We respect your privacy and process personal data in accordance with the EU General Data Protection Regulation (GDPR) and Cypriot data protection law.
1) What data we collect
Controller: Falconeye Advisors Ltd (“Falconeye”, “we”, “us”)
Address: 2Z Christodoulou Sozou, Eiffel Tower, Office 202, 1096 Nicosia, Cyprus
Email: [email protected]
- Identification & contact: name, work email, phone, company, job title/role.
- Professional data: industry/sector, seniority, interest areas.
- Website & device data: IP address, device/browser, pages viewed, timestamps, referrer URLs, cookie identifiers (see Cookies).
- Communications: messages you send via contact forms, email, or scheduling tools.
- Client data (if you engage us): billing details, engagement records, documents you provide.
- Recruitment (if you apply): CV, cover letter, notes from interviews.
We do not intentionally collect special category data (e.g., health, religion). Please do not include such information in forms or emails.
2) How we collect it
- Directly from you (forms, email, phone, meetings, event sign-ups).
- Automatically via our website and cookies/analytics.
- From service providers that help us operate the site (e.g., analytics, hosting, scheduling).
3) Why we process your data (purposes) & legal bases (GDPR Art. 6)
- Provide and operate the website; maintain security and prevent misuse — Legitimate interests (Art. 6(1)(f)).
- Respond to enquiries and provide information you request — Legitimate interests; where you request pre-contract information — Contract (Art. 6(1)(b)).
- Marketing communications (B2B updates, insights, invitations) — Legitimate interests; where required, your consent (Art. 6(1)(a)), which you can withdraw at any time.
- Client onboarding and delivery of services — Contract (Art. 6(1)(b)).
- Compliance, accounting, record-keeping — Legal obligation (Art. 6(1)(c)).
4) Who we share data with (recipients)
We use vetted service providers (processors) for hosting/IT, email and collaboration tools, CRM/marketing, analytics, scheduling (e.g., booking calls), payments, and secure document storage. We require appropriate confidentiality and security safeguards. We do not sell your data.
5) International transfers
If any provider stores or accesses data outside the EEA, we use lawful transfer mechanisms such as the EU Standard Contractual Clauses and, where applicable, adequacy decisions. You may contact us for details of specific safeguards.
6) Retention
We keep data only as long as needed for the purposes above, then delete or anonymise it.
Typical periods:
- Website analytics & logs: up to 12 months.
- Enquiries (non-clients): up to 12 months from last contact.
- Marketing contacts: until you unsubscribe; routine review at 24 months of inactivity.
- Client and billing records: engagement + up to 7 years for legal/accounting obligations.
- Recruitment: up to 12 months (unless you consent to a longer talent-pool retention).
7) Your rights
You have the right to access, rectify, erase, restrict processing, object (including to direct marketing), and data portability. Where we rely on consent, you may withdraw it at any time.
To exercise rights, email [email protected]. We will respond within GDPR timeframes.
You also have the right to lodge a complaint with the Office of the Commissioner for Personal Data Protection (Cyprus). We’d appreciate the chance to resolve your concerns first—please contact us.
8) Cookies & similar technologies
We use cookies and similar technologies to run the site, understand usage, and improve content. See our Cookie Policy for details on how we use cookies.
9) Security
We implement appropriate technical and organisational measures (access controls, encryption in transit, least-privilege access, backups, staff awareness) to protect personal data.
10) Third-party links
Our site may link to third-party sites. Their privacy practices apply when you leave our site.
11) Updates to this notice
We may update this notice from time to time. This Privacy Notice has last been updated on 16/09/2025.