Privacy Policy

This Privacy Policy governs the data processing activities undertaken by CIPHER in relation to users who access CIPHER website or contact CIPHER through it. The foregoing includes processing the personal data of customers and/or potential customers and their contact persons or representatives, as well as candidates, accessing or transferring information via the website. Therefore, this privacy policy contains information on the processing of data corresponding to the different categories of the data subjects mentioned.

1. Data Controllers

The present document governs the privacy policy of the CIPHER website (hereinafter also referred to as the “website“).

CIPHER provides a variety of services for preventing, detecting and responding to incidents. This business line is aimed at the business sector, ensuring the information security in the organisation, as well as the risks associated with the company presence in the cyberspace. For your information, the identity details of the company(ies) are provided below:


For data subjects located in UK:


Address: 45 Pall Mall, St James’s, SW1Y 5JG, London- UK.



For users located in USA:


Address: 1111 Brickell Avenue, Miami, Florida 33131 – USA



(hereinafter, together referred as “CIPHER”).

2. Purposes and Legitimisation

You are hereby informed that all the data that CIPHER requests or may collect from you are required for the purposes described in this privacy policy and failing to provide them would make it impossible to contact you or handle the request made with CIPHER. Furthermore, CIPHER reserves the right to refrain from responding or handling requests that do not include the data requested.

You hereby guarantee the accuracy of the personal details provided to CIPHER. CIPHER may periodically ask that you revise and update your personal data.

Please refer to the website for more useful information about the services furnished by CIPHER. In this regard, CIPHER will only ask you for and, therefore, only process the data necessary to render the contracted service and to be able to commence and maintain a commercial and/or contractual relationship with you.

The following is a description of the purposes and legal grounds for which we process personal data:


Legal ground(s)

Management of the commercial relationship with potential clients, conducting commercial visits and attending to requests for information on the products and services provided by CIPHER.

Performance of a contract or application of pre-contractual measures.

Formalisation and management of the contractual relationship.

Manage free trial requests and provide it.

Facilitate access, registration and navigation through the website.

Respond to requests for information, budgets and other queries made by contact persons/representatives of customers or potential customers.

Legitimate interest in contacting representatives or contact persons of customers that are legal entities.

Sending commercial communications about different products and services of the PROSEGUR Group to customers or potential customers and their contact persons/representatives.


Sending commercial communications to customers who have contracted with Cipher or to their contact persons/representatives, in order to keep them updated on the services offered by Cipher.

Legitimate interest in contacting customers or their contact persons/representatives to keep them informed about Cipher similar services or products.

Evaluate the use of the web page, guarantee its security and carry out statistical analyses.

Legitimate interest of Cipher in ensuring the proper functioning of the website and improving its functionalities.

Requesting public economic solvency files to verify that you are up to date with your payments, whether you are in arrears, and if you had been in the past, how long it took you to pay off your debts, which will simplify and streamline the risk analysis at the time the contract is taken out. 

Legitimate interest of Cipher in safeguard its own operations and prevent fraud.

Creating business process automation projects to enhance the products and services provided by CIPHER. The legitimate interest in this case would be to improve the efficiency and productivity of CIPHER activities.

Legitimate interest of Cipher in improving its services.

Profiling based on personal data to calculate the degree of readiness to acquire other products or services, likelihood of cancelling the services under contract and the assignment of an assessment.


Management of the personnel selection process (reception of CVs and applications, job interviews, evaluation of candidates, etc.).

Consent/ application of pre-contractual measures.

3. Recipients

The personal data that you provide to CIPHER may be sent to the following recipient categories:

  • Third parties to whom CIPHER is obliged to send information, including public authorities, security forces, judges and courts, in order to comply with the requirements of these authorities and the applicable regulations, where appropriate.
  • Companies that form part of the Prosegur Group, in order to manage the corresponding contractual relationship appropriately as a result of the centralisation of administrative and computing processes within the Prosegur Group.

You are hereby informed that the CIPHER may include companies outside your country. In these instances, the parent company requires that these companies fulfil the measures designed to protect personal data established in a binding contract. 

4. Data Storage

The criteria that CIPHER uses to define the periods for storing your data have been established in line with the requirements established in the applicable legislation, regulations and guidelines, in addition to CIPHER’s operating requirements relating to the correct management of its relationship with you.

5. Your Data Protection Rights

You may make contact with CIPHER whenever you believe and retain the right to exercise your rights of access, rectification, cancellation, limitation and opposition, in addition to the right of portability and to not be subject to automated decisions, by writing to the postal address indicate above or the following email addresses: or

Furthermore, you are hereby informed that you may withdraw your consent whenever you so desire by contacting CIPHER at the address or email address mentioned above.

Finally, if you would like more information about your data protection rights or need to file a complaint, you may contact the appropriate Supervisory Authority. 

© 2022. CIPHER All rights reserved.