The “seccom.com.cy” website is owned and operated by “Seccom Ltd” which trades under the name of “Seccom Ltd” and is based in Nicosia, Cyprus. Seccom Ltd is registered at the Department of Registrar of Companies and Official Receiver in Cyprus with registration number HE29368 and VAT registration number 10029368Y and hereinafter, for the sake of brevity, the “Company”.
The site’s content and information may contain technical inaccuracies or typographical errors. The Company reserves the right to make changes, corrections and/or improvements to the site’s content and information, and to the services described in such content and information, at any time without notice. All changes will become effective immediately unless otherwise stated.
All content (images, logos, text, trademarks etc.) and information displayed on this site is and remains the property of the Company and its designated partners.
The Company is also the data controller of any personal data processed, and therefore you must contact the Company with regard to any issue related to your personal data.
Acceptance of terms and conditions
The terms and conditions presented below concern the privacy and personal data protection policy applied by the Company in relation to the services and products it provides. These terms and conditions are mandatory for all users of the Company’s services and/or products, as well as for all visitors to the Company’s website, all of whom shall hereinafter, for the sake of brevity, be referred to as “Clients”, regardless of whether they place an order for the Company’s services or products. The Company’s services and/or products cannot be provided unless the terms and conditions of use below are accepted.
Legal framework about personal data
The legal framework on the protection of personal data within the European Union was amended on 25 March 2018 and the General Data Protection Regulation (GDPR) (EU) 2016/679 entered into force, thus repealing the relevant national legislation of EU member states. Following the provisions, and by taking all the necessary organisational and technical measures required by the new Regulation, the Company complied with the new legislative framework in order to best protect the interests and personal data of the data subjects.
Personal data collected
Depending on the purpose and needs of each case (see details below), the Company collects the following personal data of the Client: full name, email, landline or mobile number and IP address (Internet Protocol address).
The purpose of processing personal data
The above data are collected and processed in the framework of the provision of services by the Company to provide you with information, products or services that you request from us. Also for customer management purposes to manage your account, to provide you with customer support and with notices about your account, and notices about changes to any products or services we offer or provide through it. For advertising purposes: after your consent to communicate with you about products or services that may be of interest to you. For functionality and security: to detect, prevent, and respond to actual or potential fraud, illegal activities, or intellectual property infringement. For compliance: to enforce our terms and conditions and to comply with our legal obligations as these derive from the applicable laws or our regulators.
The legal basis for collecting and processing data
The Client’s consent provides the legal basis for processing their personal data.
Why we need personal data
We need your personal data solely and exclusively for the purposes stated in detail above. Should there be a new purpose of processing, which is incompatible with the corresponding original purpose, you will be notified anew and your consent will once again be requested, if required. Your personal data shall under no circumstances be used for any purposes other than the above. Furthermore, your personal data shall not be processed for purposes of commercial exploitation.
The impact of processing on the data subjects
The processing of personal data by the Company does not have any impact whatsoever on the data subjects, since the collected data are entirely necessary and required for the provision of services and/or products. Furthermore, the data we process come under the category of simple personal data and do not, as a rule, come under special data categories (sensitive personal data). All personal data are considered and treated as private and confidential. We ensure that all the necessary organisational and technical measures are taken to protect these data and their confidentiality.
How we use personal data
We collect, enter, store and organise your personal data solely for the intended purpose, as the case may be. Your personal data shall be kept private and confidential and shall not be disclosed to third parties without your prior, express, specific and written consent. Data shall not be disclosed to any third parties other than the competent public agencies and services required by law, as well as the Company’s external accountants, insofar as this is required for the execution of the corresponding operations.
Accessing your personal data
If you wish to gain access to your personal data, you can send us a relevant request by email to firstname.lastname@example.org. By contacting our Company, you can request the correction, completion or updating of your personal data in order to ensure that they are always updated, correct and accurate.
Who has access to personal data
Only authorised employees and associates of the Company have access to your personal data in the framework of the purposes specified above and insofar as this is required for the fulfilment of their duties. No third parties have access to your personal data, and especially not without your prior, express, specific and written consent.
Personal data retention period
A Client’s personal data are retained in a form that permits identification of the individual for no longer than is necessary for the purposes for which it was processed and as long as is required in order to protect the Company’s legal interests in case any civil or other claims are made against the Company. Data are also retained for as long as is required under tax legislation from the issuance of each invoice/receipt, due to the fact that they may be requested within this time period both by the competent financial authority and by the Client.
How we protect personal data
We apply all the necessary organisational and technical measures set out in Cypriot and European legislation in order to protect your personal data. In particular, and in respect of the organisational measures, our Company:
- Applies a classified access policy so that each employee can only access the information that is required and absolutely necessary in order for them to carry out their duties.
- Keeps a processing activity file.
- Applies privacy-friendly advertising and marketing policies.
- Ensures the protection of personal data during the design of its services and products by applying the principles of privacy by design and privacy by default.
- Notifies data subjects/Clients simply and comprehensibly, with the utmost transparency and by any possible means, of the processing of their personal data, the intended purposes, the legal basis for processing, their rights and how they can exercise these rights in the event that they choose to do so, and this is done simply, immediately and without any obstacles.
- Trains its employees in matters of personal data protection so that they may all be equipped with the necessary knowledge that will contribute to the protection of Clients’ personal data and privacy on a daily basis.
- Requires employees to protect privacy and personal data through binding non-disclosure, confidentiality and personal data protection agreements.
Technical safety measures applied
The Company’s services can be accessed exclusively by authorised users by entering a user name and password. We apply a secure password policy, which involves personal passwords that must be changed at regular intervals. The encryption method is applied to passwords and, in addition, they are saved in their encrypted form. Data are accessed/exchanged with the use of SSL certificates, so that the data may be encrypted. State-of-the-art antivirus software has been installed on all of the Company’s local computers. Furthermore, they are password protected and go into sleep mode within a short time of not being used by their users. In terms of software, the Company uses the latest stable versions of Microsoft Windows, which are regularly updated for security reasons. All Company servers are maintained in a private network that can only be accessed by the Company’s technical staff. All the servers in our establishment always use cutting-edge technology. All the servers in our establishment are protected by a firewall and anti-malware of the latest technology. The software programs we use have official and updated licences. All of our servers’ software programs constantly receive security updates. Backups are kept throughout our establishment on separate servers that protect data through the use of passwords and encryption. Backups are made on a daily basis. The anonymization method is applied wherever possible.
The rights of data subjects
Data subjects have the following rights in relation to their personal data: Notification, Information, Access, Correction, Deletion (and the right to be forgotten), Restriction of processing, Data portability, Objection, Non-automated individual decision-making (preparation of a profile).
How to exercise your rights
You can exercise your rights (of access, correction, restriction of processing, information, data portability, objection, deletion) or file a complaint by sending a relevant request by email to email@example.com. We will see to it that your request is answered as soon as possible. Right to appeal to the Cypriot Office of the Commissioner for Personal Data Protection should an issue arise with regard to the processing of your personal data and once you have contacted our Company in its capacity as the Data Controller, you may subsequently appeal to the Cypriot Office of the Commissioner for Personal Data Protection. For detailed information on the Authority’s competencies and on how to file a complaint, you can visit its website at www.dataprotection.gov.cy.
Automatic Data Collection-Cookies
The company’s website uses small cookies with information stored by the user’s browser on his computer or mobile device (smart phone, tablet etc.) with which the user visits the present web page. Cookies help to improve the website and make it easier for the visitor to browse it, since every time the user connects to the website, the latter retrieves this information and offers the user relevant information. Cookies contain a clear combination of letters / digits that identifies the browser you are using. These cookies are stored on your computer temporarily and are only transmitted to our server when you visit our website.
You can view and delete cookies stored on your computer, and control how cookies are generally handled through your web browser settings.
However, during your visit to our website, a pop-up window appears asking for your consent to the installation of cookies on your device as well as the acceptance of the Cookies Policy.
The applicable law and competent courts
The User expressly agrees and accepts that any disputes that may arise with regard to this privacy and personal data protection policy shall be governed by the Cypriot law and shall come under the jurisdiction of the Courts in the Republic of Cyprus