Privacy Policy

Privacy Policy2019-04-01T12:06:19+00:00

Our privacy policy describes how we collect and use personal data about you, in accordance with the General Data Protection Regulation (GDPR) and any other national implementing laws, regulations and secondary legislation, as amended or updated from time to time, in Cyprus (‘Data Protection Legislation’).

Personal data may be collected and processed by Evangelou Loizou & Associates Ltd, a company registered in Cyprus under registration number 296152 with registered office address at 12 Rodou Str., 1086 Nicosia Cyprus, PCH Consultants Ltd, a company registered in Cyprus under registration number 202653 with registered office address at 2 Socratous Str., 2364 Agios Dometios, Nicosia Cyprus, and by EL & A Secretarial Services Ltd, a company registered in Cyprus under registration number 290940 with registered office address at 12 Rodou Str., 1086 Nicosia Cyprus. (Collectively will now on be referred to as “the firm”)

Please read the following carefully to understand our practices regarding your personal data and how we will treat it.

The firm is regulated by Institute of Certified Public Accountants of Cyprus for Accounting, Audit, and Company Administration Services, and by the Insolvency Service of Cyprus (ISC) for Insolvency, Bankruptcy and Liquidation services.

For the purpose of the Data Protection Legislation and this notice, the firm is the ‘data controller’. This means that we are responsible for deciding how we hold and use personal data about you. We are required under the Data Protection Legislation to notify you of the information contained in this privacy notice.

How we may collect your personal data

We obtain personal data about you, for example, when:

  • you request the provision any of the services we provide;
  • you or your employer or our clients engages us to provide our services and also during the provision of those services;
  • you contact us by email, telephone, post or social media (for example when you have a query about our services); or
  • we request information from third parties and/or publicly available resources (for example, from your employer or from the Registrar of Companies).

The kind of information we hold about you

The information we hold about you may include without limitation the following:

  • your personal details such as your name; age; date of birth;  ID number; e-mail address; home address; country of residence;  family circumstances (for example, your marital status and number of dependents); employment and education details (for example, the organization you work for, your job title and your education details); financial and tax-related information (for example your income and tax residency); complaint details;  and other similar information.
  • details of contact we have had with you in relation to the provision, or the proposed provision, of our services;
  • details of any services you have received from us;
  • our correspondence and communications with you;
  • information about any complaints and enquiries you make to us;
  • information from research, surveys, and marketing activities;
  • Information we receive from other sources, such as publicly available information, information provided by our clients.

The personal data that we may collect may also include ‘sensitive’ or ‘special categories’ of personal data, such as details about your health (for example, in relation to life and medical insurance, insolvency etc.), ethnic or racial origin. Please note that, when the processing of sensitive personal data is not allowed by law, an explicit consent from you will be required whenever we may have to obtain sensitive personal data about you so as to provide our services.

Usage of your personal data

We may use your personal data for the following purposes:

  • Necessary for the performance of our engagement with you or your employer or our clients and to comply with our legal obligations.
  • For identity verification and record and for maintaining lists for correspondence.
  • To meet all legal, regulatory and ethical obligations applicable to the Firm.
  • Any other purpose(s) which has been agreed by or notified to you

In addition to the purposes connected to the operation of our business above, we may also use your personal data collected via our Website

  • to manage and improve our Website,
  • to tailor the content of our Website,
  • to use for marketing and promotional purposes (google ads, social media, newsletter etc.)
  • to manage and respond to any request you submit through our Website.

Data retention

We will only retain your personal data for as long as is necessary to fulfil the purposes for which it is collected.

When assessing what retention period is appropriate for your personal data, we take into consideration:

  • the requirements of our business and the services provided;
  • our statutory or legal obligations;
  • the purposes for which we originally collected the personal data;
  • the lawful grounds on which we based our processing;
  • the types of personal data we have collected;
  • the amount and categories of your personal data; and
  • whether the purpose of the processing could reasonably be fulfilled by other means.

Change of purpose

Where we need to use your personal data for another reason, other than for the purpose for which we collected it, we will only use your personal data where that reason is compatible with the original purpose.

Should it be necessary to use your personal data for a new purpose, we will notify you in advance and communicate the legal basis which allows us to do so.

Data sharing

We might share your personal data with third parties where we are required by law, where it is necessary to administer the relationship between us or where we have another legitimate interest in doing so.

“Third parties” includes but not limited to third-party service providers. The following activities are carried out by third-party service providers: IT and cloud services, professional advisory services, administration services, marketing services, newsletter, event planning and banking services.

All of our third-party service providers are required to take commercially reasonable and appropriate security measures to protect your personal data. We only permit our third-party service providers to process your personal data for specified purposes and in accordance with our instructions.

Furthermore, our Website may host various social media applications or services that allow you to share content with other users (collectively “Social Media Applications”). Importantly, any personal information that you contribute to these Social Media Applications can be read, collected and used by other users of the application. We have little or no control over these other users and, therefore, we cannot guarantee that any information that you contribute to any Social Media Applications will be handled in accordance with this privacy statement.

Transferring personal data outside the European Economic Area (EEA)

We may, in certain rare circumstances, transfer your personal data to recipients outside of the European Economic Area (EEA).  In these cases where the country may not have the same EEA laws, we will make sure your personal data is protected in accordance with the applicable data protection laws.

Data Security

We have put in place commercially reasonable and appropriate security measures to prevent your personal data from being accidentally lost, used or accessed in an unauthorized way, altered or disclosed. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who don’t have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

We have put in place procedures to deal with any suspected data security breach and will notify you and any applicable regulator of a suspected breach where we are legally required to do so.

Your duty to inform us of changes

In order to be able to provide our services to you it is important that the personal data we hold about you is accurate and current. Should your personal information change, please notify us of any changes of which we need to be made aware by contacting us, using the contact details below.

Your rights in connection with personal data

Under certain circumstances, by law you have the right to:

  • Request access to your personal data. This enables you to receive details of the personal data we hold about you and to check that we are using it lawfully.
  • Request correction of the personal data that we hold about you.
  • Request erasure of your personal data. This enables you to ask us to delete or remove personal data where there is no good reason for us continuing to hold it. You also have the right to ask us to delete or remove your personal data where you have exercised your right to object (see below).
  • Object to use of your personal data where we are relying on a legitimate interest (or those of a third party) and there is something about your particular situation which makes you want to object to use on this basis. You also have the right to object where we are using your personal information for direct marketing purposes.
  • Request the restriction of use of your personal data. This enables you to ask us to suspend the use of personal data about you, for example if you want us to establish its accuracy or the reason for using it.
  • Request the transfer of your personal data to you or another data controller if the use is based on consent, carried out by automated means and this is technically feasible.

To exercise any of the above rights, please email us at

For security measures we may need to request specific information from you to help us confirm your identity and ensure your right to access the information (or to exercise any of your other rights). We will aim to respond to any requests for information promptly and in any event within the legally required time limits (currently 30 days).

Right to withdraw consent

In the event where you may have given your consent to the collection, use and transfer of your personal data for a specific purpose (for example, in relation to direct marketing that you have indicated you would like to receive from us), you have the right to withdraw your consent for that specific use at any time. To withdraw your consent, please email

Once we have received notification that you have withdrawn your consent, we will no longer use your personal information (personal data) for the purpose or purposes you originally agreed to, unless we have another legitimate basis for doing so in law.

Other websites

We have provided links to other websites, within  which you may find useful.  You should be aware that when you link to other websites our privacy practices no longer apply.  With this in mind, we encourage visitors to review each site’s privacy policy before disclosing any personally identifiable information.

Changes to this notice

Any changes we may make to our privacy notice in the future will be updated on our website

This privacy notice was last updated on 28th March 2019

Contact us

If you have any questions regarding this notice or if you would like to speak to us about the manner in which we process your personal data, please email

Right to complain

For further information on your rights and how to complain you may contact the Data Protection Commissioner at:

1 Iasonos Str., 1082 Nicosia,

P.O. Box 23378, 1682 Nicosia

Tel: +357 22818456

Fax: +357 22304565



We use cookies to personalise content and ads, to provide social media features and to analyse our traffic. We also share information about your use of our site with our social media, advertising and analytics partners who may combine it with other information that you’ve provided to them or that they’ve collected from your use of their services. You consent to our cookies if you continue to use our website. Settings Accept

Third Party Plugins Used

Tracking Cookies