Loading, please wait...

Privacy Policy

Privacy Policy of the EU ADR Consortium

1. Introduction

ADR Cyprus Center Ltd ("the Center", "we", "us", or "our") is committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, and protect your personal data in compliance with the General Data Protection Regulation (EU) 2016/679 (GDPR) and other applicable data protection laws.

2. Data Controller and Contact Information

ADR Cyprus Center Ltd is the Data Controller of your personal data. However, for dispute resolution purposes, the ADR Entity assigned to handle your complaint will act as a Joint Controller of the data.

If you have any questions regarding this Privacy Policy or your rights under GDPR, you may contact our Data Protection Officer (DPO):

Name: George Antoniades

Firm: D. Hadjinestoros & CO LLC

Email: georgea@dhadjinestoros.com

3. How We Collect Your Personal Data

We collect your personal data when you submit a complaint through our website: www.euadr.com.

4. Categories of Personal Data We Collect

When submitting a complaint through our platform, we may collect and process the following categories of personal data:

  • Personal Identification Data: Name, surname, address, telephone number, email address.
  • Complaint Details: Information regarding the dispute, including the name and details of the person or entity against whom the complaint is made.
  • Transaction-Related Documents: Any supporting documents related to the transaction that forms the subject of the dispute.
  • Financial Information: The amount of money requested by the consumer in the complaint.
  • Dispute Type: Classification of the nature of the dispute.

5. Legal Basis for Processing

The processing of personal data is based on Article 6(1)(b) GDPR, as it is necessary for the performance of a contract. Specifically, we process your data to enable us to facilitate dispute resolution services as part of our contractual obligation.

6. Purpose of Data Processing

Your personal data is processed for the following purposes:

  1. To register and process consumer complaints.
  2. To communicate with the parties involved in the dispute.
  3. To facilitate dispute resolution by sharing relevant complaint details with the party against whom the complaint is made.
  4. To provide the assigned ADR Entity with the necessary information to evaluate and resolve the complaint.
  5. To comply with legal and regulatory obligations related to dispute resolution and alternative dispute resolution (ADR) processes.

7. Sharing of Personal Data

In order to facilitate the dispute resolution process, we may share your personal data with:

  • The party against whom the complaint is made, who will receive relevant details of the complaint.
  • The ADR Entity handling the complaint, which will act as a Joint Controller of your data for dispute resolution purposes.

We will not share your data with third parties for marketing or any unrelated purposes.

8. Data Retention

We will retain your personal data for a period of six (6) years from the date of case closure, unless a longer retention period is required by law or regulatory authorities.

9. Security Measures

We implement appropriate technical and organizational measures to safeguard your personal data against unauthorized access, loss, destruction, or disclosure. These measures include encryption, access controls, and secure storage protocols.

10. Your Rights Under GDPR

As a data subject, you have the following rights under the GDPR:

  • Right of Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Request correction of inaccurate or incomplete data.
  • Right to Erasure ("Right to be Forgotten"): Request deletion of your personal data under certain conditions.
  • Right to Restrict Processing: Request that we limit the processing of your data in certain circumstances.
  • Right to Data Portability: Request to receive your data in a structured, commonly used, and machine-readable format.
  • Right to Object: Object to the processing of your personal data under certain circumstances.
  • Right to Lodge a Complaint: You have the right to lodge a complaint with the relevant Data Protection Authority in Cyprus if you believe we are not complying with GDPR requirements.

11. Automated Decision-Making

We do not use automated decision-making or profiling in the processing of personal data related to complaints.

12. International Data Transfers

Your personal data will not be transferred outside the European Economic Area (EEA). If a transfer is required, we will ensure adequate safeguards are in place as per GDPR requirements.

13. Updates to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in legal requirements or our data processing practices. Any updates will be posted on our website, and significant changes will be communicated directly where appropriate.

14. Contact Information

If you have any questions or concerns regarding this Privacy Policy or wish to exercise your rights, please contact:

Data Protection Officer: George Antoniades

Email: georgea@dhadjinestoros.com

Tel: +357 22510165