PRIVACY POLICY
The primary goal of this policy is to provide general guidelines on issues related to the protection of Personal Data (collection, use, disclosure, monitoring, etc.) for the Greek company PROTYPO KENTRO DIATROFOGENETIKIS, DNANUTRICOACH®, Valentini Konstantinidou, located at Grigoriou Lampraki 36, Glyfada, 16674, Attica, Tel. 210 9615860, www.dnanutricoach.com, email: info@dnanutricoach.com.
PURPOSE OF THIS POLICY
This policy explains how the company DNANUTRICOACH®, Valentini Konstantinidou (hereinafter referred to as “the company”) may collect information about its customers and use it to meet customer and regulatory requirements. It also outlines some of the security measures the company takes to protect the privacy of data and provides certain guarantees regarding actions that the company will not take.
LEGAL AND REGULATORY FRAMEWORK
The management and protection of the personal data of visitors/users of the Company’s services are subject to the terms of this section as well as the relevant provisions of Greek law (Law 2472/1997) for the protection of individuals regarding personal data protection as amended by decisions of the President of the Personal Data Protection Authority, Presidential Decrees 207/1998 and 79/2000, and Article 8 of Law 2819/2000, as well as the new European General Data Protection Regulation (GDPR: 2016/679 of the European Parliament and Council of April 27, 2016, http://eur-lex.europa.eu/legal-content/EL/TXT/HTML/?uri=CELEX:32016R0679&from=EN).
These terms are formulated in consideration of the rapid development of technology, particularly the Internet, and the existing—albeit not fully developed—legal framework regarding these issues.
In this context, any future relevant regulation will be subject to this section. In any case, the company reserves the right to change the terms of personal data protection, updating visitors/users within the existing or any future legal framework. If a visitor/user disagrees with the terms of personal data protection outlined in this section, they must refrain from using the services of the company.
COMMITMENT
The company considers the protection of privacy and customer data to be of utmost importance and is committed to providing all customers with personalized services that meet their requirements while ensuring the privacy of their information.
COLLECTION AND PROCESSING OF PERSONAL INFORMATION
The company manages and processes your personal data in full compliance with the relevant articles of the GDPR (Articles 5, 6, 7, 8, 9, 10, 11, etc.). Specifically, regarding Article 5 (Principles for the processing of personal data), the company takes appropriate measures to ensure that personal data:
a) Is processed lawfully, fairly, and transparently in relation to the data subject (“lawfulness, fairness, and transparency”),
b) Is collected for specified, legitimate purposes and is not further processed in a manner incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research, or statistical purposes is not considered incompatible with the original purposes in accordance with Article 89(1) (“purpose limitation”),
c) Is adequate, relevant, and limited to what is necessary for the purposes for which it is processed (“data minimization”),
d) Is accurate and, when necessary, kept up to date. All reasonable steps are taken to ensure the immediate deletion or correction of personal data that is inaccurate, in relation to the purposes of processing (“accuracy”),
e) Is kept in a form that allows identification of data subjects only for as long as necessary for the purposes of processing personal data; personal data may be stored for longer periods if they are processed solely for archiving in the public interest, for scientific or historical research, or for statistical purposes, in accordance with Article 89(1), and appropriate technical and organizational measures are applied to safeguard the rights and freedoms of the data subject (“storage limitation”),
f) Is processed in a manner that ensures appropriate security of personal data, including protection against unauthorized or unlawful processing and accidental loss, destruction, or damage, using appropriate technical or organizational measures (“integrity and confidentiality”).
Some of the personal information the company holds about you may be sensitive personal data, as defined by data protection law and other relevant laws.
The company may collect personal information about you from various sources, including:
(a) From you when you agree to take a service from our company, which may include your personal or business contact details and your consent,
(b) From you when you contact the company with a request for information, and
(c) From publicly available sources.
TYPES OF PERSONAL DATA WE COLLECT
When you interact with the company, we will request or receive data with your consent, such as:
- Your name,
- Your email address,
- Your phone number,
- Your social media profile,
- Your gender,
- Your age,
- Information regarding the products and services you have or wish to purchase,
- Your use and activities on the company’s websites, and
- Other information related to your behavior on the Internet.
We also collect personal data through cookies (see details in Section 16), such as: - Your IP address,
- Your cookie ID,
- Your browser,
- Your location,
- The websites you visit on our websites,
- The advertisements you view or click on.
INTELLECTUAL AND INDUSTRIAL PROPERTY RIGHTS
Except for explicitly mentioned exceptions (third-party copyrights, collaborators, and organizations), all content of the Company, including images, graphics, photos, designs, texts, provided services, and generally all files on this website, constitute intellectual property, registered trademarks, and service marks of the Company, protected by relevant provisions of Greek law, European law, and international treaties. Therefore, none of these can be sold, copied, modified, reproduced, republished, or downloaded, transmitted, or distributed in any way.
USE OF INFORMATION
The information you provide to the company or that the company holds will be used by the company for:
(a) Verifying your identity when making inquiries,
(b) Contacting you about improving the management of services and products provided by the company in the past, now, or in the future,
(c) Conducting marketing analysis and creating statistical information,
(d) Preventing and detecting fraud or loss, and
(e) Contacting you by any means (including mail, email, phone, etc.) for other services and products offered by the company.
CREDIT CHECK
In certain cases, the company may conduct credit checks with relevant authorities when you apply for a service or product. If applicable, this will be explicitly mentioned in the terms and conditions of the business relationship between you and the company.
DISCLOSURE OF INFORMATION
Under no circumstances does our company share your personal information with third parties (Article 11 of Law 2472/1997) and in accordance with the new European General Data Protection Regulation (GDPR: 2016/679 of the European Parliament and Council of April 27, 2016). The company does not sell or rent your personal data to third parties. These details are used by our company to continuously improve our services. The company may disclose information only if legally requested for legal or regulatory purposes, as part of judicial proceedings, or in the event of potential legal processes.
DATA PROTECTION
The company maintains strict security measures and controls to protect your personal information. This includes, in accordance with the GDPR (Articles 5, 28, 30, 32, 33, 34, 40, 55–58, etc.), a set of administrative measures, security policies, procedures, and practices to verify your identity when you contact us, encrypt data on our websites and files, create appropriate backups of data, etc., to ensure compliance with all applicable legal requirements.
We have taken measures to ensure that any personal data retained on our behalf by third parties complies with European legislation and that the same security standards are met.
We share your personal data with your consent or as required by law to complete a transaction or provide a product you have requested or authorized. We share data for executing contracts with suppliers or carriers working on our behalf, when required by law, or to respond to legal processes, to protect lives, the safety of our products, or to protect the rights or property of our company.
ACCESS TO THE INTERNET
If you contact the company through the Internet, and you give your consent, we may occasionally use email to communicate with you regarding our services and products. You should be aware that Internet communications, such as email, are not secure unless encrypted. The company is not responsible for any unauthorized access or loss of your personal information that is beyond the company’s control. We may use ‘cookies’ to track user activity on our website. You can change your browser settings to prevent the acceptance of cookies. However, rejecting cookies may affect your ability to use any products and/or services on our company’s website.
MONITORING COMMUNICATIONS
All communications between you and the company (including phone calls, etc.) may be monitored and recorded by the company for security, quality assurance, and legal, regulatory, and educational purposes. In such cases, you will be notified at the start of the communication.
YOUR RIGHTS
Under Law 2472/97 and the new European General Data Protection Regulation (GDPR: 2016/679), you have the right to information, access, deletion, restriction of processing, rectification, objecting to the processing of your data, portability, and withdrawal of consent.
RIGHT TO ACCESS
You have the right to request information about your personal data that we hold. This includes information about:
(a) The categories of personal data we process,
(b) The purposes of processing,
(c) The recipients or categories of recipients to whom your data is disclosed,
(d) The retention period of your data, or the criteria used to determine this period,
(e) Your rights regarding the rectification, erasure, or restriction of processing,
(f) The right to lodge a complaint with a supervisory authority.
To exercise your right to access, you can submit a request to us by email or written communication. We will respond within a reasonable time, usually no later than 30 days after receiving your request.
RIGHT TO RECTIFICATION
If any of your personal data held by the company is inaccurate or incomplete, you have the right to request that it be corrected or completed.
RIGHT TO ERASURE (RIGHT TO BE FORGOTTEN)
You have the right to request the erasure of your personal data, and the company will comply if:
(a) The data is no longer necessary for the purposes for which it was collected,
(b) You withdraw your consent (where processing is based on consent) and there is no other legal basis for processing,
(c) You object to the processing and there are no overriding legitimate grounds for the processing,
(d) The data has been unlawfully processed,
(e) The data must be erased to comply with a legal obligation.
RIGHT TO RESTRICTION OF PROCESSING
You have the right to request that the processing of your personal data be restricted in the following cases:
(a) If you contest the accuracy of the data,
(b) If the processing is unlawful and you object to the erasure of the data,
(c) If the data is no longer needed for processing purposes but you need it for the establishment, exercise, or defense of legal claims,
(d) If you object to processing and verification is needed to determine whether the legitimate grounds for the processing override your rights.
RIGHT TO DATA PORTABILITY
You have the right to receive your personal data in a structured, commonly used, and machine-readable format, and to transmit it to another controller. This right applies only to data that you have provided to the company and that is processed based on consent or the performance of a contract.
RIGHT TO OBJECT TO PROCESSING
You have the right to object to the processing of your personal data in certain circumstances, including when processing is based on legitimate interests or is for direct marketing purposes.
WITHDRAWAL OF CONSENT
If the processing of your personal data is based on your consent, you have the right to withdraw that consent at any time. This will not affect the lawfulness of the processing based on consent before its withdrawal.
To exercise any of your rights, please contact us at the email or postal address provided at the beginning of this policy. If you are not satisfied with how we handle your data or respond to your requests, you have the right to lodge a complaint with the relevant Data Protection Authority.
COOKIE POLICY
Our website uses cookies to improve user experience and to analyze website traffic. Cookies are small text files placed on your device when you visit a website. We use cookies to:
- Improve the functionality of our website,
- Customize your experience,
- Analyze the effectiveness of our marketing efforts,
- Provide social media features.
You can manage your cookie preferences through your web browser settings, allowing you to accept or reject cookies. However, blocking certain cookies may affect the functionality of our website.
CHANGES TO THE PRIVACY POLICY
We may update this Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements. Any changes to the policy will be posted on our website, and the updated policy will take effect as soon as it is posted.
CONTACT DETAILS
If you have any questions or concerns regarding this Privacy Policy or how we handle your personal data, please contact us at:
PROTYPO KENTRO DIATROFOGENETIKIS (DNANUTRICOACH®)
Valentini Konstantinidou
Grigoriou Lampraki 36, Glyfada 16674, Attica
Tel: 210 9615860
Email: info@dnanutricoach.com
Website: www.dnanutricoach.com