Y-O2

Menu

Privacy Statement

1. About Us

YoYo Designs Ltd (hereinafterreferredtoas “theCompany”) is a digital design agency building products, campaigns, and ecommerce having its registered office at Porfyriou Dikaiou 14, Engomi, 2414, Nicosia, Cyprus.

Thistextaimsatprovidingyouwithintelligible, transparentanddirectinformationabouttheprocessingofyourpersonaldatacollectedandprocessedbyusinthecontextoffulfillingourobligationstoyou, asourCompanyisboundbytheapplicablelegislationtosecureandsafeguardyour right to protection against the illegal processing of personal data and your right to privacy, as well as to protect the personal data maintained by us and are of concern to you.

Your personal information may help us to better understand your needs and to offer you a more customized service. However, we understand that maintaining the security and confidentiality of your personal data is a big responsibility which we take very seriously. For this reason, we have drawn up this Policy, among other things, which aims at informing you about the kind of data we collect, why we collect them and how we use them.

ThisPolicyisaddressedtonaturalpersons, whoarecurrentorpotentialcustomersoftheCompany, employees, third persons, agents and associates. Byprovidingyourpersonalinformation, you accept that we will use such information in the manner analytically explained in this Policy.

When we say that your personal data are subject to “processing”, this term includes every action undertaken in relation to these data, such as the collection, registration, organization, structure, storage, adaptation, variation, recovery, search for information, usage, transmission, diffusion, disposal, correlation, combination, limitation, erasure and destruction.

In case you require more information on how we process your personal data, you may apply to the Data Protection Officer of the Company at the address of our registered office, at Porfyriou Dikaiou 14, Engomi, 2414, Nicosia, Cyprus or by emailing create@y-o2.com

 

2. Personal Data Processing Principles

In collecting sensitive personal data we are bound by the General Regulation for the Protection of Personal Data (EU) 2016/679 and, taking into consideration the necessary organizational measures, we proceed to the processing stage, based on the following principles governing the processing of personal data:

  • they shall be subjected to legitimate and lawful processing in a transparent manner,
  • they shall be collected for specified, express and legitimate purposes and shall not be subjected to further processing in any way incompatible with the purposes for which these data are collected by the company,
  • only the appropriate and relevant data shall be collected, limited to the necessary purpose for which they have been collected,
  • they shall be accurate and updated as necessary,
  • they shall be retained only for as long as required and for the purposes for which they have been collected,
  • they shall be subjected to processing in a manner guaranteeing their required security against non-authorised or unlawful processing and accidental loss, destruction or wear, among other things, through the use of suitable techniques and or organizational measures,
  • when we transmit your personal data whether to another country or to a person who carries out the processing on behalf of the Company, the necessary measures shall be taken by us for the protection of your personal data, as for example through the conclusion of specialized contracts for data processing

 

3. How we Collect your Personal Data

More often the collection of personal data is performed directly by you. The relevant information may be received through an application submitted to us whether directly or indirectly (via associates or/and agents) or by way of the agreement between us by telephone or any other kind of communication with you.

More analytically, personal data may be collected:

(a) Straight from you (directly or indirectly):

  • Through request for our services
  • Via a curriculum vitae, email, employees, associates
  • By personal contact directly with the natural persons
  • On line by the client
  • On line through a bank
  • By personal contact directly with the natural persons

(b) From various other/ “third” sources (indicatively):

  • Through our associates
  • Recruitment Agencies/Platforms
  • Through our website
  • Lawyers
  • Closed surveillance circuit, installed in the premises of the Company

 

4. What kinds of Personal Data are Processed by us?

Our company collects and processes various kinds of personal data, depending on the services provided in each particular case. Our policy applies to both our current and or potential customers directly or indirectly involved.

For all of the aforementioned reasons, our company collects and processes personal data depending on the service that will be provided for you as follows:

  • Personal Information (such as full name, Date of Birth, occupation, Social Insurance Number, email, country of origin, position held etc)
  • Contact Details (home address, email address, telephone etc)
  • Biographical details (date of birth, occupation, position etc), Academic Qualifications, seminarand training attendancedetails, Tax Register Number.
  • Employment Details (such as position, salary, payslips, leaves etc)
  • Designs Portfolio.
  • Details in regards to the services requested (e.g. pictures of room).
  • Contact details of associates in other countries.

 

5. How we use your Personal Data

After they have been collected by us, your personal data may be subjected to processing in our company, as previously mentioned, by our employees, associates and or trainers, in order to provide you with our service.

We use your personal data for the following purposes:

  • To communicate with you
  • Fortheprovisionofservices.
  • For promotional marketing and advertising activities. Wemayundertake the conduct of promotional activities in accordance with your preferences and upon your consent.
  • Toconductresearchandanalysis of data
  • Forthecomplianceofourcompanywiththeapplicablelawsandstatutoryobligations, EuropeanUniondirectivesandguidelines, courtdecisionsandotherlegalprocesses, andinordertorespondtorequestsbypublicandstateauthorities, asstipulatedin CypriotandEuropeanlegislation.
  • Toenforceanddefendourlegitimaterightsandtoprotectourbusinessactivities, including thoseofourbusinessassociates, andtosafeguardourrights, individualprivacy, securityorpropertyassets, aswellasthe rightsofourbusinessassociates, yours and those ofotherpersons’ orthirdpersons’; for the purpose ofimposingourtermsandconditionsandpursuingallavailablerecoverymeasuresandcontainingourdamages.

 

6. Sharing Your Personal Data

It might be necessary to share your personal data with our associates so that we could provide for you the required service, among others withAgents, Representatives, Logistics Companies,Suppliers, etc, as well as Public Authorities, Bank, Auditors, the Social Insurance Department, Tax Department, Lawyers, Evaluatorsand Social Media.

In no case, however, are we going to share your personal data for processing for purposes contrary to those described in this Policy without your prior notification.

In each case arising from our relationship, your personal data may be transmitted to public authorities, researcher.

In each transmission to third parties every measure shall be taken beforehand so that only the necessary data shall be transmitted for the implementation of the contract, along with the effective requirements for their legitimate and lawful processing; moreover, the organizations to which the data are being transmitted shall undertake a written commitment that they shall on their part comply with the provisions of the General Data Protection Regulation. Exempt are those cases in which the communication of the data is effected due to some legal or statutory obligation.

IncaseswhereitisnecessarytocommunicateyourpersonaldatatocountriesoutsidetheEuropeanUnion, whichdonotofferadequateguaranteesfortheprotectionofyourpersonaldata, ourcompanyshallbeobligedandhereby undertakes theresponsibilitytoconcludecontractualclausesbetweenourCompanyandtheCompanytowhichthedataarecommunicated, inordertosafeguardtheinformationtransmitted.

 

7. Retention Period for your Personal Data

Our Company shall retain your personal data in its records only for the time period required for the fulfillment of our service to you, unless legal or statutory obligations provide otherwise. Thisalsoappliestothosecaseswhereouragreementhasforanyreasonbeeninterrupted.

Due to harmonization with the Regulation, we have determined the time periods for the retention of your personal data, depending on the processing to which they are being subjected. The parameters that have been taken into consideration for the determination of the time periods are your better service, our operational needs, our legal obligations and the safeguarding of our legal interests.

In order to be accurately informed on the retention periods, please contact the Data Protection Officer of our Company.

 

8. What are your rights?

The General Data Protection Regulation defines your rights in regard to your personal data. On account of this, our Company has developed a mechanism for the satisfaction of requests concerning your personal data, as follows:

I. Righttoaccess: You have a right to access your data maintained by us and you may at any time obtain a copy thereof provided we possess them in electronic form.

II. Righttorectification: You have a right to access and rectify your personal details. You may at any stage of our relationship check and update your personal data, always presenting the necessary documentation and requesting the rectification or completion of inaccurate information.

III. Righttobeforgotten: You have the right to ask for the erasure of the whole or part of the data that concern you. We would like to underline however that our Company shall be obliged to erase only those personal data which can be erased as per our data erasure policy.

IV. Righttorestriction: You hold the right to ask for the processing of your personal data to be restricted, even when the accuracy of the data is disputed or furthermore when the data are no longer useful to the company but you request their retention due to legal claims.

V. Righttoobject: You may at any time whatsoever raise objections about the processing of your personal data. In case you make use of this right, the processing shall immediately cease, unless the Company can prove the existence of legal interest or the need to use the data in support of a legal/judicial case.

VI. Righttodataportability: You have the right to portability, that is, to transfer your personal data to another organization in a legible and commonly used form. ThesaiddatashallbeerasedasspecifiedintheerasurepolicyoftheCompany.

VII. Right to recall consent: You have the right any time to withdraw your consent to the processing of your personal data, without however affecting the legality on which our policy was based prior to your withdrawal. We would like to inform you that the recall of your consent may possibly lead to the termination of the relevant services.

VIII. Right to launch complaint: You have the right to launch a complaint with the Commissioner for the Protection of Personal Data, regarding the processing of your personal data.

If in filing your complaint you feel that you have been wronged by us or if you have any doubts about the outcome of your request, you may submit it in writing to the Commissioner for the Protection of Personal Data at the below address:

Office of the Commissioner for the Protection of Personal Data

Iasonos 1, 2nd Floor

1082 Nicosia

P.O. Box 23378

1682 Nicosia

Τel.: 22818456 Fax No.: 22304565

email: commissioner@dataprotection.gov.cy

In order to exercise your rights as above or in the case where you require more information concerning your rights, you may communicate with the Data Protection Officer of our Company, at the address of our registered office or through the email address create@y-o2.com

 

9. Changes to our Policy

Changes in the Legislation or technological developments impose corresponding modifications on our part.

You are kindly asked to keep a pace with our Policy, which may at any time change in order to adapt to new developments and facts. Our reviewed policy shall be posted on our website at the address https://www.y-o2.com/

Finally, you may ask to be supplied with a copy of the most recent version of the Policy in printed form.

Last updated on August 2021