(Privacy Notice)

Information on Personal Data

Our Center attaches particular importance to the protection of data, information, and confidentiality. As part of this fundamental obligation, our Center is committed to protecting and using in an appropriate manner personal information, often referred to as “personal data”, which have been collected through our official website or by any other appropriate means.

Our purpose is to collect only the personal data that are voluntarily provided by visitors to our website, so that we may provide them with information regarding policy analyses & assessments and updates on activities and events.

Please review this Privacy Notice in order to learn more about how we collect, use, transfer and protect the Personal Data we receive.

DIAPLASIS REHABILITATION CENTER S.A. (hereinafter the “Company”) informs the person to whom the personal data relate (hereinafter the “Data Subject”), who visits/uses the website www.diaplasis.eu (hereinafter the “Website”), that the processing of personal data is governed by the terms below, by the relevant provisions of the applicable Greek, European and international legislation on personal data, as well as by the relevant decisions, guidelines and regulatory acts of the Hellenic Data Protection Authority.

Data Controller

The Data Controller is the société anonyme under the name DIAPLASIS REHABILITATION CENTER S.A., headquartered in Kalamata, Messinia, with G.E.MI. No.: 14967345000, tel.: 27210 44700.

Personal Data collected and processed by the Company

The Company ensures the lawful and legitimate collection and processing of personal data. Personal data are information that identify directly or indirectly the Data Subject, particularly by reference to an identification element, such as name, e-mail address.

Upon completion and submission of the electronic contact form or the expression of interest form by the Data Subject, which may be available on the Website, the Data Subject provides their full name, e-mail address and contact telephone number.

The above personal data collected are strictly necessary for the implementation of the action/service requested by the Data Subject (see below “Purpose of Processing”).

The Data Subject ensures that the personal data provided are correct and accurate and undertakes to notify the Company of any change or modification thereof. Any loss or damage caused to the Company or to any third party through the disclosure of incorrect, inaccurate or incomplete information in the contact or expression of interest forms is the sole responsibility of the Data Subject.

Purpose of data processing

The Company and/or processors acting on its behalf collect, process and use personal data of the Data Subject, in accordance with the applicable legal provisions and this Information on Personal Data. The purpose of collecting and processing personal data is the communication of the Company with the Data Subject for the handling of the request submitted through the contact and expression of interest forms.

The Company collects and processes personal data exclusively and only for the above-mentioned purposes and only to the extent absolutely necessary for the effective fulfillment of these purposes. Such data are each time relevant, appropriate and not more than required in view of the above purposes, and are accurate and, where necessary, subject to updating.

Data retention period

Such data are retained only for the period required for the fulfillment of the purposes of their collection and processing, and are deleted in a secure manner thereafter, unless their continued retention is required by the applicable legislation.

Data security

The processing of personal data by the Company is carried out in a manner that ensures its confidentiality. The Company takes all appropriate organizational and technical measures for the security of the data and their protection from accidental or unlawful destruction, accidental loss, alteration, prohibited dissemination or access and any other form of unlawful processing. In general, although every effort is made to protect personal data, the Company cannot guarantee the security of data transmitted through its Website, as the transmission of information/data via the Internet is not completely secure.

Recipients of the data

The recipient of personal data is the Company itself as well as the processors acting on behalf of the Company (see for more information the immediately following relevant section).

The Company guarantees that it will not proceed to transfer, disclose, make available, etc. the personal data of the Data Subject to third parties for any purpose or use. However, it reserves the right to disclose information relating to the Data Subject, if the law introduces a relevant obligation or if such disclosure is required by competent governmental/state bodies, administrative authorities or law enforcement bodies.

Processors acting on behalf of the Company

The Company cooperates with third-party partners who, acting as processors in the name and on behalf of the Company and in accordance with its instructions for the above-mentioned processing purposes, undertake the storage of personal data that the Data Subject enters in the contact and expression of interest forms.

Cookies

The Company, in order to ensure the proper functioning of its Website, sometimes places small data files on the devices of the Data Subjects, known as “cookies”.

Cookies are small text files which a website stores on your computer or mobile device when you visit it. Through cookies, the website remembers your actions and preferences (such as language) for a period of time, so that you do not have to re-enter these preferences each time you visit the website or browse its pages. Among other things, cookies help us analyze how you use our website and whether you encounter problems during your navigation.

More information about cookies can be found at www.allaboutcookies.org.

On our website we use functionality cookies and usage statistics cookies. For more detailed information about the cookies we collect, click here.

Links to third-party websites

Any possible interconnection of the Website through special hyperlinks (links, hyperlinks, banners) with any other third-party website does not imply the assumption of any responsibility by the Company for the policy followed on that website regarding the protection and management of personal data. Data Subjects should ensure that they are informed about the protection and management of their data by such websites.

Rights of Access and Objection

The Data Subject has the right to know whether personal data relating to them constitute or have constituted an object of processing (right of access). The Data Subject also has the right to raise objections at any time in writing regarding the processing of their personal data.

The right of access and objection may be exercised by sending an email to dpo@diaplasis.eu from the email address through which the contact or expression of interest form was submitted, in order to enable the identification of the Data Subject.

Alternatively, the Data Subject may contact the Company at its headquarters, B’ Parodos Artemidos 1 – Kalamata, tel. 27210 44700, fax: 27210 41705, during which the Company may request the Data Subject to verify their identity before satisfying the request.

Contact with the Hellenic Data Protection Authority

In case the Data Subject considers that the protection of their personal data is violated in any way, they may appeal to the Hellenic Data Protection Authority, at the postal address: Hellenic Data Protection Authority, Offices: Kifisias 1-3, P.C. 115 23, Athens, tel. 210 6475628, e-mail contact@dpa.gr.1

Since this information and the data protection terms contained herein may be modified, Data Subjects should regularly stay informed about its content and check for any changes.