vacancies

Introduction

Hyperio Software Ltd (“we”, “our”, or “us”) respects your privacy and is committed to protecting your personal data.
This Privacy Policy explains how we collect, use, share, and protect the personal information of individuals who visit our website, use our services, or otherwise interact with us.
We process all personal data in accordance with applicable data protection laws, including the General Data Protection Regulation (GDPR).

Who we are

Data Controller: Hyperio Software Ltd
Registered Address: 1 Agias Filaxeos Street, KPMG Building, 2nd Floor – Offices 2B & 2C, 3025 Limassol, Cyprus
Business Activity: Software development
General Enquiries: info@hyperiosoftware.com
Data Protection Officer: Stylianos Christoforou, Email: dpo@hyperiosoftware.com
The Data Protection Officer oversees compliance with data protection laws and can be contacted regarding any matter related to this policy.

What principles govern our processing of personal data?

We process personal data in accordance with applicable data protection laws and adhere to the following principles:
  • Lawfulness, Fairness, and Transparency: Personal data is processed only when there is a valid legal basis, and individuals are informed about how their data is used in a clear and transparent manner.
  • Purpose Limitation: Data is collected for specified, explicit, and legitimate purposes and is not processed in ways incompatible with those purposes.
  • Data Minimization: We collect and process only the personal data necessary to achieve the stated purposes.
  • Accuracy: We take reasonable steps to ensure that personal data is accurate, complete, and kept up to date. Inaccurate data is corrected or deleted without delay.
  • Storage Limitation: Personal data is retained only for as long as required to fulfil the purposes for which it was collected or to comply with legal obligations.
  • Integrity and Confidentiality: We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction.
  • Accountability: We are responsible for demonstrating compliance with these principles and maintain documentation and controls to ensure continuous adherence.

Who we collect data about

We may process personal data relating to:
  • Customers and users of our software products and services
  • Website visitors and platform users
  • Business partners, suppliers, and service providers
  • Job applicants and employees
  • Contractors, consultants, and others who engage with our business

Personal data we collect

Categories of Personal Data We Collect

We collect different types of personal data depending on how individuals interact with us, our website, or our SaaS B2B platform. This may include:
  • Identification details: Names, professional titles, employer or organisation name, and other identifiers associated with customer personnel who access our platform or communicate with us.
  • Contact details: Email addresses, telephone numbers, postal addresses, and other contact information required to provide services and maintain business relationships.
  • Account and profile information: Usernames, credentials, authentication data, role-based permissions, activity settings, and other information associated with customer accounts within our SaaS platform.
  • Platform usage and operational data: Logs of user actions, access timestamps, configuration settings, system events, audit trails, and feature usage data generated during interactions with our SaaS services.
  • Technical and device data: IP addresses, device identifiers, browser type, operating system, session data, and analytics information regarding how users access and navigate our website and platform.
  • Employment and application information: For job applicants, this may include CVs, qualifications, employment history, and references.
  • Financial and transaction information: Billing details, payment history, invoicing information, and records of transactions conducted with us.
  • Banking or payment instrument data: Bank account numbers or other payment instrument details provided for processing payments, when applicable.
  • Communication and correspondence records: Messages exchanged with our support, sales, or operations teams; helpdesk tickets; emails; feedback; or any other communications individuals choose to share with us.

Sources and Methods of Data Collection

We collect personal data from several sources, depending on the nature of the engagement:
  • Directly from the data subject: When users register for an account, request support, submit forms, apply for a job, provide billing information, or otherwise interact with our teams.
  • Through our website and SaaS platform: Using cookies, analytics tools, automated logs, session tracking, platform telemetry, and other technical mechanisms that record how users access or operate the platform.
  • From customer organizations: In a B2B setting, customer companies may provide user details (e.g., name, email, role) to set up accounts for their personnel or integrate their systems with ours.
  • From third parties: Where relevant, data may be obtained from external service providers (such as recruiters), integration partners, identity or access management systems, payment processors, or other trusted third-party sources like Google Analytics, LinkedIn, BambooHR.
  • From publicly available sources: Professional contact details or company information when needed to support business operations.

Platform-Specific Data Collection

As part of delivering our SaaS B2B services, the platform generates and processes operational data that may include:
  • User account activity logs
  • Access and authentication records
  • Configuration and usage patterns
  • Internal communication or workflow data created within the platform
  • Team or role assignments defined by the customer organisation
This data is necessary for administering user accounts, maintaining system security, enabling product features, and supporting audits and compliance requirements.

Contextual Dependence

The type and amount of personal data collected varies depending on the user’s role and interaction:
  • Website visitors: primarily technical and analytics data. 
  • Customer personnel using the SaaS platform: identification, contact, platform usage, account, and operational data. 
  • Billing or contract contacts: financial and administrative data. 
  • Job applicants: recruitment-related information. 

Purposes for Collecting This Information

We collect and process these data categories to:
  • Provide, operate, and maintain our SaaS platform and related services.
  • Manage customer accounts, authenticate users, and support role-based access controls.
  • Deliver customer support, troubleshoot issues, and improve user experience.
  • Communicate with customer personnel about service updates, technical notices, or administrative matters.
  • Process payments, manage subscriptions, and maintain financial records.
  • Improve and enhance the performance, security, and functionality of the platform.
  • Comply with legal, regulatory, contractual, or audit requirements.
  • Manage recruitment and employment-related processes.

Documentation and Record-Keeping

All processing activities associated with these data categories and sources are reviewed, mapped, and documented in our Record of Processing Activities (ROPA) to ensure transparency, compliance, and accountability.

Why we use personal data

Purpose of processing personal data:
  • We use personal data to provide and manage our products and services, respond to enquiries, and meet our legal and contractual obligations.
  • We use this data to review how users use our Services, to develop new products or services and improve current content, products, and services.
  • We also process data to maintain system security, ensure the proper functioning of our systems, and improve our services based on our legitimate business interests.
We rely on explicit opt-in consent for specific processing activities such as direct marketing communications and, where relevant, the retention of candidate information for future recruitment opportunities.

Sharing of personal data

We treat personal data as confidential and share it only when necessary and lawful.
We may disclose personal data to:
  • Cloud and hosting providers that support our infrastructure
  • IT and software vendors who maintain our systems
  • Professional advisers such as auditors or legal consultants
  • Public authorities where required by law
All such parties are bound by strict confidentiality and data protection obligations.

Transfers outside the EU/EEA

If we transfer personal data outside the European Union (EU) or the European Economic Area (EEA), we ensure that appropriate safeguards are in place, such as:
  • Standard Contractual Clauses approved by the European Commission or Transfers to countries that the EU has recognised as providing an adequate level of protection.
  • Technical and organisational measures to protect personal data.
You may contact our DPO for further details on the safeguards applied to international transfers.

How long we keep personal data

Personal data is retained only for as long as necessary to fulfil the specific purposes for which it was collected, including any legal, accounting, or reporting obligations that may apply.
Data is kept for the duration required to meet the terms of the contract between the parties unless laws or statutory requirements mandate a longer retention period. Once personal data is no longer needed, it is securely deleted.
Individuals may contact the Data Protection Officer for further details on applicable retention periods.

How we protect personal data

We apply technical and organizational measures to keep your personal data safe and to prevent loss, misuse, or unauthorized access. These include:
  • Secure storage and encryption of data
  • Controlled access based on role and necessity
  • Regular security testing and monitoring
  • Staff training and confidentiality obligations
While no system is completely secure, we take all reasonable steps to protect your data in line with industry best practices.

Your rights

You have several rights under data protection law. You can:
  • Access your personal data and obtain a copy of it
  • Rectify inaccurate or incomplete information
  • Erase personal data (“right to be forgotten”)
  • Restrict how your data is used in certain cases
  • Object to processing, including for direct marketing
  • Request portability of your data to another organisation
  • Not be subject to automated decisions made without human involvement
  • Lodge a complaint with a supervisory authority
To exercise any of these rights, contact our Data Protection Officer at dpo@hyperiosoftware.com.
If you are not satisfied with our response, you may contact the Office of the Commissioner for Personal Data Protection.
  • Website: https://www.dataprotection.gov.cy/
  • Office Address: Kypranoros 15, 1061 Nicosia
  • Postal Address: P.O. Box 23378, 1682 Nicosia
  • Telephone: +357 22818456
  • Fax: +357 22304565
  • Email: commissionerdataprotection.gov.cy

Updates to this policy

We may update this Privacy Policy from time to time to reflect changes in our business or legal requirements.
The latest version will always be available on our website, and the date above indicates when it was last revised.

Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or the way we handle your personal data, please contact us at:

Hyperio Software Ltd
  • 1 Agias Filaxeos Street, KPMG Building, 2nd Floor – Offices 2B & 2C
  • 3025 Limassol, Cyprus
  • +357 25 35 76 15
  • info@hyperiosoftware.com
  • dpo@hyperiosoftware.com