Ελληνικά
English
The Digital Security Authority ("DSA"), with this Privacy Policy, informs you about the personal data it processes, the purpose of the processing, the measures undertaken for their protection, and your rights concerning your personal data.
The DSA guarantees the protection of your personal data, ensuring that any collection and processing is done in full compliance with the General Data Protection Regulation (EU) 2016/679 (the "Regulation"), as well as with applicable laws, regulations, guidelines, and directives regarding personal data protection. It also complies with its competences under the Security of Information and Systems Law of 2020 (Law 89(I)/2020), as amended from time to time.
This Privacy Policy explains how the personal data of visitors/users/members is managed, according to the Regulation and the Cypriot Protection of Natural Persons Against the Processing of Personal Data and the Free Movement of Such Data Law of 2018 (Law 125(I)/2018).
Types of Personal Data Collected
The DSA collects only the data strictly necessary for achieving the purpose for which it was provided, specifically for investigating malicious link reports, communicating with the reportee (if needed), and securing its systems. Personal data collected may include: full name, email address, telephone number, IP address, etc.
Purpose of Processing and Use of Personal Data
Your personal data are processed exclusively to ensure compliance with the DSA's legal obligations and for the performance of its duties in exercising the public authority assigned to it.
Rights of Data Subjects
As a data subject, subject to the limitations set by applicable legislation, you have the following rights regarding your personal data:
To exercise your rights or for any questions about the processing of your personal data, you may contact us using the contact details at the end of this policy.
If you believe that your personal data protection rights are infringed in any way, you may appeal to the Commissioner for Personal Data Protection.
Access to Your Data and Transfer to Third Parties
The DSA may engage external partners to process personal data on its behalf ("processors"), always following the requirements of applicable data protection laws. These partners are contractually bound to maintain data confidentiality and comply with relevant legislation. Apart from these cases, personal data is not disclosed to third parties unless legally required or mandated by a court decision.
Data Retention Period
Your personal data are retained only for as long as necessary to achieve the purposes for which they were collected. After this period, your data will be securely deleted.
Data Security
To protect your personal data, the DSA implements appropriate technical and organizational measures to ensure confidentiality, integrity, availability, and authenticity. Personal data are securely stored in both digital and physical formats within the DSA, encrypted where necessary, and accessed only by authorized personnel.
Amendments to the Privacy Policy
This Privacy Policy may be amended periodically. Please check this page regularly for updates regarding our privacy practices.
This Privacy Policy is effective as of November 12, 2024.
Contact Details
For any questions, clarifications, complaints, or to exercise your legal rights, you may contact us:
Data Controller:
Digital Security Authority
1 Andrea Chaliou, 2408 Nicosia, Cyprus
Tel.: 22693000
Email: contact@dsa.ee.cy
Data Protection Officer:
Tel.: 22693000
Email: dpo@ee.cy