Last update July 2020

This Privacy Policy covers the responsibilities of the Interstatus Group of Companies with regard to the General Data Protection Regulation EU 2016/679.

By visiting this website www.interstatus.com and by contacting the Interstatus Group of Companies as well as by entering into a service agreement with Interstatus Group of Companies, you confirm that you have read this Privacy Policy and understood the content. You agree with this Policy and you give your consent to collect your personal data as specified in this Privacy Policy and to use this personal data for the purpose as described within this Privacy Policy.

You are aware that you can make use of your rights as displayed within this Privacy Policy at all times.

 

  1. Who we are

Interstatus Group of Companies is a Cyprus-based corporate entity that renders quality corporate services related to the incorporation of company vehicles, the assistance in the opening of bank accounts, accounting and audit services as well as legal advisory to international private and corporate clients.

Interstatus Group of Companies is committed to safeguard the security and integrity of personal data, which is related to the individual visitors of our corporate website www.interstatus.com as well as to our prospective and / or existing clients.

All prospective and /or existing clients of the Interstatus Group of Companies, which are physical persons that represent a legal person, they are treated as “Data Subjects” in the sense of the General Data Protection Regulation EU 2016/679.

Interstatus Group of Companies fulfills the role of the “Data Controller” for all information that is collected during the course of a visit to our company’s website from individual website visitors, as well as during the course of doing business with the Interstatus Group of Companies.

A natural or legal person, public authorities, agencies or other bodies, which processes personal data on behalf of the Data Controller, are considered a “Data Processor” and “Independent Controller”.

 

  1. What type of Data do we collect

Log Data

During the course of your visit to our corporate website, the IT infrastructure can collect information that your browser sends to us that is called Log Data. This Log Data may include information such as your computer’s Internet Protocol (IP) address, browser version, your geographical location, the computer or telecommunication device used and the length and frequency of your page visit sessions.

Requested Data

Doing business with the Interstatus Group of Companies, we collect personal data of prospective and / or existing clients by physical or electronic correspondence. This data relates to information, which Interstatus Group of Companies has to collect and assess in line with the legal requirements of the Republic of Cyprus on customer Due Diligence within the framework regarding KYC (Know-Your-Customer) requirements.

Other type of Data

If you send us a resume or curriculum vitae (CV) to apply online for a position at Interstatus Group of Companies, we will use the information that you provide to match you with available job opportunities at the Company, only for the purpose to contact you.

 

  1. How do we collect that Data

 The data regarding the IP address, the type of computer or telecommunication device used, the geographical location, as well as the duration and frequency of website visit sessions and the web-content viewed by individual visitors of our corporate website is collected by our IT infrastructure as an individual visitor enters our corporate website www.interstatus.com.

By using the quality services that the Interstatus Group of Companies offers to international clients, it will be required to have prospective and / or existing clients of the Interstatus Group of Companies to submit their personal data and / or data related to a corporate identity to us via physical or electronic correspondence.

 

  1. Purpose and use of Data

The Data that was collected by our IT infrastructure from an individual visitor during the entry into our corporate website is used for internal statistical and analytical purpose only.

All data that relates to individual prospective and / or existing clients and which the Interstatus Group of Companies collects, collected and will collect in the course of rendering our corporate services to our international prospective and / or existing clients by physical or electronic correspondence, is used for the purpose of fulfilling our obligations as a service provider to the person the data is related to.

Interstatus Group of Companies contractually require the Personal Data Processor or business partner to provide the same level of data protection. The Data Processor or business partner are only processing personal data to carry out its contractual obligations towards or upon the instructions of the Interstatus Group of Companies and not for any other purposes. Interstatus Group of Companies processes personal data jointly with an independent third party explicitly specify its respective responsibilities for the transferring of the personal data to the countries outside of EU/EEA. Before transferring personal data out of the European Union EU/EEA adequate safeguards are used by the Interstatus Group of Companies on the basis of Standard Contractual Clauses adopted by the European Commission.

Subject to the explicit consent given by the specific individual, to which personal data relates, the Interstatus Group of Companies may use that specific personal data for the purpose of sending out commercial and non-commercial notifications, newsletters or announcements.

Additionally, internal stress testing of the security systems we apply within the frameset of our corporate risk management may be a purpose for the use of personal data related to an individual visitor of our corporate website or to prospective and / or existing clients.

 

The Interstatus Group of Companies will notify the person, to whom specific personal data relates, about the use or purpose for processing of that specific personal data, which relates to that specific person, prior to its use or processing for the purpose described in this Privacy Policy.

 

  1. Data Storage

All Data that was collected by our IT infrastructure from an individual visitors, potential clients and existing client of our corporate website will be deleted in 6 months after the last activity time of visiting.

All resume or curriculum vitae (CV), which were sent by email to Interstatus Group of companies to consider a potential employee for a vacant position and for lack of purpose to contact you, will be deleted within 6 months from the email date.

All existing clients (physical and / or legal persons), who are in active business relationship  with Interstatus Group of Companies, under Cyprus Law, the documents / personal data are kept as per AML requirements for a period of 5 years, which is calculated after the termination of the business relationship. For income tax purposes, accounting records should be kept for a period of 6 years, after the end of the tax year to which they are related and for VAT purposes 7 years as per Tax Law requirements. According to the Assessment and Collection of Taxes Law, the deadline for arising an initial tax assessment or an additional tax assessment is 6 years and in cases of fraud or wilful default it could be extended to 12 years from the end of the year of the assessment. The Company does not keep the data for longer than is necessary for the purposes for which the data are processed.

It is imperative for the Interstatus Group of Companies that our existing clients are able to access their personal data including the data contained in Email communications. Interstatus Group of Companies may retain certain Email communication for an extended period of time to protect its legitimate interest against future proceedings, audits or compliance matters and to provide protection and support to its client’s including cases where clients face litigation or compliance issues and historical Email communication or Email attachments are required to be retrieved. Consequently Interstatus Group of Companies maintains professional and reliable Email Archiving tools to ensure regulatory compliance with all applicable laws and regulations while safeguarding that our client’s Email communication and Email content remains confidential. Our IT systems allows us to maintain a secure Email Archive which enables us to securely store such data and retrieve current and historical Emails while keeping the content of those Emails safe.

 

  1. Cookies

Interstatus Group of Companies uses “Cookies” to enhance visitor experience. Cookies are files with a small amount of the data that serve as your anonymous individual identifier. These data are sent to your browser when you access a website, they are stored in your computer and they serve record information about your subsequent online visit.

Since a Cookie is an anonymous individual identifier, it does not contain or send any personal information to the website that stored it on your computer, but only enables faster and more efficient activation of information, data and settings previously communicated during access and use of the website.

Your browser is set in such a way that each website can only access its own previously sent Cookies, but not the Cookies of the other websites.

The Options or Settings menu of your browser allows you to select an appropriate option for receiving Cookies, even to disable them completely. However, disabling Cookies completely will reduce the efficiency of some contents available on some websites. For more information about the types of the Cookies we use and the purposes for using them, please review our Cookies Policy.

 

  1. Your rights

In line with the provisions and requirements of the General Data Protection Regulation EU 2016/679 on the protection of personal data, the data subject has the following rights to the personal data:

  • Right to review all personal information, which is related to you and which was / is collected during your visit of our corporate website and during the use and processing as described in this Privacy Policy.
  • Right to correct, rectify and update your personal data.
  • Right to have your personal data deleted partly or completely.
  • Right to obtain information on the use and purpose to process your personal data.
  • Right to limit the purpose for processing and use of your personal data.
  • Right to opt-out from commercial and non-commercial newsletters and notifications from the Interstatus Group of Companies by written notice to our Data Protection Officer accordingly.
  • Right to have all personal data, which is related to you and which is or had been collected during your correspondence with the Interstatus Group of Companies being transferred to another Data Controller nominated by you.
  • Right to withdraw your previously given explicit consent regarding the collection, use and processing of your personal data at any time.

You should note that withdrawal of consent may result in limiting the services we may be able to provide you. For further information, you may contact our Data Protection Officer (DPO) through electronic mail services to dataprotection@interstatus.com

You can submit your request to make use of the above rights to your personal data by contacting us through [Data Subject Access Request Form] by electronic mail services to dataprotection@interstatus.com. We will respond to your written request as soon as possible and no later than 30 days from receiving it, though a 60 days extension can be requested, if required.

 

  1. Disclosure of any information to third parties

Interstatus Group of Companies does not disclose any personal data to third parties without the explicit consent of the physical or legal person (including that legal person’s representatives and / or Beneficial Owner/s), to whom the personal data is related.

Notwithstanding the above, rendering corporate and financial as well as legal services to international clients will require the disclosure of personal data related to our prospective and / or existing clients on a confidential base to public bodies, financial institutions and external auditors as well as external legal advisors. Your rights to your personal data as described above are not diminished by this.

We may also disclose personal information related to an individual client or to representative(s) of clients to third parties if we are under a duty to disclose or share the relevant personal data in order to comply with any legal obligation. Furthermore, that personal data is permitted to be disclosed to public bodies only in cases where the disclosure concerns matters of national and/or international security, the prevention or investigation of criminal activities, law enforcements, where a public interest is given, a judicial proceeding against the person, to which the personal data is related.

Your personal data (including your email) will never be shared with any third parties for marketing purposes.

 

  1. Links to other sites

The corporate website of the Interstatus Group of Companies, www.interstatus.com contains hyperlinks to providers of social media platforms and in particular to the profile of  the Interstatus Group of Companies. These companies are legally and economically independent from  the Interstatus Group of Companies. Please refer to their Privacy Policy and please be aware that by entering their website, the information you exchange with these websites does not fall within the responsibility of the Interstatus Group of Companies and is not covered by this Privacy Policy.

 

  1. Changes to this Privacy Policy

We may update our Privacy Policy from time to time. Thus, we advise you to review this page periodically for any changes. We will notify you of any changes by posting the new Privacy Policy on this page. These changes are effective immediately, after they are posted on this page.

 

  1. Security

Interstatus Group of Companies takes responsibility for confidential treatment of your personal data. All data, which is collected by the visit of our corporate website and by doing business with the Interstatus Group of Companies, is stored in protected physial archives and in protected electronic databases, free from unauthorized access. To prevent unauthorised disclosure or access to your information, we have implemented strong physical and electronical security safeguards. We also follow stringent procedures to ensure we work with all personal data line with the General Data Protection Regulation EU 2016/679.

Your personal data is processed in Interstatus Group of Companies Office located in Cyprus. No third party providers have access to your data, unless specifically required by law or by the implementation the provision of its services.

 

  1. Contacting us

For all enquiries related to personal data collected, which relates to an individual visitor of our corporate website as well as to our prospective and / or existing clients, the Interstatus Group of Companies has appointed a Data Protection Officer (DPO). The DPO remains in an independent and protected position within our corporate structure and has an immediate and direct connection to our top level management.

If you have any concerns about how your personal data is handled by us or wish to raise a complaint on how we have handled your personal data, you can contact our DPO at the contact details below, to have the matter investigated. The DPO can be contacted by electronic mail services to dataprotection@interstatus.com or by post mail:

Interstatus Group of Companies

4’ Diagorou Street

Kermia House, Office 104

1097 Nicosia, Cyprus

Tel.: +357 22766120

Fax: +357 22766125

www.interstatus.com

info@interstatus.com

 

If you are not satisfied with our response for your request or believe we are processing your personal data not in accordance with the law, you can complain to the relevant data protection supervisory authority, the contact details:

Commissioner for Personal Data Protection

Office address: Iasonos 1, 1082 Nicosia, Cyprus
Postal address: P.O.Box 23378, 1682 Nicosia, Cyprus
Tel: +357 22818456
Fax: +357 22304565

www.dataprotection.gov.cy
commissioner@dataprotection.gov.cy