This Privacy Statement describes the method of data collection and its usage by CTC AUTOMOTIVE LTD (the Company).
The processing of personal data is carried out in accordance with the provisions of the General Data Protection Regulation (GDPR 2016/679), the applicable Cypriot legislation on the protection of personal data, any other potentially applicable national and European legislation for certain legal sectors, and for the Regulation of Electronic Communications and Postal Services (Law 112(I)/2004, as applicable).
What is personal data?
Personal data is information that identifies you directly or indirectly. Indirectly means in combination with other information, such as your name, postal address, email address, and phone number, or a unique device identification number.
The Company may collect the following information:
When filling out the order form on our website http://www.iveco.com.cy/, you will be asked to provide:
Additional information that may be requested is:
The Company may make use of your data:
Access to Information:
By providing your personal data you consent that your data will be used by the Company’s employees and partners for the reasons mentioned above.
Under no other circumstances may the Company share your personal information with others without your prior consent, unless required through any legal route. Please note that under certain conditions it is permitted, when required by law or on the basis of a court order, to collect, use and disclose of your personal data, which have been collected online without your prior consent (such as the case of a court order).
Use of personal data
Your personal data will be used for the purposes described above. We collect and process as much personal data as is necessary to meet the required purpose. If we will use your personal data that we process with your consent, for purposes other than those disclosed in such consent, we will inform you in advance and, in cases where the processing is based on your consent, we will use your personal data for a different purpose only with your permission.
For existing customers, we may use the information we have received as part of our existing customer relationship to inform you for products or services related to similar products or services that you have previously requested, used, or may be of interest to you. You may, however, object to such use at any time either at the time that your data is collected or whenever you send a message. To stop receiving emails for marketing purposes, follow the instructions in the email you receive.
Transfers of Businesses
Processing of children's personal data
The Company will not collect or process personal data of children under the age of 16 unless parental consent has been granted, in accordance with applicable local law. If we realise that a child's personal data was accidentally collected, we will delete that data without any delay.
Processing sensitive data
In some cases, we may process specific categories of personal data about you ("sensitive data"). For example, we may process sensitive data that you have made public. We may also process sensitive data, where appropriate, to support, pursue or defend legal claims. We may also process your sensitive data if you have freely given your prior express and separate consent in a specific context for a specific purpose.
The Company is committed to ensuring the security and integrity of the data it collects, regarding the users of its website. The Company has adopted procedures that protect the personal data that users provide on its website or provide it by any other means (e.g. by telephone). These processes protect users' data from any unauthorized access or disclosure, loss or misuse and change or destruction. They also help to certify that these data are accurate and used correctly. Your connection to it is secure because it uses TLS technology with a size of 256bits. TLS technology relies on a key code to encrypt the data before being sent over the (TLS) connection.
The security check between the data and the Server is based on the unique key code ensuring secure communication. The Browsers, Internet Explorer, Mozilla Firefox, Safari support the TLS protocol and it is recommended to use them to connect to the http://www.iveco.com.cy/ website.
We apply the appropriate level of security and have therefore implemented reasonable physical, electronic, and administrative procedures to safeguard the data we collect from accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access to personal data transmitted, stored or otherwise processed. Our information security policies and procedures are closely aligned with widely accepted international standards and are regularly reviewed and updated, where necessary, to meet our business needs, changes in technology, and regulatory requirements.
In the event of a data breach containing personal data, the Company will comply with applicable laws regarding the notification of the breach.
Your legal rights
As a data subject you have specific legal rights relating to the personal data, we collect from you. The Company will respect your rights and will fully respond to any concerns you have as you address it.
The following list contains information about your legal rights arising from applicable data protection laws:
In such cases, where we cannot identify you as a data subject, we are unable to comply with your request to enforce your legal rights as described in this article, unless you provide us with additional information that allows you to be identified
Retention of your personal data
In general, we will delete the personal data that we collect from you if they are no longer necessary to achieve the purposes for which they were originally collected. However, we may be asked to store your personal data for a longer period of time due to legislation.
In addition, we will not delete all of your personal data, if you have asked us not to contact you in the future. For this purpose, the Company maintains records containing information about people who do not wish to be contacted in the future (e.g. through group e-mail messages). We categorize your requests as consent for the storage of your personal data for the purposes of maintaining that file, unless you give us different instructions.
Please address any questions on the issue of data protection and any requests to exercise your legal rights to the data controller at email@example.com
You can also contact the Office of the Commissioner for Personal Data Protection in Cyprus at firstname.lastname@example.org
Acceptance of the Privacy Procedures applied by the http://www.iveco.com.cy/ If you use the website http://www.iveco.com.cy/ you accept and consent to this Privacy Statement, as well as the terms and conditions of use of the website announced through it.