Skip to main content
Cyberwave Logo

Privacy Policy

Last Updated: 10/02/2026

This Privacy Policy describes how Cyberwave S.p.a., with registered office at Piazzale Luigi Cadorna 4, 20123 Milan, VAT No. IT14305010960, as Data Controller, processes personal data in relation to the use of the SaaS software called Cyberwave ("Service").

For any questions or requests regarding this policy, you can write to us at info@cyberwave.com.

1. Types of Data Processed

During the use of the Service, we collect and process various categories of personal data, including:

  • Identification data: name, surname, email, phone number.
  • Login and authentication data: username, password hash, access tokens.
  • Usage data: access logs, system interactions, preferences.
  • Billing data (if applicable): address, VAT number, payment data.
  • User-generated content: information and files uploaded or generated during use of the service.

2. Purpose of Processing

Data is processed for the following purposes:

  • Provide access to the Service and manage your account.
  • Ensure proper functioning of the software and improve it.
  • Manage billing and tax obligations.
  • Respond to assistance or technical support requests.
  • Send you service communications (e.g., technical updates, changes to terms).
  • With your consent, send you commercial communications or newsletters.

3. Legal Basis for Processing

The processing of your data is based on:

  • Contract execution (Art. 6, par. 1, lett. b GDPR) for use of the service.
  • Compliance with legal obligations (Art. 6, lett. c).
  • Express consent (Art. 6, lett. a), for example for marketing.
  • Legitimate interest of the Controller (Art. 6, lett. f), to improve services or prevent fraud.

4. Processing Methods and Retention

Processing is carried out using IT and telematic tools, with appropriate security measures.

Data is retained for the time necessary for the purposes for which it was collected and, subsequently, to fulfill legal obligations. In particular:

  • Account data will be retained as long as the user maintains an active account.
  • Accounting data will be retained for at least 10 years.

5. Data Recipients

Personal data may be communicated to:

  • IT and hosting service providers (e.g., AWS, Google Cloud, OVH, etc.).
  • Professionals and consultants (accountants, lawyers).
  • Payment or billing platforms.
  • Public authorities, if required by law.

Data will not be disclosed or transferred outside the EU, except to countries recognized as adequate by the European Commission or with appropriate safeguards (e.g., standard contractual clauses).

6. Data Subject Rights

Under the GDPR, you can exercise the following rights:

  • Access to your personal data.
  • Rectification or update of data.
  • Deletion ("right to be forgotten").
  • Restriction of processing.
  • Data portability.
  • Opposition to processing.
  • Withdrawal of consent, where given.

You can exercise your rights by writing to info@cyberwave.com. You can also file a complaint with the Italian Data Protection Authority (www.garanteprivacy.it).

7. Cookies and Similar Technologies

The Service may use technical cookies and, with prior consent, analytical or profiling cookies. More information is available in our Cookie Policy.

8. Changes to the Privacy Policy

We reserve the right to modify this Privacy Policy. Changes will be published within the Service or communicated via email, if significant.

Questions?

If you have any questions about our Privacy Policy, please contact us at info@cyberwave.com