The company “MALAMA MONOPROSSOPI I.K.E.”, which is based on Reserve Officers Street no. 36 in Drama, with VAT number 801839063, number G.E.MH. 164306219000, telephone 25214-02515 and email address email@example.com (hereinafter the “Company”), respects the privacy of natural persons and takes very seriously the need to protect their personal data.
This informative text provides, to every person who is interested in receiving our services in any store of the Company and/or to every visitor – user of the Company’s web pages, concise, fully defined and transparent information regarding the practices, which are followed for the management and protection of personal data.
- What is the purpose of this Policy?
- What is personal data?
- How is personal data collected?
- What personal data is collected?
- What principles govern the processing of personal data by the Company?
- Who collects the personal data and for what purpose? Are they passed on to third parties?
- How long is my personal data kept?
- What are my rights? What can I do if I have a problem with the processing of my personal data?
- Is my data safe?
- How is my personal data collected and used on the Website?-Cookies- Google Analytics– What is true about links (“links” – “hyperlinks”) to other websites-IP addresses and URLs
- What applies to the Company’s Website regarding children’s personal data?
- How to Contact Us
1. What is the purpose of this Policy?
This Policy is intended to inform about the way in which the personal data of customers and users of the Company’s website is collected, stored, used and possibly transmitted, the security measures taken by the Company to protect personal data, the reasons and the period of time they are stored, but also for the type of personal data collected. Concerns any act or series of acts carried out with or without the use of automated means, on personal data or sets of personal data, such as the collection, registration, organization, structure, storage, adaptation or change, retrieval, retrieval of information, use, disclosure by transmission, dissemination or any other form of disposal, association or combination, restriction, deletion or destruction.
The Company unilaterally reserves the right to update, modify, add, change its services and this Policy, from time to time, whenever it deems this necessary, without prior notice, always within the current legal framework and in accordance with any changes in the current legislation on personal data protection.
The Company encourages every interested party to check this Policy at regular intervals in order to be informed of the changes that have been made.
2. What is personal data?
Personal data is any information that concerns a specific natural person or a person whose identity can be ascertained (eg name, ID number, address, etc.). The Company will not process your personal data without your consent. However, the Company reserves the right to process your personal data, to the extent permitted or required by law, and/or by a contract you entered into with the Company, and/or by court decisions or prosecutorial orders/orders.
3. How is personal data collected?
Your personal data is collected in the following ways:
(a) you provide them to us when you contact the Company in order to receive information from our company or to enter into a service contract with us (HOWEVER THE WEBSITE DOES NOT HAVE AN OPTION TO CONCLUDE A CONTRACT ELECTRONICLY), when you participate in a Company event, when you submit a job application to the Company, when you fill in electronic forms or send electronic mail (“e-mail”), with the aim of obtaining information or using the services available on the Company’s website https://www.malamacare.gr. In addition, you provide them to us when you contact us by e-mail, telephone or post, for example, when you contact the Company’s secretariat, you will be asked to provide us with your personal information, such as name, email address, etc.
(b) collected while browsing the website e.g. Cookies, for website functionality and/or statistical analysis (e.g. Google). In cases where your consent is required for the collection of your personal data, this is expressly requested from you and you have the right to withdraw it at any time.
4. What personal data is collected?
In summary, the personal data collected and further processed are:
– your name, phone number and email address when you choose to contact us via our website contact form (CONTACT field)
In addition to the above data, technical information may be collected, which constitutes personal data, such as for example the Internet Protocol address (“Internet Protocol Address”, IP) of your device [e.g. electronic computer, portable computer (“laptop”), tablet computer (“tablet”), smart mobile phone (“smartphone”)]. This technical information is used for the smooth operation and performance of the websites and electronic services, and is not permanently stored in the Company’s infrastructure.
We may also use the information in other ways, of which we will provide you with specific notice at the time it is collected.
5. What principles govern the processing of personal data by the Company?
The Company processes your personal data in a legitimate and legal manner for clearly defined purposes stated in this Policy. Your personal data processed by the Company is limited to what is absolutely necessary to achieve these purposes, is accurate and up-to-date, is kept for a period of time determined by the purposes of the processing, is protected by adequate security measures and is not transmitted to countries that do not ensure satisfactory protection level.
6. Who collects the personal data and for what purpose? Are they passed on to third parties?
The Company will use the information you provide for the above purposes if:
- It is necessary to enter into a contract to which you are a party (eg, to process your payment and perform the service you have requested from the Business), or if
- We have received your consent, or if
- We have a legitimate interest to do so (including a legitimate interest to carry out research activities, data analysis and internal administration functions, processing and enforcing legal requirements and conducting our business in accordance with all applicable laws, and our policies).
Personal data is collected and processed by the employees of the Company authorized by service, for the sole purpose of providing the respective service and/or executing the contract. They are transmitted only to authorized third parties committed to maintaining confidentiality, when they are required to have access in the context of the provision of said services and/or the execution of the contract (e.g. external accountant, server hosting provider, etc.).
Upon your order or your express consent, your personal data may be transmitted to third parties and/or companies cooperating with the Company.
The Company expressly undertakes not to commercialize your personal data by making it available for sale/rent, giving it, transferring/publishing or communicating it to third parties or to use it in any other way and for other purposes that may endanger privacy, rights or your freedoms, unless required by law, court decision/order, administrative act or if it is a contractual obligation necessary for the proper functioning of the Company’s website and the realization of their functions.
Personal data may be transmitted to partners, or to third parties, complying with the terms of this Policy and committed to maintaining confidentiality, who act on behalf of the Company for further processing in order to provide services, evaluate and improve the functionality of website, data management and technical support purposes, only after the user has been informed in advance and his consent has been obtained.
These third parties have contractually committed to the Company, that they will use the personal data only for the above reasons, and will not transmit the personal information to third parties, and will not share it with third parties unless required by law.
The third parties – processors or joint processors – to which some of your personal data may be transferred – depending on the circumstances – may be:
– hosting επιχείρηση: https://top.host
– Instagram: https://www.instagram.com
7.How long is my personal data kept?
Your personal data is kept for as long as required by the nature of the service provided by the Company or the sales contract, which you yourself have chosen and additionally, for as long as the relevant Legislation determines.
The Company does not retain your data for a period of time longer than is necessary to fulfill the purpose for which it is processed. To determine the appropriate retention period, the Company takes into account the amount, nature and sensitivity of the personal data, the purposes for which it is processed and the possibility of achieving these purposes by other means.
The Company also takes into account the time periods for which it may be necessary to retain personal data in order to fulfill its legal obligations (e.g. in relation to tax audits) or to respond to complaints/inquiries and to protect our legal rights in the event of a claim (20-year duration based on 904ff. Civil Code).
When we no longer need or have a legitimate reason to retain it, your personal data is securely deleted or destroyed.
The Business also considers whether and how it can minimize over time the personal data it uses, and whether it can keep it anonymous or pseudonymised so that it can no longer be associated with you or identify you. In this case, they may be used by the Company without further notice.
8. What are my rights? What can I do if I have a problem with the processing of my personal data?
A) You have the right at any time to ask us which of your personal data we process, for what purposes we do it, if we give it to third parties and to whom, as well as other relevant information. (right to information)
B) You also have the right to receive a free copy of your personal data upon your request. This copy will be given to you within one month of submitting your request. This deadline may be extended by a further two months if necessary, taking into account the complexity of your request and the number of your requests. (access right)
C) Other rights that you have under the relevant legislation on the protection of personal data include the right to request the updating and/or correction of your data, the suspension and/or restriction of their processing and their deletion from the Company’s systems, as long as there is no other legal obligation to maintain them.
D) You also retain the right of portability and/or opposition to the processing of your personal data.
The Company makes every effort to respond to your requests without delay and in any case within a month of their receipt. This deadline can be extended by two (2) more months, if necessary, taking into account the complexity of the request and the number of requests. You will be informed about this extension as well as the reasons for the delay within one month of receiving the request from the Company. If you submit the request by electronic means, the response will be provided to you, if possible, by electronic means, unless you request otherwise (eg a written letter).
You can exercise all of your above rights by submitting a relevant request in writing to the address: Reserve Officers No. 36, P.O. 66131, Drama and/or via e-mail at firstname.lastname@example.org. For your convenience, you can download and complete the Rights Exercise Form here. The Company declares that it has appointed a Data Protection Officer (DPO) who you can also contact at the email address email@example.com
In any case, you have the right to address the competent Authority for the Protection of Personal Data (APDPH) and/or to bring legal action. The Authority’s address is Kifisias 1-3, its website is www.dpa.gr and its contact phone number is 210 6475000 and fax 210 6475628. In the event of legal action, the Courts of Thessaloniki are competent.
9. Is my data safe?
The Company considers the privacy of the persons whose personal data it processes extremely important and makes every effort to protect them, both in terms of the confidentiality/confidentiality of the information, and in terms of its integrity (not to be altered, not accidentally damaged etc.).
In this context, the Company takes all appropriate organizational and technical measures, designed to protect information from loss, misuse, unauthorized access, disclosure, distortion or destruction and takes care of the legitimate and legal collection and processing of personal data as well as for their safe keeping in accordance with the relevant provisions of both Greek, Community and international law regarding the protection of individuals from the processing of personal data, as well as the decisions of the Personal Data Protection Authority, preserving privacy and the confidentiality of any information that comes to its knowledge. In particular, this Policy fully takes into account the provisions and articles of Regulation (EU) 2016/679 of the European Parliament on the protection of natural persons against the processing of personal data and on the free movement of data (“General Data Protection Regulation” – “GDPR”) as well as its implementing provisions and legislation and constantly makes every effort to comply with it and the other relevant Personal Data Protection Laws in force at any given time.
For example, we mention that:
I) Access to the Company’s systems is controlled by a firewall, which allows the use of specific services by users while prohibiting, at the same time, access to the Company’s systems and databases with confidential data and information.
II) Access to the contact information of visitors/users of the Company’s website is limited to authorized persons who are committed to confidentiality (authorized employees, service providers) and are reasonably considered to need to know this information in order to provide products or services to visitors / users of the Website or to perform their work.
III) Furthermore, the Company’s website has an SSL protocol certificate. The SSL (Secure Sockets Layer) protocol is today the global standard on the internet for certifying websites to web users and for encrypting data between web users and web servers. An encrypted SSL communication requires that all information sent between a client and a server be encrypted by the sending software and decrypted by the receiving software, thus protecting personal information in transit. In addition, all information sent with the SSL protocol is protected by a mechanism that automatically checks if the data has been changed in transit.
10. How is my personal data collected and used on the Website?
The collection of personal data on the Company’s Website is done in the following cases:
– When you request information about the services and/or products provided by the Company through the contact form (Contact field)
– By the use of data collection means when you visit our website: In addition to the aforementioned information that you voluntarily give us, certain information is automatically collected when you visit our website through data detection technologies that we use from time to time, such as cookies or similar technologies (see . below in the next chapter more details and information, in detail about cookies).
– To monitor the smooth operation and improve the functionality and performance of websites: Internet Protocol address (“Internet Protocol address”), browsing patterns (“browsing patterns”), information about the use of a website, browser history (“browser history”), geographic identification data (“geolocation”), elements of the HTTP protocol, etc. This data is kept in an aggregated form so that it is not possible to identify the users.
– By navigating our website, cookies collect information from your computer, including technical information such as: your IP (Internet Protocol) address, your operating system, the type and version of your browser, the referring website as well as information about your shopping preferences, products you have viewed/searched and your activity on our website. If you are a wireless user and access the Internet through your mobile phone or other devices, you should contact your provider to find out if they are collecting your personal information.
The above-described collection and processing of personal data has the sole purpose of:
– the statistical analysis of the traffic and use of the Company’s websites,
– the satisfaction of users’ requirements as well as direct communication with the aim of informing about new services and products of the Company (provided consent has been provided by users)
The further transmission to third-party collaborating organizations will be done at the request of the visitors/users themselves. The user’s consent is expressly requested, after being informed about the purposes and the legal basis for the use of personal data and is a basic condition for any processing or transmission of the user’s personal data.
-What are Cookies & internet tags?
On our site we only use necessary/functional Cookies.
Cookies and Other Automated Means of Data Collection
Cookies are small information files that are stored on your computer’s browser. Websites can only access cookies stored on your computer. Any website that you have accepted to store cookies in your browser can only access its own cookies and not cookies from other websites.
IP addresses and URLs
The IP address is a unique identifier that some electronic devices use to locate and communicate with each other on the Internet. When you visit our websites, we can see the IP address of the device you used to connect to the Internet. We use this information to determine the general geographic location of the device and to understand which geographic areas visitors to our website come from. We may use this information to change the way our website is presented to improve your visit.
A URL (Uniform Resource Locator) is a unique locator or address for any medium on the internet and is essentially the address of the web page you are visiting. We will use this information to see which websites have traffic and how you navigate our website
Google Analytics (GA4)
In addition to the above cookies, our website uses the traffic statistics provided by the Google Analytics service of Google Inc. namely Google Analytics’ new anonymous service, GA4 designed for the future of measurement and:
- Collects website and app data to better understand the customer journey
- It uses events instead of session-based data
- Includes privacy controls such as cookie-free metrics and behavioral and conversion models
- Predictive capabilities offer guidance without complex models
- Direct integrations into media platforms help secure actions
Learn more about the use of Google Analytics (Ga4) here https://support.google.com/analytics/answer/10089681?hl=en
Google may also transfer this information to third parties, provided that this is required by law or if any third parties process the data on its behalf. Google will not associate your IP address with any other data it holds. You can disable Google Analytics by selecting the appropriate settings in your browser, but we point out that in such a case you may not be able to use all the features of this website.
In any case, by clicking on the display of location information on the website https://malamacare.gr/ you have the possibility to identify all the cookies used as well as the duration of each one. The cookies used are:
- _ga : to separate users with an expiration date of 2 years
- _ga_3EJ54KZKWM with an expiration date of 2 years
- privacy_embeds : to separate users with an expiration date of 24 hours
- wordpress_test_cookie :expires at the end of navigation
- wp_settings_time_5 : with an expiry date of 1 year
- wp-wpml_current_language: for the language of the website, expires at the end of navigation
- wp_lang : for the language of the website, expires at the end of navigation
What is true about links (“hyperlinks”) to other websites?
The Company’s Website may contain references via hyperlinks to other websites, for the content and services of which the Company bears no responsibility, nor does it guarantee their permanent and safe accessibility. The Company shall in no way be deemed to accept or adopt the content or services of the hyperlinked websites or to be associated with them in any way. For any problem that may arise during the use of the above websites, the respective owner of this website is solely responsible. In the case of hyperlinks to other websites, the Company is not responsible for the terms of management and protection of personal data they follow.
We use social media to present the work and services of the Company through widely used and modern channels. The Company’s use of social media is specifically highlighted on our Website. For example, you can watch informative videos that we post on our personal YouTube page and follow (from our Website) our links on Instagram, Facebook, Google+, Twitter and LinkedIn.
The Company strongly urges users to consult the respective policy of each third party (e.g. search engines, social media companies such as Facebook, Instagram, etc.) in order to be informed of the practices they follow in order to protect their personal data.
The Company’s Website may contain display of material with advertising/informational content, purpose and character. The Company bears no responsibility towards the visitor/user, as well as any third parties, for any illegal act or omission, inaccuracy or failure to comply with the laws and regulations of any country or the European Union in relation to the content of these updates. The Company is not obliged to examine and does not examine the legality or otherwise of the informational material displayed on the above website and therefore cannot be held responsible of any kind. This responsibility rests with the advertisers, sponsors or creators of the displayed advertising material.
11. What applies to the Company’s Website regarding the personal data of minors?
The Company and its website are not aimed at minors under the age of 18, therefore in no way does it process personal data from minor visitors/users of its Website.
13. How to Contact Us
A) sending a written notification to the address of the Data Controller:
“MALAMA MONOPROSOPI IKE”
Reserve Officers No. 36
TK 66131 – Drama
B) and/or electronically to the email: firstname.lastname@example.org together with a copy of your identification document,
C) or call us by phone at 25214-02515 or 6932 352400 52400