Firm Profile > Antoniou McCollum & Co. LLC > Nicosia, Cyprus

Antoniou McCollum & Co. LLC
Nikitara 9
1080 Nicosia

EU and competition Tier 1

Antoniou McCollum & Co. LLC deals with a sizeable number of cases before the Commission for the Protection of Competition, regularly representing well-known businesses in such cases.  The first-rate Anastasios A. Antoniou leads the group and is particularly skilled at advising leading technology companies on the full array of EU regulatory matters. The team is well-placed to advise on anti-competitive behaviour, cartels, abuse of dominance and economic dependence cases, as well as the competition law elements of NPL sales and telecoms.

Practice head(s):

Anastasios A. Antoniou

Key clients



Schwarz Group (LIDL)

Tek Experts

Investment Corporation of Dubai


Baring Private Equity Asia




Commercial, corporate and M&A Tier 4

Christina McCollum leads the team at Antoniou McCollum & Co. LLC that regularly acts for some of the biggest private equity funds that are active in Cyprus, some multinational corporations as well as several local industry leaders in Cyprus. Core areas of expertise include advising on a range of domestic and cross-border deals, joint ventures and restructurings as well as advising on merger control and regulatory clearances.

Practice head(s):

Christina McCollum

Other key lawyers:

Anastasios A. Antoniou

Key clients


YNV Holding


Alleya Capital


GO plc

Jacobs Holding


Tek Experts

Antoniou McCollum & Co. is a top-tier Cyprus law firm specialising in  transactions and M&A, finance, corporate law, competition law, intellectual property and regulatory matters.

The firm delivers bespoke legal services across major business sectors, supporting domestic and international clients.

The firm prides itself on its strong client relationships premised on integrity and a commitment to deliver the highest quality legal services.

Areas of practice

Transactions and M&A: Antoniou McCollum & Co. routinely advises and supports clients on mergers and acquisitions, takeovers, divestments, joint ventures, private equity and financing transactions.   The firm acts for some of the biggest global private equity firms and investment funds.

The firm carries out comprehensive corporate, commercial and regulatory legal due diligence, as well as providing support on deal structuring, drafting transaction documents and engaging in regulatory problem-solving and implementation.

Banking and finance: The firm advises borrowers and lenders on corporate lending transactions; property development finance; debt sales and distressed lending and trading; debt and equity restructuring; receiverships and administrations; and on residual and other debt recovery and security enforcement.

Antoniou McCollum & Co. is highly versed in the regulatory framework governing credit institutions, investment funds, financial service providers and credit-acquiring companies, advising clients on all aspects from authorisation and licensing to on-going compliance and operations. Our track record includes advising on the establishment of the first NPL servicing platform in Cyprus.

Corporate: The firm’s core expertise is advising on the full range of corporate transactions, including domestic and cross-border mergers and acquisitions, corporate reorganisations, amalgamations and restructurings, private equity, strategic investments and joint ventures.

Antoniou McCollum & Co. provides advice on all aspects of Cyprus corporate law, including on issues relating to share capital and classes of shares, dividends, redeemable equity, shareholder rights and directors fiduciary duties, as well as on charges and their enforcement, share pledges, financial collateral and statutory compliance.

We also deal with corporate insolvency matters, including liquidations, receiverships, examinerships and restructurings.

The firm’s experience of the Cyprus market enables it to identify and tailor corporate vehicles (public or private) to suit the commercial and regulatory requirements of clients.

Commercial: The firm is recognised for its expertise in drafting complex commercial agreements, as well as supporting clients on a broad range of transactions, including financing, loan and credit facilities; collateral, pledge and guarantee agreements; asset sale and purchase agreements; joint ventures; asset leasing; software and IP licences; franchising and distribution agreements; electronic commerce and online sales documentation; and consumer and retail sales contract.

The firm’s intellectual property practice is experienced in protecting online brands, software applications and know-how and has a deep understanding of the novel challenges faced in online branding and IP.

Competition and merger control: Antoniou McCollum & Co. is recognised as one of the leading competition practices in Cyprus.  The firm has been consistently advising Fortune 500 companies and multinational corporations on merger control matters and undertakes the filing and clearance of mergers, acquisitions and joint ventures with the relevant competition authorities.

The firm’s expertise includes: advising and representing clients on competition law compliance; EU antitrust issues; cartels, abuse of dominance; abuse of economic dependence, leniency and immunity cases.

Data protection: The firm has broad expertise in data protection matters and advises on compliance with the GDPR and Cyprus data protection laws. It advises on a range of matters relating to electronic commerce and assists clients in navigating through the complex regulatory framework governing the online sale of goods and services in Cyprus.

Intellectual property: The digital age has transformed the challenges posed by copyright infringement.  Authors, artists, the media, publishers, communications providers and ISPs handling user-generated content on their platforms are facing increasingly complex legal issues in respect of copyright.

We advise on copyright with respect to artistic work, literature, music and film, as well as software and databases, including issues relating to intermediary liability.

We also have a thriving trademarks practice and advise on the registration, renewal, assignment, enforcement and exploitation of trademarks in Cyprus and the EU.

Technology: The digital and data practice has expertise in drafting terms of use, terms of sale, privacy policies and other contractual documentation relating to online commerce as well as in advising intermediary online providers.

Antoniou McCollum & Co. is particularly versed in assisting clients on emerging technologies issues, such as artificial intelligence, distributed ledger technology and the Internet of Things.

Department Name Email Telephone
Transactions and M&A Christina McCollum +357 22 053333
Corporate Christina McCollum +357 22 053333
Commercial Christina McCollum +357 22 053333
Competition and merger control Anastasios A. Antoniou +357 22 053333
Intellectual Property Anastasios A. Antoniou +357 22 053333
Data protection Christina McCollum +357 22 053333
Digital and Technology Anastasios A. Antoniou +357 22 053333
Dispute resolution and litigation Anastasios A. Antoniou +357 22 053333
Banking and finance Anastasios A. Antoniou +357 22 053333
Insolvency Christina McCollum +357 22 053333
EU & Regulatory Anastasios A. Antoniou +357 22 053333
Photo Name Position Profile
 Anastasios A. Antoniou photo Anastasios A. Antoniou Anastasios heads the EU, Competition and Regulatory practice of Antoniou McCollum &…
 Ifigenia Iacovou photo Ifigenia Iacovou Senior Associate
 Christina McCollum photo Christina McCollum Christina McColllum is a partner at Antoniou McCollum & Co. and heads…
 Irena Zannetti  photo Irena Zannetti Senor Associate
Partner : Anastasios A Antoniou
Partner : Christina McCollum

Antoniou McCollum & Co. is a 50% female-owned firm and its members come from diverse backgrounds.  We thrive when all of our people can be themselves and feel empowered to succeed.

Being a leader in diverse and inclusion is not a branding exercise for our practice.  It is rather how we know that we attract the best talent and deliver the best services for our clients.

At the same time, we have a dedicated pro bono initiative dedicate a percentage of our annual work to pro bono work.  Our latest work includes advising the Centre for Reproductive Rights and acting on a pro bono basis in important constitutional and human rights litigation.

Regulatory and competition law developments in Cyprus

Competition law

The past year has been a very productive one for the Cypriot competition authority, the Commission for the Protection of Competition (CPC).  While Cyprus has yet to transpose Directive 2019/1 into its legal order, the CPC carried out a public consultation in 2020 on a draft bill intending to implement the said Directive. Provisions guaranteeing the necessary independence, resources and enforcement and fining powers for the CPC are envisaged in the draft bill. It is also expected that mutual assistance between the CPC and other national competition authorities will be enhanced as a result of the transposition of Directive 2019/1.

The Protection of Competition Law of 2008, L. 13(I)/2008, as amended (the Competition Law), is the statutory basis for the current manifestation of the CPC. The Competition Law mirrors Articles 101 and 102 TFEU, creating equivalent prohibitions in the national legal order, while also providing for the prohibition of abuses of relationships of economic dependence.

The CPC enacted a leniency and immunity programme in 2011, in the form of subsidiary legislation (the Leniency Programme). The objective of the Leniency Programme, which largely mirrors the European Commission’s equivalent scheme.  A revised leniency framework intended to replace the Leniency Programme was placed in public consultation in 2020.

The CPC is also tasked with the control of concentrations between undertakings. The Control of Concentrations Between Undertakings Law of 2014, L. 83(I)/14 (the Merger Control Law), provides for the notification of mergers, acquisitions and joint ventures that meet the jurisdictional thresholds. Clearance of a concentration falling within the ambit of the Merger Control Law is required prior to its implementation. Amongst the thresholds under the Merger Control Law is the relatively low threshold of two undertakings concerned, taken together, achieving a turnover of at least €3.5m in Cyprus. This threshold often leads foreign-to-foreign transactions, which otherwise have little impact on the Cypriot market, to requiring clearance by the CPC prior to their implementation.

The tenacity in which the civil service of the CPC is pursuing investigations and dealing with cases over the past few years, under the leadership of the CPC’s Director, is producing tangible results. Illustratively, the CPC has been increasingly identifying abuses of a dominant position or a relationship of economic dependence, including cases that were re-investigated following annulments of the CPC’s membership.

Trade secrets law

With much delay, Cyprus has transposed Directive (EU) 2016/943 on the protection of undisclosed know-how and business information (trade secrets) against their unlawful acquisition, use and disclosure.

Trade secret refers to information that:

  • is secret in the sense that it is not generally known among or readily accessible to persons within the circles that normally deal with the kind of information in question (as a body or in the precise configuration and assembly of its components)
  • has commercial value because it is secret
  • has been subject to reasonable steps under the circumstances, by the person lawfully in control of the information, to keep it secret.

Acquiring a trade secret is considered lawful only if obtained in certain prescribed manners.  Unlawfully acquiring a trade secret will be the result of the following actions:

  • unauthorised access, stealing or copying of documents, objects, materials, substances or electronic files which are lawfully under the control of the trade secret holder
  • any other conduct which, under the circumstances, is considered contrary to honest business practices.

Use or disclosure of the trade secret without the owner’s consent is unlawful if a person acquires the trade secret unlawfully.

Certain exceptions are provided under applicable legislation, such as the following:

  • exercising the right to freedom of expression and information, including respect for the freedom and pluralism of the media
  • revealing misconduct, wrongdoing or illegal activity, provided that it was to protect the general public interest
  • disclosure by workers to their representatives (provided that such disclosure was necessary to carry out their function)
  • protecting a legitimate interest recognised law.

As such, persons acting in the public interest will be safeguarded when disclosing a trade secret to reveal misconduct, wrongdoing or illegal activity. This safeguard is operative if the trade secret was acquired or passed to the whistle-blower through the use of illicit means such as the breach of law or contract. If no unlawful conduct takes place the disclosure of the trade secret is out of the scope of the trade secrets legislation and no safeguards are necessary.

Network and Information Security

Cyprus has now fully transposed Directive 2016/1148 on the security of network and information systems (the NIS Directive), through the Security of Networks and Information Systems Law of 2020 (the Cyprus NIS Law).

While the text of the NIS Directive has generally been transposed into the Cypriot legal order, the Cyprus NIS Law also specifically addresses network and information security requirements for electronic communication services provides (i.e. telecommunications operators).

The Cyprus NIS Law creates a framework for the security of network and information systems in all critical information infrastructures in Cyprus and enhances the island State’s existing capabilities of handling and responding to cyberattacks. The key purpose of the Cyprus NIS Law and its subsidiary legislation is to ensure that the Cypriot network infrastructure can respond to cyberattacks and other cybersecurity threats.

The Digital Security Authority (DSA) is designated by the Cyprus NIS Law as the competent supervisory authority for the enforcement of its provisions and the adoption of national cybersecurity strategies. The Cyprus NIS Law also entrusts the Cypriot computer-security incident response team (CSIRT-CY) with the responsibility of offering technical support and for monitoring, risk-handling, management and responding to cybersecurity incidents while participating in the CSIRTs network of the member states. CSIRT-CY is tasked with implementing proactive and reactive security services to reduce the risks of network information and cybersecurity incidents, as well as respond to such incidents.

Under the NIS Directive, EU Member states have to supervise the cybersecurity of critical market operators in their jurisdiction:

  • Ex-ante supervision in critical sectors (energy, transport, water, health, digital infrastructure and finance sector)
  • Ex-post supervision for critical digital service providers (online marketplaces, cloud and search engines)

The Cyprus NIS Law identifies the following types of operators and providers falling under its ambit:

  • operators of essential services
  • critical information infrastructure operators
  • electronic communications providers
  • digital services providers

Under the Cyprus NIS Law, critical infrastructure comprises the assets, systems or parts thereof within the territory of Cyprus, which are essential for the maintenance of operations of vital importance for society, health, security, the economic and social welfare of citizens and the interruption of operation or destruction of which would have a significant impact to the State, as a result of an inability of maintaining these operations.

Under the Cyprus NIS Law, the criteria for the identification of both operators of essential services as well as critical information infrastructure operators are for such operators to be:

  • an entity provides a service that is essential for the maintenance of critical societal and/or economic activities
  • the provision of that service depends on network and information systems; and
  • an incident would have significant disruptive effects on the provision of that service.

While the NIS Directive introduces the obligation on essential services providers and digital service providers (providers of search engines, cloud computing services and online marketplaces) to take the appropriate security measures and to notify of serious incidents, the Cyprus NIS Law also imposes the said obligation to providers electronic communication services. As a result, providers electronic communication services are also supervised by the DSA within the ambit of the Cyprus NIS Law and should therefore comply with applicable cybersecurity requirements.

Specifically, network and electronic communication service providers must take appropriate and proportionate technical and organisational measures to manage the risks posed to the security of networks and electronic communication services. The DSA is responsible to ensure that these providers notify every incident regarding security having a significant impact on the operation of networks and electronic communication services.

The Cyprus NIS Law confers the DSA with wide-ranging powers concerning all providers, including the power to carry out investigations, request information and impose administrative fines for infringements of statutory provisions.

in terms of information requests, the DSA is empowered, amongst others, to request information regarding their network and information system security, including their security policies, from digital services providers, operators of essential services, critical information infrastructure operators, electronic communications providers.

The DSA has the power to impose administrative fines of up to EUR 200,000 for any infringement of the Cyprus NIS Law, as well as a fine of up to EUR 10,000 for each day the infringement persists. Infringement of any decisions or regulations could result in administrative fines of up to EUR 300,400, as well as an additional fine up to EUR 200,000 where the infringement persists.

The Cyprus NIS Law provides inter alia for criminal liability in relation to a failure to comply with notification obligations under the Cyprus NIS Law, a failure to take appropriate and proportionate technical and organisational measures to manage the risks posed to the security of networks and information systems under the Cyprus NIS Law or a failure to provide any information requested by the DSA.


Efforts are ongoing to improve the consultation of stakeholders when preparing legislation, particularly bills intended to transpose EU directives. In the context of the Better Regulation Project, a partnership between the OECD and the European Commission, the Ministry of Finance and the Legal Service of the Republic have established an obligation to conduct a public consultation with all stakeholders before proceeding with a governmental bill.  A completed questionnaire accompanies every bill submitted to the Council of Ministers for approval and subsequently presented before the House of Representatives for enactment, explaining all aspects of the proposed legislation and the consultation that has taken place.

As noted by the European Commission in its Rule of Law report for 2020, a number of challenges exist in Cyprus regarding the regulatory impact assessment framework concerning both laws and regulations, which could be improved by establishing an oversight body for impact assessment quality control.

Cyprus is poised to seize the growth opportunities expected to arise in the post-pandemic world. The establishment of a Deputy Ministry of Research, Innovation and Digital Policy in 2020 and other policy objectives are steps in the direction of enhancing the competitiveness of Cyprus in an increasingly changing jurisdictional landscape.