top of page

Privacy Policy

At Dionysus Research, we believe in keeping things simple and transparent. Our Privacy Policy is designed to inform you clearly and concisely about how we handle your personal data.

 

We understand that privacy matters can sometimes be complex, so if there's anything in this policy that you don't fully understand or if you have any questions, please don't hesitate to reach out to us. We're here to help and are committed to ensuring that your privacy is respected and protected.

Our Privacy Policy (Updated 11/01/2024)

1. Introduction

Dionysus Research ("we", "us", "our") is dedicated to upholding the privacy and security of personal data. This Privacy Policy sets forth our practices regarding the collection, use, processing, and disclosure of personal data in compliance with the Data Protection Act (DPA) 2018, the General Data Protection Regulation (GDPR), and other applicable privacy legislation. Our services focus on identifying victims of data breaches and collaborating with law enforcement, legal professionals, NGOs, and other relevant entities to prevent and detect cybercrime.

​

2. Information We Collect

We collect and process various types of personal data, including:

  • Identification Data: Full names, postal addresses, email addresses, telephone numbers, and other contact information.

  • Professional Data: Job titles, roles, workplace contact details, and organizational affiliations.

  • Technical Data: IP addresses, browser types, operating systems, device information, and usage data.

  • Data Breach Information: Specific details of data breaches, including types of data compromised, number of individuals affected, and the nature of the breach.

  • Law Enforcement Data: Information provided by law enforcement and other agencies in relation to data breaches and cybercrime.

​

3. Basis for Processing

Our processing of personal data is grounded in the following legal bases:

  • Consent: When you provide explicit consent for specific processing activities.

  • Contractual Necessity: To enter into or perform a contract with you or your organization.

  • Legal Obligation: To comply with our legal and regulatory obligations.

  • Legitimate Interests: For conducting and managing our business, including fraud prevention, network security, and improving our services.

  • Prevention and Detection of Crime: Processing necessary for the purposes of preventing and detecting crime, as permitted under the DPA 2018.

​

4. Use of Information

We use personal data for various purposes, such as:

  • Victim Identification: Identifying and communicating with individuals affected by data breaches.

  • Collaboration with Partners: Engaging with law enforcement, legal professionals, NGOs, and other entities in our network.

  • Service Improvement: Enhancing our capabilities in detecting and preventing data breaches.

  • Communication: Responding to inquiries, providing updates, and customer support.

​

5. Data Sharing and Disclosure

Personal data may be shared with the following entities:

  • Law Enforcement and Governmental Bodies: For the purposes of crime detection and prevention, and as required by law.

  • Third-party Service Providers: Companies that provide services on our behalf, such as IT and communication service providers.

  • Legal and Professional Advisors: Lawyers, accountants, and other advisors for compliance, strategic, and advisory purposes.

​

6. International Data Transfers

We may transfer personal data outside the European Economic Area (EEA) in the course of our operations. We ensure that such transfers are subject to appropriate safeguards, such as standard contractual clauses.

​

7. Data Security

We employ stringent security measures to protect personal data from unauthorized access, alteration, and destruction. These measures include encryption, access controls, and secure storage.

​

8. Data Retention

We retain personal data for the duration necessary to fulfill our purposes, including for legal, accounting, or reporting requirements. Retention periods are determined based on the nature of the data and the purpose of processing.

​

9. Your Rights

Under data protection laws, you have rights including:

  • Access: The right to request access to your personal data.

  • Rectification: The right to request correction of inaccurate or incomplete data.

  • Erasure: The right to request deletion of your data under certain conditions.

  • Restriction: The right to request restriction of processing of your data.

  • Data Portability: The right to receive or transfer your data in a structured, commonly used format.

  • Objection: The right to object to processing based on legitimate interests or direct marketing.

​

10. Changes to This Privacy Policy

We reserve the right to update this Privacy Policy periodically. Any changes will be communicated on our website, and we encourage you to review the policy regularly.

​

11. Contact Information

If you have questions about this Privacy Policy or our privacy practices, please contact us here.

bottom of page