Privacy Policy

This Privacy Policy describes how COREDEV LAB LTD (the "Company") collects, uses, and discloses certain personal information obtained through our public website at https://coredevlab.com/. This Privacy Policy does not address information collection through other sources, such as in-person seminars or a manager's personal contacts.

Who we are

COREDEV LAB LTD ('us' 'we' or 'our' 'Company'), a limited liability company, incorporated under the Companies Law of the Republic of Cyprus, Cap. 113, under registration number HE 435670. It was incorporated in 2022, and its main activity is the provision of software development services.

Who we disclose your personal data to

We may disclose personal information to third parties where necessary to respond to your requests or to fulfil the purposes described in this Privacy Notice. In limited circumstances, we may also share personal information with government authorities or other parties where required to protect the interests of the Company or others, or in connection with the sale or transfer of all or part of the business. Disclosure may also be required by applicable law or by a court order.

Your consent will be requested upon establishing the business relationship.

List of recipients we might disclose information

Third parties in relation to a legal or regulatory obligation or if we are permitted to do so by law: Under certain circumstances, we may have an obligation to disclose or share your personal data with auditors, regulatory authorities or law enforcement bodies to comply with a legal or regulatory obligation.

Third parties in connection with corporate transactions: For instance, if we sell any business or assets or merge with another business entity, it may be necessary to disclose personal data to the prospective business owners or partners.

Companies providing CCTV and security-related services. This includes providers responsible for office security, building access systems, and CCTV monitoring in areas where such systems are lawfully installed.

We may disclose your personal data to individuals or companies when you explicitly ask us to do so or give your consent.

The disclosure and transfer of personal data must meet the following circumstances, which are used in order to establish our legal basis:

• - it is necessary in order for us to perform a contract between the individual and the Company;
• - it is necessary in order for us to take measures to enter into a contract with the individual where it has requested us to do so;
• - it is necessary for us to establish, exercise or defend legal claims; or
• - if none of the conditions listed above apply, the individual has explicitly consented to the transfer.

Information Collection and Use

In general, you can visit the Company's Websites while maintaining your anonymity. Occasionally, however, the Company may need you to provide personally identifiable information, such as your name, company, e-mail address, phone number, and address ("Personal Information"). The purpose for requesting the particular information may involve corresponding with and/or contacting you, fulfilling your requests, or otherwise providing you with a subscription to a newsletter or publication, or notifying you about events. Where applicable, we will differentiate between personal data fields that are optional and those that are mandatory in order for you to obtain the requested information.

By consenting to supply personally identifiable data, such as your name, address, email address, and telephone number, the Company will not, in any way, directly or indirectly, sell any of this information to any third party. We may share personal data with trusted third parties strictly for lawful and necessary purposes. Any information supplied will be confidential and will be handled in accordance with the applicable laws and regulations.

You will only be receiving advertising materials from the Company, only if you have provided your explicit consent. In the case you feel that you need to revoke this consent, you will be provided with an automated way to opt out (unsubscribe) from that communication or from all marketing e-mails sent by the Company. Please follow the instructions in the e-mail you received to do so. In the unlikely case that you have received unwanted e-mail from our Company, please forward a copy of that e-mail to info@coredevlab.com

Please note that if you reply to the Company's address in one of our advertising e-mails or otherwise correspond with us, your communication will not create a company-client relationship with us. Do not send us any information that you or anyone else considers to be confidential or secret unless we have first agreed to be your service providers in that matter. Any information you send us before we agree to be your service providers cannot be protected from disclosure as a means of company-client confidentiality.

Data Retention

We are an IT/Tech company, obliged by the Tax Authorities, to keep the data for up to 6 years after the cessation of the business relationship. Although there are cases in which, when the relationship with the client arises, a gap of a long timeframe is intrudes. These circumstances require us to store the data for as long as it is needed. Although, we need to make clear that if a relationship does not arise and/or it arose only once, and for a long time we never had been assigned tasks from the client, we are about to store these data for 6 years (as the obligation by the Tax Law requires us to do so, bearing in mind that independently of the fact that the relationship was not ceased written or verbally). Upon termination of the period of 6 years, we will destroy the data as our legal obligation will not be valid anymore.

We operate a data retention policy which sets out the specific periods we will hold information and when we need to destroy information that we no longer require for legal, regulatory or commercial reasons.

However, this may be longer in some instances, when for example dealing with a claim whereby we would need to hold the information for a period relevant to the time the claim is being handled.

Overall the criteria used to establish the period for which personal data will be stored is determined by regulatory or legal requirements. This is also supported by a Policy that such information must not be kept for any longer than necessary to fulfil the purposes for which it was collected.

Access and Correction

If you wish to access or update the Personal Information you submit through the Company's website, or to make any inquiries about the processing of such information, please contact us as described below. We provide individuals with access to their Personal Information as required by applicable data protection and privacy laws.

Your Rights

You have certain rights in respect of the way we treat your personal data:

• - Right of access - request access to any personal data we hold about them;
• - Right of rectification - have any personal data which we hold about them which is inaccurate or incomplete rectified;
• - Right to be forgotten - have personal data erased;
• - Right to restriction of processing - have the processing of individual's personal data restricted;
• - Right of portability – To be provided with the personal data that the individual has supplied to us in a portable format that can be transmitted to another organisation without hindrance;
• - Right to object - object to certain types of processing, including processing based on legitimate interests, automated processing (which includes profiling) and processing for direct marketing purposes; and
• - Right to object to automated processing, including profiling - not be subject to a decision that is based solely on automated processing which produces a legal effect or which has a similar significant effect for the individual.

If you wish to exercise any of the rights set out above, you must submit your request in writing to the Data Protection Officer. Please note that some of these rights may be subject to limitations in certain circumstances.

Where you have provided consent to the processing of your personal data, you have the right to withdraw that consent at any time, where applicable. To do so, please contact the Data Protection Officer.

If you object to processing based on our legitimate interests, we will cease processing your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or where such processing is required for the establishment, exercise, or defence of legal claims.

There are specific provisions when we are handling sensitive personal data as these are aligned below:

Special Category Data means information or an opinion about:

• - Racial or ethnic origin
• - Political opinions
• - Membership of political association
• - Religious beliefs or affiliations
• - Philosophical beliefs
• - Membership of a professional or a trade association
• - Membership of a trade union
• - Sexual orientation or practices
• - Criminal record that is also personal information
• - Health information about an individual
• - Genetic information about an individual that is not otherwise health information
• - Biometric information that is to be used for the purposes of automated biometric identification or verification, or
• - Biometric templates

Changes to this privacy policy

We may update this Privacy Policy from time to time by publishing a new version on our website. You should check this page occasionally to ensure you are happy with any changes. If the changes are substantial, we may notify you of changes by email.

Data security

All information provided by you to us is stored securely, and we implement appropriate organisational, technical, and administrative measures to protect your personal data. These measures include access controls, secure hosting environments, and confidentiality obligations.

Once your information is received, we apply strict internal procedures and security controls to prevent unauthorised access. However, please note that neither the transmission of information via the internet nor its storage is completely secure, and no information system can be guaranteed to be entirely secure.

If you have any reason to believe that your interaction with us is no longer secure, please contact us immediately.

Cookies

Our website uses cookies in order to improve your experience. To find out more about how we use cookies, please see our cookie policy. Kindly refer to our main website or click here

How can you file a complaint?

It is very important for the principles of privacy to be followed, and we should take all the appropriate measures to avoid any breach or loss of these data.

Any breach of the GDPR / Data Protection Act will be taken seriously and if you consider that the data protection principles have not been followed in respect of personal data about yourself or others you have the right to lodge a complaint with the relevant data protection supervisory authority.

Our Protection Supervisory Authority is the Personal Data Protection Bureau (Independent Supervisory Authority for the Protection of Individuals). If you have any issues with our processing of your personal data and would like to make a complaint, you may contact the Personal Data Protection Bureau on (+357) 22 818 456 or at 15 Kypranoros, 1061, Nicosia, Cyprus.

Contact information

If you require this privacy notice information to be provided to you in paper form please contact our Data Protection Officer, at privacy@coredevlab.com