Privacy Policy

Last updated: August 30, 2025

Muse Cyber Ltd (“we”, “our”, “us”) is committed to protecting and respecting your privacy. This policy explains how we collect, use, and safeguard your personal data when you visit our website or interact with us.

1. Who we are

Muse Cyber Ltd is a company registered in England and Wales (Company Number: 15385167) with registered office at 71-75 Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ. We act as the Data Controller for the purposes of the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018.

If you have any questions, you can contact us at:
📧 Email: privacy@musecyber.com
📮 Post: 71-75 Shelton Street, Covent Garden, London, United Kingdom, WC2H 9JQ

2. What data we collect

We may collect and process the following types of personal data:

  • Information you provide: when you fill in forms, sign up for newsletters, download resources, or contact us directly (e.g., name, job title, company, email address, phone number).
  • Technical information: such as your IP address, browser type, operating system, referral source, pages viewed, and the date/time of visits.
    – Cookies and tracking: we use cookies and similar technologies to improve site functionality and measure engagement. (See Section 8 for details).

3. How we use your data

We use your personal data to:

  • Provide information, products, or services that you request.
  • Communicate with you about our services, updates, or events.
  • Improve our website, services, and marketing effectiveness.
  • Comply with legal and regulatory obligations.

We will only use your data where we have a lawful basis under UK GDPR, which may include your consent, our legitimate business interests, or compliance with a legal obligation.

4. Sharing your data

We do not sell your data. We may share your personal data with:

  • Trusted service providers (e.g., website hosting, analytics, CRM, marketing platforms such as HubSpot or Mailchimp).
  • Professional advisers (lawyers, auditors, insurers) where necessary.
  • Regulators, law enforcement, or government bodies where required by law.

All third parties are required to respect the security of your data and act in compliance with UK GDPR.

5. International transfers

Some of our service providers may process data outside the UK/EEA. Where this occurs, we ensure appropriate safeguards are in place (e.g., adequacy decisions or UK International Data Transfer Agreements).

6. Data retention

We only keep personal data for as long as necessary to fulfil the purposes for which it was collected, including legal, accounting, or reporting requirements. Generally, we retain client enquiry data for up to 2 years unless you request deletion sooner.

7. Your rights

Under UK GDPR, you have the right to:

  • Access your personal data.
  • Request correction of your data.
  • Request erasure of your data.
  • Object to processing or request restriction.
  • Request transfer of your data to another provider.
  • Withdraw consent at any time (where consent is the basis of processing).

You can exercise these rights by contacting us at privacy@musecyber.com. If you are unhappy with how we handle your data, you may also lodge a complaint with the Information Commissioner’s Office (ICO) at www.ico.org.uk.

8. Cookies

Our website uses cookies and similar technologies to enhance user experience and analyse traffic. You can manage or disable cookies through your browser settings. For full details, see our Cookie Policy.

9. Security

We implement appropriate technical and organisational measures to protect personal data against unauthorised access, alteration, disclosure, or destruction.

10. Changes to this policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “last revised” date.