Privacy Policy

Last updated: June 2026
This is a working template prepared for launch. It will be reviewed by a qualified lawyer before go-live. Defer to the final reviewed version.

1. Who we are (data controller)

This website, Settle in Cyprus, is operated by Wolsten Studios Ltd (registration number HE485976), registered in Larnaca, Cyprus ("we", "us"). We are the data controller for the personal data described here. Contact: privacy@settleincyprus.com.

2. What data we collect

  • Contact details you provide: name, email, phone/WhatsApp.
  • Conversation content you share with our AI assistant (your situation, nationality, timeline, goals).
  • Technical & analytics data: device and browser information, pages visited and, with your consent, advertising and analytics identifiers.

3. Why we use it (purposes) and our legal bases

  • To provide the service (answer your questions and prepare your summary), based on legitimate interest.
  • To introduce you to a partner firm, based only on your explicit consent.
  • To operate and improve the assistant (including logging conversations for quality review), based on legitimate interest.
  • Analytics and advertising, enabled only with your consent through the cookie banner.

4. Who we share it with

If you consent, we share your enquiry, contact details and conversation context with a relevant vetted partner law or advisory firm so they can contact you. We also use service providers such as hosting, analytics and AI model providers under appropriate agreements. We do not sell your personal data.

5. How long we keep it (retention)

We retain enquiry and conversation data for up to 24 months, after which it is deleted or anonymised, unless a longer period is required by law or to handle a dispute.

6. Your rights under GDPR

You have the right to access, rectify, erase, restrict or object to processing, to data portability, and to withdraw consent at any time. To exercise these rights, email privacy@settleincyprus.com.

7. Supervisory authority

You can lodge a complaint with the Office of the Commissioner for Personal Data Protection (Cyprus) if you believe your data has been mishandled.

8. International transfers & security

Where data is processed outside the EEA (for example by a technology provider), we rely on appropriate safeguards such as Standard Contractual Clauses. We apply ISO 27001-aligned security controls to protect your data.

9. Changes

We may update this policy. The "last updated" date above reflects the current version.