**Effective Date:** 01/01/2024
1. Introduction
This Privacy and Cookie Policy outlines how we collect, use, disclose, and manage your information when you visit our website. By accessing or using our website, you consent to the terms outlined in this policy.
2. Information We Collect
a. Personal Information:
i. When you fill out our contact forms, we may collect personal information such as your name, email address, and other contact details.
b. Non-Personal Information:
i. We use various analytics tools, including but not limited to Google Analytics, heatmap tools, and session recordings, to collect non-personal information such as IP addresses, browser type, device information, and browsing behavior.
c. Cookies:
i. We use cookies to enhance your browsing experience. These cookies may collect information about your preferences, settings, and activities on our website.
3. How We Use Your Information
a. We use the information collected to:
i. Respond to your inquiries submitted through contact forms.
ii. Analyze and improve the performance and functionality of our website.
iii. Customize your experience on our website.
iv. Generate statistical data through analytics tools for internal use.
b. We will not sell, trade, or otherwise transfer your personal information to third parties without your consent, except as set forth in this policy.
4. Disclosure of Information
a.We may share your information with third-party service providers who assist us in operating our website, conducting our business, or servicing you.
b. We may also disclose your information when we believe it is appropriate to comply with the law, enforce our site policies, or protect ours or others’ rights, property, or safety.
5. Your Choices
a. You can choose to disable cookies through your browser settings. However, this may affect your ability to access certain features of our website.
b. You have the right to opt-out of analytics tools by adjusting your preferences or settings.
6. Legal Basis for Processing
a. We process your personal data based on your consent. You have the right to withdraw consent at any time.
7. Data Subject Rights
a. You have the right to access, rectify, erase, or restrict the processing of your personal data. To exercise these rights, please contact us at info@nikitapartners.com.cy.
8. International Data Transfers
a. If personal data is transferred outside the EEA, we ensure the protection of this data through contractual clauses.
9. Data Retention Periods
a. We retain personal data for the duration necessary to fulfill the purposes for which it was collected. This may include retaining data for the duration of a responding to inquiries or as long as needed to provide requested services. Data is regularly reviewed, and any information that is no longer necessary is promptly deleted. In certain cases, we may retain data for a longer period if required by applicable laws or regulations.
10. Sensitive Data
a. If we collect sensitive personal data, such as names, surnames, email addresses, and phone numbers, through our contact forms, we process this information for the sole purpose of responding to inquiries and providing requested services, etc. We implement additional safeguards to ensure the confidentiality and security of sensitive data, including encryption, access controls, and regular security audits. This sensitive information is handled with the utmost care, and access is restricted to authorized personnel who require it for the specified purpose.
11. Cookies and Tracking Technologies
a. Our website, built on the WordPress platform, utilizes cookies and tracking technologies to enhance your browsing experience and gather valuable insights into user behavior. Below is detailed information about the types of cookies we use:
i. Essential Cookies:
– These cookies are necessary for the website’s basic functionality and are automatically enabled. They do not collect personal information and are crucial for features such as page navigation and security.
ii. Analytical Cookies:
– We use Google Analytics, a third-party analytics service, to collect information about your use of the website. This includes details such as pages visited, time spent on the site, and the general source of your visit. The information gathered is anonymized and used for statistical analysis to improve our website’s performance.
– For more information about Google Analytics cookies, please refer to Google’s Privacy Policy: [Google Privacy & Terms](https://policies.google.com/privacy).
iii. Performance and Functionality Cookies:
– Our website utilizes Hotjar, a tool that combines both analytics and feedback tools. Hotjar allows us to understand how users interact with the site by providing heatmaps, session recordings, and surveys. The information collected is used to enhance user experience and optimize our content.
– For more information about Hotjar cookies, please refer to Hotjar’s Privacy Policy: [Hotjar Privacy Policy](https://www.hotjar.com/legal/policies/privacy).
iv. Cookie Management:
– You have the option to manage your cookie preferences through your browser settings. However, please note that disabling certain cookies may impact the functionality of the site.
v. Consent:
– By continuing to use our website, you consent to the use of cookies as described in this policy.
vi. Updates:
– We may update this cookie policy to reflect changes in technology or legal requirements. Any updates will be posted on this page.
For any questions or concerns regarding our use of cookies, please contact us at info@nikitapartners.com.cy.
12. User Consent
a. We prioritize your privacy and believe in the importance of informed consent when processing personal data. By using our website, you have the opportunity to provide consent before we process any personal information. This consent is typically obtained through mechanisms such as cookie banners, pop-ups, or explicit opt-in checkboxes on our contact forms.
i. How to Give Informed Consent:
– **Cookie Preferences:** You can manage your cookie preferences through your browser settings or utilize any cookie consent tools present on our website.
– **Contact Forms:** When submitting information through our contact forms, you will be presented with clear options to provide or withhold consent for the processing of your personal data. The purpose for data processing will be transparently communicated.
– **Opt-in Mechanisms:** In various interactions on our site, we may present opt-in mechanisms that clearly explain the intended use of your data. Your affirmative action, such as ticking a checkbox, will indicate your informed consent.
ii. Withdrawal of Consent:
– You have the right to withdraw your consent at any time. If you wish to withdraw consent or have any questions about the consent process, please contact us at info@nikitapartners.com.cy. Keep in mind that withdrawing consent may affect certain functionalities of the website.
iii. Regular Review:
– We regularly review and update our consent mechanisms to ensure they align with privacy best practices and legal requirements.
By continuing to use our website, you acknowledge that you have read and understood our consent practices. If you have any concerns or questions, feel free to reach out to us.
13. Data Security Measures
a. Ensuring the security of your personal data is paramount to us. We have implemented fundamental security measures to protect against unauthorized access and safeguard your information:
i. Encryption:
– Personal data transmitted between your device and our website is encrypted using secure protocols, providing an additional layer of protection.
ii. Access Controls:
– Access to personal data is restricted to authorized personnel with a legitimate need for such access. This ensures that only individuals essential to specific processes have the ability to view or manage sensitive information.
iii. Regular Security Audits:
We conduct regular security audits to identify and address potential vulnerabilities. This proactive approach helps us maintain the integrity of our systems and protect against emerging threats.
iv. Data Minimization:
We adhere to the principle of data minimization, meaning we only collect and retain the personal data necessary for the intended purpose. Unnecessary data is promptly deleted to reduce the risk associated with data storage.
v. Employee Training:
– Our staff undergoes regular training on data protection and security best practices to ensure a collective commitment to maintaining the confidentiality and integrity of personal information.
vi. Firewalls and Intrusion Detection:
– Firewalls and intrusion detection systems are in place to monitor and control incoming and outgoing network traffic. These measures help prevent unauthorized access and protect against potential cyber threats.
These security measures, combined with ongoing efforts to stay informed about emerging security risks, form an integral part of our commitment to safeguarding your personal data
14. Data Breach Notification
a. We take data security seriously and have established a robust framework to handle potential data breaches in compliance with the General Data Protection Regulation (GDPR). In the event of a data breach involving personal data, we commit to the following:
i. Identification and Assessment:
– Upon discovering a potential data breach, our incident response team will promptly investigate to identify the scope and severity of the incident. This includes assessing the nature of the compromised data and potential risks to affected individuals.
ii. Notification to Supervisory Authorities:
– If the data breach poses a risk to individuals’ rights and freedoms, we will report the incident to the relevant supervisory authorities within 72 hours of becoming aware of the breach. This notification will include details about the nature of the breach, the approximate number of individuals affected, and our proposed mitigation measures.
iii. Communication with Users:
– If the data breach is likely to result in a high risk to the rights and freedoms of individuals, we will promptly notify the affected users. Our communication will provide clear and transparent information about the nature of the breach, the potential risks involved, and the steps they can take to protect themselves.
iv. Mitigation and Remediation:
– We will take immediate steps to mitigate the impact of the breach, prevent further unauthorized access, and implement measures to avoid similar incidents in the future. This includes reviewing and enhancing our security protocols.
Our commitment is to handle data breaches with urgency, transparency, and in accordance with GDPR requirements. For any inquiries related to data security or breaches, please contact us at info@nikitapartners.com.cy
15. Data Protection Officer (DPO)
a. If you have any questions or concerns regarding the processing of your personal data or our privacy practices, you may contact our Data Protection Officer (DPO) at the following email address:
– **Data Protection Officer (DPO):**
– Email: info@nikitapartners.com.cy
Our DPO is here to assist you with any inquiries related to data protection, privacy, or the exercise of your rights under applicable data protection laws.
– To lodge a complaint, you may contact the supervisory authority relevant to your jurisdiction. The contact details for your local supervisory authority can usually be found on their official website.
– Before lodging a complaint, we encourage you to reach out to us directly at info@nikitapartners.com.cy. We are committed to addressing your concerns promptly and working towards a resolution.
Your feedback is important to us, and we are dedicated to ensuring that your rights and privacy are respected.
By using our website, you agree to the terms outlined in this Privacy and Cookie Policy.