GDPR Policy
Our General Data Protection Regulation (GDPR) Policy provides for the protection of individual privacy while safeguarding our right to communicate with customers and other interested parties.
​
1. Introduction
ART.Cy, the Cyprus Art Exhibition and Conference, is committed to protecting and respecting your privacy. This policy outlines how we collect, use, process, and protect personal data in compliance with the EU General Data Protection Regulation (GDPR).
2. Data Controller
ART.Cy is an initiative of Navigator Consulting & Innovation Partners Ltd. For the purposes of GDPR, the data controller is:
Name: Navigator Consulting & Innovation Partners Ltd.
Data Manager: Philip Ammerman
Contact Information: info@navigator-consulting.com / hello@artcy.eu
3. Data Collection
We collect and process the following personal data:
- First name
- Last name
- Email address
- Company / Institutional Name
- Other relevant data such as billing and accounting data for customers
4. Purpose of Data Processing
Personal data is collected and used solely for the following purposes:
- Communication with ticket-holders, sponsors, exhibitors, and other stakeholders
- Customer billing and accounting
- Access control and accounting purposes at the hotel venue, if needed
5. Data Usage
Personal data may be:
- Gathered from our website, for example in email registration or the online shop
- Added to our internal database
- Uploaded to email communications programmes, notably Office 365 Email and Mailchimp
- Used for communications related to ART.Cy activities
- Shared with the hotel venue for access control or accounting purposes, if necessary
- Shared with our external accounting firm if necessary.
6. Data Retention
All accounting data will be retained for a statutory period of 7 years, in accordance with relevant laws and regulations.
7. Data Sharing and Transfer
Personal data will not be transferred to any third parties not related to the conference, except in the following cases:
- Required by court order
- Required by government decision
8. Data Security
We implement appropriate technical and organizational measures to ensure the security of personal data, protecting it from unauthorized access, alteration, disclosure, or destruction.
9. Rights of Data Subjects
Under GDPR, data subjects have the following rights:
- Right to Access: You can request access to your personal data and obtain information about how it is processed.
- Right to Rectification: You can request correction of any inaccurate or incomplete data.
- Right to Erasure: You can request deletion of your personal data, subject to certain conditions.
- Right to Restrict Processing: You can request restriction of processing of your personal data under certain circumstances.
- Right to Data Portability: You can request to receive your personal data in a structured, commonly used, and machine-readable format.
- Right to Object: You can object to the processing of your personal data under certain circumstances.
10. Exercising Your Rights
To exercise your rights, please contact our Data Manager:
Philip Ammerman
hello@artcy.eu
11. Changes to This Policy
We may update this GDPR policy from time to time. Any changes will be posted on our website and, where appropriate, notified to you by email.
12. Contact Us
If you have any questions or concerns about this GDPR policy or how your data is processed, please contact us at:
Navigator Consulting & Innovation Partners Ltd.
Classic House, Office 2
133 Makarios Avenue, Limassol
3085 CYPRUS
Email: info@navigator-consulting.com
By participating in ART.Cy, you acknowledge that you have read and understood this GDPR policy and consent to the processing of your personal data as described herein.
​
​