Security & privacy compliance

Cyber Made Simple is built with a security-first mindset appropriate for a UK cybersecurity product.

Data protection

We process personal data under UK GDPR. See our Privacy policy for details.

Technical measures

• Encryption in transit (TLS) and at rest for sensitive fields
• Role-based access for staff operations with audit logging
• Regular dependency and infrastructure patching
• Secrets managed via environment configuration, not source code

Assurance

We align with Cyber Essentials principles and pursue independent assurance as the product matures. Certification badges on the site reflect current status in site settings.

Sub-processors

We use vetted providers (e.g. hosting, auth, payments, email) under appropriate contractual safeguards.

Contact

Security reports: support@cybermadesimple.co.uk.