Cyber-Logica Ltd (trading as Torus Security, "we", "us", "our") is registered in England and Wales. We are the data controller responsible for your personal data. Contact us at contact@torus.security.
We collect information you provide directly when you request a quote, register for risk intelligence, or contact us. This may include your name, email address, job title, company name, company size, and industry sector.
We also collect technical information automatically when you visit our website, including IP address, browser type, pages visited, and referring URLs. See our Cookie Policy for details.
We use your personal data to provide cyber risk intelligence reports and insurance quotations, communicate with you about our services, improve our platform and user experience, comply with legal and regulatory obligations (including FCA requirements), and send relevant updates if you have opted in.
We process your data on the following legal bases: contract performance (to deliver services you have requested), legitimate interests (to improve our services and communicate relevant information), consent (for marketing communications and analytics cookies), and legal obligation (FCA regulatory requirements).
We may share your data with insurance carriers and underwriters (to obtain quotations on your behalf), our Appointed Representative principal (for regulatory compliance), technology service providers who support our platform (under appropriate data processing agreements), and regulatory bodies where required by law.
We do not sell your personal data to third parties.
We retain your personal data for as long as necessary to provide our services and comply with legal obligations. Insurance-related records are retained for a minimum of 6 years in line with FCA requirements. You may request deletion of your data at any time, subject to our legal obligations.
Under UK GDPR, you have the right to access your personal data, rectify inaccurate data, request erasure ("right to be forgotten"), restrict processing, data portability, object to processing, and withdraw consent at any time.
To exercise any of these rights, contact us at contact@torus.security. We will respond within 30 days.
We implement appropriate technical and organisational measures to protect your personal data, including encryption in transit and at rest, access controls and authentication, regular security assessments, and staff training on data protection.
Your data is primarily processed within the United Kingdom and European Economic Area. Where data is transferred outside these regions, we ensure appropriate safeguards are in place in accordance with UK GDPR.
We may update this policy from time to time. We will notify you of significant changes by posting a notice on our website. We encourage you to review this policy periodically.
If you have questions about this policy or wish to make a complaint, contact us at contact@torus.security. You also have the right to lodge a complaint with the Information Commissioner's Office (ICO) at ico.org.uk.