Who we are
ART VESTA CONSULTING LTD is a company duly incorporated and existing under the laws of The Republic of Cyprus with registration number HE 384909, with head office located at 53, Ptolemaion street, office 102, Neroupos Business Centre 3041 Limassol, Cyprus.
You can always contact us via the following methods:
Address: 53, Ptolemaion street, office 102, Neroupos Business Centre 3041 Limassol, Cyprus
Phone: +357 25350307
Email address: email@example.com
As data controller, we determine how we process your personal data, for what purposes and by what means. While we are required by law to provide you with all of the following information, we do so primarily out of the belief that our relationship should always be honest and transparent.
As data controller we are responsible that all our processing activities are in accordance with legal requirements but also you may reasonably expect these processing of your personal data (legitimate interest).
If you have any questions about data protection at ArtVesta, you can also contact us by emailing firstname.lastname@example.org
Definitions and Interpretation
“Data Protection Laws” shall mean all laws governing the handling of Personal Data, including without limitation the following as amended, extended, re-enacted or replaced from time to time.
- EC Regulation 2016/679 (the “GDPR”) on the protection of natural persons with regard to the Processing of Personal Data and on the free movement of such data (when in force);
- all local laws or regulations implementing or supplementing the EU legislation mentioned above;
- all codes of practice and guidance issued by national regulators relating to the laws, regulations and EU legislation mentioned above.
“Data Controller” means ArtVesta;
“Personal Data” means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person;
“Personal Data Breach” means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored or otherwise processed;
“Process, Processing and Processed” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;
“Supervisory Authority” means the Office of the Commissioner for Personal Data Protection in Cyprus; and
‘Third party’ means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
1. Our Privacy Principles
We are committed to recognising and respecting your privacy rights by keeping you informed and processing and protecting your personal data in compliance with applicable Data Protection Laws.
If you are located outside of the European Union and you choose to use the Services or provide your information to us, your data may be transferred to, processed and maintained on servers, databases or cloud storage facilities located in Amsterdam, Netherlands. Your use of the Services represents your consent and agreement to these practices. If you do not want your data transferred to or processed or maintained in Amsterdam, Netherlands, you should not use the Services.
2. Information that We Collect from You
Account Data You Directly and Voluntarily Provide to Us. We may collect and process some or all of the following information you make available to us when you use the Services, such as your:
- First Name
- Company Name
- Mailing Address
- Phone Number
- Email Address
Details of transactions you carry out through the Services, your purchases, and the fulfilment of orders we provide to you
Artist Profile Data. In addition to the data listed above, we may create an Artist profile to describe yourself that will be visible to other users of the Services.
Usage Data We Automatically Collect from You. In addition to the information you provide to us, the Services may collect and process additional data automatically, this data may include your:
- Device Registration Data (for example, the type of mobile device you use, your mobile device’s unique device or advertising ID, IP address, operating system and browser type)
- Device Settings (for example, your language preference)
- Information about how you use the Services (for example, how many times you use the Services each day)
- Requested and Referring URLs
- Location Data collected through your Device (including, for example, precise location data such as GPS and WiFi information)
- Information collected through cookies and other tracking technologies including, but not limited to, your IP address and domain name, your browser version and operating system, traffic data, location data, web logs and other communication data, and the resources that you access
3. How We Use Your Personal Data & Legal Bases
In this section, we set out the purposes for which we use personal information that we collect when you use the Services.
To fulfil your order, providing the Services, Improving the Services, Providing Support, and Communicating with You – we require your identification, contact and payment information to enable ArtVesta to enter into a contract with you and are unable to do so without this information (please note that your details may need to be passed to another company and/or a third party, such as the Artist(s) whose Artwork(s) you purchased, a courier or one of their customs clearance agents, in order for them to supply or deliver the Artwork(s) that you ordered and we may retain your details for a reasonable period of time after you have completed the transaction in order to fulfil any contractual obligations such as refunds, guarantees etc and to meet any legal obligations for the retention of transactional data).We and our service providers may use the data you provide or that is collected through the Services to operate and improve the Services, our products and services, to contact you from time to time to provide you with important information and notices relating to the Services, and to carry out obligations arising from any agreements between you and us.Legal Bases: contract performance, legitimate interests (to correspond with you, to enable us to provide you with the Services and to improve the Services)
Providing Marketing and Promotion Materials. We and our service providers may use the data you provide or that is collected through the Services to provide you with updates, offers, and promotions, where you have chosen to receive these. We may also use your information for marketing our own and our selected business partners’ products and services to you by email and, where required by law, we will ask for your consent at the time we collect your data to conduct any of these types of marketing. If you wish to unsubscribe from receiving marketing communications from us by email, please follow the instructions contained in each email you receive from us describing how you can unsubscribe from receiving further marketing communications from us.
In addition, the Services may include third-party content and links to other third-party websites. We are not responsible for the privacy practices or the content of these third-party websites. You are encouraged to review the privacy policies of the different websites that you visit.
You may opt out of the collection, use, and transfer of precise location data for location-based advertising purposes, by using the location services controls in your mobile device’s settings.
Legal Bases: consent, legitimate interest where consent is not required (to enable us to provide you with an experience related to your interests)
Analytics Services. We may also work with third party analytics companies to help us understand how the Services are being used, such as data collection, reporting, ad response measurement, website and mobile application analytics, and to assist with delivery of relevant marketing messages and advertisements.
We may use Google Analytics, an analytics service provided by Google or other third party analytics services providers (“Analytics Services”) to collect information about your use of the Services. These Analytics Services may collect information about the content you view and your system information and geographic information. The information generated by the Analytics Services about your use of the Services will be transmitted to and stored by the Analytics Services. The information collected by the Analytics Services allows us to analyze your use of the Services.
We encourage you to review your device and Services settings to ensure they are consistent with your preferences, including with respect to the collection and use of information. You may be able to stop further collection of certain data by the Services by updating your applicable device settings, or you may uninstall the Services. In addition, you may choose not to share your location details by adjusting your mobile device’s location services settings. For instructions on changing the relevant settings, please contact your service provider/carrier or device manufacturer.
Legal Bases: legitimate interest where consent is not required (to enable us to provide you with an experience relevant to your interests)
Legal Bases: consent, legitimate interests (to enable us to perform our obligations and provide the Services to you); contract performance
Our business purposes include:
- Auditing related to our interactions with you;
- Legal compliance;
- Detecting and protecting against security incidents, fraud, and illegal activity;
- Performing services (for us or our service provider) such as account servicing, processing orders and payments, marketing and analytics;
- Internal research for technological improvement;
- Internal operations;
- Activities to maintain and improve our services; and
- Other one-time uses.
Cookies do not harm users’ computers, or the files stored on them.
Cookies don’t store personal details such as your credit card details, your name or your date of birth.
You should keep in mind that certain cookies are absolutely necessary for our website to function properly and seamlessly.
Cookies are divided to the following categories:
– Necessary Cookies. Allow the execution of basic functions of the website such as adding products to the cart, saving products in your wishlist and online payment. Strictly necessary cookies are essential to our website. If these are disabled, your experience on our website may be interrupted and you may not be able to use a shopping basket or make payment.
– Functionality Cookies. These cookies remember your preferences during your navigation in our website so that we can recommend certain products based on your needs thus helping you find what you are looking for faster. For example, a functionality cookie will remember your language preferences next time you visit.
– Performance Cookies. Performance cookies collect information regarding how visitors use our website. It allows us to see which pages they most often visit, inform if they face any problems during navigation etc. These cookies don’t collect any personal information that can identify the visitor as this type of information is collective and thus anonymous. They are used only to enhance the operation of our website.
– Advertisement Cookies. These cookies are used to provide advertisements relevant to you or your interests. They are also used to promote advertisements or offers that meet your needs so that unwanted and meaningless advertising messages are limited. They also help us measure the effectiveness of our advertising campaigns.
– Analytics Cookies. It is a subset of the Functionality Cookies and give us the ability to evaluate the effectiveness of various functions or our website, thus continuously improving the experience we offer.
You can also adjust your browser (chrome, firefox, edge etc.) to inform you every time a cookie is to be received so you can decide whether to accept it or not. Bear in mind that in this case you might not be able to fully utilize all of the website’s potentials.
ArtVesta can use Google Analytics functions for promoting advertisements (e.g. repeated marketing, Google Display Network reports etc.). Using the Advertisement settings, users can opt out from Google Analytics regarding display advertisements but also Google’s Display Network advertisements. Here you can find all available exception settings for Google Analytics for the web.
We reserve the right to alter this policy for cookies at any time. All changes made in this Cookies policy will take effect as soon as the revised Cookies policy is available in our website.
Third party advertisers and other companies we collaborate with may use their own Cookies to collect information regarding your activities on our website. We have no control over those Cookies.
5. How Your Information is Shared with Third Parties
In order to fulfil our contractual obligations, i.e. when you purchase Artwork(s) we will share the following information with the Artist(s) whose Artwork(s) you purchased in order to fulfil your order:
- Mailing address
- Phone number
We may share the information you provide or that we collect in some circumstances as follows:
With Advertisers. We may share your information with advertisers, third-party advertising networks and analytics companies who may use it to deliver targeted advertisements to you on the Services or third-party websites or advertisers. Similarly, these advertisers may share information with us about you that they have independently gathered or acquired. We may also share encrypted versions of information we have collected in order to enable our advertising partners to perform data analysis or for advertising-related use.
With Our Service Providers. We may share your information with our service providers who work on our behalf. For example, these service providers may handle payment or credit card processing, data management, customer data pooling or aggregating, feature administration, email distribution, market research, information analysis, and promotions management. These service providers will only have access to the information needed to perform these limited functions on our behalf.
Social Media and Sharing. The Services may use social networking or “share functionality” or may contain links to third-party social media sites or applications that are not owned or controlled by us. We also may allow you to use social media sites or applications to leverage your existing social media site or application accounts to access features of the Services. Your use of these features may result in the collection or sharing of information about you by these sites or applications, depending on the feature.
We have no control over, and assume no responsibility for, any share functionality or the content, privacy policies, or practices of any third-party site or application. We encourage you to review the privacy policies and settings on the social media sites or applications with which you interact to make sure you understand the information that may be collected, used, and shared by those sites. You are subject to the policies of those third parties when and where applicable.
6. The Privacy of Children
The Services are not intended for children under age 16. We do not knowingly collect or distribute personal information from or about children under the age of 16. If a parent or guardian becomes aware that his or her child has provided us with information without their consent, he or she should contact us at email@example.com.
7. Your rights
You can also make use of the following rights at any time:
- Withdraw consent
Where you have consented to us using your personal data, you can withdraw that consent at any time.
- Right to access
You have the right to be informed which data we store about you and how we process this data.
- Right to rectification
If you notice that stored data is incorrect, you can always ask us to correct it.
- Right to erasure
You can ask us at any time to delete the data we have stored about you.
- Right to restriction of processing
If you do not wish to delete your data, but do not want us to process it further, you can ask us to restrict the processing of your personal data. In this case, we will archive your data and only reintegrate it into our operative systems if you so wish. However, during this time you will not be able to use our Services, otherwise we will process your data again.
- Right to data portability
You can ask us to transmit the data stored about you in a machine-readable format to you or to another responsible person. If you choose to exercise this right, then in certain circumstances any access request may be subject to a fee to meet our costs in providing you with details of the information we hold about you.
- Right to object to the processing of your data
You can revoke your consent at any time or object to the further processing of your data. This also includes objecting to our processing, which we process without your consent but based on our legitimate interest. This applies, for example, to direct marketing. You can object to receiving further newsletters at any time. If you do not agree with one of our processing purposes based on our legitimate interest or wish to object to it, you may object to the processing at any time on grounds relating to your particular situation. Please write an email to firstname.lastname@example.org In this case we will review the processing activity again and either stop processing your data for this purpose or explain to you our reasons worth protecting and why we will continue with the processing.
- Right of complaint
If you believe that we have done something wrong with your personal data or your rights, you can complain to the appropriate supervisory authority at any time.
The supervisory authority responsible for us is:
Name of the supervisory authority: Office of the Commissioner for Personal Data Protection
Address: Iasonos 1, 1082 Nicosia, Cyprus
Telephone: +357 22818456
Fax: +357 22304565
You may Lodge a complaint with our data protection authority at http://www.dataprotection.gov.cy
To exercise these rights, we need to be suitably satisfied of your identity and so may request you provide identification documents or confirm other details we may hold about you (such as a recent delivery reference or address).
8. Security Measures and Storage Limits
We provide industry-standard physical, electronic, and procedural safeguards to protect personal data we process and maintain. For example, we take reasonable measures to limit access to this data to authorized employees and contractors who need to know that information in order to operate, develop or improve our Services. Please be aware that, although we endeavour to provide reasonable security for data we process and maintain, no security system can prevent all potential security breaches. As a result, we cannot guarantee or warrant the security of any information you transmit on or through the Services and you do so at your own risk.
Our retention periods for personal data are based on our business needs and legal requirements. We retain personal data for as long as is necessary for the processing purpose(s) for which the information was collected, and any other permissible, related purpose.