Privacy Policy

Last updated: April 11, 2024

We ask that you read this website Privacy Policy carefully as it contains important information on who we are, how and why we collect, store, use and share personal information, your rights in relation to your personal information and on how to contact us and/or the supervisory authorities in the event you have a complaint.

General information

This website is operated by DEALIO LIMITED, with registration number HE 413977 (hereinafter referred to as the “Controller” or “Company” or “DEALIO” or “We” or “Us”).

We collect and use certain personal information about you. When we do so, we are regulated under The General Data Protection Regulation 2016/679 (hereinafter referred to as the “GDPR”), which applies across the European Union. We are responsible as ‘controller’ for that personal information pursuant to the GDPR.

Our Website

This Privacy Policy relates to your use of our website, https://dealio.ai/ (hereinafter referred to as the “Website”), only.

The Website, is an informative website regarding the services provided by Dealio Ltd to firms in the financial services industry.

Throughout our Website we may link to other websites owned and operated by certain trusted third parties and partners. These other third-party websites may also gather information about you in accordance with their own separate privacy policies. For privacy information relating to these other third-party websites, please consult their privacy policies as appropriate.

What information we collect

We collect personal information about you when you access our Website.

We collect this personal information from you either directly, such as when you are contacting us via our ‘contact us form’ or when you are submitting your CV for our vacancies through our “Careers” section (for which a separate Job Applicants Privacy Policy Applies which can be found in our “Careers” section) or indirectly, such as when you are browsing while on our Website, via cookies (see section ‘Cookies’ below).

The personal information we collect about you, depends on the particular activities carried out through our Website. This information include cookies (hereinafter referred to as “Cookies”) and/or the below personal information, which are being collected when you are trying to connect with us via our ‘contact us form’:

  • Name and Surname,
  • Email address.

(hereinafter refer to as your “Personal Information”)

Purpose of the collection

The purpose of collecting Cookies is in order to,

  • enable the smooth operation of our Website in general and provide you with constant, uninterruptible and error-free access to our Website;
  • monitor how effective and popular our Website is, how to improve it, tailoring it to our visitors and their interests and needs.

While, the purpose of collecting your Personal Information via our ‘contact us form’ is to enable us to revert and respond to your request/inquiry.

We do not collect and we do not use any personal information other than that specifically mentioned above, without your explicit consent.

This website is not intended for use by children, and we do not knowingly collect or use personal information relating to children.

We do not use automated decision-making processes or profiling while processing your personal data.

Our legal basis for processing your personal information

When we use Cookies and/or your Personal Information we are required to have a legal basis for doing so. There are various different legal bases on which we may rely on, depending on what personal information we process and why.

The legal bases we may rely on include:

  • Consent: where you have given clear consent for us to process your Personal Information for a specific purpose, such as when you are submitting a request/inquiry via our ‘contact us form’ or when you enable analytic cookies on our Website;
  • Legitimate interests: where the use of your personal information is necessary for our legitimate interests or the legitimate interests of a third party (unless there is a good reason to protect your personal information, which overrides our legitimate interests), such as ensuring website and user security, improving user’s experience, user interface design and overall performance of the website, i.e. strictly necessary cookies.

Cookies and other tracking technologies

A cookie is a small text file which is placed onto your device (e.g. computer, smartphone or other electronic device), when you use our Website. We use Cookies on our Website. These help us, amongst other things, to recognize you and your device and store some information about your preferences or past actions.

For further information on cookies, our use of ‘cookies’ and/or on relevant similar technologies, please see our Cookies Policy.

How we keep your data

We process your personal information at our head offices, in Limassol, Cyprus and then we are using third party cloud services, located in Limassol, Cyprus, where the information is safely kept and stored.

For the storage and security of your personal data the Company takes all the necessary technical and organizational measures to ensure that the processing is carried out in accordance with the applicable local laws and the GDPR (access control, firewalls, antivirus, cryptography, etc.).

Data Recipients

Within our Company, your personal data is only accessible by the strictly required personnel and only for the purposes mentioned above.

Outside our Company, recipients of your personal data may be any subcontractors or third parties who cooperate and/or provide services in the context of its business, such as companies that provide email services, web hosting services, information technology services, legal representatives, etc.

We choose our associates very carefully, after the necessary checks have been carried out and sufficient guarantees have been provided to implement appropriate technical and organizational measures in such manner that processing will meet the requirements of the GDPR and the relevant laws and ensure the protection of your rights.

We may also need to:

  • disclose and exchange information with law enforcement agencies and regulatory bodies to comply with our legal and regulatory obligations;
  • share some personal data with other parties, such as potential buyers of some or all of our business or during a restructuring. Your information in such cases will be anonymized, but this may not always be possible, however, the recipient of the information will be bound by confidentiality obligations.

If you would like more information about who we share our data with and why, please contact us (see ‘How to contact us’ below).

Retention Period

Personal data provided to us via our Website will only be stored until the purpose for which they were processed has been fulfilled or – in the case of consent – until you withdraw your consent.

After this period, your personal data will be irreparably destroyed. Any data kept by us for marketing and information purposes, if applicable, will be retained until you inform us that you no longer wish to receive such information.

Any requests for further information in relation to the continued processing of specific data and requests for destruction of data should be made to support@dealio.ai.

Transfers of data outside the EU / EEA  

We are not transferring personal data outside the EU /EEA. However, in case your data will be transferred to entities or other third parties whose headquarters or place of data processing is not located in a member state of the European Union or the European Economic Area, we ensure before forwarding the data that, outside of legally permitted exceptional cases pertaining to the recipient, either an appropriate level of data protection exists (e.g. through an adequacy decision of the European Commission, through suitable guarantees, or through the agreement of EU standard contractual clauses between us and the recipient), or your sufficient consent exists.

Security

We have appropriate security measures in place to prevent personal information from being accidentally lost or used or accessed in an unauthorized way. These measures include, but are not limited to, access control, internal audit etc. Furthermore, we limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorized manner and are subject to a duty of confidentiality. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

Your Rights

As a data subject, you may contact us at any time to make use of your rights, which are, the right to:

  • receive information about the data processing and a copy of the processed data;
  • demand the rectification of inaccurate data or the completion of incomplete data;
  • demand the erasure of personal data;
  • demand the restriction of the data processing;
  • receive the personal data concerning the data subject in a structured, commonly used and machine-readable format and to request the transmittance of these data to another controller in certain situations;
  • object to the data processing;
  • withdraw a given consent at any time to stop a data processing that is based on your consent;
  • complain to a competent supervisory authority.

In response to such requests, we reserves the right to require the individual making the request to provide certain details about herself/himself so that the we can validate that the individual is indeed the person whom the data refers to. We are required to respond to the request of the individual within 30 days and it will endeavour to do so wherever possible.

In cases a data subject chooses not to provide any personal data, or where any of the rights set out above are exercised to limit the processing of personal data, we may be unable to provide relevant services, or there may be restrictions on the services which can be provided.

As per the GDPR, your right to erasure can be lifted to the extent that processing is necessary:

  • for exercising the right of freedom of expression and information.
  • for compliance with a legal obligation which requires processing by Union or Member State law to which we are subject;
  • for reasons of public interest in the area of public health in accordance with points (h) and (i) of Article 9(2) of the GDPR as well as Article 9(3) of the GDPR;
  • for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with Article 89(1) of the GDPR in so far as the right referred to in paragraph 1 of Article 89 is likely to render impossible or seriously impair the achievement of the objectives of that processing; or
  • for the establishment, exercise or defence of legal claims.

For further information on each of those rights, including the circumstances in which they apply, please contact us (see ‘How to contact us’ below).

In the event that you wish to complain about how we have handled your personal data, you may contact us (see ‘How to contact us’ below). We will then look into your complaint and work with you to resolve the matter.

If you still feel that your personal data has not been handled appropriately according to the law, you can submit your complaint with the Office of the Commissioner for Personal Data Protection, at Kypranoros 15, Nicosia 1061, Cyprus, Tel. +35722 818456 Email: commissioner@dataprotection.gov.cy.

How to contact us

You can contact us by post, email or phone, if you have any questions about this Privacy Policy or the information we hold about you, to exercise a right under data protection law or to make a complaint.

Our contact details are shown below:

DEALIO LIMITED

Postal address: 73 Ayias Zonis Street, 3090 Limassol, Cyprus – Dena House

Email address: support@dealio.ai

Telephone no.: +357 25 254868

Changes to this Privacy Policy

This Privacy Policy was last updated on the 11th of April 2024.

We may change this Privacy Policy from time to time and when we do so, we will inform you via our Website or via other means of contact, when this considered necessary.