Privacy Policy

Neuron Security values the privacy of every visitor to this website. This policy explains what personal data we collect, why we collect it, how we use it, and the rights you have under the European General Data Protection Regulation (GDPR) and Portuguese Law 58/2019.

1. Who we are

Neuron Security is a country representation agency operating in Portugal. References in this policy to "we", "us" or "our" refer to Neuron Security, operating under the legal entity [LEGAL ENTITY NAME], registered in Portugal under tax identification number [NIF], with registered office at [ADDRESS]. We act as the data controller for the personal data collected through this website.

2. What personal data we collect

We only collect personal data that you voluntarily provide to us when you contact us through this website. This typically includes:

• Your name
• Your company or organisation
• Your professional email address
• Your role (if you choose to provide it)
• The content of any message you send to us

We do not collect special categories of personal data (such as health, religion, or political opinions). We do not use cookies for advertising or third-party tracking. Technical access logs may be kept by our hosting provider for security and operational purposes; these typically include IP address, browser type, and timestamps, retained for a short period.

3. Why we collect it

The legal basis for processing your personal data is your consent (Article 6(1)(a) GDPR), given when you submit our contact form, and our legitimate interest (Article 6(1)(f) GDPR) in responding to commercial enquiries and managing professional relationships.

We use your data exclusively to:

• Reply to the enquiry you sent us
• Engage in subsequent commercial conversations, where appropriate
• Maintain a record of contacts for operational follow-up

4. How long we keep your data

We retain enquiry data for as long as is necessary to manage the commercial relationship or fulfil any legal obligation. If no engagement results from your enquiry, we delete the data within a reasonable period, typically 24 months from the last meaningful interaction.

5. Who has access to your data

Access to your personal data is restricted to authorised personnel at Neuron Security on a need-to-know basis. We do not sell, rent, or share your personal data with third parties for marketing purposes.

We may share data with the following categories of third-party processors, strictly to operate this website and our communications:

• Hosting and content delivery provider (Cloudflare)
• Email infrastructure provider (Google Workspace)
• Transactional email service (Resend), used to deliver messages submitted through our contact form

Each of these processors operates under their own privacy commitments and contractual data-processing terms aligned with GDPR.

6. International transfers

Some of our processors operate infrastructure outside the European Economic Area, including in the United States. Where applicable, transfers are protected by appropriate safeguards such as the EU-US Data Privacy Framework or the European Commission's Standard Contractual Clauses.

7. Your rights

Under GDPR, you have the right to:

• Access the personal data we hold about you
• Request rectification of inaccurate or incomplete data
• Request erasure of your data (right to be forgotten)
• Request restriction of processing
• Object to processing based on legitimate interest
• Request portability of your data in a structured, machine-readable format
• Withdraw any consent previously given, at any time
• Lodge a complaint with the Portuguese supervisory authority, Comissão Nacional de Proteção de Dados (CNPD), at www.cnpd.pt

8. How to exercise your rights

To exercise any of the rights listed above, write to us at rpa@neuron-security.com. We will respond within 30 days as required by GDPR. We may request reasonable proof of identity before processing the request, in order to protect your data.

9. Cookies

This website uses only strictly necessary cookies and local storage to remember your cookie consent preferences. We do not use analytics, advertising, or third-party tracking cookies. Full details are provided in our Cookies Policy.

10. Changes to this policy

We may update this Privacy Policy from time to time to reflect changes in our practices, our service providers, or applicable law. The "Last updated" date at the top of this page indicates when the most recent revision was made. Continued use of the website after a revision constitutes acknowledgement of the updated policy.