Privacy Statement

---

Last Updated: Jan 3, 2025

The Cypher Network Pty Ltd (“TCN”, “we”, “us” or “our”) is committed to protecting and respecting your privacy. We are privacy-preserving by default: we collect personally identifiable information only when it’s strictly required to deliver our services. This Privacy Statement explains how we collect, use, disclose, and safeguard your personal information when you visit our website or engage our services across Web2 and Web3 environments.

• Minimal PII by Design: We only collect personally identifiable information (PII) if it’s necessary to provide the requested service.
• Personal Identifiers: Name, email address, phone number, company name, job title, and other contact details you provide when booking consultations or subscribing to newsletters.
• Technical Data: IP address, device type, browser type and version, operating system, and usage data collected automatically via cookies and similar tracking technologies.
• Professional & Transactional Data: Payment details, service preferences, audit logs, and on-chain identifiers when you engage our Web3 or token-based services.
• Sensitive Data: Where required for specific services (e.g., healthcare compliance), we may collect limited health or compliance-related data under strict confidentiality controls.
   

We use your personal information to:

• Provide and manage our cybersecurity and advisory services, including fractional CISO engagements, Web2 and Web3 assessments, and Emerging Tech Lab innovation.
• Communicate with you about your account, upcoming events, product updates, and marketing materials (you may opt out at any time).
• Improve our website functionality, personalize your experience, and analyze trends through anonymized analytics.
• Comply with legal obligations under the Australian Privacy Act 1988, the Australian Privacy Principles (APPs), the EU GDPR (where applicable), and other relevant laws.
   

We may disclose your information to:

• Service Providers & Partners: Trusted third parties who support our operations (e.g., hosting, analytics, payment processors, and professional advisors) under strict confidentiality agreements.
• Regulatory Authorities: As required to comply with court orders, legal processes, or to protect our rights and property.
• Corporate Transactions: In the event of a merger, acquisition, or sale of assets, where your data may be transferred to the succeeding entity with equivalent privacy protections.

We do not sell or rent your personal information to third parties.

We use cookies and similar technologies only to enable core website functionality and respect your default browser settings. We do not engage in any additional tracking beyond those defaults.

• Essential Cookies: Enable critical features like secure login and form submissions.
• Performance & Analytics: Limited to anonymized site performance metrics; only if you consent via our cookie banner.
• No Third-Party Profiling: We do not employ trackers for advertising, social media pixels, or behavioral profiling.

You can adjust your cookie preferences through your browser settings or via the consent banner on our site.

We employ industry-standard technical, administrative, and physical safeguards, including TLS encryption, access controls, and regular security audits, to protect your data against unauthorized access, alteration, or destruction.

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this statement, or as required by law. When no longer needed, we securely delete or de-identify your data.

Depending on your jurisdiction, you may have the right to:

• Access, correct, or delete your personal information.
• Object to or restrict our processing of your data.
• Obtain a copy of your data in a portable format.
  To exercise these rights, please contact our Privacy Officer as described below.

For international clients or data processed overseas, we ensure that cross-border transfers are subject to appropriate safeguards, such as standard contractual clauses or binding corporate rules, to maintain APP-equivalent protections.

We may update this Privacy Statement periodically. The “Last Updated” date above reflects the most recent revision. Significant changes will be communicated via email or a prominent notice on our website.

We’re committed to resolving any privacy-related inquiries promptly and transparently.