loader
Get A Quote
Follow Us
Get A Quote

Privacy Policy

  • Home
  • Privacy Policy

Privacy Policy (GDPR)

This Privacy Policy explains how we process personal data when you visit this website, contact us, or otherwise interact with Novastra Advisory Ltd. We comply with the EU General Data Protection Regulation (GDPR) and applicable local laws.

1. Controller

Novastra Advisory Ltd.
Georgiou Karaiskaki 11-13
Carisa Salonica, Office 102
7560 Pervolia, Larnaca
Republic of Cyprus
Email: info@novastra-advisory.com

No mandatory Data Protection Officer is appointed. For any privacy-related inquiries, please contact us using the details above.

2. Categories of data, purposes and legal bases

  • Website access and server logs (e.g., IP address, date and time, URL, referrer, user agent) to ensure technical delivery, stability and security of the website. Legal basis: Art. 6(1)(f) GDPR (legitimate interests).
  • Contact requests via email or our contact form (name, email, phone, message and any information you provide) to process and respond to your inquiry and, where applicable, take pre-contractual steps. Legal basis: Art. 6(1)(b) GDPR (contract/pre-contract) and Art. 6(1)(f) GDPR (legitimate interests).
  • Cookies and similar technologies used to provide essential site functions. We do not use analytics or marketing cookies on this site as of the date below. Legal basis: Art. 6(1)(f) GDPR (legitimate interests) for strictly necessary cookies; Art. 6(1)(a) GDPR (consent) if non‑essential cookies are introduced in the future.

3. Processors and recipients

We engage service providers who process data on our behalf (processors) to host and operate this website and to handle contact form submissions. These providers are contractually bound in accordance with Art. 28 GDPR.

If you use our contact form, your data is transmitted to our form service provider Web3Forms (web3forms.com) for delivery to us. We only share the information necessary to provide the service.

4. Third-country transfers

When loading external resources, such as Google Fonts, your browser may connect to servers outside the European Economic Area. Where such transfers occur, we rely on appropriate safeguards under Art. 46 GDPR (e.g., standard contractual clauses) or recognized adequacy decisions, as applicable.

5. Retention

We retain personal data only for as long as necessary to fulfill the respective purpose or as required by statutory retention periods. Server log data is kept for a short period to ensure security and to investigate incidents, and is then deleted or anonymized.

6. Your rights

Under the GDPR, you have the following rights, subject to legal conditions:

  • Right of access (Art. 15 GDPR)
  • Right to rectification (Art. 16 GDPR)
  • Right to erasure (Art. 17 GDPR)
  • Right to restriction of processing (Art. 18 GDPR)
  • Right to data portability (Art. 20 GDPR)
  • Right to object (Art. 21 GDPR), including to processing based on legitimate interests
  • Right to withdraw consent at any time (Art. 7(3) GDPR) with effect for the future
  • Right to lodge a complaint with a supervisory authority (Art. 77 GDPR)

7. Cookies and browser settings

You can configure your browser to block or delete cookies. Essential cookies necessary for the operation and security of the site may be required for proper functionality. If we introduce non‑essential cookies in the future, we will request your prior consent.

8. Children’s data

This website is not directed at children. We do not knowingly collect personal data from children.

9. Updates to this policy

We may revise this Privacy Policy from time to time to reflect legal, technical or business developments. Last updated: 13 November 2025.