Privacy Policy of Improvisation Consulting Ltd

Effective Date: [01/04/2022]

At Improvisation Consulting Ltd, we are committed to safeguarding your privacy and ensuring that your personal information is protected. This privacy policy outlines how we collect, use, and protect the personal data you provide us, in compliance with the applicable laws and regulations of the Republic of Cyprus, including the General Data Protection Regulation (GDPR).

  1. Introduction
    This privacy policy applies to all data subjects whose personal data is collected by Improvisation Consulting Ltd. By using our services or interacting with our website, you consent to the practices described in this policy.
  2. Data Controller
    Improvisation Consulting Ltd, with its registered office in Cyprus, acts as the data controller for all personal data collected through our consulting services, training seminars, and related activities.
  3. Personal Data We Collect
    We may collect the following categories of personal data from you:

Contact information: Full name, address, phone number, email address.
Professional information: Job title, company name, industry.
Financial information: Bank account details, billing information (where applicable).
Communications: Any information you provide during consultations, training sessions, or other interactions.
Website usage information: Information related to how you interact with our website, including IP addresses, browser type, and cookies (see Section 9).

  1. Purpose of Data Collection
    We collect and process personal data for the following purposes:

To provide consulting and advisory services to our clients.
To manage relationships with clients, including communication, invoicing, and support.
To organise and deliver seminars, workshops, and training sessions.
To comply with legal obligations, such as accounting and tax reporting.
To improve our services and website performance.

  1. Legal Basis for Processing
    We process personal data on the following legal grounds:

Contractual necessity: To fulfill our obligations under a contract with you (e.g., consulting services).
Legitimate interest: To manage and improve our business operations.
Legal obligations: To comply with legal or regulatory requirements.
Consent: Where we have obtained your consent (e.g., for marketing purposes).

  1. Data Sharing and Disclosure
    We may share your personal data with third parties under the following circumstances:

Service providers: We may share data with trusted third-party service providers (e.g., IT support, payment processors) to facilitate our business operations.
Legal requirements: We may disclose personal data where required by law or in response to valid legal requests by public authorities.
Business transfers: In the event of a merger, acquisition, or sale of assets, personal data may be transferred to the relevant parties.

  1. International Data Transfers
    Improvisation Consulting Ltd does not typically transfer personal data outside the European Economic Area (EEA). However, if such transfers are required, we will ensure appropriate safeguards are in place, such as standard contractual clauses or other legal mechanisms to protect your data.
  2. Data Retention
    We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, or as required by law. After this period, personal data will be securely deleted or anonymised.
  3. Cookies and Website Tracking
    Our website uses cookies to enhance user experience and collect information on how visitors use our site. Cookies are small text files stored on your device when you visit our website. You can manage or disable cookies through your browser settings, though some website features may not function properly without cookies.
  4. Your Data Protection Rights
    As a data subject, you have the following rights under the GDPR:

Access: The right to request access to the personal data we hold about you.
Rectification: The right to correct inaccurate or incomplete data.
Erasure: The right to request the deletion of your personal data, where applicable.
Restriction of processing: The right to restrict the processing of your data under certain circumstances.
Data portability: The right to receive your data in a structured, commonly used format and to have it transferred to another controller.
Objection: The right to object to the processing of your data based on legitimate interests or for direct marketing purposes.
Withdrawal of consent: Where consent is the legal basis for processing, you have the right to withdraw your consent at any time.
To exercise any of these rights, please contact us at the details provided in Section 2.

  1. Security Measures
    We take appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, firewalls, and secure servers.
  2. Changes to the Privacy Policy
    We may update this privacy policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any significant changes and ensure the revised policy is posted on our website.
  3. Contact Us
    If you have any questions or concerns regarding this privacy policy or the processing of your personal data, please contact us.

This Privacy Policy is issued in accordance with the applicable provisions of the General Data Protection Regulation (GDPR) and the laws of Cyprus.

This policy ensures your compliance with GDPR and other data protection regulations in Cyprus while providing transparency on how data is handled. Let me know if you need further adjustments or details!