Privacy Policy

Important information

Innoserve Accountants & Consultants Ltd (referred to as “we”, “us”, “our”, “Innoserve” or the “Company”) is committed to protecting your privacy and handling your data in an open and transparent manner. The personal data that we collect, and process depends on the service requested and agreed in each case.

This Privacy statement describes when and what personal data we gather about you, how we use such personal data, and who we give such personal data to. We may use personal data provided to us for any of the purposes described in this Privacy statement or as otherwise stated at the point of collection. It also sets out your rights in relation to your personal data and who you can contact for more information or queries. 

Company information as data controller

Innoserve is the data controller of any personal data collected by you. This means that Innoserve is responsible for deciding how we hold and use personal information about you. We will process such data in accordance with the provisions of applicable Data Protection law. If you have any question regarding this privacy statement or how and why we process your data, please contact us at: 

Innoserve Accountants & Consultants Ltd 
Registration No.: HE412990
Office: 108 Franklin Roosevelt Avenue, A.T. Stavrinides Tower, Floor 2, Office 201, 3011, Limassol, Cyprus
Data Protection Officer: Giannis Christou
Email address: gchristou@innoserve.com.cy 
Phone: +357 25 872222

Collection of personal data

When collecting and using personal data, our policy is to be transparent about why and how we process personal data. To find out more about our specific processing activities, please refer to the relevant sections of this statement.

Security of information

We have implemented generally accepted standards of technology and operational security in order to protect personally identifiable data and information from loss, misuse, alteration or destruction. In particular, we ensure that all appropriate confidentiality obligations and technical and organisational security measures are in place to prevent any unauthorised or unlawful disclosure or processing of such information and data and the accidental loss or destruction of or damage to such information and data.

Share of personal data

We do not share personal data with unaffiliated third parties except as necessary for our legitimate professional and business needs, for the purpose of executing your instructions or requests and/or as required or permitted by applicable legislation, professional standards or any applicable agreement between us.  When we share data with others, we may, whenever required, put contractual arrangements in place to protect the data and to comply with our data protection, confidentiality and security standards.

We use third parties to support us in providing our services and to help provide, run and manage our internal IT systems.  For example, providers of information technology, cloud based software as a service providers, identity management, website hosting and management, data analysis, data back-up, security and storage services.  The servers powering and facilitating that cloud infrastructure are located in secure data centres around the world, and personal data may be stored in any one of them. Further details of these providers are included below.

We may also disclose personal data to respond to requests of the courts, governmental authorities or where it is necessary or prudent for compliance with applicable legislation, for criminal investigations or security purposes, for establishing, exercising or defending legal rights.

Complaints 

If you have any questions or complaints about this Privacy Statement or the way we process your personal data, or would like to exercise one of your rights set out above please contact us using the options below.

You also have a right to lodge a complaint with the Data Protection Commissioner (the Cyprus data protection regulator). 

Rights of individuals 

Individuals have certain rights over their personal data and data controllers are responsible for fulfilling these rights.  Where we decide how and why personal data is processed, we are a data controller and include further information about the rights that individuals have and how to exercise them below.

• Access to personal data – You have a right of access to personal data held by us as a data controller.  This right may be exercised by contacting us using the options below. We may charge for a request for access in accordance with applicable law.  We will aim to respond to any requests for information promptly and in any event within the legally required time limits.
• Amendment of personal data – When we keep personal data submitted to us, we do not assume responsibility for verifying the ongoing accuracy of the content of personal information. When practically possible, if Innoserve is informed that any personal data processed by us is no longer accurate, we will make any appropriate corrections based on your updated information. If you would like to update any personal data you have submitted through this site, please contact us.
• Unsubscribe/Withdrawal of consent – Where we process personal data based on consent, individuals have a right to withdraw consent at any time.  We do not generally process personal data based on consent (as we can usually rely on another legal basis). Should visitors subsequently choose to unsubscribe from mailing lists or any registrations, we will provide instructions, on the appropriate webpage or in communications to our visitors.
• Additional Rights – You have the right to request the erasure of your personal data under the following circumstances and we shall endeavor to accommodate such request whenever feasible where your personal data is no longer necessary in relation to the specific purpose for which it was originally collected; where your consent is withdrawn (if such consent was used as a legal basis); where you object to the processing and there is no overriding legitimate interest for continuing the processing; where such erasure is necessary for compliance with a legal obligation. You have the right to restrict processing. In the event that you choose to exercise this right, and provided that such request may not be overridden on legitimate grounds, we shall retain your data but restrict processing. You have a right to data portability allowing you to obtain and reuse your personal data for your own purposes across different services. Based on your right to object you have the right to object to processing based on legitimate interests or the performance of a task in the public interest and direct marketing.
• Data detention – The personal data you submit to us will only be retained for as long as is required for the purposes for which it was collected and as required by applicable law, our internal policies, our contractual relationship with you (if applicable) and the legitimate interests of the parties.
•