Privacy Policy

How we collect, use, and protect your personal information

Last updated: 15 January 2026

Introduction

This Privacy Policy explains how cryptonexa Ltd ("we," "us," or "our") collects, uses, and protects your personal information when you visit our website cryptonexa.pro or use our business performance management guidance services. We are committed to protecting your privacy and ensuring transparency about our data practices.

Data Controller Information

The data controller for your personal information is:

  • Company: cryptonexa Ltd
  • Registration Number: HE951357
  • VAT Number: CY95736824X
  • Address: Gladstonos Street 11, 3014 Limassol, Cyprus
  • Email: privacy@cryptonexa.pro
  • Phone: +357 25271245

Data We Collect

We collect various types of personal information when you interact with our website and services. The data collection includes information you provide directly to us and information we gather automatically through your use of our website. This data we collect helps us provide better services and improve your experience with our business performance management guidance.

Information You Provide

  • Contact details (name, email address, phone number)
  • Company information and job title
  • Messages and inquiries sent through our contact forms
  • Information provided during consultations or service delivery
  • Newsletter subscription preferences

Information We Collect Automatically

  • IP address and location data
  • Browser type and version
  • Pages visited and time spent on our website
  • Referring websites and search terms
  • Device information and screen resolution

How We Use Your Information

We use of your data is based on legitimate business interests and your consent where required. Understanding how we use your information helps you make informed decisions about sharing your personal data with cryptonexa. We are committed to using your information responsibly and only for the purposes outlined below.

Primary Uses

  • Responding to your inquiries and providing requested information
  • Delivering our business performance management guidance services
  • Communicating about our services, updates, and relevant industry insights
  • Improving our website functionality and user experience
  • Complying with legal obligations and protecting our business interests

Marketing Communications

With your consent, we may send you marketing communications about our services, industry insights, and relevant updates. You can opt out of these communications at any time by clicking the unsubscribe link in our emails or contacting us directly.

Legal Basis for Processing

Under the General Data Protection Regulation (GDPR), we process your personal data based on the following legal grounds:

  • Consent: For marketing communications and non-essential cookies
  • Contract: To provide our services and fulfil our obligations to you
  • Legitimate Interests: For website analytics, security, and business development
  • Legal Obligation: To comply with applicable laws and regulations

Cookies and Tracking Technologies

We may use cookies and tracking technologies for analytics, advertising, and remarketing purposes, including Google Ads. These technologies help us measure campaign effectiveness, deliver relevant advertisements, and improve our services. You can manage your cookie preferences at any time through our cookie consent banner. For detailed information about our cookie usage, please refer to our Cookie Policy.

Data Sharing and Disclosure

We do not sell your personal information to third parties. We may share your data in the following circumstances:

  • With trusted service providers who assist in delivering our services
  • When required by law or to protect our legal rights
  • In connection with a business merger, acquisition, or asset sale
  • With your explicit consent for specific purposes

Third-Party Services

We use reputable third-party services that may process your data, including:

  • Google Analytics for website analytics
  • Google Ads for advertising and remarketing
  • Email service providers for communications
  • Cloud hosting providers for website infrastructure

Data Security

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. These measures include encryption, secure hosting, access controls, and regular security assessments. However, no method of transmission over the internet is completely secure, and we cannot guarantee absolute security.

Data Retention

We retain your personal data only for as long as necessary to fulfil the purposes outlined in this policy or as required by law. Generally, we keep contact information and communication records for up to 7 years after our last interaction, unless you request earlier deletion. Website analytics data is typically retained for 26 months, and marketing consent records are kept until you withdraw consent.

Your Rights

Under GDPR and applicable data protection laws, you have the following rights regarding your personal data:

  • Access: Request a copy of the personal data we hold about you
  • Rectification: Ask us to correct inaccurate or incomplete information
  • Erasure: Request deletion of your personal data in certain circumstances
  • Restriction: Ask us to limit the processing of your data
  • Portability: Receive your data in a structured, machine-readable format
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Withdraw consent for processing where applicable

International Data Transfers

As we operate within the European Union (Cyprus), your data is primarily processed within the EU/EEA. If we transfer data outside the EU/EEA, we ensure appropriate safeguards are in place, such as adequacy decisions, standard contractual clauses, or other approved transfer mechanisms.

Children's Privacy

Our services are not directed to children under 16 years of age. We do not knowingly collect personal information from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

Contact Information

If you have questions about this Privacy Policy, want to exercise your rights, or need to contact us regarding data protection matters, please reach out to us:

We will respond to your inquiries within one month of receipt, or sooner where possible.

Supervisory Authority

If you believe we have not handled your personal data appropriately, you have the right to lodge a complaint with the relevant supervisory authority. In Cyprus, this is the Office of the Commissioner for Personal Data Protection.

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website and updating the "last updated" date. We encourage you to review this policy periodically to stay informed about how we protect your information.