Privacy policy

CipherMail B.V. processes personal information in line with the General Data Protection Regulation (GDPR). This page informs you about the ways we collect, store this data.

Website analytics

We do log visitors' IP addresses and other information, such as the such as your browser's user agent or, in the case of our mail servers, your email address. This ensures that we can monitor the security, reliability and performance of our systems, and is part of our legimite interests under the GDPR. These logs will not be used for other purposes.

Customer relationship management

If you contact us, for example through email, telephone or our ticketing system, we will keep the personally identifiable information you send us for as long as we need to fully process your request. We may also retain communication when we have other legitimate interests to do so.

CipherMail B.V. is required by law to retain certain (financial) information for up to seven years.

Sharing with third parties

We will not share your personal information with third parties. The only exceptions to this rule are:

  • third parties that are vital to providing our services, such as business partners and the parties described earlier on in this privacy policy;
  • when you give us explicit permission; and
  • when we are legally required to do so.

When sharing your personal information with third parties, we will ensure that appropriate technical and legal safeguards are in place in order to protect your privacy.

Your rights

Under the General Data Protection Regulation, you have the right to access the personally identifiable information that is processed by us. You may also request us to correct or remove your information, or object against the processing of your information. Read more about your rights on the website of the European Commission.

CipherMail B.V. is responsible for processing your personally identifiable information as described in this privacy policy. Please contact us if you have any questions regarding this privacy policy, or if you would like to send us a GDPR request. Note that we are required by law to sufficiently check your identity before processing your GDPR request. In most cases it is enough to provide just your Matomo ID (stored as a cookie in your browser) or to provide proof of control over your email address, phone number or postal address. In rare cases we might have to ask you for a copy of your government-issued identity document.