top of page




Effective Date: 26-03-2024


General Data Protection Regulation Policy


Nina Technologies Ltd. is located at:


Nina Technologies Ltd.
Franklin Roosevelt Avenue 38 Limassol 
3012 Limassil , Cyprus


1. Introduction


This General Data Protection Regulation (GDPR) policy outlines how Nina Technologies Ltd. collects, uses, and protects personal data in compliance with the GDPR regulations. The GDPR aims to protect the rights and privacy of individuals within the European Union (EU) and European Economic Area (EEA) concerning the processing of personal data.


2. Data Officer


Mr. Pampos Lymbouridis serves as the Data Officer at Nina Technologies Ltd. Pampos is responsible for overseeing the company's compliance with GDPR regulations, implementing data protection policies, and addressing any inquiries or concerns regarding personal data.


Contact Information:


  • Name: Pampos Lymbouridis

  • Email:

  • Phone: +357-25-319100


3. Data Collection


Nina Technologies Ltd. collects personal data only for specified, explicit, and legitimate purposes. Personal data is obtained through transparent means, and individuals are informed about the purpose of data collection. 


The types of personal data collected may include, but are not limited to:


  • Names

  • Company or Employer Information (e.g. name of company or employer)

  • Contact information (e.g., addresses, phone numbers, email addresses)

  • Financial information (e.g., credit card or payment information; tax and VAT information)




4. Data Processing


Personal data collected by Nina Technologies Ltd. is processed lawfully, fairly, and transparently. Data processing activities are conducted in accordance with GDPR principles. Personal data is processed only for specified and legitimate purposes and is not further processed in a manner that is incompatible with those purposes.


5. Data Security


Nina Technologies Ltd. implements appropriate technical and organizational measures to ensure the security of personal data. These measures are designed to protect against unauthorized or unlawful processing and against accidental loss, destruction, or damage of personal data.


6. Data Retention


Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected. Nina Technologies Ltd. periodically reviews its data retention practices to ensure compliance with GDPR requirements. When personal data is no longer needed, it is securely deleted or anonymized. In certain cases, we must comply with national accounting rules and must keep client transaction data for a period of 7 years after the transaction takes place. 


7. Data Subject Rights


Individuals have certain rights regarding their personal data under the GDPR. Nina Technologies Ltd.  respects these rights and provides mechanisms for individuals to exercise them, including:


  • The right to access personal data

  • The right to rectify inaccurate personal data

  • The right to erasure (‘right to be forgotten’)

  • The right to restrict processing

  • The right to data portability

  • The right to object to processing




8. Data Breach Response


In the event of a personal data breach, Nina Technologies Ltd. will promptly assess the breach and take appropriate action in accordance with GDPR requirements. This may include notifying affected individuals and relevant authorities as necessary.


9. Data Transfer


If personal data is transferred outside the EU or EEA, Nina Technologies Ltd. ensures that appropriate safeguards are in place to protect the data in accordance with GDPR requirements.


10. Compliance Monitoring and Review


Nina Technologies Ltd. regularly monitors its data processing activities to ensure compliance with GDPR regulations. This includes periodic review of this GDPR policy and associated procedures.


11. Contact Information


For inquiries or concerns regarding data protection or this GDPR policy, individuals may contact the Data Officer, Pampos Lymbouridis, using the contact information provided above.


12. Policy Updates


This GDPR policy may be updated from time to time to reflect changes in legal or regulatory requirements, technology, or business practices. Updated versions of the policy will be made available to relevant stakeholders.




Mr. Pampos Lympouridis                   Mr. Pampos Lympouridis

Managing Director                              Chief Data Protection Officer 

bottom of page