1. Who we are
CYPITOUR LIMITED is a Controller of the personal data you provide us. This Privacy Policy covers the responsibilities of the CYPITOUR with regard to the General Data Protection Regulation (EU GDPR 2016/679). By visiting this website www.cypitour.com and by contacting the CYPITOUR as well as by using the services of CYPITOUR LIMITED, you confirm that you have read this Privacy Policy and understood the content. You agree with this Policy and you give your consent to collect your personal data as specified in this Privacy Policy and to process this personal data for the purpose as described within this Privacy Policy. You are aware that you can make use of your rights as displayed within this Privacy Policy at all times.
2. What we need
We collect the following types of personal data from you:
- Personal Data to contact you (name, email address, phone number)
- Personal Data to provide our service (identification documents, loyalty scheme number)
3. Why we need data
We need your personal data in order to provide you with the following services:
- Hotel Accommodation
- Villa Accommodation
- Transportation & Ground Handling
- Tours & Activities
- Travel from Cyprus
- Accessible Cyprus
- Holidays Packages
- Cruises
- Corporate Travel
- DMC Services
4. What we do with data
Your personal data is processed in CYPITOUR LIMITED located in Cyprus. Hosting and storage of your data also takes place in Cyprus.
All data that relates to individual prospective and / or existing clients and which the CYPITOUR collects, collected and will collect in the course of rendering our services to our international prospective and / or existing clients by physical or electronic correspondence, is used for the purpose of fulfilling our obligations as a Controller to the person to whom the data is related. CYPITOUR LIMITED contractually require the Personal Data Processor or business partner to provide the same level of data protection. The Data Processor or business partner are only processing personal data to carry out its contractual obligations towards or upon the instructions of the CYPITOUR and not for any other purposes.
Subject to the explicit consent given by the specific individual, to whom personal data relates, CYPITOUR may use that specific personal data for the purpose of sending out commercial and non-commercial notifications, newsletters or announcements.
CYPITOUR LIMITED will notify the person, to whom specific personal data relates, about the use or purpose for processing of that specific personal data, which relates to that specific person, prior to its use or processing for the purpose described in this Privacy Policy.
There is no transfer personal data out of the European Union EU/EEA.
5. How do we collect data
To use the quality services that CYPITOUR LIMITED offers to the prospective and / or existing clients it will be required that to send us their personal data through physical or electronic correspondence.
6. How long we keep data
According to the Data Protection Policy we keep your documents for 2 years, since the last time you applied for services with CYPITOUR. After this period, your personal data will be irreversibly destroyed. Any personal data held by us for marketing and service update notifications will be kept by us until such time that you notify us that you no longer wish to receive this information.
7. What are your rights
Should you believe that any personal data we hold on you is incorrect or incomplete, you have the ability to request to see this information, rectify it or have it deleted. Please contact us through the email to dpo@cypitour.com.
In the event that you wish to complain about how we have handled your personal data, please contact our Data Protection Officer, the contact details are in the Section.12. Then we will look into your complaint and work with you to resolve the matter. We will respond to your written request as soon as possible and no later than 30 days from the receiving it, though a 60 days extension can be requested, if necessary.
If you still feel that your personal data has not been handled appropriately according to the Law, you can contact Data Protection Authority of Cyprus and file a complaint with them, the contact information is at the Section.12.
8. Disclosure to third parties
Your personal data (including your email) will never be shared with any third parties for marketing purposes. CYPITOUR does not disclose any personal data to third parties without the explicit consent of the prospective and / or existing clients to whom the personal data is related. Personal data is permitted to be disclosed to public bodies only in cases where the disclosure concerns matters of national and/or international security, the prevention or investigation of criminal activities, law enforcements, where a public interest is given, a judicial proceeding against the person to whom the personal data is related.
9. Links to other sites
CYPITOUR LIMITED website www.cypitour.com contains hyperlinks to providers of social media platforms and in particular to the profiles of CYPITOUR. These companies are independent from the CYPITOUR. Please refer to their Privacy Policy and please be aware that by entering their website, the information you exchange with these websites does not fall within the responsibility of the CYPITOUR and is not covered by this Privacy Policy.
10. Changes to this Privacy Policy
CYPITOUR advise you to review this page periodically for any changes. These changes are effective immediately, after they are posted on this page. When you contact us by the e-mail for your convenience to review the last updated verion, we organize the link “Privacy Policy” which is in the electronic signature of the relevant manager with whom you contact.
11. Security
All data, which is collected by providing CYPITOUR services to you, is stored in protected physial archives and in protected electronic databases, free from unauthorized access. CYPITOUR takes responsibility for confidential treatment of your personal data.
12. Data Protection Contacts
Data Protection Officer
of CYPITOUR LIMITED
If you have any concerns about how your personal data is handled by us or wish to raise a complaint on how we have handled your personal data, you can contact our Data Protection Oficcer at the contact details below, to have the matter investigated. The DPO can be contacted by electronic mail services to dpo@cypitour.com or by post mail:
CYPITOUR LIMITED
21’ Panteli Katelari Street
Office 203
1097 Nicosia, Cyprus
Tel.: +357 22051150
Commissioner
for Personal Data Protection in Cyprus
If you are not satisfied with our response for your request or believe we are processing your personal data not in accordance with the law, you can complain to the relevant data protection supervisory authority, the contact details:
Commissioner for Personal Data Protection
Office address: Iasonos 1, 1082 Nicosia, Cyprus
Postal address: P.O.Box 23378, 1682 Nicosia, Cyprus
Tel: +357 22818456
Fax: +357 22304565
www.dataprotection.gov.cy
commissioner@dataprotection.gov.cy
