Legal

Privacy Policy

Last updated: May 2026

About Us

DarkGuard (“we”, “our”) is a boutique cybersecurity consultancy for regulated organisations, structured to serve clients that need enterprise-depth security delivery without building it internally.

Our Approach to Privacy

At DarkGuard we are strongly committed to protecting personal data. This Privacy Policy describes why and how we collect and use personal data and provides information about your rights. It applies to personal data provided to us, both by yourself or by others.

We will always process your personal data lawfully, transparently, and fairly in the same manner that we would expect others to process our personal data.

We keep the personal data we collect to a minimum. You have rights you can exercise, these are explained below. You can contact us to ask about the personal information we hold about you or to exercise your rights.

If we are making decisions regarding the purposes for which we process your personal information, and the means of doing so, we are acting as a data controller. In this case, the data controller is DarkGuard.

If we are processing your personal information on the instructions of one of our customers (for example your employer), it is likely we are working with it as a data processor in line with a written contract. In this case, the data controller will be our customer, and your personal data will be processed as set out in their privacy notice.

Personal Data We Collect and Why

  • If You Contact Us

If you contact us using our website, by email, or through social media, we collect the personal information you provide to us. This normally includes your name, job title, employer business address, business email, and any additional information you include in your message.

We use the personal information you provide to us to respond to your enquiry. It is in our legitimate interests to communicate with you in response to your message.

  • If We Provide Services to Your Organisation

Where we provide services to your organisation, we are likely to process your personal data for the following purpose:

Firstly, we will collect and process your name, job title, employer business address, and business email if you are a key contact for the service we provide. It is in our legitimate interests to collect and process personal information about individuals working at customer organisations for the purpose of providing them with services, communicating about requirements, promoting our services, and taking instructions.

Cookies

We do not use tracking or advertising cookies. See our Cookie Policy for details.

We use Simple Analytics for website analytics. Simple Analytics does not collect personal data, does not use cookies, and does not track visitors across websites. No data is shared with third parties for advertising purposes.

Our contact form is protected by Cloudflare Turnstile. When you interact with the contact form, Turnstile collects browser signals — including IP address, User-Agent, and TLS fingerprint — and sends them to Cloudflare strictly for bot detection. This process does not use cookies and does not identify you as an individual. Cloudflare acts as a data processor under our instruction.

Sharing Your Data

As a principle, we do not share personal information. However some data may be processed by the following third parties:

  • Cloudflare — browser signals for bot protection via Cloudflare Turnstile
  • Simple Analytics — anonymous, aggregate website analytics (no personal data)
  • Azure (Microsoft) — infrastructure hosting in EU regions We have assessed and will continue to assess that these providers implement appropriate security measures.

Where Data is Stored

  • Infrastructure: Microsoft Azure (Ireland / Netherlands) — website hosting
  • Productivity: Microsoft 365 (UK) — client contact details, email, general file storage We may also share your personal information with our professional advisers including our lawyers and auditors only where it is strictly necessary to do so. It is possible that we may be required to share your data to comply with applicable laws or with valid legal processes, such as in response to a court order.

How Long We Keep Your Data

We retain your personal information for as long as it is reasonably necessary for the purpose of our relationship, for as long as we are legally obliged, or until you object to us processing your data or withdraw your consent to us doing so.

Your Rights

You have the following rights in respect of your personal data:

  • You have the right of access to your personal data and can request copies of it and information about our processing of it.
  • If the personal data we hold about you is incorrect or incomplete, you can ask us to rectify or add to it.
  • Where we are using your personal data with your consent, you can withdraw your consent at any time.
  • You have the right to request we delete your personal data.
  • Where we are using your personal data because it is in our legitimate interests to do so, you can object to us using it this way. If you wish to exercise your rights, please contact us at dpo@darkguard.com.

Contact Us

For questions or concerns about this policy, contact our Data Protection Officer at dpo@darkguard.com.