Last updated on 25 August, 2021
This Privacy Notice sets out how TechIsland ("we" or the “Organization OR Association”) collects and processes personal data relating to your application to become a member of our Organization/Association ("you"). The Organization/Association is committed to being transparent about how it collects and uses that data and to meeting its data protection obligations.
This Privacy Notice has been prepared in accordance with the provisions of the EU General Data Protection Regulation (“GDPR”) and the relevant laws of the Republic of Cyprus.
Any questions relating to this Privacy Notice or requests in respect of personal data should be directed through email to firstname.lastname@example.org
We strive to protect personal data and apply high standards of conduct when it comes to privacy issues. Furthermore, we endeavor to ensure that any parties with whom we co-operate apply the same high standards when it comes to data protection and privacy as we do.
What data do we collect?
We process data in the context of assessing membership applications, data regarding registered members and communication with members of Techisland. In this context we collect certain categories of personal information directly from all potential members through our online form which is in our website under the tab “apply for a membership” or when interest to become a member is expressed via email or in paper.
- name of your company;
- job title;
- official company documentation (i.e. Certificate of Incorporation, Certificate of Shareholder, Certificate of Directors and Secretary)
- your full name;
- email address and telephone number;
Important notice on Special Category Data
In certain instances, the personal data you provide to us for these purposes may include "Special Category Data" (i.e. information concerning race, ethnic origin, trade union membership, sexual orientation, religion or belief, health data or data relating to a person's criminal record or alleged criminal activity). Such data will not be processed by us without your explicit consent.
Why do we process your personal data?
We need to process your data in order to assess your application and carry out the registration process effectively, maintain records of our members and communicate with our members. In some cases, we may need to process data to ensure that we are complying with our legal obligations. For example, to check a successful applicant's eligibility to become a member into a non-profitable Organization/Association in Cyprus before membership starts.
We have a legitimate interest in processing personal data during the registration process and for keeping records of the process. Processing data from membership applicants allows us to manage the registration process, assess and confirm a member’s suitability to become a member in our Organization/Association and decide whom we should register.
We may also collect information about whether or not an applicant is disabled to make reasonable adjustments for applicants who have a disability. We process such information to carry out our obligations and exercise specific rights in relation to registration.
We shall not carry out any automated decision-making activities, including profiling, using your personal information.
For further information on the use and storage of your data, please send us a relevant request to email@example.com.
Sources and Recipients of data
Your information will be shared internally within the Organization/Association for the purposes of the registration process.
Requests for access to be restricted in any particular manner should be made to firstname.lastname@example.org and will be considered and, where possible with reference to legal and regulatory obligations, actioned.
We currently do not use any third-party services for storing and processing applicants' and members’ personal information. In a case where we might use third parties for processing your data our Organization/Association will enter into Data Processing Agreement with all third-party service providers, to ensure their awareness and compliance with their obligations as processors under the General Data Protection Regulation.
We take the security of your data very seriously. We have internal policies and controls in place to ensure that your data is not lost, accidentally destroyed, misused or disclosed, and it is not accessed except by the strictly required persons, in the proper performance of their duties.
Rights of Data subjects
Data subjects in the European Union (or any jurisdiction with equivalent legislation to the European Union General Data Protection Regulation) have certain rights in respect of their personal data. If you wish to exercise any rights under the GDPR or any other applicable data protection laws (including the right to withdraw any consent to processing previously given; the right of access to data; or to have data corrected, updated, rectified or erased; or for access to data to be restricted or provided to any third party; or to object to any particular processing; or to lodge a complaint with the relevant supervisory authority; or the right o data portability) you may send us a relevant request to email@example.com.
In response to such requests, we reserve the right to require the individual making the request to provide certain details about himself/herself so that we can validate that the individual is indeed the person whom the data refers to. We are required to respond to the request of the individual within 40 days and it will endeavour to do so wherever possible. We reserve the right to charge a reasonable fee to cover any expenses that may arise from the request.
In any case in which you choose not to provide any personal data, or where any of the rights set out above are exercised to limit the processing of personal data, we may be unable to carry out the recruitment process successfully and you may not be offered a position.
Retention of data
We retain all personal data in accordance with the Data Retention Policy.
If your application for membership is successful, personal data gathered during the registration process will be retained during your membership.
Any requests for further information in relation to the continued processing of specific data and requests for destruction of data should be made to firstname.lastname@example.org
For further information on the retention and destruction processes of the Organization/Association, please send us a relevant request to email@example.com.
Changes to this Privacy Notice
We keep this Privacy Notice under review in order to ensure that it is in line with any changes to the laws relating to privacy and personal data. Any updated version of the present will be circulated internally.
This Privacy Notice was last updated on 25 August 2022.
The Organization/Association has a Data Protection Officer and all enquiries in respect of this Privacy Notice or any requests to exercise any of the rights set out above should be directed to the Data Protection Officer via firstname.lastname@example.org
If you still feel that your personal data has not been handled properly according to the law, you can make a complaint to the Office of the Commissioner for Personal Data Protection, at:
1 Iasonos Str., 1082 Nicosia,
P.O. Box 23378, 1682 Nicosia
Tel: +357 22818456
Fax: +357 22304565