Last update: 25 / 05 / 2018
-
-
-
SECURITY
At www.ppsathas.com (hereinafter referred to as “the Company”), we are committed to protecting your personal data and want to be open and transparent about how we process it. For this reason, we have created this Privacy Policy, which explains how we process and protect your personal data. The personal data voluntarily provided by the user anywhere on our website is intended solely for ensuring the functionality of the provided services and the legality of related transactions and may not be used by any third party without complying with the provisions of the General Data Protection Regulation (GDPR) (EU) 2016/679, the ePrivacy directive (2002/58/EC, amended by 2009/136/EC), as currently applicable regarding the protection of personal data.
Data Controller
The data controller of personal data in accordance with applicable law is P. Psathas Medical Company EE (hereinafter referred to as the “Company”), located at 438 Petrou Ralli Street, Nikaia Attikis.
This Policy constitutes an integral part of the Terms of Use. The last update of the Policy is indicated at the beginning. The Company manages the personal data of its users in accordance with national, European, and international laws regarding the protection of individuals with regard to the processing of personal data. These terms may change, so users of the website are advised to check them regularly. Please visit and read this Policy periodically as we may modify it from time to time.
We use the popular SSL (Secure Socket Layer) method in conjunction with the highest level of encryption supported by the web browser for visiting our website. It employs 256-bit encryption. If your web browser does not support 256-bit encryption, we will use the 128-bit v3 technology. The encryption of a webpage on our website is indicated by the closed representation of a key or lock icon in the browser’s status bar.
The Company also implements appropriate technical and organizational security measures to protect your data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access by third parties. Our security measures are continuously improved in line with technological advancements.
The Company makes every reasonable effort to ensure the security of users’ personal data by strictly adhering to security measures. However, users are informed that sending confidential information via email services is not the most secure method of transmission, as it carries risks of unauthorized access and reading of such information by third parties.
Data Retention Period The data provided by you is retained and stored by us only for as long as necessary to fulfill the purpose for which you have communicated your data to us and in compliance with applicable legal provisions. In any case, you have the right to withdraw your consent at any time with effect for the future.
Where do we store your data? The data we collect from you is stored within the European Economic Area (EEA).
-
USER RIGHTS
2.1 Summary of your rights under the Applicable Data Protection Law. Users who have disclosed their personal data to the Company have the following rights:
2.2 Right of access: According to Article 15 of the General Data Protection Regulation (GDPR), you have the right to request information about your personal data that we process. Specifically, you have the right to request information about the purposes of processing, the categories of personal data, the recipients to whom your data has been disclosed or the intended storage period, the existence of the right to rectification, erasure or restriction of processing, or objection to processing. To exercise this right, you can send us an email at gdpr@ppsathas.com.
2.3 Right of rectification: According to Article 16 of the GDPR, you have the right to request the rectification of your personal data if it is inaccurate or incomplete by sending an email to gdpr@ppsathas.com.
2.4 Right of erasure: According to Article 17 of the GDPR, you have the right to request the erasure of stored personal data processed by the Company, particularly when:
Your personal data is no longer necessary for the purposes for which it was collected or otherwise processed.
The processing of your data is based on your consent, and you withdraw that consent.
Your data has been unlawfully processed. However, this right does not apply when:
The processing of your data is necessary for the establishment, exercise, or defense of legal claims.
The processing of your data is necessary for compliance with a legal obligation imposed on the Company. In any case, we will inform you whether your request has been satisfied, and if not, we will provide you with the reasons for such refusal. To exercise this right, you can send us an email at gdpr@ppsathas.com.
2.5 Right to object: According to Article 21 of the GDPR, you have the right to object to the processing of your personal data based on the legitimate interests of the Company. In such a case, we will cease processing your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your rights and freedoms or for the establishment, exercise, or defense of legal claims. To exercise this right, you can send us an email at gdpr@ppsathas.com.
2.6 Right to object to direct marketing: You have the right to object to the processing of your personal data for direct marketing purposes. You can express your preference in the following ways: • Following the instructions provided in each email containing promotional content. • Sending an email to gdpr@ppsathas.com.
2.7 Right to data portability: According to Article 20 of the GDPR, in cases where the Company processes your personal data based on your consent or on a contract, you have the right to receive a copy of your data in a structured, commonly used, and machine-readable format. You can also request the direct transfer of your data to a third party. This right applies only to personal data that you have provided to us. To exercise this right, you can send an email to gdpr@ppsathas.com.
2.8 Right to restriction of processing: According to Article 18 of the GDPR, you have the right to restrict the processing of your personal data in the following cases:
- When you dispute the accuracy of your personal data, until the Company verifies its accuracy.
- When the processing of your data is unlawful, and you oppose their erasure, requesting instead the restriction of their use.
- When the Company no longer needs your personal data for processing purposes, but you require them for establishing, exercising, or defending legal claims.
- When you object to the processing of your data by the Company based on its legitimate interests, pending verification of whether the Company’s legitimate grounds override your rights and freedoms.
To exercise this right, you can send an email to gdpr@ppsathas.com.
2.9 Right to lodge a complaint with the supervisory authority: As a data subject, you have the right to exercise the rights provided by Regulation (EU) 2016/679, including the right to information and access, rectification, erasure (right to be forgotten), restriction of processing, data portability, and the right to object to processing by using the appropriate forms. These rights can be exercised by sending an email to the Data Controller at gdpr@ppsathas.com free of charge unless they are frequent and entail administrative costs for us, in which case you will be charged the relevant fee. Upon exercising any of these rights, we will take every reasonable measure to satisfy your request within thirty (30) days of receiving the relevant request, informing you either of its satisfaction or the reasons that prevent its satisfaction.
You have the right to file a complaint with the Hellenic Data Protection Authority regarding matters concerning the processing of your personal data. For the authority’s jurisdiction and the process of submitting a complaint, you can visit their website (www.dpa.gr -> My Rights -> Submit a Complaint), where detailed information is available.
-
COLLECTION AND USE OF DATA
3.1 The Company uses the data it collects for legitimate and lawful purposes related to the fulfillment of its legal interests and does not transfer, sell, assign, or exchange it with any third party outside the Company. Additionally, it takes all reasonable measures to ensure that the processing of Personal Data is reliable, accurate, and complete.
3.2 In cases where website users voluntarily provide their personal data (e.g., name, address, telephone number, or email address), the Company may collect and process them for the purpose mentioned below.
3.3 The purpose of processing is to communicate with the data subjects, provide information to interested parties about our programs, information about future events, various educational news and circulars, or in the case that a visitor wishes to become a member of our Website in order to access its services, such as receiving electronic newsletters or promotional materials that advertise the company’s services to interested individuals.
3.4 The recipient of non-sensitive personal data is solely the Company. Any communication with the website administrator is done by email to gdpr@ppsathas.com.
3.5 The Company, with the user’s consent, collects personal data when:
You fill in your details in the relevant contact form, from which the following are collected:
Full name
Email
3.6 The data is collected and used to fulfill the purposes of the Company as mentioned above, and the legal basis for processing according to Article 6(6) of the Regulation is the exercise of our legitimate interests. In any case, you have the right to withdraw your consent for the processing of your data at any time using the process extensively described in a previous article. For how long do we store your personal data? We will retain your personal data for direct marketing purposes until you withdraw your consent or object to the use of your personal data for direct marketing purposes.
3.7 Electronic newsletters – Newsletters
If the user has provided the relevant field and has consented to receiving informational and/or promotional materials for advertising purposes, their email address will be forwarded to MailChimp, an email service provider and marketing platform. You have the right to withdraw your consent at any time by sending an email to gdpr@ppsathas.com, and the right to object to the use of your personal data for direct marketing purposes or receiving our electronic newsletters. In every newsletter you receive, you also have the option to unsubscribe using the relevant link at the end of the email. Your email address will remain in the aforementioned databases until you explicitly request its removal. You can do this by using the unsubscribe links included in any email newsletters we send you or by requesting removal via email. When requesting removal via email, please provide your email address using the company’s designated email address.
-
Collection and Disclosure of Personal Data
4.1 The Company is committed not to sell, rent, publish, or disclose in any way the personal data of website users to any third party.
4.2 The Company may disclose personal data of its users to third-party legal or natural persons only if (not all conditions apply simultaneously):
- It has the explicit consent of the users for the disclosure of personal data.
- The disclosure of personal data to legal or natural persons collaborating with the Company is necessary for the fulfillment of user requests. Legal and natural persons collaborating with the Company have the right to process the personal data that users provide to the extent that it is strictly necessary to provide support to the Company.
- It is required by compliance with relevant legal provisions and solely to the competent authorities.
- Information Monitoring
5.1 Automatically Collected Information When Visiting Our Website We may collect behavioral tracking data from the website, such as how you use it, which pages a user visits, the duration of their stay on the website, the number of pages visited, and the referring websites that led a user to our corporate website. This data may be stored in third-party services such as Google Analytics for the purpose of improving the Company’s advertising campaigns. These data do not identify users, and they are retained for a period of up to two (2) years. When you visit the website, your web browser sends data to our servers. These pieces of information may include:
- Your IP address
- The date and time of your visit to the website
- The referring URL (the website from which the user originated)
- The pages you have visited on our website
- Information about the device and web browser you are using (browser type and version, operating system, etc.)
5.2 During the use of the website, data such as the user’s IP address, browser, operating system, date, and time of each request to our servers, and other similar information are collected and stored in our server log files. These pieces of information do not identify the user but are necessary for monitoring the smooth operation of our servers and protecting the website. Subsequently, and provided that we have obtained your consent as stated above, we may provide this information to advertisers and other partners to improve our services or provide other related services. None of this information can be linked to the identity or other personal data of individual users. We allow third-party companies to display advertisements and/or collect certain anonymous information when you visit the website. These companies may use anonymous, non-personally identifiable information during your visits to the website or other websites to provide advertisements for services that may be of interest to you.
5.3 Third-Party Applications Google Analytics (Google Inc.)
For advertising purposes, visitor data is provided to third-party services such as the Google and Facebook platforms in order to display advertising messages. This data is retained for a period of up to 2 years. The Google Analytics analysis service is provided by Google Inc. (“Google”) and uses the collected data to monitor and analyze the usage of this Application, generate reports on its activities, and share them with other Google services. Google may use the collected data to create contextual information and personalize advertisements within its own advertising network. Personal data collected includes cookies and usage data. Privacy Policy.
5.4 Social Media
On our website, in accordance with Article 6(1) of the General Data Protection Regulation (GDPR), we place Social Plug-ins from social networks such as Facebook, Twitter, and Instagram to increase the visibility of our website. This commercial purpose should be considered a legitimate interest according to the GDPR provision. The responsibility for ensuring the privacy-compliant operation of this function lies with the respective providers. We embed the plug-ins using the so-called “double-click” method to protect the visitors of our website to the best possible extent.
- a) Facebook
On our website, we use Facebook plugins to personalize the user experience, such as the “LIKE” or “SHARE” buttons. This is an offering from Facebook. If you visit a page on our website that contains such a plugin, your browser establishes a direct connection to Facebook’s servers. The content of the plugins is transferred directly from Facebook to your web browser and integrated into our website. By integrating the plugins, Facebook receives information to which your browser has access on the respective page of our website, even if you do not have a Facebook account or are not logged in to Facebook. This information, including the IP address, is transmitted directly from your web browser to a Facebook server in the United States and stored there. If you are logged in to Facebook, Facebook can directly associate your visit to our website with your Facebook account. If you interact with the plugins, for example, by clicking the “LIKE” or “SHARE” button, the corresponding information is transmitted directly to a Facebook server and stored there. The information will also be published on Facebook and displayed to your Facebook friends. Facebook may use this information for advertising purposes, market research, and personalized Facebook pages. For this purpose, Facebook creates user profiles regarding interests, relationships, etc. to evaluate, for example, the use of our website in relation to the advertisements displayed on Facebook, to inform other Facebook users about your activities on our website, and to provide other services related to the use of Facebook. If you do not want Facebook to associate the data collected through our website with your Facebook account, you must log out of Facebook before visiting our website. For the purpose, scope, and further processing and use of data by Facebook, as well as your related rights and privacy settings, please refer to Facebook’s Privacy Policy (https://www.facebook.com/about/privacy/).
- b) Twitter
On our website, we incorporate plugins from the Twitter Inc. (Twitter) social networking service. The Twitter plugins (tweet button) can be identified by the Twitter logo on our website. An overview of the tweet buttons can be found here (https://about.twitter.com/resources/buttons).
When you visit a page on our website that contains such a plugin, a direct connection is established between your browser and the Twitter server. Twitter receives information about your visit to our website, including your IP address. If you click the Twitter “tweet” button while logged into your Twitter account, you can link the content of our pages to your Twitter profile. This allows Twitter to associate your visit to our pages with your user account. We would like to point out that as providers of our website, we do not have knowledge of the content of the transmitted data or its use by Twitter.
If you do not want Twitter to associate your visit to our pages with your Twitter account, please log out of your Twitter account.
For more information, please refer to the Twitter Privacy Policy (https://twitter.com/privacy).
- c) Instagram
Our website uses plugins from the Instagram social network, operated by Instagram LLC, 1601 Willow Road, Menlo Park, CA 94025, United States (“Instagram”). The plugins are marked with the Instagram logo, for example, in the form of an Instagram camera.
When you visit a page on our website that contains such a plugin, your browser establishes a direct connection to Instagram’s servers. The content of the plugins is transmitted directly from Instagram to your browser and integrated into our page. Through this integration, Instagram receives information to which your browser has access on the corresponding page of our website, even if you do not have an Instagram profile or are not logged into Instagram.
This information, including your IP address, is sent from your browser directly to an Instagram server in the United States and stored there. If you are logged into Instagram, Instagram can directly associate your visit to our website with your Instagram account. If you interact with the plugins, for example, by clicking the “Instagram” button, this information is also transmitted directly to an Instagram server and stored there.
The information will be saved on your Instagram account and displayed in your contacts.
If you do not want the information collected through our website to be directly associated with your Instagram account, you should log out of Instagram before visiting our website.
For more information, please refer to the Instagram Privacy Policy (https://help.instagram.com/155833707900388).
-
COOKIES
6.1 Cookies are small text files that contain information stored on your computer’s web browser and can be removed at any time. They can help us recognize your computer the next time you visit our website or enable certain features on our webpages. Cookies are classified into the following categories:
- Strictly necessary cookies
- Session cookies
- Performance cookies
- Targeting/advertising cookies
6.2 To ensure the smooth operation of our websites, the Company uses cookies. Cookies are text files stored by the user’s browser on their computer. By using cookies, the Company can provide services that would not be possible without them. Users can delete cookies from their browser or disable them. If you do not wish to use cookies, you have the following options:
Change your browser settings to delete or prevent cookies from being stored on your computer or mobile device without your explicit consent. The “help” section in your browser will provide you with information on how to manage your cookie settings.
Change your cookie settings related to the Website by following the link titled “Cookies” at the bottom of the Website.
The Cookies We Use
What it does / Purpose
Session cookie Stored only for registered users after they log in and deleted when the browser is closed.
Persistent login cookie Stored only for registered users who have activated the “Stay logged in” option during their login. This cookie is deleted only when the user chooses to log out from the website (by selecting “Log out” in the main menu). Note that the session associated with this cookie has some limitations regarding access to specific pages on www.ppsathas.com. For example, to modify your profile information, you need a session cookie, which means you will be asked to re-enter your email address and password.
viewed_cookie _policy Used to display the message regarding the acceptance of cookies and store the user’s choice. It lasts for 1 year.
has_js Stored for all website visitors during the session. It lasts until the user exits our website (closes the browser or tab) and allows the website to determine whether the visitor’s browser supports the JavaScript language.
Google Analytics cookies Belong to the category of third-party cookies and are stored for all website visitors. They collect information about how visitors use our website, and their storage duration is determined by Google’s privacy policy. These specific cookies collect information in an anonymous format, including the number of website visitors, the origin of visitors, and the pages they visited on our site. We use the information to compile reports that help us improve our website. For more information: Google privacy policy
For more information on deleting or controlling cookies, visit www.aboutcookies.org.
-
MINORS UNDER 16 YEARS OLD
7.1 Through our website, we do not knowingly collect personal information from minors under 16 years of age without the prior consent of parents/guardians or individuals exercising parental responsibility for the minors. If we discover that we have collected any personal information from a minor under 16 years old without verifiable parental consent, we will delete the information from our database as soon as possible. If you believe that we may have collected information from a minor under 16 years old, please contact us.
-
-