Welcome to the official Privacy Policy of Oro Corporate Services Ltd, a corporate and fiduciary services provider based in Cyprus. This document explains how we collect, use, share, and protect your personal information when you visit or interact with our website, https://orocorporateservices.com(“Website”).

By using this Website, you agree to the terms outlined in this Privacy Policy, including the Terms & Conditions, Cookie Policy, Legal Disclaimer, and our Data Processing Practices, all incorporated below.

1. Who We Are

Company name: Oro Corporate Services Ltd
Address: Stadiou 15, Nicosia, 1060, Cyprus
Telephone: +357 22 751 525
Email: info@orocorporateservices.com
Website: https://orocorporateservices.com

We provide a full range of corporate, fiduciary, and immigration services to local and international clients. This website is an informational platform built using WordPress and maintained by our official web development agency, LOOP Digital Marketing LTD, who may also access your data for maintenance and service optimization.

2. What This Policy Covers

This Privacy Policy governs all personal data collected through:

• Website forms (contact, inquiry, newsletter, etc.)

• Cookies and trackers

• Email communications

• Analytics and logs

• Third-party plugins and services integrated on our website

It applies to all visitors, users, potential clients, current clients, and service partners.

3. What Data We Collect

We may collect and process the following categories of data:

a) Information You Provide Voluntarily

• Name, email, phone, address

• Company name, registration info, tax ID

• Inquiry details and uploaded documents

• Newsletter subscriptions and form data

b) Automatically Collected Data

• IP address, browser type, OS, and device type

• Pages visited, time spent, referring sites

• Cookies, analytics tracking, click events

• Server logs and error messages

c) Third-Party Services

Our website may include third-party plugins and services (e.g. analytics, form processors, chat tools), which may collect data on our behalf. We only work with GDPR-compliant vendors.

4. Legal Basis for Processing

In accordance with the General Data Protection Regulation (GDPR), we process your personal data under the following legal bases:

• Consent: when you voluntarily provide your data (e.g. form submission)

• Contract: to provide services you request

• Legal obligation: for tax, audit, or regulatory compliance

• Legitimate interest: for security, analytics, or improving our services

5. How We Use Your Information

We use your information to:

• Respond to contact or inquiry forms

• Deliver services you request

• Manage business communications

• Comply with legal requirements

• Improve website usability and security

• Analyze site performance (via analytics)

We do not sell or rent your personal data. Data is only shared with processors under contract for service provision, hosting, or legal compliance.

6. Use of Cookies (Cookie Policy)

This website uses cookies to ensure functionality and improve user experience. Cookies may be:

• Strictly necessary – required for basic operation

• Performance cookies – collect anonymous usage stats

• Functionality cookies – remember your settings

• Marketing cookies – show relevant content (if used)

You can manage or block cookies via your browser or by using the cookie consent banner that appears on your first visit.

We use tools like Google Analytics, which may place cookies on your device and track anonymized usage data.

7. Third-Party Services & Plugins

Our WordPress-based website may use third-party plugins, which could collect or process limited user data. These may include:

• Contact form handlers

• Analytics (Google Analytics, MonsterInsights)

• Cookie consent banners (e.g., CookieYes, Complianz)

• Firewall/security tools (e.g., Wordfence)

• SEO or performance tools

• Backup systems (e.g., UpdraftPlus)

• Email tools (e.g., WP Mail SMTP)

Where applicable, we ensure these providers are GDPR-compliant, use data securely, and restrict access as needed.

8. Who Has Access to Your Data

The following parties may access your data:

• Oro Corporate Services Ltd staff and legal representatives

• LOOP Digital Marketing LTD (web development agency) for hosting, maintenance, or updates

• Third-party service providers (e.g. hosting company, cloud services, analytics)

• Regulatory or legal authorities if required by law

All third-party access is subject to strict contractual data protection agreements.

9. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes outlined in this policy, or as required by law. Examples:

• Contact form submissions: 3 years

• Business records: 6–7 years (for legal/tax compliance)

• Analytics: 26 months (Google default)

• Emails and communications: as long as your inquiry is active

After the retention period, your data is securely deleted or anonymized.

10. Security Measures

We use appropriate technical and organizational safeguards to protect your data, including:

• SSL encryption on all data transmissions

• Secure hosting and firewalls

• Strong password policies and access restrictions

• Regular software/plugin updates

• Limited access to backend by authorized personnel only

• Malware scanning and attack prevention tools

Although we do our best, no online platform is 100% secure. Users share data at their own risk.

11. Your Rights Under GDPR

As an individual within the EU/EEA, you have the right to:

• Access your personal data

• Rectify inaccurate or outdated information

• Erase data (“right to be forgotten”)

• Restrict processing in certain cases

• Object to processing based on legitimate interests

• Withdraw consent (e.g., for newsletters)

• Lodge a complaint with the Cyprus Data Protection Authority

To exercise your rights, contact us at: info@orocorporateservices.com

12. Children’s Privacy

This Website is not intended for individuals under the age of 16. We do not knowingly collect data from children. If you believe we’ve collected such data, please contact us immediately for removal.

13. International Data Transfers

Your data may be transferred or processed outside the EU if required (e.g., by cloud service providers). In such cases, we ensure proper safeguards such as:

• Use of EU-approved Standard Contractual Clauses (SCCs)

• Data minimization and encryption

• Processing only with GDPR-compliant vendors

14. Terms & Conditions (Summary)

By using this website, you also accept the following:

• You use the Website for lawful purposes only

• You do not engage in unauthorized access or misuse of information

• We are not responsible for external links or third-party content

• All intellectual property remains the property of Oro Corporate Services Ltd

• You are solely responsible for the accuracy of information you provide

Full Terms may be made available upon request.

15. Legal Disclaimer

All content on this Website is for informational purposes only and does not constitute legal, tax, or business advice. Oro Corporate Services Ltd disclaims liability for actions taken based on the content herein.

We strive for accuracy, but we do not guarantee that all information is up to date or complete. You are encouraged to seek independent advice before making decisions.

16. Data Processing Agreement (DPA) Notice

Where Oro Corporate Services Ltd acts as a Data Controller, we engage select processors under GDPR-compliant Data Processing Agreements, which ensure:

• Data is processed only on our instructions

• Confidentiality and security are maintained

• Subprocessors are approved and audited

• Personal data is not used for other purposes

• Data is deleted or returned at contract termination

This applies also to our development agency and cloud service providers.

17. Your Responsibilities

You are responsible for:

• Providing accurate and truthful information

• Keeping login credentials (if any) secure

• Understanding your data rights

• Using the Website in compliance with applicable law

18. Updates to this Policy

We may update this Privacy Policy periodically. Changes will be posted with an updated revision date. We recommend reviewing this page occasionally.

Your continued use of the Website constitutes acceptance of the updated terms.

19. Contact Us

If you have questions or concerns regarding this Privacy Policy or how we handle your data, please contact:

Oro Corporate Services Ltd
📍 Stadiou 15, Nicosia, Cyprus
📧 info@orocorporateservices.com

📞 +357 22 751 525

We aim to respond to data rights or privacy inquiries within 30 days, or sooner as required under GDPR.