General
This Privacy Notice sets out how S.K. Stirixis Business Consulting Services Ltd (the “Stirixis” or “We”) processes data, whether on individuals (including personal data in respect of individuals who are clients, intermediaries or other third parties that We interacts with, or any individual who is connected to those parties) or otherwise. Where the data held are on individuals, this document also sets out the rights of those individuals in respect of that personal data.
This Privacy Notice has been prepared in accordance with the provisions of the EU General Data Protection Regulation (“GDPR”).
Any questions relating to this Privacy Notice or requests in respect of personal data should be directed to our data protection officer (DPO) at dpo@stirixis-consulting.com.cy.
Who we are
At Stirixis we are aware of the difficulties that arise in developing clear and efficient in-house processes and management structures. We also know that is equally important for your staff to understand them and put them into practice in an efficient manner. This is why we are strong advocates of the systemization of internal processes, aiming to boost growth by maximizing effectiveness, while also making it easier for staff to follow clear guidelines.
Stirixis specializes in systemizing processes and providing company staff with the necessary training to use these processes effectively, by employing expert trainers and working out of a specialized training center, to help our clients develop their staff’s abilities even further. To enhance our services, we have also chosen to expand in the field of finding and securing funds made available through national and EU schemes.
Our Vision
Τo become the leading choice for companies who aspire consistent development and growth.
Our Mission
We assist the evolution of companies and organisations through enhancement of internal processes, staff training and fund acquirement.
Quality Policy
S.K. STIRIXIS BUSINESS CONSULTING SERVICES LTD aims to offer its customers high quality services, while ensuring that its operation and activities do not affect the quality of the direct and indirect environment of the area of its facilities. The main concern of the company is the full satisfaction of the requirements of the customers for the security of its services, as well as the requirements of the other interested parties.
In order to achieve the above, the Management of the company has adopted a Quality Management System in accordance with the International Standard ISO 9001: 2015, which applies to the entire company and all its activities.
Our strength is our people!
Our people are the cornerstone of our ability to serve our clients efficiently and diligently. We invest tremendous resources in identifying exceptional professionals, developing their skills further, and creating an environment that fosters their growth as leaders. Our consultants and trainers are highly experienced and qualified in their sectors, i.e. in the areas of environmental control, organization, management, restructuring, administration and marketing.
Our main offices are located at 213, Giannou Kranidioti Av, Nicosia, Latsia, 2234, Cyprus.
We strive to protect personal data and apply high standards of conduct when it comes to privacy issues. We ensure that our employees are provided with the appropriate training to handle personal data promptly and in accordance with the laws. Furthermore, we endeavor to ensure that any parties with whom we co-operate apply the same high standards when it comes to data protection and privacy as we do.
What personal data do we collect and for how long is it stored?
The personal data we collect is the least possible to achieve the above-mentioned purposes per category of subjects. When you are interested in our services and communicate with us in any way, we collect the contact details you will provide us with and the details concerning the reason for contacting us, which you will also voluntarily provide. These data can be kept for up to three years upon receipt, as certain categories of services (e.g. European or co-financed) have a broad horizon, unless another relationship (e.g. customer) is created and therefore the data will be retained as specified in the other relationship.
When you participate in Training, Consulting, or European and co-funded programs, we receive the data required by the relevant authorities (HRDA, funding providers) and the announcements. These vary by case and may include: full contact details, Identity & Social Insurance Number, gender, certificate of unemployment with all the included data, Trainer Certification Number, Employee Payroll Data, Contracts, Photographs as Proof of Implementation, Fees, CVs, and Copies of Certificates and Degrees. The data is retained for the purpose of monitoring implementation controlling, for 5 years, which is required by the relevant established framework, apart from the financial data, which is kept as required by the Law. The data required for the submission of co-funded projects, in the event of non-approval of the project, is kept for 3 years from its submission.
When you want to work for us or for our clients, we collect full contact information, salary information / employment terms, CVs and interview notes. Data is kept for up to 1 year.
If you are a trainer, we provide all the required information about the way we manage the collected data in our signed contract for the mentioned period. If you are a trainer that wants to work with us, we collect the information you send us, which we keep for 2 years upon receipt.
In case you communicate with us through our social media accounts, your name or nickname, photos, comments, remarks or preferences may appear in that site. Photo files are kept for a maximum of two months. Uploaded data will be deleted whenever is requested.
From our suppliers and partners, we collect contact details, pricing details and any details of their employees, in case they are required for communication. This data shall be retained as provided by law.
From our employees, we collect all the data required by the labour law, as well as those required for the effective operation of the company, for which you are completely informed through the employment agreement, as well as the manuals we provide. For the record keeping time, you are informed in the same ways.
Purpose of the Collection (in case of seminars)
The purposes for which we collect and use your personal data are the following:
•To communicate regarding events and seminars
•To post photos and videos on websites and social media to promote the Companies services
•To share the material to potential clients to attend a seminar/event.
We do not collect any personal data other than that specifically mentioned above, and we do not use your personal data without your explicit consent unless you ask us to do so.
You do not have an obligation to provide us with your personal data, but if you do not, we will not be able to provide you with our services in accordance with the Agreement.
We do not use automated decision-making processes or profiling while processing your personal data.
Important notice on Special Category Data
In certain instances, the personal data we process may include “Special Category Data” (which includes information on a person’s race, ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic or biometric data processed for the purpose of uniquely identifying a natural person, health data, data on a person’s sex life or sexual orientation or data relating to a person’s criminal record or alleged criminal activity). In such instances, legal bases for processing that data may include explicit consent (where the Special Category Data has been provided to S.K. Stirixis Business Consulting Services Ltd by the data subject for any of the above-listed purposes) or the processing is being necessary for compliance with a legal obligation or for the purposes of legal proceedings or legal advice.
Why do we need them?
S.K. Stirixis Business Consulting Services Ltd ensures that the data collected and processed is relevant to one or more processing activities and that S.K. Stirixis Business Consulting Services Ltd does not collect or process data than what is reasonably required for achieving the purpose of each processing activity. Furthermore, for each purpose of processing there is always at least one lawful basis to secure that the rights of individuals are safeguarded by all means. The purposes of processing and the lawful basis of each processing activity are the following:
We collect personal data for the following purposes
We collect personal data for the abovementioned purposes, and generally, under the following lawful basis of processing such data:
We don’t use automated decision-making processes or profiling while processing personal data.
For further information on the use and storage of your data, please contact our DPO at dpo@stirixis-consulting.com.cy
To whom can the data be communicated?
Stirixis, takes all the necessary precautions so that the recipients of personal data are as few as possible. The personal data we collect is communicated to third parties, only when the reason for this communication is fully justified. Specific personal data, from what we legally collect, may be accessed (or disclosed), as appropriate by:
Any supervisory authority within its supervisory role.
Any public or judicial authority, if required by law or by court request.
The company’s accountant and auditor, for as much data as are required (financial data, personnel, contracts, and other controlled data) on a confidential basis.
IT and website administrators, under a strict confidentiality clause.
The customers (companies), when recruiting employees for them.
The lawyer of the company, for what data is required in legal cases (e.g. contracts, accidents, etc.), under confidentiality.
Partners in European and co-funded projects, under confidentiality agreement.
The co-operating insurance company (for insurance or accident insurance), which is required to meet the information security requirements.
The co-operating banks (company’s, employees, or partners and suppliers) only for data relating to payment issues.
The trainer and the HRDA for training issues and only for the necessary information and data.
Outsourced technicians that maintain processing equipment of personal data, with confidentiality clauses.
The personal data we collect is not transmitted to third countries or international organisations.
Rights of Data subjects
Data subjects in the European Union (or any jurisdiction with equivalent legislation to the European Union General Data Protection Regulation) have certain rights in respect of their personal data. Any such data subject wishing to exercise any rights under applicable data protection laws (including the right to withdraw any consent to processing previously given; the right of access to data; or to have data corrected, updated, rectified or erased; or for access to data to be restricted or provided to any third party; or to object to any particular processing; or to lodge a complaint with the relevant supervisory authority; or the right of data portability) should send the request in the first instance to dpo@stirixis-consulting.com.cy
In response to such requests, S.K. Stirixis Business Consulting Services Ltd reserves the right to require the individual making the request to provide certain details about himself/herself so that S.K. Stirixis Business Consulting Services Ltd can validate that the individual is indeed the person whom the data refers to S.K. Stirixis Business Consulting Services Ltd is required to respond to the request of the individual within 40 days and it will endeavour to do so wherever possible. S.K. Stirixis Business Consulting Services Ltd reserves the right to charge a reasonable fee to cover any expenses that may arise from the request.
In any case in which a data subject chooses not to provide any personal data, or where any of the rights set out above are exercised to limit the processing of personal data, S.K. Stirixis Business Consulting Services Ltd may be unable to provide relevant services, or there may be restrictions on the services which can be provided.
Retention of data
Stirixis retains personal data in accordance with the Data Retention Policy. Any personal data provided to Stirixis is kept for as long as it is necessary to fulfil the purposes for which the data was collected. After the fulfilment of the purposes for which the personal data was collected, such data will be destroyed, unless destruction is prohibited for legal, regulatory or technical reasons.
Any requests for further information in relation to the continued processing of specific data and requests for destruction of data should be made to dpo@stirixis-consulting.com.cy. For more details relating to the retention and destruction processes of Stirixis, please contact our DPO at dpo@stirixis-consulting.com.cy.
Use of Personal Data in Legal Proceedings
If it becomes necessary that we must take action against you for any reason whatsoever, including but not limited to recovering from you any money you owe to us, you expressly agree that the personal data provided by you can be relied upon in identifying and taking legal action against you.
Changes to this Privacy Notice
We keep this Privacy Notice under review in order to ensure that it is in line with any changes to the laws relating to privacy and personal data. Any updates will appear on our website on https://stirixis-consulting.com.cy/privacy-policy/
This Privacy Notice was last updated on 17/07/2024.
Contact us
S.K. Stirixis Business Consulting Services Ltd has a Data Protection Officer and all enquiries in respect of this Privacy Notice or any requests to exercise any of the rights set out above should be directed to the Data Protection Officer via dpo@stirixis-consulting.com.cy.
Privacy Policy | Cookie Policy © 2019 . All Rights Reserved S.K Stirixis Ltd. Designed & developed by Action 360x