GOVERNANCE

Our non-negotiable governance and compliance principles.

Malumbres Limited maintains the disclosures and governance practices appropriate for an EU-domiciled software services company.

Statutory identity

Legal name

Malumbres Limited

Registration number

HE 280522

Date of incorporation

20 January 2011

Registry status

Active

Registered office

Themistokli Dervi 17-19, The City House, 1066 Nicosia, Cyprus

Industry classification

62.01 Computer programming activities (NACE Rev 2)

VAT number

CY 10280522A

Audit and accounts

The company prepares annual financial statements in accordance with Cyprus Companies Law Cap. 113 and applicable International Financial Reporting Standards. Statements are audited annually and filed with the Cyprus Registrar of Companies. The most recent completed audit covers the financial year 2024.

Tax and indirect tax

VAT-registered in the Republic of Cyprus. Quarterly VAT returns and monthly VIES (intra-EU) declarations are filed within statutory deadlines. The company maintains transfer-pricing documentation for cross-border related-party transactions in line with Cyprus tax legislation.

Beneficial Owners' Register

Beneficial ownership of the company is registered with the Cyprus Registrar of Companies in compliance with the EU Anti-Money-Laundering directives. The register is updated upon any change in ownership or control.

Revenue and banking

Revenue is generated exclusively from B2B custom software development services and related IT consulting, billed to corporate clients in the European Union and the Middle East. Invoicing is denominated in euros. Inbound payments are received via SEPA and SWIFT through accounts held with EU-licensed credit institutions.

Intellectual property

All work product is delivered under formal IP assignment agreements. Source code, build artefacts, infrastructure-as-code, and documentation are transferred to the client at delivery. The company does not retain residual rights in client deliverables.

Data protection (GDPR)

Personal data processed in connection with engagement enquiries, contracts, payroll, and client deliverables is handled in accordance with Regulation (EU) 2016/679 (GDPR) and the Cyprus Data Protection Law of 2018. Data Processing Agreements compliant with GDPR Article 28 are entered into with clients where required. Data subjects may exercise their rights, including access, rectification, and erasure, by contacting operations@malumbres.com.cy.

Sanctions and AML posture

The company observes EU and UN sanctions regimes applicable to Cyprus. Counterparty checks are performed at engagement onboarding. The company does not contract with sanctioned individuals or entities, does not deal in restricted goods, and does not provide services to sectors prohibited under Cyprus AML legislation.

Regulatory references

Public registry information is maintained by the Department of Registrar of Companies and Intellectual Property, Republic of Cyprus. Records may be accessed through the official Cyprus business registry portal:

Cyprus Registrar of Companies (eFiling) →