1. According to the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 applicable from 25 May 2018 TOP MEDIKONS CENTER S.R.L. has the obligation to manage in safe conditions and only for the specified purposes, the personal data that you provide us.
2. What personal data do we process
We collect, process and store the personal data necessary to fulfill the contract or order sent by you, respectively: name, surname, address, e-mail, telephone, personal numerical code.
3. How we process personal data
We process personal data collected only for legitimate purposes, respectively in order to fulfill the contractual obligations assumed, e.g. for the delivery of the ordered products, for the repairs of the products within the warranty period or for the service activities in general, for marketing purposes, in order to prevent and combat frauds or money laundering activities etc. The data processing is always performed based on the contracts concluded with our company / orders sent to our company, based on legal requirements, taking into account our legitimate interest or based on your consent.
4. We communicate personal data to other recipients
We communicate personal data only in order to fulfill the obligations assumed towards you, respectively to the subcontractors with whom we have concluded contracts in this respect, these having in their turn the legal obligation to respect the security and confidentiality of personal data.
5. How long we process personal data
We will process personal data for the period necessary to fulfill the purpose for which they were collected, in accordance with existing legal provisions or if their processing is carried out strictly for purposes for which your consent is required, we will process them until such time as you will disagree in this regard.
6. What are your rights and how can they be exercised
The right to information – you can request information regarding the activities of processing your personal data carried out by our company;
Right to rectification – you can modify or inaccurate personal data;
The right to delete data (“right to be forgotten”) – you can request the deletion of data, if their processing was not legal or in other cases provided by law;
The right to restrict the processing – you can request the restriction of the processing in case you contest the accuracy of the data, as well as in other cases provided by law;
Right of opposition – you may object, in particular, to data processing based on our legitimate interest;
The right to data portability – you may receive, under certain conditions, the personal data you have provided to us, in a format that can be read automatically or you can request that the data be transmitted to another operator;
The right to file a complaint – you can file a complaint regarding the way of processing personal data at the National Authority for Supervision of Personal Data Processing;
Right of withdrawal of consent – in cases where the processing is based on your consent, you can withdraw it at any time. Withdrawal of consent will have effects only for the future, the processing performed prior to the withdrawal remaining valid;
7. Who can you contact in order to exercise your rights?
To exercise any of the rights listed above you can contact us at the following contact details:
TOP MEDIKONS CENTER S.R.L.
Sos.Salaj nr.134, sector 5, Bucharest, Romania, postal code 051902
Tel.:0763 354 861 email: info@vakalidis.gr
Contact person: Dr. Vakalidis Konstantinos
8. How we protect personal data
We maintain appropriate technical and organizational measures to protect your personal data that you provide to us against destruction, loss, alteration, unauthorized disclosure or accidental or illegal access.
9. Can we change our privacy statement?
We may change this Privacy Policy from time to time by posting the updated version here. We recommend that you visit this section frequently for information.
PERSONAL DATA PROCESSING POLICY
1. TOP MEDIKONS CENTER S.R.L. recognizes the value of personal data belonging to both its own employees and customers, taking all measures to ensure the security and legality of their processing, in accordance with the legal provisions in force in both national and European legislation.
2. We process all personal data in accordance with the principles enshrined in Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, so the personal data are:
(a) processed lawfully, fairly and transparently to the data subject (“legality, fairness and transparency”);
(b) collected for specified, explicit and legitimate purposes and not further processed in a manner incompatible with those purposes; further processing for archiving purposes in the public interest, for scientific or historical research or for statistical purposes shall not be considered incompatible with the original purposes, in accordance with Article 89 (1) (“purpose limitations”);
(c) appropriate, relevant and limited to what is necessary in relation to the purposes for which they are processed (“minimization of data”);
(d) accurate and, where necessary, updated; all necessary measures must be taken to ensure that personal data which are inaccurate, having regard to the purposes for which they are processed, are deleted or rectified without delay (“accuracy”);
(e) kept in a form which allows the identification of data subjects for a period not exceeding the period necessary for the purposes for which the data are processed; (“storage limitations”);
(f) processed in a way that ensures adequate security of personal data, including protection against unauthorized or illegal processing and against accidental loss, destruction or damage, by taking appropriate technical or organizational measures (“integrity and confidentiality”). ).
3. Purpose of this policy
This policy and the documents concluded for its observance regulate the manner in which TOP MEDIKONS CENTER S.R.L. collects, processes, stores, transfers and manipulates personal data.
4. What personal data do we process
We collect, process, store, manipulate and transfer personal data necessary to fulfill individual employment contracts, contracts or orders sent by customers or potential customers of the company, as well as to provide answers to questions asked by potential customers through the company’s internet webpage. Thus, depending on the purpose of collection and strictly in order to fulfill legal and / or contractual obligations, we collect personal data consisting of information on an identified or identifiable natural person (“data subject”), directly or indirectly, by reference to an identification element, such as a name, an identification number, location data, an online identifier, or one or more specific elements, specific to his physical, physiological, genetic, mental, economic, cultural or social identity; “
5. How we process personal data
According to art. 4 point 2 of the GDPR Regulation “processing” means any operation or set of operations performed on personal data or on personal data sets, with or without the use of automated means, such as collection, registration, organization, structuring , storage, adaptation or modification, extraction, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, deletion or destruction; “
We process personal data collected only for legitimate purposes, respectively in order to fulfill the contractual obligations assumed, e.g. for the delivery of the ordered products, for the repairs of the products within the warranty period or for the service activities in general, for marketing purposes, to prevent and combat fraud or money laundering activities, etc., in order to fulfill our legal obligations of individual employment contracts.
The data processing is always performed based on the contracts concluded with our company / orders sent to our company, based on legal requirements, taking into account our legitimate interest or based on your consent.
6. Measures to protect the processing of personal data
In order to ensure the protection of personal data, the company has developed its own policies by which it explained to the data subjects the way in which it proceeds at the company level to ensure the rights of the data subjects in accordance with the applicable legislation.
Thus, documents are drawn up at the company’s level by which:
- the persons concerned are required to consent to the collection, processing and storage of personal data where it is necessary to obtain it;
- employees are trained on how to handle personal data
- the company ensured that its employees and partners undertook the obligation to maintain the confidentiality of the information they became aware of during the employment relations, respectively of the contracts concluded with the company.
- persons whose personal data come into the possession of the company are informed about the manner and purpose of their collection, processing and storag
7. Physical security measures
All printed documents containing personal data are kept in places provided with locking and security systems, the company having a security plan prepared in compliance with the legal provisions in force.
Access to each computer is restricted by passwords known only to their users and their superior.
Files containing personal data are stored on the servers of the company to which access is allowed to employees only insofar as they must fulfill their duties and only to these persons.
8. How to resolve requests with reference to personal data
The management of the company will solve all the requests related to the personal data of the clients or employees within max. 15 days from their receipt.
Any request regarding personal data will be addressed to the company at the address mentioned in this document.
9. Solving situations of destruction, loss, modification, unauthorized disclosure or accidental or illegal access to personal data
The company shall immediately notify the supervising authority if it has identified a case of destruction, loss, alteration, unauthorized disclosure or accidental or illegal access to personal data that did not result from legal and intentional company proceedings as well as any unauthorized intervention on these data about which he became aware.
10. Duration of personal data processing
The company will process the personal data in the minimum period necessary only for the purpose of fulfilling the contractual and legal obligations.
This policy may be changed whenever the company deems it necessary to update it in order to ensure adequate protection of personal data, and will be brought to the notice of the company’s employees.
Date 25-01-2021