Linkedin Instagram

Privacy policy

Introduction

Alcyone Consulting (“Company” below) offers a wide range of services to key accounts (banks, insurance companies, ...) in the design, deployment and maintenance of their information systems (I.T) and / or project and risk management (Compliance, Governance), by providing them with the qualified human capital on the following lines of business (“Services” below), such as, but not limited to, the following list:

Company that owns the Site:

   Information systems governance

   Technical Expertise / IT

   Compliance and Audit

Given the development of new communication and IT tools, we believe it is necessary to pay the utmost attention to the protection of privacy.

The personal information we collect

We may collect your personal information for various reasons: providing our services, professional obligations, fulfilling a contract, processing your files, correspondence or job application, etc.

We process, in particular, the following data:

   Alcyone Consulting

– Hosting provider:

   Billing data, sales data, supplier data

   Identity, addresses, personal and professional contact information, marital status

   Occupations, degrees, permits, certifications, economic category, activities

   Bank accounts and statements

   Income, salaries, employee ID numbers, timekeeping data, working hours, bonuses, commissions, travel expenses, benefits in kind

   Identity cards, passports, criminal record extracts (if authorized)

   Information relating to absences, leave, long-term illnesses

   Wage garnishment and assignment information

   Hiring and recruitment: date, purpose, employment status, degrees, permits, certifications, career simulation, performance appraisal, etc.

   Photographs for identification or marketing purposes

We may combine the information we collect from you with data obtained from other sources to supplement it, provide our services, and personalize our interactions with you.

In addition, we collect information related to your use of our website using various technologies, such as cookies.

How do we use your personal data?

Personal data, provided by you or your employer, or legitimately received by our Company, by companies affiliated with us, or by third parties, may be processed by our Company for the following purposes:

   Providing services

   Activating services

   Improving services

   Ensuring business operations and performance

   Managing contracts

   Providing customer service

   Managing the business relationship and updating the customer database

   Detecting, preventing, and combating fraud

   Compiling statistics

   Managing disputes and recovering debts

   Settling claims.

Personal data provided to our Company by candidates in response to our targeted job postings, through unsolicited applications, or from our recruitment pool with the candidates' prior consent, may be shared with our clients and prospects for marketing purposes.

Other personal data provided may be processed by our Company for direct marketing purposes (commercial actions, personalized advertising, data matching, brand awareness), with a view to improving our knowledge of our customers and prospects and to inform them about our activities, products and services.

How do we share your personal data?

We share your personal data with your consent or if it is necessary to complete a transaction, provide a product or service you have requested or authorized, or comply with legal obligations. Your personal data may be shared with service providers working on our behalf, acting as data processors for the benefit of the Company, who may need access to personal data to provide customer service support or help protect and secure our systems and services. In such cases, these companies must comply with our data privacy and security requirements and are not authorized to use the personal data we share with them for any other purpose. We also share your data when required by law, to comply with legal process, to meet our obligations to supervisory authorities, to protect our customers, to maintain the security of our services, to protect the Company's rights or property, for the management of disputes and debt collection, and for the payment of services.

Transfer of Data Outside the European Union

Where applicable, the companies and/or individuals related to the Company to whom personal data is disclosed may be located within or outside the European Union. In the event of data transfers to third parties located outside the European Union, the Company complies with the applicable legal and regulatory provisions regarding such transfers and, in particular, ensures an adequate level of protection for the personal data thus transferred, based on the alternative mechanisms established by the European Commission or other contractual provisions.

How do we protect your personal data?

The personal information we collect is stored in a secure environment. Our employees are trained to respect the confidentiality of your information. To ensure the security of your personal data, we limit it to the strict minimum and, in particular, use the following measures:

   Access and authorization management for authorized personnel and data subjects

   Workstation security: anti-spam, anti-virus, leak detection

   Security of mobile devices and phones

   Protection of the computer network and servers: encryption, backups, traffic management, firewalls

   Business continuity plan

   Development management

   Premises security: fire detection, intrusion detection system, surveillance cameras

   Secure information exchange

We are committed to maintaining a high level of confidentiality by integrating the latest technological innovations to ensure the confidentiality of your transactions.

Retention of your personal data

We retain your personal data for as long as necessary to provide the services and complete the transactions you have requested, or for other essential purposes such as complying with our legal obligations, resolving disputes, and enforcing our agreements. Because these needs may vary depending on the types of data within the context of different products, actual retention periods may vary considerably. The criteria taken into account to determine retention periods include the following:

   Need for retention to provide the requested services

   Sensitivity of the data collected or entrusted

   Specific consent or agreed limitation

   Legal or contractual obligation

   Retention policy adopted by the Company based on its legitimate interests

These retention periods may be:

   – 10 years for data relating to accounting, business management, purchase and sales records, real estate, and commercial leases

   – 5 years for general company documents: shareholder resolutions, board deliberations, minutes of meetings, articles of incorporation, shareholder registers, internal regulations, and legal documents

   – Up to 10 years for documents relating to human resources, employment contracts, and salaries: payslips, salaries, taxes, social security contributions, overtime, bonuses, benefits in kind, severance pay, notice periods, approval from the competent authorities, and court decisions Work-related data, correspondence, severance pay, and declarations to the CCSS and ACD

   – 3 years for data relating to workplace accidents, working conditions, labor inspections, and the health and safety committee

   – 3 years for data necessary for emergency medical care, individual treatment agreements, degree of incapacity for work, social reintegration plans, workplace adjustments, and declarations to the CNS

   – For data transmitted by a candidate:

   1 month after the end of the recruitment process and/or the job offer to a client/prospect

   18 months when the candidate has agreed to be included in our recruitment pool

Right of access, rectification, restriction, and objection

The Company adheres to the General Data Protection Regulation (EU) 2016/679 and guarantees you the following rights:

   If the processing of your personal data is based on your consent, you have the right to withdraw your consent at any time.

   You can access your personal data, have it rectified, and restrict its processing.

   You have the right to object to the processing of your personal data.

   You have the right to lodge a complaint with a data protection authority.

How to contact us?

For any questions regarding the confidentiality of your data, complaints, or inquiries about your rights, you can send your dated and signed request, along with a double-sided photocopy of your identity card, to:

By mail to the Company

3 Rue Luxite, L-1899 Kockelscheuer, Luxembourg

By email to the Company at dpo@alcyone-consulting.lu

By phone to the Company at (+352) 27 86 17 46

To the National Commission for Data Protection (CNPD)

15, Boulevard du Jazz – L-4370 Belvaux – Tél. : (+352) 26 10 60 -1 – info@cnpd.lu

Business permit 118 414
RCS Luxembourg B 133 438

Linkedin Instagram

Contact

3 Rue Luxite, L-1899 Kockelscheuer, Luxembourg

contact@aco.pro.lu

+352 27 86 17 46

Pages

Quick links

© 2026 ACO. All rights reserved.