Privacy Policy

PRIVACY POLICY

1. GENERAL

The privacy Policy is a Statement of our Privacy and Confidentiality Policy and is intended to inform you regarding the way we collect and process your data, the purpose of the processing as well as your rights as subjects of processing, in accordance with the General Regulation (EU) 2016/679 on Data Protection and the relevant legislation.

In accordance with the above Regulation, "Personal Data" (referred to as "personal data" or "data") is any information that relates to a person who is in life and that can be identified, for example: name, address and id number.

2. WHO WE ARE

The Nafaides Company Insurance Agency & Consultants Ltd the company is an insurance brokerage license number 5583. The address of our office is on the street Archimedes 24, arr. 1, 2018 Strovolos.

3. HOW DO WE COLLECT THE DATA YOUR

We collect and process various types of personal data that we receive from you based on the free and explicit consent, through the forms 'Application for Insurance" or "Insurance Proposal". We may also collect personal data from other publicly available sources (e.x. the Internet) which we lawfully and we are allowed to process.

4. WHAT ARE THE DATA WE COLLECT

If you are a policyholder, insured person, beneficiary or potential customer, the personal data that we collect may include:

Name, address, contact details, date of birth, id or passport, occupation, marital status, number of dependents, income and expenses, address, assets, bank account number or credit card information, height, weight, and any health problems.

If you are a prospective employee, the personal data that we collect may include: name, contact details, academic qualifications, professional experience, and other information that you provide to us voluntarily through your cv.

If you are an employee or a former employee, in addition to the above, we can moreover collect: place and date of birth, marital status, number and social security contributions, earnings, health status, and bank account number.

5. WHY DO WE NEED THE DATA YOUR

As we mentioned above, we are committed to protecting your privacy and handling your data with transparency and in accordance with the General Data Protection Regulation (GDPR) and the relevant legislation for one or more of the following reasons:

A. For the performance of a contract

We process personal data on behalf of the insurance companies in order to conclude the insurance contract, to submit a claim or any other claim in relation to proof of insurance. 

B. For compliance with a legal obligation

There are some obligations that we have to comply under the law, e.x. the Insurance and Reinsurance services and Other Related Matters Law. There are also various supervisory authorities such as the Department of Control of Insurance Companies that are imposed on us activities necessary to process personal data, such as the analysis of insurance needs.

C. For the purposes of safeguarding legitimate interests

We process personal data in order to safeguard the legitimate interests pursued by us or by a third person. Legitimate interest occurs when we have a business or commercial reason to use your information, provided that the processing is necessary and not done in vain against the interests, rights and freedoms of you. 

D. You have given your consent

Provided that you have given us written consent from you for processing, then the lawfulness of such processing is based on consent. You have the right to revoke or limit the consent at any time. As regards the separate consent you may have given to the insurance company, you should contact the insurance company directly.

6. WITH WHOM WE SHARE DATA YOUR

When we act as processor, we give your personal data to the insurance companies with which you συμβάλλεστε through us, so that we can provide you with insurance cover. 

7. COMMERCIAL OBJECTIVES

It is possible to process your personal data to recommend insurance products that you may need or/and be of interest to you, provided that we have already obtained the relevant consent you previously. This contact may continue, and when you cease to be our customer, you can however request us to cease to communicate with you at any time.

8. FOR HOW MUCH TIME SAFEGUARD THE DATA ON YOUR

We retain your personal data for the duration of our business relationship. After the termination, the delete within 13 months, unless there is a serious reason not to do so, such as mandatory legal obligations.

The personal data of potential customers are kept for 12 months.

In case of submission of a claim to an insurance company through us, your personal data will be retained as the final settlement of the claim.

For commercial purposes, your data are kept for 5 years, unless you withdraw your consent.

As regards the applications, all the relevant information shall be deleted 6 months after their submission.

For their employees, their data are deleted 6 years after the termination of the employment relationship.

Finally, the optical material is recorded through a Closed Circuit (CCTV) stored for 7 days. 

9. YOUR RIGHTS IN CONNECTION WITH THE DATA, YOUR

• You have right of access your personal data. You are entitled to know which of your data we hold, and to check that the process legally.
• You have right to rectification (restoration) of your personal data. You can correct any incomplete and inaccurate data we hold in relation to you.
• You have right to erasure your personal data. The well-known right to be forgotten allows you to ask us to delete your data where there is no good reason for us continuing to process them.
• You have right of refusal the processing of your personal data where we are relying on a legitimate interest. In such a case, we will not continue no longer process your data unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of you.
• You have right to restriction in the processing. You can restrict the purposes for which it is processed.
• You have right to information for the data that we process. You can obtain a copy of your data in a simple, transparent and easily understandable form.
• You have right to portability your data. You can ask us to transmit your data directly to other organisations, which would indicate.
• You have right of withdrawal of consent you provided to us at any time.
• You have right to lodge a complaint. If you have concerns as to how we use your data, you can contact the Data Protection Officer. You also have the right to submit a complaint to the Office of the Commissioner for the Protection of Personal Data via the website http://www.dataprotection.gov.cy

10. CONTACT DATA

If you wish to exercise any of the above rights, you may submit any question and/or to receive more information on how we use your data, you can contact the Data Protection Officer via email at dpo@cv-insurancelaw.com or to the postal address: Archimedes 24, arr. 1, 2018 Strovolos.