Privacy Policy

On this page

Overview
Data we collect
How we use data
Network & traffic data
Sharing & disclosure
Retention
Security
Your rights
Cookies
International transfers
Changes to this policy
Contact us

1. Overview

This Privacy Policy describes how Cybervate ("Cybervate", "we", "us", "our"), a venture of Infivate Ventures, collects, uses, discloses and safeguards information when you visit our website, use our platform, or engage with our sales and support teams. It applies to visitors, prospective customers, customers and the authorized users of customer accounts.

Because Cybervate's platform processes network traffic metadata on behalf of our customers (an ISP, telecom carrier or enterprise), this policy distinguishes between information collected directly from you (as a visitor or account user) and traffic data processed on behalf of a customer, which is governed primarily by our agreement with that customer.

2. Data we collect

We collect information in the following ways:

Information you provide: name, company, work email, phone number, role and message content submitted through forms such as our demo request and contact forms.
Account & platform data: login credentials, configuration data, policy settings and audit logs generated by your use of the Cybervate platform.
Automatically collected data: IP address, browser type, device identifiers, pages visited and referring URLs, collected via standard web logs and cookies.
Network & traffic metadata: flow records, packet headers, threat signatures and similar telemetry processed on behalf of customers operating our security and observability modules (see Section 4).

3. How we use data

We use the data described above to:

Respond to demo requests, sales enquiries and support tickets;
Provide, operate, secure and improve the Cybervate platform;
Detect, investigate and mitigate security threats, including DDoS attacks and intrusion attempts, on behalf of customers;
Send service updates, security advisories and, where you have opted in, product or marketing communications;
Comply with legal, regulatory and contractual obligations.

4. Network & traffic data

When you use Cybervate as a customer (for example, through ShieldCore NGFW, FlowVision Analytics, StormGuard or any other module), our platform processes network traffic data — such as flow records, IP addresses, ports and protocol metadata — strictly to deliver the contracted security and visibility service. This data is processed as a data processor on behalf of the customer, who remains the data controller for traffic originating from or destined to their network, including any personal data incidentally contained within it (such as an end-user's IP address).

We do not sell network traffic data, and we do not use it to build advertising profiles.

We do not sell personal information. We may share data with:

Service providers who support hosting, analytics, customer support and payment processing, under contractual confidentiality obligations;
Affiliates, including Infivate Ventures, for legitimate business and operational purposes;
Law enforcement or regulators, where required by applicable law, court order, or to protect the rights, property or safety of Cybervate, our customers or the public;
Successors in the event of a merger, acquisition or asset sale, subject to standard confidentiality protections.

6. Retention

We retain personal information for as long as necessary to fulfil the purposes outlined in this policy, or as required by applicable law and our contractual commitments to customers. Network flow and security telemetry is retained according to the retention period agreed with the relevant customer, typically configurable up to 13 months.

7. Security

We apply administrative, technical and physical safeguards appropriate to the sensitivity of the data we hold, including encryption in transit and at rest, role-based access control, network segmentation and continuous monitoring. No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

8. Your rights

Depending on your location, you may have rights to access, correct, delete, restrict or object to the processing of your personal data, and to receive a copy of it in a portable format. Residents of India have specific rights under the Digital Personal Data Protection Act, 2023 — see our Disclaimer & DPDP Compliance page for details. To exercise any of these rights, contact us using the details in Section 12.

9. Cookies

Our website uses cookies and similar technologies to operate core functionality, remember preferences and understand aggregate usage patterns. You can control cookies through your browser settings; disabling certain cookies may affect site functionality.

10. International transfers

Cybervate operates points of presence and infrastructure in multiple regions. Where personal data is transferred across borders, we rely on appropriate safeguards such as standard contractual clauses or equivalent mechanisms recognized under applicable law.

11. Changes to this policy

We may update this policy from time to time. Material changes will be reflected by an updated "Last updated" date at the top of this page, and where appropriate, communicated directly to customers.

12. Contact us

If you have questions about this Privacy Policy or wish to exercise your data rights, contact us at [email protected], or write to us at:

2nd Floor, Minarch Tower, Plot No-4, Sector-44, Gurugram, Haryana-122003