This Privacy Policy explains how CYBERACE ("we", "us") collects, uses and protects personal data submitted through this website, in compliance with Regulation (EU) 2016/679 ("GDPR") and applicable national data protection laws in the European Union.

1. Data Controller

Controller: CYBERACE LTD
Contact: legal@cyberace.tech
Website: cyberace.tech

2. Data we collect

Through the contact form on this site we collect:

Name — to address you in our reply.
Email address — to send you a response.
Message content — the information you choose to share.
Technical data — IP address and a Cloudflare Turnstile token, processed transiently to prevent abuse and spam.

We do not use tracking cookies, advertising profiling, or analytics that identify you personally.

3. Purposes and legal basis

Replying to your enquiry — legal basis: your consent (Art. 6.1.a GDPR), given by ticking the consent checkbox and submitting the form, and pre-contractual measures at your request (Art. 6.1.b GDPR).
Security, fraud and abuse prevention — legal basis: our legitimate interest in protecting the service (Art. 6.1.f GDPR).
Legal compliance — where required by applicable law (Art. 6.1.c GDPR).

We do not use your data for automated decision-making or profiling, and we never sell your data.

4. Retention

Contact messages are kept only as long as needed to handle your enquiry and, where appropriate, the resulting business relationship. By default we delete or anonymise messages within 24 months of the last interaction, unless a longer retention period is required by law.

5. Recipients and processors

We share the minimum data required with the following processors, each bound by a data processing agreement:

Cloudflare, Inc. — anti-bot verification (Turnstile) and hosting/CDN.
Emailit — transactional email delivery of your message to our inbox.
Lovable — application hosting.

Some of these providers may process data outside the European Economic Area. In those cases, transfers rely on adequacy decisions or the Standard Contractual Clauses approved by the European Commission.

6. Your rights

Under the GDPR you have the right to access, rectify, erase, restrict or object to the processing of your personal data, as well as the right to data portability and to withdraw your consent at any time without affecting the lawfulness of processing carried out before the withdrawal.

To exercise these rights, write to legal@cyberace.tech from the email address used in the form. You also have the right to lodge a complaint with your local data protection supervisory authority.

7. Security

We apply appropriate technical and organisational measures to protect personal data, including TLS in transit, access controls, anti-bot verification and the principle of least privilege.

8. Changes

We may update this policy to reflect operational or legal changes. The date at the top indicates the last revision.