At P. Constantinou & Co Ltd we are strongly committed to protect the privacy of the personal data, which we maintain of our clients, prospect clients, candidates, employees and other individuals. As part of this commitment, P. Constantinou & Co Ltd regularly reviews its data protection practices to comply with applicable laws, industry standards and best practices.
We will send you marketing material and/or contact you about services we provide which may be of interest to you, as well as other information in the form of alerts, newsletters and invitations to events or functions which we believe might be of interest to you or in order to update you with information which we believe may be relevant and/or of interest to you.
Your data is not shared outside of P. Constantinou & Co Ltd.
If you object to receiving updates, information or marketing material from us at any time, or you want to bring to our attention anything regarding your personal data, please contact us by email: email@example.com or by using the related contact information such as phone number and fax in our website.
If you have given consent and/or you wish to withdraw it, at any time, please contact us on the above e-mail.
Under the GDPR you have the following rights:
- To obtain access to the personal data that we hold about you;
- Ask us that we cease processing your personal data if the processing is causing you damage or distress;
- Ask us not to send you marketing communications;
- To require us to erase your personal data;
- Request to restrict our data processing activities;
- To receive from us the personal data we hold about you which you have provided to us, in a reasonable format specified by you, including for the purpose of you transmitting that personal data to another data controller; and
- To require us to correct the personal data we hold about you if it is incorrect.
Lawful reasons for processing personal data
We may rely on the following reasons when we collect and use personal data to operate our business and provide our services:
- Contract – We may process personal data in order to perform our contractual obligations.
- Consent – We may rely on your freely given consent at the time you provided your personal data to us.
- Legitimate interests – We may rely on legitimate interests based on our evaluation that the processing is fair, reasonable and balanced. These include:
- Delivering services to our clients – To deliver the professional services our clients have engaged us to provide.
- Direct marketing – To deliver timely market insights and specialty knowledge we believe is welcomed by our business clients, subscribers and individuals who have interacted with us.
- Legal obligations and public interests – We may process personal data in order to meet regulatory and public interest obligations or mandates.
Protection and storage of your personal information
Your data are stored in electronic or digital form in our server or facilities and/or by associated companies that are fully compliant with GDPR regulations.
We employ a range of physical, electronic and management measures to ensure that we keep your personal data secure, accurate and up to date. These measures include amongst others:
- Education and training: our staff is constantly trained to ensure they are aware of our privacy obligations when handling personal data;
- Administrative and technical controls: we monitor and restrict access to personal data on a ‘need to know’ basis;
- Technological security measures: these may include fire-walls, encryption and anti-virus software; and
- Physical security measures: our staff uses security passes to access our premises.
Personal data we commonly collect
- Contact details
- Professional details
- Family and beneficiary details for insurance and pension planning services
- CCTV at our sites may collect images of visitors
- Sensitive personal data. We typically do not collect sensitive or special categories of personal data about individuals. When we do need to process sensitive personal data, it is with the consent of the individual unless it is obtained indirectly for legitimate purposes
- Expense receipts submitted for individual tax or accounting advice
- Adverse information about potential or existing clients
- Information provided to us by our clients in the course of a professional engagement
Retention of Data
Our policy is to only retain personal data only for as long as it is needed and in order to meet our professional and legal requirements, to establish, exercise or defend our legal rights, and for archiving and historical purposes.