Privacy Policy
1. Introduction
This Privacy Policy ("Policy") describes how Yiamy Studio ("we," "us," or "our"), a company operating under the laws of the Republic of Cyprus, collects, uses, discloses, and protects your personal data. We are committed to complying with the applicable data protection laws in Cyprus, including but not limited to:
- The EU General Data Protection Regulation (GDPR) (EU 2016/679), which is directly applicable in Cyprus.
- The Cyprus Law Providing for the Protection of Natural Persons with regard to the Processing of Personal Data and for the Free Movement of such Data (Law 125(I)/2018), which implements and complements the GDPR.
- The Law on the Protection of Privacy in Electronic Communications (Law 112(I)/2004), as amended.
This Policy applies to all personal data processed through our website, https://www.yiamy.com, and in the course of our business activities.
2. Data Controller
The Data Controller responsible for your personal data is:
Yiamy Studio
Solareto ltd
Company Registration Number HE 97740
75 Archbishop Makariou III Street, Mesa Geitonia, Limassol, Cyprus
Email: info@yiamy.com
We have appointed a Data Protection Officer (DPO) to oversee questions related to this Policy. You can contact our DPO at: info@yiamy.com (marked "For the attention of the DPO").
3. Definitions
- Personal Data: Any information relating to an identified or identifiable natural person ('data subject').
- Processing: Any operation performed on personal data (e.g., collection, recording, storage, use, disclosure).
- Data Subject: The individual to whom the personal data relates (i.e., you, the User).
- Consent: Freely given, specific, informed, and unambiguous indication of the data subject's wishes.
- Data Controller: The entity that determines the purposes and means of processing personal data.
- Processor: A natural or legal person which processes personal data on behalf of the controller.
4. The Personal Data We Collect and Why (Purposes and Legal Bases)
We process your data based on one or more of the following legal grounds under GDPR: (a) your consent; (b) performance of a contract with you; (c) compliance with a legal obligation; (d) our legitimate interests (which we will balance against your rights).
5. How We Share Your Personal Data
We may share your data with:
- Service Providers (Processors): Trusted third parties operating under strict contracts (e.g., IT hosting, email delivery, analytics providers). They process data only on our instructions and for the purposes stated here.
- Professional Advisers: Lawyers, bankers, auditors, and insurers based in Cyprus or the EU/EEA, where necessary for our business operations.
- Public Authorities: When required to comply with Cypriot or EU law (e.g., tax authorities, law enforcement under lawful request).
- In Business Transfers: In connection with a merger, sale, or transfer of our assets.
We do not sell your personal data. Any international transfers outside the European Economic Area (EEA) will only be made if adequate safeguards are in place (e.g., Standard Contractual Clauses approved by the European Commission).
6. Data Subject Rights (Your Rights under Cypriot/EU Law)
As a data subject in Cyprus, you have the following rights:
- Right of Access: Request a copy of your personal data we hold.
- Right to Rectification: Request correction of inaccurate or incomplete data.
- Right to Erasure ('Right to be Forgotten'): Request deletion of your data under certain conditions.
- Right to Restriction of Processing: Request we limit the processing of your data.
- Right to Data Portability: Receive your data in a structured, machine-readable format.
- Right to Object: Object to processing based on legitimate interests, including direct marketing.
- Right to Withdraw Consent: Where processing is based on consent, you can withdraw it at any time.
- Right to Lodge a Complaint: You have the right to complain to the Cypriot supervisory authority:
Commissioner for Personal Data Protection
1 Iasonos Street, 1082 Nicosia, Cyprus
Tel: +357 22818456
Email: commissioner@dataprotection.gov.cy
Website: http://www.dataprotection.gov.cy
To exercise any of these rights, please contact us at info@yiamy.com. We will respond within one month as required by law.
7. Data Security and Retention
We implement appropriate technical (encryption, access controls) and organizational measures to protect your data from unauthorized access, disclosure, alteration, or destruction, in line with the principle of "security by design and by default."
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including for legal, accounting, or reporting requirements. Our retention periods are based on the nature of the data and the legal basis for processing.
8. Cookies and Similar Technologies
Our website uses cookies. Some are essential for the site's functionality, while others help us analyze traffic and improve your experience. You will be presented with a cookie banner upon your first visit, where you can manage your preferences and provide consent for non-essential cookies (such as analytics). You can also adjust your browser settings to refuse cookies.
9. Changes to This Policy
We may update this Policy periodically to reflect changes in our practices, services, or legal requirements. We will post the updated Policy on this page with a revised "Last Updated" date. We encourage you to review this Policy regularly.
10. Contact Us
For any questions, concerns, or requests regarding this Privacy Policy or your personal data, please contact us:
Yiamy Studio
Solareto ltd
Company Registration Number HE 97740
75 Archbishop Makariou III Street, Mesa Geitonia, Limassol, Cyprus
Email: info@yiamy.com
For the DPO: info@yiamy.com (marked "For the attention of the DPO")
This version of the Privacy Policy is specifically adapted for compliance with Cypriot and EU data protection law and supersedes any previous versions.
