Notice on Article 13 of Regulation (EU) 2016/679 for the processing of personal data of subscribers of the website
Medfore (hereinafter referred to as the “Company”) bears primary responsibility for issues related to personal data and privacy. In this context, the Company addresses the present Notice to the subscribers of its website www.medfore.gr(hereinafter referred to as the “Website”) in accordance with Article 13 of Regulation (EU) 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation) (hereinafter referred to as “GDPR”) to inform them about how the Company collects and processes their personal data.
The Controller is the Company. This means that the Company determines the purposes and means of processing of personal data in accordance with the GDPR and the applicable data protection legislation in general.
The Company collects the subscribers’ personal data directly from them and not from third parties.
The following table sets out the purposes of processing of personal data collected by the Company, the categories of the personal data collected, as well as the legal basis for such processing.
PURPOSE OF PROCESSING
LEGAL BASIS OF PROCESSING (GDPR PROVISIONS)
The Company may use messaging applications / platforms, ensuring that they provide adequate data protection. Access to this data may be also available to IT professionals in the context of providing relevant services to the Company if this is necessary in the context of their services.
The Company shall process personal data by taking all appropriate organizational and technical measures for data security and protection against accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access and any other form of illicit processing.
This section sets out the data subjects’ right with respect to their personal data. These rights are subject to certain exceptions, reservations or limitations. Data subjects should submit any requests responsibly. The Company will respond as soon as possible and in any case within one (1) month of receipt of the request. If the review of the request is going to take longer, the data subject shall be informed accordingly. For any further information with respect to the exercise of the rights, please address to the email:
6.1. The right to information
Data subjects have the right to request and receive clear, transparent and easily understandable information about how the Company processes their personal data in accordance with the Company’s policies and procedures.
6.2. The right to access
Data subjects have the right to access their personal data free of charge, in accordance with the relevant policies and procedures of the Company, with the exception of the following cases where there may be a reasonable charge to cover the administrative expenses of the Company:
6.3. The right to rectification
Data subjects have the right to ask for their personal data to be corrected if they are inaccurate or incomplete, in accordance with the relevant policies and procedures of the Company.
6.4. The right to erasure («to be forgotten»)
Data subjects have the right to request the deletion or removal of their personal data when they are no longer necessary for the purposes collected or there is no legitimate reason to continue processing them in accordance with the Company’s policies and procedures. The right of deletion is not absolute, to the extent that there is a particular legal obligation or other legitimate reason for the retention of such personal data by the Company.
6.5. The right to restriction of processing
In some cases, data subjects have the right, in accordance with the relevant policies and procedures of the Company, to restrict or remove further processing of their personal data. In cases where processing has been restricted, personal data remain stored, without further processing.
6.6. The right to data portability
Data subjects have the right to request their personal data, which they have provided the Company with in a structured, commonly used and machine-readable format, and to transfer that data to another controller in accordance with the relevant policies and procedures of the Company.
6.7. The right to object
Data subjects have the right to oppose, at any time and for reasons related to their particular situation, to the processing of their personal data based on Article 6 (1) (f) of the GDPR (processing for reasons of lawful interest of the Company), on the basis of that provision. In such case, the Company as controller will no longer submit the personal data unless it demonstrates imperative and legitimate reasons for processing that override the interests, rights and freedoms of the subject, or the filing, exercise or support of legal claims.
6.8. Rights on automated decision-making mechanisms
The Company does not make automated individual decision-making, including profiling.
6.9. Right to withdraw consent
In case personal data are being processed on the basis of the data subjects’ prior consent, data subjects have the right to withdraw their consent at any time and the Company will cease the specific activity for which data subjects have previously consented, unless there is an alternative legal basis which justifies the continued processing of the data for this purpose, a case for which the Company will inform the data subjects respectively.
6.10. How to exercise the rights
The exercise of the aforementioned rights takes place with the submission of a written application to the Company in accordance with its policies and procedures. The Company reserves the right to reply no later than one month upon receipt of the request, in accordance with the terms of the GDPR.
For each category of personal data, the Company determines the retention period in accordance with the provisions of the law and its policies and procedures.
For any matter relating to the processing of personal data, data subjects may contact:
3, Agiou Nektariou, 15344 Gerakas
Telephone: +30-210 6047657
+30 210 6829493
For further information and advice on the exercise of the rights or to submit a complaint, data subjects may address to the Greek Data Protection Authority.
Address: 3, Agiou Nektariou, 15344 Gerakas
Telephone: +30-210 6047657
The Company aims to review and keep up-to-date the present Notice in order to comply with privacy laws and new developments. Any updates to this Notice will be communicated to data subjects immediately.
TERMS AND CONDITIONS
The website www.medfore.gr (hereinafter referred to as the “Website”) belongs to and is operated by Medfore (hereinafter referred to as the “Company” or “Medfore”), seated at 3, Agiou Nektariou, 15344, Gerakas, Greece.
The information included in the Website is not intended to constitute any offer to sell or the invitation or solicitation of an offer to buy any product or service or security by any company described or referred to in the Website or by any subsidiary, holding company, affiliate or associated company of such company and must not be relied upon in connection with any investment decision. Users should rely solely on their own investigation regarding any investment decision and should seek competent professional advice.
As a condition to the use of the Website, uses will not, directly or indirectly: (a) use the Website to infringe upon the intellectual property rights of others; (b) use the Website or make any attempt to penetrate, modify or manipulate the Website to invade the privacy of any other user thereof; (c) attempt to modify, erase or damage any information included
on the Website or any device connected thereto; (d) reverse engineer any portion of the Website; (e) restrict or inhibit others from using the Website; (f) engage in conduct or distribute material that is harmful, obscene, otherwise illegal or objectionable, or gives rise to civil or criminal liability; (g) spoof or otherwise impersonate any individual or entity; or (h) violate or attempt to violate the security or integrity of the Website. Medfore reserves the right to investigate and to involve and cooperate with law enforcement authorities, and to pursue a lawsuit or criminal prosecution, for any alleged or actual
harmful or illegal activities involving the Website.
The Company reserves the right, at any time, to modify or discontinue, temporarily or permanently, the Website, with or without notice, and also the right to modify these terms and conditions at any time. Users should visit the Website periodically to review the current terms and conditions.
The Website and all information and functionality included in it are not directed at or intended for use by any person resident or located in any jurisdiction where (a) the distribution of such information or functionality is contrary to the laws of such jurisdiction or (b) such distribution is prohibited without obtaining the necessary licenses.
No commercial use, resale or exploitation of material from the Website is permitted without the express written permission of Medfore and any other applicable copyright owners. Users may copy material on this Website for their own private or domestic use only. All other copying is prohibited.
Medfore does not give any representation or warranty as to the accuracy, reliability, or completeness of the information contained in the Website (the “Information”) nor as to the appropriateness of the Information for any use which any recipient may choose to make of it and accepts no responsibility for updating any part of the Information or for correcting any material error or omission which may become apparent after Information has been displayed on the Website. Except insofar as liability under any statute cannot be excluded, Medfore nor any of its and their directors, employees and consultants accept any liability (whether arising in contract, or tort, or negligence or otherwise) for any error, omission or misrepresentation in relation to the Information or for any loss, damage, cost or expense (whether direct, indirect, consequential or otherwise) suffered by the recipient of this Information or any other person as a result of any use of or reliance upon any Information or statement of any kind (including statements of fact or opinion) contained herein.
All content on the Website is provided “as is”, with no guarantees of completeness, accuracy or timeliness, and without representations, warranties or other contractual terms of any kind, express or implied. Medfore does not represent or warrant that the Website, any services provided through the Website, and / or any information or other material contained within or downloaded from the Website, will be accurate, current, uninterrupted, error-free, omission-free or free of viruses or other harmful components.
All links to our Website must be approved in writing by Medfore except Medfore consents to links in which: (i) the link is a text-only link containing only the name “Medfore”; (ii) the link points only to www.medfore.gr and not deeper pages; (iii) when activated by a user, the link displays that page full screen in a fully operable and navigable browser
window and not within a frame on the linked website; Medfore reserves the right to revoke this consent to link at any time.
Phishing, the practice of using fraudulent e-mails and copies of legitimate websites to extract financial data and other personal information from unsuspecting computer users, continues to expand in sophistication and customers of financial institutions and increasingly targets of these scams. Because phishing materials often look genuine and may appear to originate from real people, organizations, institutions, and websites, the following precautions are suggested:
Computer System Precautions:
E-mail fraud is a common way that thieves attempt to steal information. Here are some examples of methods used:
Spam messages are targeted, mass-distributed, unsolicited e-mails. These e-mails may contain offers to buy items, attempt to solicit business, or invitation to visit a website.
Unfortunately, while these offers may appear legitimate, many people have lost money responding to offers that are often fraudulent.
Medfore recognizes the crucial contribution Corporate Social Responsibility’s actions have on achieving Sustainable Growth and is passionately committed to having a positive impact on the subject. The Company has a broad understanding of its duties as a service provider, member of society and employer. Our approach also reflects our commitment to protecting the environment.
The Company encourages its people to contribute to actions that lead to sustainable development, supporting local communities and groups in need. Medfore places utmost care on ensuring that its employees maintain the highest standards of compliance with all legal, regulatory and internal requirements. The Company’s employees are asked to observe strict standards of professional conduct at all times. Compliance considerations are critically important when selecting employees, developing training tools, defining processes and rules and are a vital element of all the supervisory and control systems of Medfore.
Medfore strives to act with integrity, responsibility, fairness, transparency and discretion at all times in order to secure the trust of its stakeholders. The way Medfore interacts with its stakeholders is fundamental for its business and success.