Privacy Policy
Last Updated: February 2025
BizAnalytics Pro is committed to protecting your privacy and personal data. This policy explains how we collect, use, protect, and handle your personal information when you visit our website or use our services.
Our Data Protection Commitment
As a business analysis training provider in Cyprus, we understand the importance of data privacy in professional development. We are committed to transparency, security, and respect for your personal information throughout your learning journey with us.
Key Principles
- We collect only necessary information for service delivery
- Your data is used solely for educational and communication purposes
- We implement robust security measures to protect your information
- You maintain control over your personal data at all times
1. Information We Collect
Personal Information
We collect personal information that you voluntarily provide when contacting us or enrolling in our programs:
- Contact Information: Name, email address, phone number
- Professional Information: Job title, company, industry, experience level
- Communication Data: Messages sent through contact forms or email
- Educational Records: Course enrollment, progress, and completion status
- Payment Information: Billing details for course fees (processed securely)
Automatically Collected Data
When you visit our website, we automatically collect certain technical information:
- Usage Data: IP address, browser type, device information, pages visited
- Analytics Data: Time spent on pages, click patterns, referral sources
- Cookie Data: Preferences and session information (see our Cookie Policy)
- Location Data: General geographic location based on IP address
2. Legal Basis for Processing
Under GDPR and Cyprus data protection laws, we process your personal data based on the following legal grounds:
Consent
For marketing communications, newsletter subscriptions, and optional analytics cookies.
Contract Performance
To provide requested training services, process enrollments, and deliver educational content.
Legitimate Interest
For business operations, website analytics, fraud prevention, and service improvement.
Legal Obligation
For tax reporting, regulatory compliance, and record-keeping requirements.
3. How We Use Your Information
Service Delivery
Provide business analysis training, process course enrollments, deliver educational materials, and manage your learning progress.
Communication
Respond to inquiries, send course updates, provide customer support, and share relevant educational opportunities.
Marketing (with consent)
Send newsletters, course announcements, industry insights, and promotional materials about our training programs.
Analytics and Improvement
Analyze website usage, improve our services, develop new courses, and enhance user experience.
Legal Compliance
Meet regulatory requirements, maintain financial records, and comply with Cyprus tax and business laws.
4. Data Retention Periods
We retain your personal data only as long as necessary for the purposes outlined in this policy:
| Data Type | Retention Period | Reason |
|---|---|---|
| Contact form submissions | 3 years | Customer service and follow-up |
| Course enrollment records | 5 years | Educational certification and reference |
| Financial transaction records | 7 years | Tax compliance and auditing |
| Marketing communications | Until consent withdrawn | Ongoing marketing activities |
| Website analytics data | 2 years | Service improvement and optimization |
5. Data Protection and Security
We implement comprehensive security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction:
Technical Safeguards
- SSL encryption for data transmission
- Secure hosting with encrypted storage
- Regular security audits and updates
- Access controls and authentication
- Backup and recovery procedures
Organizational Measures
- Staff training on data protection
- Confidentiality agreements
- Limited access on need-to-know basis
- Incident response procedures
- Regular policy reviews and updates
Data Breach Notification: In the unlikely event of a data breach affecting your personal information, we will notify you and relevant authorities within 72 hours as required by law.
6. Data Sharing and Third Parties
We do not sell your personal data. We may share your information only in the following circumstances:
Service Providers
Payment processors, email services, hosting providers, and analytics tools that help us deliver our services. All providers are bound by strict confidentiality agreements.
Legal Requirements
When required by Cyprus law, court orders, or regulatory authorities for compliance, tax reporting, or legal proceedings.
Business Transfers
In the event of merger, acquisition, or sale of business assets, your data may be transferred with appropriate notification and protection measures.
With Your Consent
For any other purposes not covered above, we will obtain your explicit consent before sharing your personal information.
7. Your Rights and Choices
Under GDPR and Cyprus data protection laws, you have the following rights regarding your personal data:
Right to Access
Request copies of your personal data and information about how it's processed.
Right to Rectification
Correct inaccurate or incomplete personal information we hold about you.
Right to Erasure
Request deletion of your personal data in certain circumstances.
Right to Portability
Receive your data in a structured, machine-readable format.
Right to Object
Object to processing of your data for direct marketing or legitimate interests.
Right to Withdraw Consent
Withdraw consent for marketing communications or data processing at any time.
How to Exercise Your Rights
Contact us at privacy@domain.com or +357 22 627481. We will respond within 30 days and may require identity verification for security purposes.
8. International Data Transfers
Some of our service providers may be located outside the European Economic Area (EEA). When we transfer your data internationally, we ensure appropriate safeguards:
- Standard Contractual Clauses approved by the European Commission
- Adequacy decisions for countries with sufficient data protection
- Binding Corporate Rules for multinational service providers
- Specific consent where required by law
9. Contact Information
For questions about this Privacy Policy or to exercise your data protection rights, please contact us:
Data Protection Contact
Email: privacy@domain.com
Phone: +357 22 627481
Address: 15 Stasikratous, 1065 Nicosia, Cyprus
Supervisory Authority
If you believe we have violated your privacy rights, you may lodge a complaint with:
Cyprus Data Protection Authority
Commissioner for Personal Data Protection
Website: dataprotection.gov.cy
10. Policy Updates
We may update this Privacy Policy periodically to reflect changes in our practices, services, or legal requirements. When we make material changes, we will:
- Update the "Last Updated" date at the top of this policy
- Notify you via email if you have provided your email address
- Post a notice on our website about the changes
- For significant changes, seek your renewed consent where required by law
Current Version: February 2025
Next Review Date: August 2025