This Privacy Policy explains how PHYSTECH TECHNOLOGIES LAB LTD ("Phystech", "we", "us", or "our") collects, uses, stores, shares and protects personal data when you visit our website, contact us, submit an inquiry, communicate with us, or otherwise interact with our business. This Privacy Policy applies to the website available at phystechnologies.com and to related communications, business development, partnership, research collaboration and technical inquiry activities connected with our website. We operate primarily as a B2B deep-tech research and engineering company. Our website is intended mainly for business users, potential partners, research organisations, industrial companies, investors, suppliers, media representatives and other professional visitors.
For the purposes of applicable data protection laws, including the EU General Data Protection Regulation ("GDPR"), the controller of your personal data is: Registered in: Republic of Cyprus Registered address: Kritis, 32, PAPACHRISTOPHOROU BUILDING, Floor 1, Flat/Office 101, 3087, Limassol, Cyprus Email: info@phystechnologies.com We have not appointed a Data Protection Officer. For any privacy-related questions, please contact us at the email address above.
We may collect the following categories of personal data.
When you contact us through our website, email or other communication channels, we may collect: name; email address; company or organisation name; job title or professional role; LinkedIn profile or other professional profile link; country or location; inquiry text and message content; information about your business, project, technical requirements or collaboration proposal; and any other information you choose to provide to us. Our current contact form may request an email address, name, LinkedIn profile and inquiry details.
If we communicate with you in a business context, we may process email correspondence, meeting notes, call records or summaries, relationship history, information about proposed or existing collaborations, and commercial, technical or partnership context shared by you or your organisation.
When you visit our website, we may automatically collect certain technical information, such as IP address, browser type and version, device type, operating system, pages visited, referring website, date and time of visit, approximate location derived from IP address, website interaction data, cookie identifiers and similar tracking technologies.
If we use analytics, performance, advertising or similar tools, we may collect or receive aggregated or individual-level data about how visitors use our website and interact with our content. This may include data processed through tools such as website analytics platforms, tag managers, embedded content providers, security tools, spam-prevention tools, hosting providers or similar technologies.
Our website is not currently designed to collect CVs or job applications through a dedicated careers portal. However, if you voluntarily send us your CV, portfolio, professional profile or employment- related information, we may process that information to assess possible cooperation, employment or contractor opportunities.
We may use personal data to respond to inquiries submitted through the website; communicate with potential partners, clients, suppliers, investors, researchers and other professional contacts; assess business, technical, research or collaboration opportunities; organise meetings, calls and follow-up communications; provide information about our technologies, research areas, products, services or company; maintain business records and relationship history; improve our website, content, communication and user experience; monitor website performance, security and functionality; prevent spam, fraud, misuse or unauthorised access; comply with legal, tax, accounting, regulatory or corporate obligations; establish, exercise or defend legal claims; evaluate potential candidates or collaborators, where information is voluntarily provided; and send relevant business updates or communications, where permitted by law. We do not intentionally collect personal data from individuals in a consumer context for consumer- facing services.
Where GDPR applies, we rely on one or more of the following legal bases: legitimate interests, consent, contract or pre-contractual steps, legal obligation, and legal claims.
We may process personal data where it is necessary for our legitimate business interests, provided that such interests are not overridden by your rights and freedoms. This may include responding to B2B inquiries, developing business and research partnerships, maintaining professional relationships, improving website functionality and security, managing commercial communications, and protecting our legal and business interests.
We may rely on your consent where required, including for certain cookies, analytics tools, marketing communications or optional data processing activities. Where processing is based on consent, you may withdraw your consent at any time.
We may process personal data where necessary to take steps before entering into a contract or to perform a contract with you or your organisation.
We may process personal data where necessary to comply with applicable legal, regulatory, tax, accounting or corporate obligations.
We may process personal data where necessary to establish, exercise or defend legal claims.
Our website may use cookies and similar technologies to operate the website, improve performance, understand website usage, enhance security and support future analytics or marketing functions. Cookies may include strictly necessary cookies, preference cookies, analytics cookies, performance cookies, security cookies, third-party cookies and embedded content cookies. Where required by law, non-essential cookies will be used only with your consent. More information is provided in our separate Cookie Policy.
We may share personal data with selected third parties where necessary for the purposes described in this Privacy Policy. These may include website hosting providers, cloud infrastructure providers, email and communication service providers, analytics and website performance providers, CRM or business management tools, cybersecurity, anti-spam and fraud-prevention providers, professional advisers, research, technical, commercial or industrial partners, and public authorities, regulators, courts or law enforcement bodies where legally required. We do not sell personal data.
Because our website and business communications may involve international service providers, partners or infrastructure, your personal data may be processed outside the European Economic Area. Where we transfer personal data outside the EEA, we will seek to apply appropriate safeguards where required by applicable law. These safeguards may include adequacy decisions, Standard Contractual Clauses, contractual protections, technical measures or other lawful transfer mechanisms.
We retain personal data only for as long as reasonably necessary for the purposes for which it was collected, unless a longer retention period is required or permitted by law. In general, website inquiry data may be retained for as long as needed to handle the inquiry and maintain relevant business records; business correspondence may be retained for relationship management, legal, accounting or commercial purposes; technical logs may be retained for a limited period for security and operational purposes; analytics data may be retained according to the settings of the relevant analytics provider; and recruitment-related information voluntarily sent to us may be retained for a reasonable period to assess current or future opportunities. When personal data is no longer required, we will delete, anonymise or securely archive it, as appropriate.
We use reasonable technical and organisational measures designed to protect personal data against accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access. These measures may include access controls, secure hosting, data minimisation, internal confidentiality practices, technical safeguards and service provider due diligence. However, no website, email system or internet transmission is completely secure. You should avoid sending highly confidential, classified, export-controlled or commercially sensitive information through the website contact form unless appropriate confidentiality arrangements are in place.
Subject to applicable law and certain limitations, you may have the right to access your personal data; correct inaccurate or incomplete personal data; request deletion of your personal data; restrict processing; object to processing based on legitimate interests; data portability; withdraw consent, where processing is based on consent; and lodge a complaint with a data protection authority. To exercise your rights, please contact us at info@phystechnologies.com. We may need to verify your identity before responding to your request.
If you are located in the European Union or the European Economic Area and believe that our processing of your personal data infringes applicable data protection laws, you may contact the competent supervisory authority. For Cyprus, the supervisory authority is the Office of the Commissioner for Personal Data Protection, Republic of Cyprus. You may also contact the supervisory authority in your country of residence, place of work or place of the alleged infringement, where applicable.
Our website may contain links to third-party websites, media articles, partner websites, professional networks or embedded external services. We are not responsible for the privacy practices, content or security of third-party websites or services. You should review the privacy policies of those third parties before providing them with personal data.
Our website is intended for professional and business users. We do not knowingly collect personal data from children. If you believe that a child has provided us with personal data, please contact us and we will take appropriate steps to delete such information where required.
We do not use personal data submitted through the website for automated decision-making that produces legal or similarly significant effects on individuals.
We may update this Privacy Policy from time to time to reflect changes in our website, business activities, legal requirements or data processing practices. The updated version will be published on this website with a revised "Last updated" date.
For any questions about this Privacy Policy or how we process personal data, please contact us at: Registered address: Kritis, 32, PAPACHRISTOPHOROU BUILDING, Floor 1, Flat/Office 101, 3087, Limassol, Cyprus Email: info@phystechnologies.com Website: phystechnologies.com