Who we are

The website “glossima.com” is the property of the company “SAVAVAVAS PAYLIDIS AND CO. and the distinctive title “Glossima-VERHAIM O.E.”, which is located in Thessaloniki, at 182 K. Karamanlis Street, 54248 P.C., with the G.E.M. number 041925106000 and the A.F.M. 082822700, and will be referred to hereafter, for the sake of brevity, as the “Company”. The controller of the personal data processed is the Company, to which you should address any issue related to your personal data.

Acceptance of terms

The following terms relate to the privacy and personal data protection policy applied by the Company in relation to the services and products provided by the Company. The following terms are binding for all users of the Company’s services and/or products and for all visitors to the above website, who will be referred to hereafter, for the sake of brevity, both as “Customers”, regardless of whether they place an order for the Company’s services or products. If the following terms of use are not accepted, the services and/or products provided by the Company cannot be offered.

Age limit

The Company’s services and products are intended for persons over 16 years of age. If you are under the age of 16, you may use the Company’s offered services and products only with the prior express, specific and written consent of your legal guardian. The Company will ensure that the age of the minor is verified, but is not able to verify any false declaration of the Customer regarding his/her age and therefore, the Company is not liable in case of a false declaration.

What you need to know about personal data

The legal framework for the protection of personal data within the European Union has changed. As of 25 May 2018, the General Data Protection Regulation (“GDPR”), (EU) 2016/679, which repeals the national laws of the Member States of the European Union, applies. Thus, in our country, the previous law for the protection of personal data, Law 2472/1997, is repealed and the provisions of the above Regulation apply. The Company has already initiated the process of compliance with the new legislative framework under development, taking all the necessary organizational and technical measures required by the above Regulation for the best possible safeguarding of the interests of data subjects and the protection of their personal data.

What personal data we collect

The Company, depending on the purpose and necessity (see in detail below), collects the following personal data of the Customer.

For what purposes we process personal data

The above data are collected and processed in the context of providing the services and/or products offered by the Company. Identification data are collected for the purpose of identifying the Customer, so that the recipient of the delivered documents is exclusively the Customer or the person specifically authorized by him/her to receive them.

What is the lawful basis for the processing of data?

– The legal basis of processing for the collection of the name, surname, e-mail address (email), landline telephone, mobile telephone, postal address (Street, number, city, country, postal code) and identity card details is the contract with the Customer, The legal basis for the processing of the data for the collection of the data on the customer’s personal data, including the name of the tax office and profession, is the law, as these data are necessary for the issue of the relevant tax documents. – The legal basis for the processing of the IP address (Internet Protocol address) is the customer’s consent.

Why we need the personal data

We need your personal data in order to use it solely for the purposes detailed above. In the event that there is a new purpose of processing not compatible with the corresponding original purpose, you will be informed again and your consent will be sought again in case it is required. Your personal data will under no circumstances be used for purposes other than those mentioned above. Also, your personal data will not be processed for commercial exploitation purposes.

What is the effect of the treatment on the subjects

The processing of personal data by the Company does not have any effect on the data subjects, as the data collected are the absolutely necessary and necessary for the provision of the services and/or products offered.Also, the data we process belong to the category of simple personal data, while they do not, as a rule, belong to special categories of data (sensitive personal data). In the event that special categories of data exist (within the texts being translated), all necessary organisational and technical measures are taken to ensure their protection and even greater care and attention is exercised when processing them.

All personal data are and will be treated as confidential and secret. In order to protect them, but also to safeguard their confidentiality, we take care to take all necessary organizational and technical measures.

How we use personal data.

We collect, record, store and organize your personal data only for the purpose intended at any given time. Your personal data is kept confidential and private and is not disclosed to third parties without your prior, explicit, specific and written consent. They are not transmitted to third parties except to the competent public bodies and services provided for by law and to the Company’s external accountants, but only to the extent that this is required for the performance of the respective tasks.

How you have access to your personal data In case you wish to access your personal data, you can send us your request at [email protected]. By contacting our Company, you can request the correction, completion or updating of your personal data so that it is always up-to-date, correct and accurate.

Who has access to personal data

Only authorized employees and associates of the Company have access to your personal data within the framework of the above defined purposes and to the extent required for the performance of their duties. No third party has access to your personal data and in particular without your prior, explicit, written and specific consent.

With whom we share personal data.

Your personal data is not transferred to third parties except in the following circumstances:

– For the issuance of the legal tax documents, the necessary and necessary personal data are transmitted to an external accounting office, where only specially authorized employees of the accounting office have access; – In addition, the tax data of the subjects are transmitted to the competent tax – financial authorities, as there is a relevant obligation of our Company by law.

Recipients, where applicable, of personal data, where and to the extent required, are also third-party partner companies, which you can see here.

For how long we keep personal data.

The Customer’s personal data is kept for a period of twenty years from the end of the service provided, as required by the legitimate interest of the Company, in case of any civil or other claims against the Company and the defence of the Company’s legitimate interests.

The Customer’s tax data are retained for as long as required by tax legislation and in any case for a maximum period of twenty years from the issue of each document, as they can be retrieved within this period, both by the competent financial authority and by the Customer.

After the above period, the personal data of customers are completely deleted.

Personal data, which may be included in the texts to be translated, shall be anonymised immediately after the end of the service provided, and the texts shall be kept without any personal data, as this is required by the legitimate interest of the Company.

How we protect personal data

To protect your personal data, we apply all the necessary and foreseen by Greek and European legislation organizational and technical measures.

In particular:

Regarding organizational measures, our Company:

– Implements Privacy Policy Guidelines in order to best safeguard and protect the interests of the Data Subject Customers;
– Implements a classified access policy so that each employee has access to the information that is strictly necessary and necessary for the performance of his/her duties;
– Maintains a record of processing activities;
– Implements Privacy Friendly advertising and marketing policies;
– Ensures the protection of the privacy of the data subjects;
– Ensures the protection of the data subjects’ interests;
– Ensures the protection of the data subjects’ privacy;
– Ensures the protection of the data subjects’ interests;
– Ensures the protection of the data subject’s privacy;
– Ensures the protection of the data subject’s interests;
– Ensures the protection of the data subject’s privacy;
– Ensures the protection of the data subject’s interests;
– Ensures the protection of the data subject’s interests;

What technical security measures do we implement?

– The Company’s services are accessed exclusively by authorized Users using their username and personal security code.
– We apply a policy of secure passwords, which are individual and are changed at regular intervals.
– The passwords are encrypted and stored in encrypted form.
– Access – data exchange is carried out with security certificates (SSL Certificates), so that the data is encrypted.
– All local computers of Eta In addition, they have passwords, and are put into inactivity within a short period of non-use by the operator. The software used by the Company is the latest – stable versions of Windows, which are regularly upgraded for security reasons;
– All the Company’s servers are kept in a private network where only the Company’s technical staff has access;
– All the servers of our infrastructure always use cutting-edge technologies;
– All the servers of our infrastructure are protected by a firewall and state-of-the-art Antimalware;
– All the software programs we use have official and updated licenses;
– All the servers of our infrastructure are protected by a firewall and state-of-the-art Antimalware. Backups are daily.
– The method of anonymization is applied wherever possible.

What are the rights of the data subjects?

Data subjects have the following rights in relation to their personal data:

How you can exercise your rights

You can exercise your rights (access, rectification, restriction of processing, information, portability, opposition, erasure or to make your complaint or grievance) by sending a request to our email at [email protected]. We will ensure the fastest possible response to your request.

Right of recourse to the Personal Data Protection Authority

If an issue concerning the processing of your personal data has arisen and you have previously contacted the Company as Data Controller, you may then appeal to the Data Protection Authority. For the competence of the Authority and how to lodge a complaint, you can visit its website at www.dpa.gr, where detailed information is provided.

Which cookies we collect and for what purpose each one

What are cookies

Cookies are small files containing data that a website asks your browser to store on your computer or mobile device (smart phone, tablet, etc.). By storing them on your device, cookies allow the website in question to “remember” your actions (e.g. username, password, etc.), as well as your preferences. Each cookie performs a different function, as some cookies are even necessary for the operation of a website, while others, e.g. ad cookies, are used for advertising purposes.

In particular, our Company uses basic cookies such as the login session cookie (also known as a transient cookie), which is stored in a cache while the User browses our Company’s website and is subsequently deleted as soon as the User closes his/her browser. Session cookies do not collect information from the User’s computer.

Also, our Company uses third party cookies, such as the cookies of Google Analytics, Google Tag Manager and Google AdWords, always with the express consent of the User. More information about these cookies can be found at the following link: https://policies.google.com/technologies/types.

Which law applies and which courts have jurisdiction.

If a dispute arises in relation to this privacy and personal data protection policy, the applicable law is the Greek law, while the competent Courts for the resolution of the dispute expressly agrees and accepts the User that the Courts of the city of Thessaloniki are the Courts of the city of Thessaloniki.