Privacy Policy


This policy sets out the basis on which CRIBB Cyber Security of BioPark, Broadwater Road, Welwyn Garden City, Hertfordshire AL7 3AX (Company Number 10495840) (together with our subsidiaries, from time to time, collectively called “CRIBB” or “we”) collects personal data from you and how we process such data.

  1. Collection of information

    1. For the purposes outlined in Clause 2, we may collect and process the following about you:

      1. Information you give us – information that you provide us (which may include your name, address, email address, telephone number and other personal description) by filling in forms on our Site or when you use certain features on our Site.

      2. Information we collect about you – information automatically collected when you visit our Site, for example:

        1. Information about your visit, including the full Uniform Resource Locators (URLs), clickstream to, through and from our site (including the date and time), products you viewed or searched for, page response times, download errors, length of visits to certain pages, page interaction information (such as scrolling, clicks, and mouse-overs), methods used to browse away from the page, and any phone number used to call our customer service number.

    2. We only retain personal data for so long as contractually necessary or provided that we are given consent to retain this information. This is in accordance to our Data Retention Policy which is available on request.

      1. Information gathered through the online job application process will be held for a minimum of 12 months unless otherwise instructed.

      2. Information gathered via website enquiry/use will be held for a minimum of 6 months unless otherwise instructed.

      3. Data retention will be for as long as contractually necessary or provided that we are given consent to retain this information. This is in accordance to our Data Retention Policy which is available on request.

  2. Uses of information

    1. We use information held about you for the following purposes:

      1. Providing, improving and developing our services;
      2. Researching, designing and launching new features or products;
      3. Presenting content and information in our Site in the most effective manner for you and for the device you use;
      4. Providing you with alerts, updates, materials or information about our services or other types of information that you requested or signed up to;
      5. For direct marketing purposes (please see further details in Clause 2.b below);
      6. Communicating with you and responding to your questions or requests; and
      7. Purposes directly related or incidental to the above.

    2. We intend to use your personal data in direct marketing (i.e. offering or advertising products or services by sending the relevant information directly to you). We require your consent specifically for this purpose and you may opt out any time. For the purpose of this clause:

      1. The personal data that may be used in direct marketing are those that you provide to us or we collect from you under Clause 1.a. above;
      2. The type of services or products that may be offered or advertised will be Our Services and Expertise and those of our associated companies;
      3. The relevant information may be sent to you by email, phone or given at conferences and events;
      4. You may opt out any time by email via ism@cribbcs.net or by clicking the unsubscribe tab on the website. We will cease to send you marketing information without charge.

  3. Disclosure of your information
    We will keep your personal data we hold confidential but you agree we may provide information to:

    1. Any member of our group, which means our subsidiaries or associated companies defined in section 1159 of the Companies Act 2006;
    2. Persons under a duty of confidentiality to us;
    3. Persons to whom we are required to make disclosure under applicable laws and regulations in any part of the world.

  4. Cookies

    1. Our site uses cookies to distinguish you from other users of the Site. This helps us to provide you with a good experience when you browse our Site and also allows us to improve our Site.

    2. A cookie is a small file of letters and numbers that we store on your browser or the hard drive of your computer if you agree to the use of cookies. Cookies contain information that is transferred to your computer’s hard drive.

    3. We use persistent cookies and session cookies. A persistent cookie stays in your browser and will be read by us when you return to our Site. Session cookies only last for as long as the session (usually the current visit to a website or a browser section). No PII is collected by cookies used on this website.

    4. We use the following cookies:

      1. Analytical/performance cookies – they allow us to recognise and count the number of visitors and to see how visitors move around our Site when they are using it. This helps us to improve the way our Site works, for example, by ensuring that users are finding what they are looking for easily.
      2. Functionality cookies – these are used to recognise you when you return to our Site. This enables us to personalise our content for you, greet you by name and remember your preferences (for example, your choice of language or region).
      3. Targeting cookies – these cookies record your visit to our Site, the pages you have visited and the links you have followed. We will use this information to make our Site and the information displayed on it more relevant to your interests.

    5. You can block cookies by activating the setting on your browser that allows you to refuse the setting of all or some cookies. However, if you do so, you may not be able to access all or parts of our Site.

    6. We may use third-party web services on our Site. The service providers that administer these services use technologies such as cookies (which are likely to be analytical/performance cookies or targeting cookies) web server logs and web beacons to help us analyse how visitors use our Site and make the information displayed on it more relevant to your interests (including IP addresses) is disclosed to these service providers. These analytics services may use the data collected to contextualise and personalise the marketing materials of their own advertising network.

  5. Security

    1. All information you provide to us is stored on our secure servers.

    2. We restrict access to personal information to our employees, service providers and contractors on a strictly need-to-know basis and ensure that those persons are subject to contractual confidentiality obligations.

    3. We review our information collection, storage and processing practices from time to time to guard against unauthorised access, processing or use.

    4. Please note, however, the transmission of information via the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our Site; any transmission is at your own risk.

  6. Data transfer

    1. The data that we collect from you may be transferred to, and stored at, a destination with the European Union. It may also be processed by persons referred to in Clause 3 above who operate externally to the European Union on your agreement.

    2. By submitting your personal data you agree to this transfer, storing or processing of data outside the European Union. We will take all steps reasonably necessary to ensure that your data is treated securely in accordance with this privacy policy.

  7. Your rights
    You have the right to:

    1. To be informed whether we hold personal data about you.
    2. Access any information/personal data we hold about you.
    3. Require us to correct any inaccuracy or error in the data we hold about you.
    4. To have the data erased.
    5. Restrict processing.
    6. To data portability.
    7. Object about data being held.
    8. In relation to automated decision making and profiling.

  8. Data Subject Access Requests & Privacy Policy Enquiries

    If you have any questions, comments or requests regarding personal data or require access to the data we hold on you, please address them to:

    Technical Director
    CRIBB Cyber Security
    BioPark
    Broadwater Road
    Welwyn Garden City
    Hertfordshire AL 7 3AX

    Email: ism@cribbcs.net
    Telephone: 0800 9 101 101