GDRP policy
The present Personal Data Protection Policy ("Policy") concerns the way in which the company named "ΕΠΙΣΤΗΜΗ ΚΑΙ ΤΕΧΝΟΛΟΓΙΑ ΝΕΡΟΥ” Single Member Limited Liability Company" headquartered at 3, Ir. Polytechniou Str., 15344, Gerakas Attica, with the email address www.eten.gr, phone number +302106391986 (hereinafter referred to as "ETEN"), collects, stores, uses, and generally processes the personal data of visitors to the website www.eten.gr.
What are personal data?
The term "personal data" refers to information about individuals, such as name, postal address, email address, telephone number, etc., which identify or can identify your identity, hereinafter referred to as "Personal Data" or "Data".
What is the Processing of Personal Data?
Any act or series of acts performed with or without the use of automated means, on personal data or sets of personal data, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
What Data does ETEN collect and for what purposes?
1. Visitors or users of our website. For data collected from Cookies, please see the Cookie Policy.
2. Identity information (e.g., name, surname, date of birth),
3. Billing information (e.g., Tax ID, VAT number),
4. Financial data (e.g., payment details, debt information),
5. Contact information (e.g., home phone, mobile phone, email address),
6. Address/shipping information (e.g., postal address, city, postal code, country),
7. Profession.
For what purpose do we collect your data?
We collect your Data for the purpose of providing products and services of our Company.
What is the legal basis for processing the Data of the subjects?
We collect the Data of visitors only if there is a legal basis for their processing.
In any case, processing will be based on one of the following legal bases:
· Your consent, where required. You may withdraw your consent at any time.
· The legitimate interest of ETEN.
· The legal obligations of ETEN.
· The contractual relationship between us or the taking of measures prior to entering into a contract.
Who are the recipients of the Data?
Access to customer data is limited to the absolutely necessary personnel of the Company, who are committed to maintaining confidentiality.
Also, recipients of your Data are companies/businesses cooperating with us, which process your Data on our behalf acting as Data Processors for the purpose of supporting, promoting, and executing our transactional relationship.
Specifically, the courier company, the cooperating accountant with our Company.
How does ETEN ensure that its partners respect your Data?
ETEN's partners have agreed and committed to:
- Maintain confidentiality,
- Not send customers' Data to third parties without ETEN's permission,
- Take appropriate technical and organizational security measures,
- Comply with the legal framework for personal data protection, especially Regulation 979/2016/EU (otherwise GDPR) and Law 4624/2019.
Does ETEN send the Data of the subjects outside the EU?
Your Data is not sent outside the EU, as it is subject to processing only within Greece.
When does ETEN delete the Data of the subjects?
Data is retained for as long as necessary to fulfill the purpose for which it was collected, unless an extension of that time is required due to legal claims or legal obligations of ETEN.
Are the Data of the subjects secure?
Recognizing the importance of the security of your Personal Data, ETEN has taken all appropriate organizational and technical measures to ensure the security and protection of the Data from any unauthorized access, misuse, alteration, unauthorized disclosure, loss, or accidental/unlawful destruction and any other form of unlawful processing. These measures are reviewed and modified as necessary.
What are the rights of the subjects of the Data?
- They have the right to access their Data. This means they have the right to be informed by ETEN about how and which Data of theirs is being processed. They can request to be informed about the purpose of the processing, the type of their Data held, to whom it may be disclosed, how long it is stored, if automated decision making is being applied.
- They have the right to rectify inaccurate Data. If they find that there is an error in their Data, they can request the correction of inaccuracies and the completion of incomplete Data, to be complete and accurate.
- They have the right to erasure. They can request from ETEN to delete their Data if it is no longer necessary for the above-mentioned processing purposes.
- They have the right to data portability. They can request to receive their Data provided to ETEN in a readable format or to request ETEN to transmit it to another data controller.
- They have the right to restriction of processing. They can request from ETEN to restrict the processing of their Data for as long as their objections to processing are pending examination.
- They have the right to withdraw/object to the processing of their Data. They can object at any time to the processing of their Data or withdraw their consent, where required, and ETEN will cease processing their Data, unless there are overriding compelling legitimate reasons or if it is no longer necessary for the above-mentioned processing purposes.
How can the subjects of the Data exercise their rights?
The exercise of rights is done by submitting a request either by mail to 3, Ir. Polytechniou Str. 15344 Gerakas, Attica, or by email to assistant@eten.gr.
ETEN responds to requests promptly, and in any case, within one (1) month from receiving each request. However, if the request is complex or there is a large number of requests, it informs the Data subject within one month if it needs an extension of another two (2) months, within which it will respond.
If the Data subject does not receive a response within the above-mentioned deadline or the response received is not satisfactory or the issue has not been resolved, the subject may contact the Hellenic Data Protection Authority (www.dpa.gr).
Do we use automated decision-making/profiling during the processing of your Data?
ETEN does not make decisions or engage in profiling based on automated processing of the Data of the subjects.
What is the applicable law for the processing of your Data by us?
The applicable law is Greek Law, as formulated in accordance with the General Data Protection Regulation 2016/679/EU, and generally the current national and European legislative and regulatory framework for personal data protection. The competent courts for any arising disputes related to the Data of the subjects are the Courts of Athens.
How will you be informed about any changes to this Policy?
This Policy is updated whenever necessary. If there are significant changes to the Policy or to the way the Data of the subjects are processed, an update will be posted on the ETEN website, where the Data subjects can find relevant information.
Date of last modification
25/11/2020