Privacy Policy

Last Updated: September 30, 2025

InsightCore is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you visit our website or engage with our business intelligence services. We comply with the General Data Protection Regulation (GDPR) and applicable data protection laws in Cyprus and the European Union.

1. Information We Collect

1.1 Information You Provide Directly

When you interact with our website or services, you may provide us with personal information, including:

• Contact information such as name, email address, phone number, and company name when submitting contact forms or consultation requests
• Professional information related to your business intelligence needs and organizational structure
• Communication content when you correspond with us via email or other channels
• Service preferences and requirements when discussing potential projects

1.2 Information Collected Automatically

When you visit our website, certain information is collected automatically through cookies and similar technologies:

• Device information including IP address, browser type, operating system, and device identifiers
• Website usage data such as pages visited, time spent on pages, links clicked, and navigation paths
• Referral source information indicating how you arrived at our website
• Technical data related to your connection and access patterns

1.3 Information from Third Parties

We may receive information about you from analytics providers, advertising networks, and publicly available sources when you interact with our online presence across different platforms.

2. How We Use Your Information

We process your personal data for the following purposes, based on legitimate business interests and your consent where applicable:

3. Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Consent: When you provide explicit consent for specific processing activities, such as marketing communications or optional cookie usage.
• Contractual Necessity: When processing is necessary to fulfill our contractual obligations or take steps at your request before entering into a contract.
• Legitimate Interests: When we have legitimate business interests in processing your data, such as improving our services, conducting business analytics, or maintaining security.
• Legal Obligation: When processing is required to comply with applicable laws, regulations, or legal proceedings.

4. Data Sharing and Disclosure

We do not sell your personal data. We may share your information with the following categories of recipients:

Service Providers and Partners

We work with trusted third-party service providers who assist us in operating our website, conducting business operations, and delivering services. These providers include web hosting services, analytics platforms, email communication tools, and IT security services. All service providers are contractually obligated to maintain data confidentiality and security.

Professional Advisors

We may share information with legal advisors, accountants, auditors, and other professional service providers who assist us in managing our business operations.

Legal and Regulatory Requirements

We may disclose personal information when required by law, regulatory authorities, court orders, or to protect our legal rights, prevent fraud, or ensure the safety of individuals.

5. Data Security Measures

We implement comprehensive technical and organizational security measures to protect your personal data:

• Encryption: Data transmission is secured using industry-standard SSL/TLS encryption protocols
• Access Controls: Strict access limitations ensure only authorized personnel can access personal data on a need-to-know basis
• Security Monitoring: Continuous monitoring and regular security assessments to identify and address potential vulnerabilities
• Data Minimization: We collect only the information necessary for specified purposes and retain it no longer than required
• Incident Response: Established procedures for detecting, reporting, and responding to data security incidents

6. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected:

• Contact form submissions and inquiries are retained for up to 3 years to maintain communication records
• Client project data is retained for the duration of the business relationship plus 7 years for legal and tax purposes
• Website analytics data is typically retained for 26 months in accordance with standard practices
• Marketing communication preferences are retained until you withdraw consent or request deletion

After the retention period expires, we securely delete or anonymize your personal data unless longer retention is required by law.

Your Rights and Opt-Out Instructions

You are not required to provide any personal information when using this website. If you prefer not to share your data, you may:

• Avoid filling out contact forms, account registrations, or any data-submitting features
• Disable cookies through your browser settings (see our Cookie Policy for more details)
• Contact us directly to request the deletion of any previously shared personal data

We respect your privacy choices. If you would like us to delete your data, please reach out to us at the contact details provided below. We will process your request promptly and in accordance with applicable data protection laws.

8. International Data Transfers

Our primary operations are based in Cyprus within the European Union. When we transfer personal data outside the EU/EEA, we ensure appropriate safeguards are in place, including:

• Standard contractual clauses approved by the European Commission
• Adequacy decisions recognizing equivalent data protection standards
• Binding corporate rules for intra-group transfers
• Explicit consent where applicable and appropriate

9. Children's Privacy

Our services are intended for business professionals and organizations. We do not knowingly collect personal information from individuals under 18 years of age. If we become aware that we have collected data from a minor without proper consent, we will take steps to delete such information promptly.

10. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices, technology, legal requirements, or other operational considerations. The "Last Updated" date at the top indicates the most recent revision. Material changes will be communicated through prominent notices on our website or direct communication where appropriate.

11. Contact Information

If you have questions about this Privacy Policy, wish to exercise your data protection rights, or have concerns about how we handle your personal information, please contact us:

You also have the right to lodge a complaint with the Cyprus Commissioner for Personal Data Protection or your local data protection authority if you believe your rights have been violated.