Data Protection Policy

Welcome to ELIO EVAN. We are committed to protecting the confidentiality of information entrusted to us and we comply with the Personal Data and Privacy Framework. Our commitment to personal data protection is a natural extension of our commitment to maintaining the confidentiality of information of our clients, employees and all those who do business with us. This Policy aims at providing information about the personal data that we collect through this Website and how we use them. We encourage you to carefully read this Policy, which sets out the context in which we process your personal data and informs you about your rights.

  1. Introduction – Data Controller
  2. The website found at www.elioevan.com, hereinafter referred to as the “Website” or “we” is owned by “Metapoiitiki & Emporiki Endymaton E.P.E.”, with a registered address at Palaion 14 Patron Germanou Str., 546 22, Thessaloniki, Greece, TIN EL998692101, hereinafter referred to as the “Company”. Telephone number: +30 2310 250509 Email: privacy@elioevan.com To provide its services but also to comply with its legal obligations the Company collects certain information about its visitors and members through the Website, which may lead to their direct or indirect identification. According to the applicable legal framework regarding data protection, some of this information is “personal data”, while you, as visitors or members, are “data subjects” and we, the Company, are the “data controller” of your data. If you have any questions about the way we process your data or exercise your rights, please contact us.

  3. Our key data processing principles
  4. The Company is committed to ensuring that your personal data are processed in a fair and transparent way, in compliance with the applicable legal framework, in particular the General Data Protection Regulation (GDPR)[Regulation (EU) 2016/679], laws 4624/2019 and 3471/2006, and other applicable legislative and regulatory framework.   To put it simply, this means that: - We process your data only for specified, explicit and legitimate purposes and we do not further process your data in a manner that is incompatible with those purposes (purpose limitation). - We only process data which are adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed (data minimization). - We make every effort to ensure that your data are accurate and that you can ask for their correction or erasure where applicable (data accuracy). - We keep your data in a form which permits your identification only for as long as it is necessary for the purposes for which the personal data are processed (storage limitation). - We make every effort to ensure the security of your data, and to prevent, among others, any unauthorised or unlawful processing and against accidental loss, destruction, or damage (integrity and confidentiality). To protect your data, we take all appropriate technical and organizational measures, we implement internal security policies and train our staff, which is bound by confidentiality and privacy clauses. In addition, we use technologies which ensure the security of your data (e.g. Secure Sockets Layer (SSL) certificate, encryption, certified hosting providers). Our Company integrates personal data protection principles in all aspects of the Company’s operation by design and by default, to protect the data subject’s rights.  We strictly follow the information security and data protection principles, we monitor the security measures on a regular basis and, if deemed necessary, aligning them with the new best practices.

  5. What data do we process and under which conditions
  6. In principle, the Company processes your data through the Website only when you provide it in an active manner to us (e.g. by contacting us submitting the Website’s contact form or when you register as a partner).  This does not fully apply to certain data which are collected with the help of cookies and similar technologies and other types of data which are collected automatically when you visit our Website (for more information please visit our Cookies Policy).

    1. Information we receive automatically
    2. Due to the nature and function of the Internet, as soon as you visit our Website, your IP address and other information, such as the date and time of your visit and the website from which your visit originated is recorded in our server’s special log files. Although we are not able to identify you on our own based on this information, your IP address is considered to be personal data. The legal basis for collecting and storing data in our server’s special log files is our legitimate interests, since our goal is to ensure network, information and services security, in case of accidental events or unlawful or malicious actions that compromise the availability, authenticity, integrity and confidentiality of stored or transmitted personal data [e.g. avoiding “denial of service” (DoS) attacks], as well as to effectively resolve any technical issues. This processing is in compliance with the applicable legal framework, as it does not entail serious risks for your rights and freedoms. Furthermore, it is necessary for the purposes of the legitimate interests pursued by us, according to the GDPR.

    3. Information provided to us by you
    4. We process personal data provided by you in the following cases:

      I. Contact us by submitting the Website’s contact form or via e-mail

      Data we process

      Purpose

      Legal basis

      1. email address
      2. First and last name
      3. Phone number (optional)

      Important note: In your message we advise you to mention only the necessary information regarding the issue you are interested in and avoid including personal data. We process this data to be able to contact you in response to your message. Submitting a contact form does not make you our “customer” and we will not include you in our database.