed to fulfilling professionally. Where we process Personal Data about you, you may have the following rights, subject to applicable law and professional obligations:
- Access and Correction: You have the right to request access to personal information we hold about you. For security purposes, we may request proof of identity and sufficient details to help us locate the relevant information. You may also request that inaccurate or incomplete Personal Data be corrected.
- Object to Processing: You may object to the processing of your Personal Data where we no longer have a legitimate basis to use it, including where information is processed for direct marketing purposes.
- Restriction, Deletion, and Portability: In certain circumstances, you may request that we restrict the processing of your Personal Data, delete it where it is no longer required for lawful purposes, or obtain a copy of the information you have provided to us in an electronic, portable format.
- Withdrawal of Consent: Where we process Personal Data based on your consent, you have the right to withdraw that consent at any time.
9. MARKETING COMMUNICATIONS
You may unsubscribe from our marketing communications at any time by contacting us at info@cyber-labs.biz. Upon receiving your request, we will promptly remove you from our marketing communications list.
10. CONTACT INFORMATION & PRIVACY INQUIRIES
We will respond to privacy-related inquiries as soon as reasonably practicable. You may exercise your rights or submit an inquiry using the contact details below:
| Inquiries | Privacy Officer Email | Mailing Address |
| General & Rights Requests | info@cyber-labs.biz | 57 Flower Rd, Colombo 00700 |
| Australia Operations | info@cyber-labs.biz | No 08, Cubbie way Clyde, North Victoria 3978 |
If you believe that your Personal Data has been processed unlawfully, you may have the right to raise a complaint with the relevant Data Protection Authority.
11. PRIVACY POLICY UPDATES
We may update this Policy to reflect changes in law, regulatory requirements, or our data handling practices. We will post any updated Policy on our website with a new “Last Updated” date. For significant changes, we will provide notice (email or prominent website banner) and seek explicit consent for material changes affecting your rights.