← Back to Sophiris Advisory
Trust & Compliance

Built on Trust.
Designed for Privacy.

We believe you should know exactly how your data is handled, how AI is used in your coaching, and what standards govern our practice.

πŸ›‘οΈ
Compliance Status
Active Β· EU/UK/CH/US Β· Last reviewed March 2026

Regulatory Coverage

Our privacy practices are designed to meet the requirements of the following data protection frameworks. We are a Greece-based EU business β€” GDPR is our primary legal framework.

πŸ‡ͺπŸ‡Ί
GDPR
EU General Data Protection Regulation
Compliant
πŸ‡¨πŸ‡­
nDSG
Swiss Federal Act on Data Protection
Compliant
πŸ‡¬πŸ‡§
UK GDPR
UK General Data Protection Regulation
Compliant
πŸ‡ΊπŸ‡Έ
CCPA/CPRA
California Consumer Privacy Act
Compliant

Your Data Rights

If you are located in the EU, UK, Switzerland, or California, you have the following rights regarding your personal data. We will respond to all requests within 30 days.

πŸ“‹
Right of Access
Request a copy of all personal data we hold about you.
✏️
Right to Rectification
Correct any inaccurate or incomplete personal data.
πŸ—‘οΈ
Right to Erasure
Request deletion of your personal data ("right to be forgotten").
⏸️
Right to Restriction
Ask us to limit how we process your data in certain circumstances.
πŸ“¦
Right to Portability
Receive your data in a structured, machine-readable format.
🚫
Right to Object
Object to processing based on legitimate interests or direct marketing.
Exercise Your Rights
Email us and we'll respond within 30 days. No forms, no bureaucracy.
Submit a Request β†’

Security Measures

We implement industry-standard technical and organisational measures to protect your data at every layer.

πŸ”
Encryption in Transit
All data is encrypted using TLS/HTTPS. No unencrypted data is ever transmitted.
πŸ—„οΈ
Encrypted at Rest
Your data is stored encrypted in Supabase (EU region, Ireland) with AES-256 encryption.
πŸ›‘οΈ
Row Level Security
Database access is enforced at the row level β€” no cross-client data leakage is possible.
πŸ”‘
Access Controls
Only authorised personnel have access to client data. API keys are rotated regularly.
🌍
EU Data Residency
Client data is stored and processed within the European Union by default.
πŸ””
Breach Notification
In the event of a data breach, we will notify affected individuals and supervisory authorities within 72 hours as required by GDPR.

AI Transparency

Sophiris Advisory uses artificial intelligence to enhance coaching insights. Here is exactly how it works and what it means for you.

πŸ€–
How AI Is Used in Your Coaching
When you complete a Coaching Gem assessment, your responses are sent to Anthropic's Claude AI model via a secure API. The model generates a personalised coaching report, expert panel perspectives, and recommended next steps. These outputs are then reviewed by Maria as part of your coaching experience.
Powered by: Anthropic Claude (claude-sonnet) Β· Data sent: Assessment responses only Β· Training use: None by default (per Anthropic API policy) Β· Human review: Always
πŸ‘οΈ
Transparent
We clearly disclose when AI is used to generate insights from your assessment data. You are never unaware that AI is involved.
🧠
Human-Reviewed
All AI-generated coaching insights are reviewed by Maria. No coaching decision is made solely by AI.
πŸ”’
Privacy-Preserving
Your data is not used to train AI models. Anthropic's API does not retain inputs for training purposes by default.
βš–οΈ
Non-Discriminatory
AI outputs are reviewed for bias. We do not use AI to make decisions that produce legal or significant personal effects without human oversight.
πŸ“€
Data Minimisation
Only the data necessary to generate your coaching report is sent to the AI model. No superfluous personal data is shared.
πŸ›‘
Opt-Out Available
You may request a coaching experience without AI-generated analysis. Contact us and we will accommodate this at no additional cost.

Coaching Standards

Our coaching practice is governed by professional and ethical standards that protect your interests at all times.

🀝
ICF-Aligned Practice
Our coaching approach aligns with the International Coaching Federation (ICF) Core Competencies and Code of Ethics.
πŸ”’
Strict Confidentiality
Everything shared in sessions is confidential. Exceptions exist only for legal obligations or serious risk of harm β€” and you will be informed.
🎯
Client-Led Coaching
Coaching is driven by your goals, not our agenda. We do not impose outcomes or direct your decisions.
🚫
Clear Boundaries
We clearly distinguish coaching from therapy, counselling, or medical advice. We refer clients to appropriate professionals when needed.
πŸ“ˆ
Continuous Development
Maria engages in regular supervision and professional development to maintain coaching quality and ethical standards.
⚠️
Conflict of Interest
We disclose any potential conflicts of interest. We do not take referral fees or commissions that could compromise our objectivity.
πŸ“¬

Questions or Concerns?

For compliance enquiries, data rights requests, or any concerns about how we handle your information, reach out directly. We respond within 5 business days.

Contact Maria β†’
maria@sophirisadvisory.com
Privacy PolicyTerms & ConditionsGreek DPA (HDPA)