This Notice provides information about how Artemis, as a credit bureau, uses and shares personal data (also called “credit bureau data”) about physical entities that is part of their credit activity. It covers the following topics:

  1. Who we are and how we can be contacted
  2. What we use personal data for
  3. What kinds of personal data we use, and where we get it from
  4. What is the legal ground for handling personal data
  5. Who we share the personal data with
  6. Where the personal data is stored and sent
  7. How long the personal data is kept for
  8. Whether the personal data is used to make decisions about individuals or profiling
  9. Your rights in relation to the personal data we hold about you
  10. 10. Who you can complain to if you are unhappy about the use of your personal data
1. WHO WE ARE AND HOW WE CAN BE CONTACTED

We are Artemis Credit Bureau Ltd, a limited company registered in Cyprus under registration number ΗΕ 240932 having its registered office at 77, Strovolos Avenue, Office 501, 5th floor, 2018 Strovolos, Nicosia.

You can contact us about issues relating to personal data, including the contents of this notice, by any of the following methods:

Post: 77, Strovolos Avenue, Office 501, 5th floor, 2018 Strovolos, Nicosia

Email: [email protected]

Telephone: +357 22 454777

2. WHAT WE USE PERSONAL DATA FOR

This section explains the purpose for which we process personal data as a credit bureau. More details about the types of personal data that we use for these purposes can be found in section 3 below.

Credit Reporting and creditworthiness assessment

Artemis uses the data it gathers to provide credit reporting services to the banks. Banks use credit reporting services for the assessment of your creditworthiness as their customer, or potential customer or as a connected person for the more effective management of credit and other related risks.

These assessments help promoting responsible lending, preventing people and businesses from getting into greater debt levels than they can afford, and reducing the amount of unrecoverable debt and insolvencies.

3. WHAT KIND OF PERSONAL DATA WE USE, AND WHERE WE GET IT FROM

We obtain and use information from various different sources. These are summarised in the following table.

1EN table privacy.png

4. WHAT IS THE LEGAL GROUND FOR HANDLING PERSONAL DATA

Compliance with a legal obligation

The processing of personal data is necessary for the compliance of Artemis with a legal obligation arising from the Business of the Credit Institutions Law (Ν.66 (Ι)/97) and the implementation of the Central Bank Cyprus’ Directive titled “Τhe Operation of a System or a Mechanism for the Exchange, Collection and Provision of data Directive of 2015” (Directive).

The purpose of the Directive is the assessment by the banks of the creditworthiness of their customers, their potential customers, and their connected persons for the more effective management of credit and other related risks.

5. WHO WE SHARE THE PERSONAL DATA WITH

Bank
We share the personal data with all the banks that operate in Cyprus for the assessment of the creditworthiness of their customers, their potential customers, and their connected persons for the more effective management of credit and other related risks.

Central Bank of Cyprus
We share data with the Central Bank of Cyprus for the exercise of its powers under the Law and the Central Bank of Cyprus Law.

Processor
We use an IT service provider to perform data processing tasks on our own behalf.

Individuals
Individuals are entitled to obtain copies of their personal data that we hold in our Database. You can find more information in Section 9 below.

6. WHERE THE PERSONAL DATA IS STORED AND SENT

We are based in Cyprus and our database is located only in Cyprus. We do not send any information outside Cyprus.

7. HOW LONG THE PERSONAL DATA IS KEPT FOR

Data received by the banks are retained in the database as follows:

  • Demographics:
    For as long as there is information about the person concerning credit facilities, Legal Actions/ Court Decisions, Central Information Registry data and bankruptcy data.
  • Credit Faclities:
    Τα Δεδομένα για Πτωχεύσεις διατηρούνται στο Αρχείο σύμφωνα με κανονισμούς /οδηγίες του Τμήματος Φερεγγυότητάς.
  • Legal Actions/ Court Decisions
    For as long as there is an outstanding debt for the respective legal action.

Data received by the Management Committee of Central Information Registry (CIR)

Information about the issuers of Dishonoured Cheques is deleted from Artemis Database according to the Rules / Procedures set up by the Management Committee of Central Information Registry (CIR).

Data received by the Registrar of Companies and Official Receiver

Information about Bankruptcies / Dissolutions and applications of Bankruptcies / Dissolutions is kept on the Database according to the Regulations set up by the Registrar of Companies and Official Receiver.

Archived Data

We hold data in an archived form for up to ten (10) years, for investigation and enquiry purposes and as appropriate for our defence in legal claims.

8. WHETHER THE PERSONAL DATA IS USED TO MAKE DECISIONS ABOUT INDIVIDUALS OR PROFILING

We do not use automated decision-making or profiling in relation to your personal data.

9. YOUR RIGHTS IN RELATION TO THE PERSONAL DATA WE HOLD ABOUT YOU

Right of access
You can request us to provide you with a copy of your personal data we hold in our Database

Right of correction
You can request a correction for any incomplete, inaccurate or out of date information we hold about you.

Right of Restriction of Processing
You can request us to restrict the processing of your data where you have submitted an application for correction of data.

Right of erasure
The Right to erasure is not applicable to Artemis Database because the processing is necessary for compliance with a legal obligation.

Right of portability
The Right to data portability is not applicable to Artemis Database because the processing is necessary for compliance with a legal obligation.

Right to object
The Right to object is not applicable to Artemis Database because the processing is necessary for compliance with a legal obligation.

To exercise any of your rights, please visit or contact our Customer Service Office.

Our Customer Service Office is located at:
77 Strovolos Avenue, Office 501, 2018 Strovolos, Nicosia,Cyprus.
Tel.: +357 22 454777
Fax: +357 22 420135

10. WHO YOU CAN COMPLAIN TO IF YOU ARE UNHAPPY ABOUT YOUR PERSONAL DATA

We try to ensure that we deliver the best levels of customer service but if you are not satisfied with the quality of our servicing, you may contact us so that we can investigate your concerns. Please contact us using these details:

Post: 77, Strovolos Avenue, Office 501, 5th floor, 2018 Strovolos, Nicosia
Email: [email protected]
Telephone: +357 22 454777

You can also contact our Data Protection Officer at [email protected]

You also have the right to lodge a complaint to the Commissioner for the Protection of Personal Data, as the Cyprus supervisory authority.