At Mariza Kaili Law Office in Nicosia, Cyprus, we provide trusted and results-driven legal services across a wide range of practice areas.

info@mklaw.cy

+357 96 719 083

info@mklaw.cy

+357 96 719 083

Mon-Fri 9am-5pm

Info

Privacy Notice

Home > Privacy Notice
  1. General

This Privacy Notice explains how Mariza Kaili Law Office (the “Firm”, “we”, “us” or “our”) collects, uses, stores and protects personal data. It applies to personal data relating to individuals who are clients, prospective clients, intermediaries, suppliers, professional contacts and any individuals connected to those parties.

Where personal data concerns identifiable individuals, this Notice also sets out their rights in accordance with the EU General Data Protection Regulation (GDPR) and applicable national data protection legislation.

Any questions concerning this Privacy Notice or requests relating to personal data should be addressed to us at info@mklaw.cy.

 

  1. Who We Are

Mariza Kaili Law Office is a law firm based in Cyprus. We are committed to respecting and protecting personal data, ensuring confidentiality and maintaining the highest professional and ethical standards. Our personnel receive appropriate training to ensure that personal data is processed lawfully and responsibly. Where we cooperate with third parties, we take reasonable steps to ensure that those parties apply data protection standards consistent with our own.

 

  1. Personal Data We Collect

We may collect and process personal data depending on the nature of the matter or service. This may include:

  • Contact information (e.g., name, address, email, telephone number);
  • Identification and verification information (e.g., copies of identification documents, source of funds and source of wealth information, as required by AML laws);
  • Information provided to us in the course of legal instructions (e.g., business, personal, financial, property ownership, tax, transaction and dispute information);
  • Financial information necessary for invoicing and payment;
  • Records of meetings, communications and visits to our offices;
  • Any additional information voluntarily provided to us in the course of our professional engagement.

 

Special Category Data

In certain matters, we may process Special Category Data (e.g., health, ethnicity, religious beliefs, criminal record). Such data will only be processed where:

  • explicit consent has been provided, or
  • processing is necessary for legal advice, legal claims, or compliance with a legal obligation.

 

  1. Why We Process Personal Data and Legal Bases

We ensure that personal data is processed only where necessary and only for legitimate purposes. The lawful bases for processing may include:

Purpose of Processing

Legal Basis

To establish and manage a client relationship and provide legal services

Performance of a contract; Legitimate interests; Consent where applicable

To verify identity and comply with anti-money laundering and other legal obligations

Compliance with a legal obligation

To maintain internal records and correspondence

Legitimate interests in managing business operations

To protect our office, staff and systems (including the use of CCTV in common areas)

Legitimate interests in safeguarding our premises and personnel

To respond to enquiries, comments or complaints

Legitimate interests; Performance of a contract; Consent where applicable

For internal training, administration and service improvement

Legitimate interests in improving service quality

For marketing (such as newsletters or event invitations)

Consent (may be withdrawn at any time by contacting us)

We do not use personal data for automated decision-making or profiling.

 

  1. Sources and Recipients of Personal Data

Personal data may be obtained from:

  • Clients and their associates,
  • Intermediaries, advisors or service providers,
  • Publicly available sources and official registers.

Personal data may be shared with:

  • Personnel of the Firm who are bound by confidentiality obligations;
  • Third-party service providers where necessary to support legal services (e.g., other law firms, auditors, experts, banks, regulators, IT providers);
  • Courts, tribunals, governmental or regulatory authorities where legally required;
  • Event organisers for Firm seminars or professional events.

Personal data will not be shared with third parties for unrelated purposes without prior consent, except where required by law.

Where data is transferred outside the European Union, we will ensure that appropriate safeguards are in place, such as standard contractual clauses or reliance on an adequacy decision.

 

  1. Data Subject Rights

Individuals have the right to:

  • access their personal data,
  • request correction or updating,
  • request erasure (in certain circumstances),
  • restrict or object to processing,
  • withdraw consent (where processing is based on consent),
  • request data portability,
  • lodge a complaint with the relevant supervisory authority.

Requests should be submitted to info@mklaw.cy. Proof of identity may be required to process a request.

 

  1. Data Retention

Personal data is retained only for as long as necessary for the purposes for which it was collected, and in accordance with our internal retention policies and applicable legal requirements. When data is no longer required, it will be securely destroyed unless retention is required for legal or regulatory reasons.

 

  1. Use of Personal Data in Legal Proceedings

If it becomes necessary to take legal action to enforce our rights, including recovery of unpaid fees, we may use the personal data we hold to identify and pursue the appropriate party.

 

  1. Updates to this Privacy Notice
We review and update this Notice periodically. The most recent version will always be available on our website at www.mklaw.cy