The individual company Yannis Mavridis (distinctive title ” Cue productions “), hereafter referred to as the “Company”, as Process Manager and is required to protect your personal data. For this reason, our goal is to feel safe when we process your personal data as we understand and respect the importance of your privacy.
For the purposes of this Policy, the subject of personal data means the customers and prospects of the Company.
1 WHO WE ARE;
The company that is responsible for processing your personal data they are:
Name: Ioannis Mavridis
VAT number: 045787844
Address: Filipou 80, PC 54635, Thessaloniki
Web Site: www.cue.gr
- WHY DO WE EXPAND YOUR PERSONAL DATA AND WHAT IS OUR LEGAL BASE FOR THIS?
We process your personal data for the following reasons:
Data processing for customers is described by the following actions:
- a) For sale of our services
- b) To communicate with you about our services
- The processing of your personal data for the purposes described in a) and b) is necessary for the performance of the contract with you or for taking action upon your request prior to the conclusion of the contract.The legal basis is defined in Article 6 (1) (b) of the Data Protection Regulation.
- c) To be able to communicate with the public.
- d) For promotional activities of the company and other types of communication.
- e) In order to be able to send you promotional material of our company and offers according to your preferences and interests.
- The processing of your personal data for the above purposes referred to in c), d) and e) is considered to be necessary for the service of our legitimate interest, to promote you our products and services, and to inform you about events which are made in our stores.The legal basis is defined in the Data Protection Regulation, Article 6, Paragraph 1 (b).
- Where permitted by law, it will be sent to you electronically promotional material, provided you have given your consent to this.
- f) For surveys, statistics and analyzes, to improve products, services and technologies.
- Processing your personal information is considered necessary for our legitimate interest in continuously improving our products and services, as well as your consumer experience when you buy from us.The legal basis is defined in the Data Protection Regulation, Article 6, Paragraph 1 (b).
(g) To handle requests you submit to our Company
- The processing of your personal data is necessary for the execution of the contractual relationship between us.The legal basis is defined in the Data Protection Regulation, Article 6, Paragraph 1 (b).
- Processing may also be deemed necessary to serve our legitimate interest in complying with our obligations under the applicable regulatory and regulatory framework, or to decide on the claim for warranties or to improve the quality of our products and services.The legal basis is defined in the Data Protection Regulation, Article 6, Paragraph 1 (c) and (b).
- In the event that processing of your medical history information is required to process requests, we process such sensitive personal data if consent has been given or if it is deemed necessary to establish, exercise and support our legal claims.The legal basis is defined in the Data Protection Regulation, Article 9, Paragraph 2 (a) and ( f ).
- h) For tax purposes
- WHAT DETAILS OF YOUR PERSONAL DATA DO WE EXPAND?
Our Company processes only your personal data for the specific purposes mentioned above under 2, and this applies only to personal data that is deemed necessary. The categories of personal data we can process are listed below:
(a) Usual personal data such as:
- Basic contact information (e.g. your name and address, telephone,e- mail address and VAT number – where applicable).
- Geo-location information.
- Credit Card details regarding our online services.
- Participation in competitions and results
- Information you provide us when making a complaint
- HOW WE COLLECT YOUR PERSONAL DATA?
The process of collecting personal data is based on directly from you. However, our Company may also collect personal data from other sources, which may be:
- Online sources, e.g.social media.
- From our affiliates
- WHO DIVERSE YOUR PERSONAL DATA?
We may share your personal information with:
- Suppliers providing administrative and support services,
- Auditors and other external partners – consultants who provide services for us, such asIT systems providers, telecommunications, financial institutions, consulting firms, audit – accounting services, seminars, medical service providers, video service providers, legal services providers
- Public authorities, such as tax, police, judicial and audit authorities, insurance organizations
- Social media platforms such as Facebook,LinkedIn and Instagram,
In the event that we assign to a third party the processing of personal data on our behalf, this assignment will be made in writing, we will select a processor providing sufficient guarantees with respect to the technical and organizational security measures that will govern the processing, we will oblige the processing process to act on our behalf and in accordance with our instructions and instructions and comply with the relevant legislation on the processing of personal data. In addition, we will require, amongst other things, that third parties processing data on our behalf will have a written undertaking to take the above measures.
When required by law, we may disclose personal data to third parties, such as any person (natural or legal) or Authority, including, but not limited to, Judicial, Police, Tax Authorities, Financial Institutions,
Personal customer data may also be disclosed in the event of a corporate restructuring, sale, transfer of Company assets, or merger.
Finally, personal data may also be disclosed if necessary to protect the vital interests of employees, to protect our legitimate interests (unless this would harm the rights and freedoms or interests of the client) or in our judgment to to comply with the current legislative and regulatory framework.
6 CAN WE TRANSFER PERSONAL DATA OUTSIDE THE EEA?
In some cases, it may transfer personal data to countries outside the EU / EEA – e.g. when we use IT service providers in such countries.
Such transfers will be made only for the specific purposes mentioned in Section 2 above, always ensuring that there are adequate safeguards for such transmission as defined below:
- a) The country / countries or company / companies has / have been judged by the European Commission that they have an adequate level of protection of personal data
- FOR WEIGHT WE MAINTAIN YOUR PERSONAL INFORMATION?
We retain your personal information only for as long as it is considered necessary for the purposes for which the data was collected or for the purposes that were last processed. As a general rule, the Company stores customer data for ten (10) years from collection.
The only exceptions in the time period mentioned above are in cases where:
- the law requires us to keep your personal data for longer, or to delete it earlier, or
- we may have a legitimate interest in raising, proving or defending legal claims relating to our above-mentioned services or
- this is required for accounting, tax or audit purposes, or
- this is required to protect your own legal interest (eg in the case of recall campaigns, ) or
- You exercise your right to delete your personal data (where applicable) and we do not need to keep it in relation to any of the reasons permitted or required by law.
- WHAT WILL HAPPEN IF YOU DO NOT RECEIVE YOUR PERSONAL DATA?
We process your personal data in order to fulfill the purposes outlined in Section 2 above and above all to conclude or execute a contract with you and / or to comply with our contractual and legal rights and obligations us resulting from our relationship.
Therefore, if you do not provide certain information, we may not be able to conclude or maintain the contract between us.
- WHAT ARE OUR SAFETY MEASURES?
We maintain appropriate technical and organizational measures to protect against unauthorized processing of personal data and / or accidental loss, alteration, disclosure or access, or accidental or unlawful destruction or damage to personal data, and we continuously carry out procedures for renewing the security process based on new technological developments. . These measures have been designed taking into account our IT infrastructures the likely impact on your privacy and the relative costs as well as market standards and practices.
- WHAT ARE YOUR RIGHTS?
In general, you have the following rights:
- You have the right to ask for access to and correction or deletion of your personal data.
- You also have the right to refuse the processing of your personal data and restrict the processing of your personal data.
- If your personal data is processed based on your consent, you have the right to withdraw your consent at any time.Revocation of your consent will not affect the legitimacy of the processing that took place before it.
- You have the right to receive your personal data in a structured, widely used andmechanical waym readable form (data portability).
There may be terms or limitations to these rights. Therefore, it is not certain, for example, that you have the right to data portability in the specific case – this depends on the specific circumstances – of the processing activity. Also, if you ask us to delete your personal information, we may not be able to provide the services you are requesting.
- WHO CAN YOU COMMUNICATE IF YOU HAVE QUESTIONS OR REQUESTS?
For any questions, requests, or complaints about the implementation of this Policy or the exercise of your rights as outlined in this Policy, you may contact our company for personal data protection issues:
- By post to: Filipou 80, 54635, Thessaloniki
- You can also contact the competent supervisory authority, the Greek Personal Data Protection Authority (APIS) in dra.gr. website
- LEGAL INFORMATION
The terms of this Policy complement and do not replace any other existing conditions under the applicable data protection legal framework. In the event of a conflict between the terms of this Policy and the conditions set forth in the applicable data protection legal framework, the latter will prevail.
The Company may modify this Policy at any time. Whenever this happens, we will notify you of any changes made and we will then ask you to re-read the latest version of our Policy and confirm that you accept it. You may also periodically review this Policy to be informed of any changes.