The handling and protection of the personal data of the Website visitor/user are subject to these Terms, as well as, the relevant provisions of the applicable Greek law for the protection of the individual from the processing of personal data, as supplemented by decisions of the competent administrative authority, as well as of the European legislation (mainly EU General Data Protection Regulation 2016/679).
In case a visitor/user of the Website disagrees with the terms of the Policy as provided in the present section, he/she shall refrain from using the webpages/services of the Website.
1. What is the personal data we collect
Primarily, the visitor/user of the Website may use the Website in its entirety and its individual pages without having to reveal his/her identity and without having to provide the Company with any personal data. However, in order for the visitor/user to gain access to or use certain parts or services of the Website, he/she may be required to register for the acquisition of a password or/and collection and processing of personal data for specific purposes, as stated in the present Policy.
The personal data that we may collect include: Basic information (such as name, surname), contact information (such as address, phone number, email address), information that the Website visitor/user may provide, information that is legally collected by publicly available sources.
2. How do we process your personal data
The Company is entitled to maintain a record and process the personal data of the Website visitor/user made available via the Website. The Company shall collect and process personal data only with the consent of the Website visitor/user, who shall provide such data on his/her own will with the purpose of accessing the aforementioned applications or services available via the Website.
By providing his/her data when registering in the Website, the visitor/user will be deemed to give consent to the collection, use and transfer of such data under the terms of this Policy. However, the Website visitor/user shall be asked specifically and explicitly to give his/her consent for such purposes, thus accepting the present Policy prior to the conclusion of his/her subscription procedure.
In particular, the Website visitor/user shall accept and give his/her consent so that the Company, subject to the terms of the applicable legislation, maintains in a record and processes the personal data collected via the Website in order to give the visitor/user access to the services and applications available, assist him/her, support and realize the contractual relationship between the Company and the Website visitor/user, as well as in order to collect statistical data and inform about and promote the products and services of the Company, following the specific consent of the Website visitor/user for such purposes.
It is clarified that the personal data that may be processed by the Company shall be used solely in order to ensure the operation of the respective Website service, while it is not allowed to be used by the Company or any third party without complying with the applicable laws on personal data protection. The Company acts in conformity with the applicable legislation and aims at the best possible implementation of proper practices in relation to the internet.
The personal data collected by the Company through the Website shall be safely maintained for the whole duration of registration of the Website visitor/user in any service of the Company or for as long as it is required for the particular processing purpose. The data shall be deleted upon termination for any reason of the contractual relationship between the Website visitor/user and the Company or in the event that the aforementioned reasons for processing cease to exist, by taking also into consideration any obligations of the Company under the applicable legislation.
Apart from the Company, other recipients of the data may be associated legal entities or collaborating companies which intervene for the promotion, support and accommodation of the contractual relationship and only for the purpose of providing services of electronic communication or any added value services that the Website visitor/user may have requested and always subject to the terms of the applicable law. Unless it is explicitly provided in this Policy or required by law and/or the competent authorities (such as indicatively, judicial, police and other administrative authorities, upon their lawful request), the Company shall not disclose, transfer, transmit or in any way dispose any information of any Website visitor/user without the latter’s consent.
The safety of the personal data of the Website visitors/users is of utmost importance to us. The Company is committed to ensure that it takes the appropriate technical and organizational measures in order to protect the integrity, confidentiality and availability of the personal data of the Website visitors/users from unauthorized access, use, disclosure, alteration or destruction in compliance with the applicable data protection legislation. However, despite the fact that we make every effort to protect the personal information of the Website visitor/users, the Company cannot guarantee the security of the information provided through our Website as this is made at the risk of the Website visitor/user.
3. Visitor/User rights
The Website visitor/user is entitled to exercise at any time the rights that are stipulated by the applicable data protection legislation (and primarily EU Regulation 2016/679) and under the requirements and limitations set, namely:
– The right of information regarding his/her data that we are processing
– The right of access to his/her personal data that we hold
– The right of rectification of this data
-The right of erasure of this data
– The right of restriction or objection to the processing of this data
– The right of portability of his/her data to another controller or processor
In the event that the Website visitor/user objects to the processing of his/her personal data by the Company or in case he/she wishes to withdraw his/her consent (previously granted), the Company will abide by the respective instructions according to its legal obligations, provided that these are given in writing. It must be noted that objection or withdrawal of previously given consent will result to the Company being unable to achieve the purposes set out in this Policy. The withdrawal of consent has effect only for the future and any processing based on consent prior to its withdrawal remains lawful. The Company may continue to process the data even after the withdrawal of consent only to the extent permitted by law in order to abide by its legal obligations and/or defend its rights.
In the event that a Website visitor/user wishes to exercise any of the aforementioned rights, the Company shall undertake all necessary measures to satisfy the relevant request within the timeframes set by the law, by notifying the visitor/user in writing of the satisfaction of the request or, alternatively, of the reasons that prevent the exercise of such rights or satisfaction of such request.
For the exercise of his/her rights, any Website visitor/user may address the Company by submitting his/her request in writing at the following email address: firstname.lastname@example.org to the attention of the Data Protection Officer).
Moreover, any Website visitor/user has the right to contact the competent supervisory authority (Greek Data Protection Authority), which reviews written complaints in accordance with the instructions provided for in its website (www.dpa.gr), in case he/she objects to the processing of his/her data by the Company.