Effective Date: 01/01/2025

Last Updated: 18/11/2025

WineriesofCyprus.com (“we,” “us,” “our,” or the “Site”) is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you use our website and services.

This Privacy Policy complies with the General Data Protection Regulation (GDPR) and Cyprus data protection laws. By using our Site, you consent to the practices described in this policy.

1. Information We Collect

We collect different types of information depending on how you interact with our Site.

1.1 Information You Provide Directly

Winery Registration and Listings

  • Business name and contact information
  • Physical address and location
  • Phone number and email address
  • Business description and services offered
  • Photos and promotional materials
  • Opening hours and pricing information
  • Website and social media links
  • Authorized representative information

User Accounts (for Reviews)

  • Name or username
  • Email address
  • Password (encrypted)
  • Profile information (optional)

Newsletter Subscriptions

  • Email address
  • Subscription preferences
  • Name (optional)

Reviews and User-Generated Content

  • Review text, ratings, and comments
  • Photos you upload
  • Date and time of submission
  • Account information associated with the content

Contact Forms and Communications

  • Name and email address
  • Message content
  • Any other information you choose to provide

1.2 Information Collected Automatically

Usage Data

  • IP address
  • Browser type and version
  • Device type and operating system
  • Pages visited and time spent
  • Referring website
  • Date and time of access
  • Clickstream data

Cookies and Tracking Technologies We use cookies, web beacons, and similar technologies to collect information about your browsing behavior. See Section 6 for details.

Analytics Data We use Google Analytics and similar tools to understand how users interact with our Site, including:

  • Page views and session duration
  • Traffic sources
  • User demographics and interests (aggregated)
  • Conversion and engagement metrics

1.3 Information from Third Parties

Social Media If you connect your social media accounts or share our content, we may receive information from those platforms in accordance with their privacy policies.

Public Sources We may collect publicly available information about wineries from official business registries, tourism websites, and other legitimate sources to create and verify listings.

2. How We Use Your Information

We use the information we collect for the following purposes:

2.1 Providing and Improving Our Services

  • Operating and maintaining the directory
  • Creating and managing winery listings
  • Processing and publishing reviews
  • Responding to inquiries and support requests
  • Improving user experience and functionality
  • Conducting research and analytics

2.2 Communication

  • Sending newsletter and marketing communications (with your consent)
  • Sending account-related notifications
  • Responding to your questions and requests
  • Notifying you of changes to our Terms or Privacy Policy
  • Sending important service announcements

2.3 Verification and Security

  • Verifying winery listings and user accounts
  • Preventing fraud and abuse
  • Detecting and preventing security threats
  • Enforcing our Terms and Conditions
  • Protecting our legal rights

2.4 Marketing and Promotion

  • Promoting wineries and wine tourism in Cyprus
  • Creating and sharing content about Cyprus wine regions
  • Analyzing market trends and user preferences
  • Tailoring content to user interests

2.5 Legal Compliance

  • Complying with legal obligations
  • Responding to legal requests and preventing legal claims
  • Protecting the rights, property, and safety of users and the public

3. Legal Basis for Processing (GDPR)

Under GDPR, we process your personal data based on the following legal grounds:

Consent – When you provide explicit consent (e.g., newsletter subscription, cookie consent)

Contract – When processing is necessary to provide services you’ve requested (e.g., creating a winery listing)

Legitimate Interests – When we have legitimate business interests that don’t override your rights (e.g., improving our services, preventing fraud, marketing)

Legal Obligation – When we must process data to comply with Cyprus or EU laws

You have the right to withdraw consent or object to processing based on legitimate interests at any time.

4. How We Share Your Information

We do not sell your personal data to third parties. We may share your information in the following circumstances:

4.1 Public Information

  • Winery listings are publicly visible on our Site and may appear in search engines
  • Reviews and user-generated content are publicly displayed with your username
  • Newsletter archives may be publicly accessible on our website

4.2 Service Providers

We share information with trusted third-party service providers who help us operate our Site:

  • Web hosting providers (server and infrastructure)
  • Analytics services (Google Analytics)
  • Email service providers (newsletter delivery)
  • Content delivery networks (CDN)
  • Security and fraud prevention services

These providers are contractually obligated to protect your data and use it only for the purposes we specify.

4.3 Business Transfers

If WineriesofCyprus.com is involved in a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change and give you options regarding your data.

4.4 Legal Requirements

We may disclose your information if required by law or in response to:

  • Valid legal processes (court orders, subpoenas)
  • Requests from government authorities
  • Protection of our legal rights
  • Prevention of fraud or illegal activity
  • Protection of user safety and public interest

4.5 With Your Consent

We may share information with third parties when you give us explicit permission to do so.

5. International Data Transfers

Our Site is hosted and operated in Cyprus, which is part of the European Union. If you access our Site from outside the EU:

  • Your data may be transferred to and processed in Cyprus/EU
  • The EU provides adequate data protection under GDPR standards
  • We implement appropriate safeguards for data protection

If we transfer data outside the EU in the future, we will ensure adequate protection through:

  • EU Standard Contractual Clauses
  • Adequacy decisions by the EU Commission
  • Your explicit consent

6. Cookies and Tracking Technologies

6.1 What Are Cookies?

Cookies are small text files stored on your device when you visit websites. They help websites remember your preferences and understand how you use the site.

6.2 Types of Cookies We Use

Essential Cookies (Always Active)

  • Required for basic site functionality
  • Session management and security
  • Cannot be disabled without affecting site operation

Analytics Cookies (With Your Consent)

  • Google Analytics and similar tools
  • Track page views, session duration, and user behavior
  • Help us understand and improve user experience
  • Data is anonymized and aggregated

Functionality Cookies (With Your Consent)

  • Remember your preferences and settings
  • Enhance user experience
  • Store language preferences

Marketing Cookies (With Your Consent)

  • Track effectiveness of marketing campaigns
  • Personalize content based on interests
  • Measure newsletter engagement

6.3 Cookie Management

You can control cookies through:

  • Cookie Consent Banner: Accept or reject non-essential cookies when you first visit
  • Browser Settings: Configure your browser to block or delete cookies
  • Opt-Out Tools: Use Google Analytics opt-out tools

Note: Disabling essential cookies may affect site functionality.

6.4 Third-Party Cookies

Third parties (like Google Analytics) may set cookies on our Site. We don’t control these cookies. Review their privacy policies:

7. Your Rights Under GDPR

As a user in the EU/Cyprus, you have the following rights regarding your personal data:

7.1 Right to Access

You can request a copy of the personal data we hold about you.

7.2 Right to Rectification

You can request correction of inaccurate or incomplete data.

7.3 Right to Erasure (“Right to be Forgotten”)

You can request deletion of your personal data in certain circumstances:

  • Data is no longer necessary for the purpose collected
  • You withdraw consent
  • You object to processing
  • Data was processed unlawfully

Note: We may retain certain information if required by law or for legitimate purposes.

7.4 Right to Restrict Processing

You can request that we limit how we use your data.

7.5 Right to Data Portability

You can request your data in a structured, machine-readable format and transfer it to another service.

7.6 Right to Object

You can object to processing based on legitimate interests or for direct marketing purposes.

7.7 Rights Related to Automated Decision-Making

We don’t currently use automated decision-making or profiling. If this changes, you’ll have the right to human intervention.

7.8 Right to Withdraw Consent

You can withdraw consent at any time for processing based on consent (e.g., newsletter subscription).

7.9 Right to Lodge a Complaint

You can file a complaint with the Cyprus Commissioner for Personal Data Protection or your local data protection authority.

To Exercise Your Rights: Contact us at admin@wineriesofcyprus.com with your request. We’ll respond within 30 days.

8. Data Retention

We retain your personal data only as long as necessary for the purposes described in this Privacy Policy:

Winery Listings: Retained as long as the listing is active; archived after closure or removal request

User Accounts: Retained until account deletion is requested; may retain certain data for legal compliance

Reviews: Retained indefinitely as part of our public directory; can be deleted upon request (subject to verification)

Newsletter Subscriptions: Retained until you unsubscribe

Usage and Analytics Data: Typically retained for 26 months (Google Analytics default)

Communications: Retained as long as necessary to respond and for record-keeping

After retention periods expire, we securely delete or anonymize your data.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

Technical Measures

  • SSL/TLS encryption for data transmission
  • Secure password storage (hashed and encrypted)
  • Regular security updates and patches
  • Firewalls and intrusion detection systems
  • Secure backup procedures

Organizational Measures

  • Access controls and authentication
  • Employee training on data protection
  • Confidentiality agreements
  • Regular security audits
  • Incident response procedures

Limitations While we take security seriously, no system is 100% secure. We cannot guarantee absolute security of your data. You’re responsible for maintaining the confidentiality of your account credentials.

10. Children’s Privacy

Our Site is not directed to children under 16. We do not knowingly collect personal data from children. If you’re a parent and believe your child has provided us with personal data, please contact us, and we’ll delete it promptly.

11. Third-Party Websites

Our Site contains links to winery websites, social media, and other third-party sites. This Privacy Policy doesn’t apply to those sites. We’re not responsible for their privacy practices. Review their privacy policies before providing personal information.

12. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. Changes are effective immediately upon posting with an updated “Last Updated” date.

For significant changes, we’ll provide prominent notice on our Site or via email (for registered users).

We encourage you to review this Privacy Policy regularly to stay informed about how we protect your data.

13. Contact Information and Data Controller

Data Controller:
WineriesofCyprus.com
Limassol, Cyprus
Email: admin@wineriesofcyprus.com

For Privacy-Related Inquiries:

Cyprus Commissioner for Personal Data Protection: If you’re not satisfied with our response, you can contact:
Office of the Commissioner for Personal Data Protection
Website: http://www.dataprotection.gov.cy/

14. EU Representative

As we operate within Cyprus (EU), we serve as our own representative for GDPR purposes. EU residents can contact us directly at the address above.

15. Specific Information for Cyprus Residents

Under Cyprus data protection laws and GDPR, you have additional rights and protections. All sections of this Privacy Policy apply to Cyprus residents, with particular emphasis on:

  • Your right to access and control your personal data
  • Transparent processing of your information
  • Security of your data
  • Your right to file complaints with Cyprus authorities

By using WineriesofCyprus.com, you acknowledge that you have read and understood this Privacy Policy and consent to the collection and use of your information as described.