Cybership Privacy Policy

At Cybership, we are committed to protecting your personal information and maintaining your trust. This Privacy Policy outlines how Cybership, a leading logistics, third-party logistics (3PL), and warehouse management system (WMS) provider, collects, uses, shares, and protects your data. It covers everything from data collection to your rights and how we ensure compliance with the highest standards of privacy and security.

Introduction

Cybership offers a range of logistics services, including inventory management, order fulfillment, shipping coordination, and warehouse solutions. We collect data to facilitate these services, enhance your experience, and improve our offerings. By using our services, you consent to the data practices described in this Privacy Policy. We understand that your privacy is important, and we are dedicated to safeguarding your personal and operational data at all times.

Information We Collect

1. Personal Information

Cybership collects personal information that you provide to us when you sign up for our services, communicate with us, or engage in business transactions. This information includes:

Identity Information: Such as your full name, company name, job title, email address, phone number, and contact preferences.

Account Information: Information required to create and manage your account, including usernames, passwords, and security questions.

Billing and Payment Information: Including credit card numbers, billing addresses, bank account details, and transaction history.

Communication Data: Records of your communications with Cybership, including emails, phone calls, chat messages, and support inquiries.

2. Operational and Logistics Information

Cybership collects information related to your logistics and warehouse operations to provide tailored services. This data includes:

Order Data: Details of the orders you process through our platform, including shipping addresses, item descriptions, quantities, and tracking numbers.

Inventory Data: Information about your stock levels, locations within the warehouse, product identifiers, and allocation details.

Fulfillment and Delivery Data: Information on shipments, delivery dates, carrier information, and delivery confirmation.

3. Automatically Collected Information

When you interact with our platform, Cybership automatically collects certain information using cookies, log files, and similar tracking technologies. This information includes:

Device and Browser Information: Such as your IP address, browser type and settings, operating system, device identifiers, and system activity.

Usage Data: Information about how you use our services, including the pages you visit, features you interact with, and performance metrics.

Location Data: Data regarding your location, derived from your IP address or GPS data when using location-based services like delivery tracking or optimized routing.

Why We Collect Your Information

Cybership collects your data to provide, maintain, and improve our logistics, 3PL, and WMS services. We use your data for the following purposes:

Service Provision: To manage your orders, process transactions, and coordinate warehouse operations, ensuring timely fulfillment and delivery.

Personalization: To tailor our services to your specific needs, preferences, and operational requirements.

Communication: To send you important updates, respond to your inquiries, and provide support related to your account and logistics operations.

Security: To monitor and protect against security threats, fraud, and unauthorized access to our platform and services.

Analytics: To analyze usage trends, measure performance, and optimize our platform’s features for a better user experience.

Compliance: To comply with legal requirements, including tax, regulatory, and contractual obligations.

How We Share Your Information

Cybership shares your information with third parties only in specific circumstances to support the operation of our services, and in compliance with this Privacy Policy. These include:

1. Service Providers

We work with trusted service providers who assist us in delivering our logistics services, such as payment processors, warehouse operators, and shipping carriers. These providers process your data on our behalf and are contractually obligated to protect your information.

2. Business Transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred to the new entity to ensure continuity of service. You will be notified if such a transfer occurs, and your information will remain subject to this Privacy Policy.

3. Legal Obligations

We may disclose your information if required by law or in response to valid requests by public authorities, including to meet national security or law enforcement requirements.

4. With Your Consent

We may share your data with third parties when you explicitly consent to such sharing for specific purposes.

Your Rights Regarding Your Information

You have several rights concerning your personal information, including the right to:

Access Your Data: Request a copy of the personal information we hold about you and how we use it.

Correct Your Data: Update or correct any inaccuracies in your personal information.

Delete Your Data: Request the deletion of your personal information, subject to certain legal exceptions.

Data Portability: Request that we provide your personal information in a structured, commonly used, and machine-readable format.

Restrict Processing: Request that we limit the processing of your personal data under certain circumstances.

How We Protect Your Information

Cybership takes the security of your data seriously. We employ a range of security measures designed to protect your personal and operational data from unauthorized access, disclosure, alteration, or destruction. These measures include:

1. Encryption

We use encryption to protect sensitive data both during transmission and while at rest. This ensures that your personal and operational data remains secure at all times.

2. Access Controls

We restrict access to your personal data to authorized personnel who need access to perform their job functions. All personnel are required to adhere to strict confidentiality obligations.

3. Regular Security Audits

We conduct regular security assessments to identify and address potential vulnerabilities. Our security protocols are continuously updated to adapt to emerging threats.

Data Retention

We retain your personal and operational data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy. Our data retention periods are based on legal, operational, and regulatory requirements, and we ensure that your data is securely deleted when no longer needed.

Operational Data: Retained for the duration of our contractual relationship and longer if required for legal, regulatory, or auditing purposes.

Personal Information: Retained for as long as you maintain an account with Cybership, or as required by law or regulatory obligations.

Compliance with Global Data Protection Laws

Cybership complies with applicable data protection laws, including but not limited to the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other global privacy regulations. We ensure that all personal data is processed lawfully, transparently, and fairly, regardless of where you are located.

International Data Transfers

Your data may be transferred to, and processed in, countries other than the country in which you are resident. These countries may have data protection laws that are different from the laws of your country. However, we ensure that adequate safeguards are in place to protect your data during such transfers.

We comply with international data transfer frameworks such as the EU-U.S. Privacy Shield and implement standard contractual clauses to ensure that your personal data remains protected when transferred internationally.

Children's Privacy

Cybership’s services are not intended for children under the age of 13. We do not knowingly collect personal information from children under 13. If we become aware that we have inadvertently collected personal data from a child under 13, we will take steps to delete that information as quickly as possible. If you believe that we might have information from a child under 13, please contact us at privacy@cybership.io.

Cookies and Tracking Technologies

Cybership uses cookies and similar tracking technologies to collect information about your usage of our platform and improve your experience. Cookies are small data files that are placed on your device when you visit our website. We use cookies for the following purposes:

1. Essential Cookies

These cookies are necessary for the operation of our website and platform. They enable you to access secure areas of the site and ensure that your experience is consistent.

2. Performance and Analytics Cookies

These cookies collect information about how visitors use our site, such as which pages are visited most often, and help us improve our services. All information collected by these cookies is aggregated and anonymous.

3. Functionality Cookies

These cookies allow our website to remember choices you make, such as your language preference, and provide enhanced features.

4. Targeting Cookies

These cookies are used to deliver advertisements relevant to you and your interests. They also help limit the number of times you see an ad and measure the effectiveness of our advertising campaigns.

You can manage your cookie preferences through your browser settings. You can also opt-out of certain cookies by visiting the Network Advertising Initiative (NAI) website or using the opt-out features provided by your device’s operating system.

Changes to this Privacy Policy

Cybership may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. We will notify you of any material changes by posting an updated Privacy Policy on our website and, where required by law, providing you with notice of changes via email or other communication channels.

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your data. The date of the latest revision will be indicated at the top of the policy.

Additional Rights Under GDPR

If you are located in the European Economic Area (EEA), you have additional rights under the General Data Protection Regulation (GDPR). These rights include:

The Right to Object: You have the right to object to our processing of your personal data if it is based on legitimate interests. You may also object to the processing of your personal data for direct marketing purposes.

The Right to Restrict Processing: You can ask us to suspend the processing of your personal data in specific cases, such as if you contest the accuracy of the data or when you believe our processing is unlawful.

The Right to Data Portability: You can request a copy of your personal data in a structured, commonly used, and machine-readable format. You may also request that we transfer your data to another controller where technically feasible.

Data Breach Notification

In the event of a data breach that may result in a risk to your rights and freedoms, Cybership will notify affected users and relevant regulatory authorities within 72 hours of becoming aware of the breach. We will provide information about the nature of the breach, its likely consequences, and any measures taken to address the issue.

Data Anonymization and Aggregation

Cybership may anonymize or aggregate personal data to analyze trends, improve service offerings, or generate statistical information. Anonymized data does not identify individuals and is used solely for research, benchmarking, and operational improvement.

Data Transfer and Processing Agreements

To ensure that your data is handled securely, Cybership enters into data processing agreements with all third-party service providers. These agreements require our partners to implement adequate security measures and comply with applicable data protection laws, including GDPR and CCPA.

Transparency Reports

Cybership may periodically release transparency reports detailing the number of legal requests for user data, such as subpoenas, court orders, or national security requests. These reports help inform users about government access to personal data.

Data Localization

In certain jurisdictions, data localization laws may require that personal data be stored within the country of origin. Cybership complies with such requirements by ensuring that data centers and infrastructure within these regions handle local data.

Multi-Factor Authentication (MFA)

For enhanced security, Cybership offers multi-factor authentication (MFA) for user accounts. MFA requires a second form of authentication, such as a code sent to your mobile device, to access your account. We strongly recommend enabling MFA to protect against unauthorized access.

Log Data

Cybership collects log data that may include your IP address, browser type, operating system, and device information. This data is used for diagnostics, performance monitoring, and troubleshooting purposes, helping us ensure the security and reliability of our services.

Incident Response Plan

Cybership has a comprehensive incident response plan in place to address potential security breaches or data leaks. Our plan includes identifying the incident, containing its impact, investigating the cause, and notifying affected users and authorities if required.

User Consent for Data Collection

Before collecting personal data, Cybership will obtain your explicit consent. This may be done through consent banners, opt-in forms, or other mechanisms depending on the nature of the data collection. You have the right to withdraw your consent at any time.

Data Access Request Procedures

If you would like to request access to the personal data Cybership holds about you, please contact us at privacy@cybership.io. We will respond to your request within the timelines required by applicable laws. Identification may be required to verify the legitimacy of the request.

Training and Awareness Programs

Cybership provides regular data privacy and security training for its employees and contractors. These programs ensure that our staff understand their responsibilities in protecting user data and maintaining compliance with global data protection regulations.

Privacy by Design and Default

Cybership incorporates the principles of privacy by design and privacy by default into the development of its products and services. This means that data protection is considered from the outset, and privacy features are enabled by default unless the user chooses otherwise.

Legal Basis for Processing Personal Data

Cybership processes personal data based on several legal grounds, including the necessity of the data for the performance of a contract, compliance with legal obligations, protection of vital interests, and legitimate interests pursued by Cybership, unless such interests are overridden by the rights of the data subject.

Withdrawal of Consent

If you have previously provided consent for the processing of your personal data, you have the right to withdraw your consent at any time. To withdraw your consent, contact us at privacy@cybership.io. Please note that withdrawing consent may impact your ability to use certain features of our services.

Profiling and Automated Decision-Making

Cybership may use automated decision-making and profiling in certain areas of its services, such as optimizing logistics routes or analyzing operational efficiency. If such processes significantly affect you, you have the right to request human intervention or challenge the decision.

Data Minimization

Cybership adheres to the principle of data minimization, meaning we collect and process only the data that is necessary for the purposes described in this Privacy Policy. We regularly review our data collection practices to ensure that we are not retaining excessive or unnecessary data.

Data Retention Schedules

Cybership has established data retention schedules to ensure that personal data is kept for no longer than necessary. These schedules are based on legal, operational, and business requirements. Once data is no longer needed, it will be securely deleted or anonymized.

Cross-Border Data Transfers

Cybership may transfer personal data across borders to provide its services globally. When transferring data outside of your jurisdiction, we ensure that appropriate safeguards, such as standard contractual clauses, are in place to protect your personal data.

Right to Complain to Supervisory Authority

If you believe that Cybership is processing your personal data unlawfully or infringing upon your rights, you have the right to lodge a complaint with your local supervisory authority. We encourage you to contact us first to resolve any issues before escalating to a regulatory body.

Third-Party Websites and Services

Cybership’s services may include links to third-party websites or services that are not controlled by us. We are not responsible for the privacy practices or content of such websites or services. We encourage you to review the privacy policies of any third parties you interact with through our platform.

International Compliance

Cybership operates in multiple jurisdictions and complies with international data protection regulations. We ensure that our practices meet the legal requirements of regions such as the European Union, the United States, Canada, Australia, and other global territories.

User Rights Under CCPA

Under the California Consumer Privacy Act (CCPA), California residents have specific rights regarding their personal information. These include:

The Right to Know: You can request information about the categories of personal information we have collected, the purposes for collecting it, and the third parties with whom we share it.

The Right to Delete: You can request the deletion of your personal information, subject to certain exceptions such as compliance with legal obligations.

The Right to Opt-Out: You have the right to opt out of the sale of your personal information. Cybership does not sell personal information; however, we respect your right to opt-out.

Data Subject Requests (DSRs)

Cybership provides a formal process for handling data subject requests (DSRs) under GDPR and other privacy regulations. DSRs allow you to request access, correction, deletion, or restriction of your personal data. To submit a DSR, contact us at privacy@cybership.io.

Vendor Management and Risk Assessment

Cybership conducts regular vendor risk assessments to ensure that all third-party providers adhere to strict data protection standards. We evaluate the security practices, compliance, and reputation of our vendors to safeguard your personal data.

Cookie Consent Management

Cybership uses a cookie consent management tool that allows you to control the types of cookies placed on your device. You can update your preferences at any time by accessing the cookie settings on our website.

Marketing Communications

Cybership may send you marketing communications related to our services, special offers, or industry updates. You can opt-out of these communications at any time by following the unsubscribe link provided in our emails or by adjusting your communication preferences in your account settings.

Data Accuracy and Completeness

We take reasonable steps to ensure that the personal data we collect is accurate, complete, and up-to-date. You are encouraged to review and update your personal information regularly to ensure its accuracy. If you notice any discrepancies, please notify us immediately.

Privacy Impact Assessments (PIAs)

Cybership conducts Privacy Impact Assessments (PIAs) when introducing new data processing activities or technologies that may impact user privacy. These assessments help us identify and mitigate risks associated with the collection, storage, and use of personal data.

Incident Reporting and Escalation

We have an internal process for reporting and escalating security incidents or privacy concerns. This process includes identifying and containing incidents, investigating the root cause, and notifying affected individuals and regulatory authorities when required.

Contact Us

If you have any questions about this Privacy Policy, your rights, or how we handle your personal information, please contact us at privacy@cybership.io. We are committed to addressing any concerns you may have and ensuring that your privacy is protected.