Privacy and Personal Data Protection Statement
- Introduction
Whenever you contact our Company or use any of our products and services, you disclose personal information (personal data) to us.
The purpose of this Privacy Policy is to inform you (as a natural person) about what Personal Data (PII) we collect, why we collect it, what is the legal framework that allows its processing and how you can exercise your rights, i.e. to ask us for information, its deletion, its possible updating, etc.
It also shows our compliance with Law 4624/2019 and with Regulation EU 679/2016 on the Protection of Personal Data (PII), and our respect for the privacy and security of PII.
It applies to PII that you provide to us as well as to PII that we collect in the course of our activities and as a Data Controller.
This Privacy Policy was posted on our website on 05.11.19 and supersedes any previous version. It is addressed to any natural person who has or intends to have any kind of relationship with us.
StartApp is committed to protecting the confidentiality and privacy of the information provided to it and complies with the applicable legislation on Personal Data Protection.
Please review this Privacy Policy to learn more about the type of information we collect about you through this website and how we use that information.
StartApp also collects personal data in the context of providing professional services (see below for more information).
As part of this fundamental obligation, StartApp is committed to protect and use in an appropriate manner the personal information/data collected either online or through the professional services it provides, or through communication/cooperation with any third party.
In general, our purpose is to collect only the personal data voluntarily provided by online visitors so that we can provide them with information and/or services or information about business opportunities.
- Who we are
StartApp was founded in 2014 and is active in the field of IT and software development. It has established itself as a reliable partner of Mantis, offering high quality services based on Vision wms logistics. Also, StartApp has developed StartWMS an integrated solution for the organization and management of storage centers.
- What IFRS we are working on
Personal Data (PII) is any information through which your identity as a specific natural person can be verified, directly or indirectly.
We are required to process (i.e.: collect, manage, store, store, delete) IFRS in the course of our business operations and, often, in the context of our compliance with laws and regulations.
You (as a natural person) are not obliged to provide us with the IPRs we may request, but, in the event of your refusal, we may not be able to provide you with services or respond to your requests with consistency, speed and quality.
When you call us, send us an e-mail, send us a fax, visit our website, ask questions, register as a subscriber, request our cooperation or work with us, we may or should ask you for Personal Data (PII) depending on the type of relationship between us.
You may also choose to voluntarily provide us with additional IFRS (such as in the case of sending a CV) or additional information (such as tax or commercial information, as part of your information or to explore cooperation).
Also, if you choose to register or log in to the StartApp website using a third party unique registration service that authenticates your identity and links your social media login information (e.g. LinkedIn, Google or Twitter) to StartApp, we collect any information or content needed for registration or login that you have given the social media provider permission to share with us, such as your name and email address. The collection of other information may depend on the privacy settings you have established with your social media provider, so please review the privacy statement or policy of the relevant service.
By registering and/or submitting your personal data to StartApp, you also consent to the use of this data in accordance with this Statement. Your personal data will not be used for any other purposes unless we obtain your permission, or unless required or permitted by law or professional standards. For example, if you register on the StartApp website and provide information about your preferences, we will use this information to personalize your user experience. If you send us your CV in order to apply online for a job at StartApp, we will use the information you provide to see if you match the existing StartApp job opportunities. In some cases where you have registered for certain services, we may temporarily store your email address until we receive confirmation of the information you provided via email (i.e. by sending an email to the email address you provided as part of your registration to confirm your registration request).
- How we collect the IFRS we process
The information we collect may be:
- Information that you disclosed to us during your communication with us (e.g. by email or telephone) for any information or updates.
- Information we receive from the use of your services (e.g. free software trial, seminar participation).
- We use various types of technologies to collect and store information, including the use of cookies.
- When you visit and interact with our website, certain information may be automatically collected, such as: your computer’s Internet Protocol (IP) address, browser type or operating system. The goal is to calculate the number of visitors to our website, the effectiveness of communication, etc. We do not manage or process geolocation data.
- You wanted to attend or attended one of our events.
- You have subscribed to our e-newsletter.
- You have expressed your interest in recruiting or working with us.
We also receive personal information indirectly, in the following scenarios:
- We have collected personal information as part of a survey.
- From our partners or partner organisations.
- An employee of ours gave us your contact details.
- We may use information from advertising networks, our customers or third parties to inform you about topics that may be of interest to you.
- Your personal information is available to the public.
When you contact us, we keep a record of our communication messages so that we can resolve any problems you may have. We do not allow unauthorized entities, especially without your consent, to access your information.
In some cases, our customers or partners provide us with access to the data of their customers, suppliers or third parties (who may be natural persons) in the context of our cooperation. In these cases, our Company acts as the “Processor” of personal data. Consequently, in these cases different provisions of the GDPR 679/2016 apply and we comply with them.
- How we use IFRS
We use (process) the information we collect, as described above, only for a specific purpose. In addition, we use your data when there is a legal basis for processing them, and for the purpose of, but not limited to:
- we can provide you with services
- contact you to inform you about new services that may be of interest to you
- process your payment or prevent or detect potential fraud;
- answer possible questions you have asked us
- defend our legitimate interests
- How long we keep your personal data
We keep your personal data only for as long as necessary, depending on the purpose of the processing and this privacy policy.
For example, we may need to use your IPRs to respond to your complaints or queries about our services and therefore we may retain personal data during the course of the project we have undertaken. We may also need to retain your personal data for accounting purposes (the retention period is defined by the legislation relevant to tax authorities or financial research units).
If we no longer need IFRS we delete them or make them anonymous by removing all the details that identify you.
In addition, the duration of the retention (storage) of personal data depends on the legitimate basis of the processing, such as:
- In the case where the legitimate basis of the processing is the exercise of legitimate interest, the processing of personal data will be carried out for as long as it is deemed necessary for the pursuit of the Company’s intended purpose and for as long as necessary until the statute of limitations for any relevant claims has expired.
- In case where personal data is provided consensually by the natural persons themselves, e.g. in the context of registration to the website services, we will retain your data for as long as we maintain a contractual relationship with you (both in paper and electronic form) or until the consent given is withdrawn. If, for any reason, consent is withdrawn, we will keep them for as long as necessary until the limitation period for any relevant claims has expired.
- If we have asked your permission (consent) to process your personal data and we have no other legitimate grounds to continue this processing, and you withdraw your consent, we will delete your personal data. However, when you unsubscribe (e.g. from marketing communications or the newsletter), we will retain your email address to ensure that we do not send you any forms in the future.
- If the legitimate basis of the processing is the performance of the contract or to take action at your request before the conclusion of the contract, then we will retain your data for as long as you maintain a contractual relationship with us or keep it for as long as necessary until the limitation period for any relevant claims has expired.
- Who we share your IFRS with
We do not disclose or share IFRS with other companies, organisations and individuals for the purpose of direct or indirect advertising and communication.
We disclose or share IFRSs with third parties in the following circumstances:
- With your consent: we share IFRS with companies, organisations and individuals when we have your explicit consent.
- For external processing: we provide IFRS to our external partners and to companies or individuals we trust to process them for our own use (e.g. accounting or IT support) and in accordance with our Privacy Policy and appropriate confidentiality and security measures, as required by Regulation EU 679/2016.
- For legitimate purposes: We share IFRS with relevant public authorities when reasonably necessary and for the purpose of complying with laws, regulations, etc.
- In the context of scientific research: We may provide anonymised IPRs in the context of scientific or statistical studies.
- Your rights
Our customers, users of our services and visitors to our website have the following rights (which should not be contrary to the relevant legislation) under the Regulation on the Protection of Personal Data.
Your rights, in relation to IFRS, are:
- Right to information: you have the right to receive clear and understandable information about how your personal data is used and your rights. This Privacy Policy provides you with relevant information.
- Right of access & rectification: you have the right to access, rectify or update your personal data at any time.
- Right to portability: You may receive the IFRS that you have provided to us, in a structured, readable and interoperable format, and transfer it to another organisation. This right is granted to you when your personal data has been provided on the basis of your consent or in the context of the performance of a contract.
- Right to erasure ICC: You have the right to request that we delete your personal information in certain circumstances. Exercising your right can always be done in accordance with the requirements of the relevant legislation (e.g. you cannot request the deletion of IPRs when labour law or tax authorities require them to be kept for 7 years).
- Right to restrict the processing of PPI: You have the right to ask us to restrict the processing of PPI in certain circumstances, including processing for direct marketing.
- Right to complain to the Independent Authority for the Protection of Personal Data http://www.dpa.gr/ or any national Data Protection Authority about how we process your personal data.
- Right to withdraw your consent: If you have given your consent to the processing of IPRs, you have the right to withdraw your consent at any time (if you do so, it does not mean that it is unlawful to do what we did with your valid consent up to the date of withdrawal). You may withdraw your consent to the processing of your IPR at any time by contacting us at the details listed in §13 “Contact us”.
On how to exercise your rights, see section 10. More information and advice about your rights can be found on the website of the Hellenic Data Protection Authority (http://www.dpa.gr/) or at any national data protection authority in your country.
- Our Obligations
Among our obligations is the principle of accountability, with regard to the principles governing the processing of PII (legitimacy, objectivity and transparency, purpose limitation, minimisation of PII, accuracy of PII, storage period limitation, security, integrity, and confidentiality).
We process IFRSs only if one of the following legal requirements (legal basis) applies. We determine the legal basis for processing your personal data depending on the purpose for which we have collected and used your personal data. In any case, the legal basis may be:
- CONSENT: the data subject (you) has consented to the processing of PII (e.g. you have given your consent for us to send you newsletters). You may withdraw your consent to the processing of your IPR at any time by contacting us at the details listed in §13 “Contact us”.
- CONTRACT IMPLEMENTATION: where the processing of PII is necessary for the implementation of a contract to which the natural person (you) is a party or to take steps at the request of the natural person prior to entering into a contract.
- LEGISLATION COMPLIANCE: where processing is necessary for us to comply with legal requirements (e.g. labour or tax legislation).
- OUR INTENDED INTERESTS: processing is necessary for the purposes of the legitimate interests pursued by the controller (us) unless the interest or fundamental rights and freedoms of the natural person (you) prevail. When it is necessary to understand our customer, promote our products/services and operate our websites and applications effectively. For example, we will rely on our legitimate interest when analysing the content viewed on our websites and apps to understand how they are used. It is also in our legitimate interest to conduct marketing analyses to determine which products and services may be relevant to the interests of our customers and potential customers.
In addition, we implement appropriate technical and organisational measures to protect the company (us) and our partners from unauthorised access to or alteration, breach or destruction of the IFRS in our possession. Specifically:
- We encrypt many of our services.
- We control data collection, storage and processing practices, including physical security measures, to protect against unauthorised access to systems and processes.
- Access to the IFRS is limited and controlled, and those with access are subject to strict contractual confidentiality obligations.
- Where external partners (for maintenance or support purposes) have potential access to IFRS, relevant annexes to existing cooperation agreements cover the requirements of the Regulation.
Throughout the entire IPF processing cycle (from collection to destruction of IPF) we take appropriate technical and organisational measures to ensure the confidentiality, integrity and availability of IPF. We require similar measures from third parties that handle or process IFRSs.
Our services and website are not intended for children under the age of 16. We do not knowingly process IPRs of children under the age of 16.
However, the transmission of information over the internet is not completely secure. Although we will do our best to protect your personal data in the context of our cooperation, we cannot guarantee the security of the PPCs at the stage of their transmission, and therefore you provide them at your own risk.
- Access to your own information
As part of your rights under the Data Protection Regulation, you can request the updating, correction or restriction of processing or deletion of your own PII (see your rights in Section 8).
You can exercise your rights by sending an email to info@startapp.gr requesting a Subject Access Request (SAR) form, completing it and sending it to us. We are obliged to reply to you within one month of receiving your request.
- Information about cookies
INFORMATION
At StartApp we think it is important that you know what cookies we use on our website and why we use them. Our goal is to keep you properly informed and to provide you with the best navigation experience on our website.
WHY DO WE USE COOKIES?
We use cookies to improve the operation of startapp.gr, your proper browsing, your easy login and your smooth navigation on its individual pages. At the same time, cookies allow us to present you with promotional & educational content relevant to your interests and needs.
Cookies also help us to analyse how visitors use our website, how they navigate and where they have difficulty. This way we can constantly optimize the operation of the site and deal with any problems that may arise.
All information collected by these cookies is used only to improve your experience, the structure and content of startapp.gr.
WHAT ARE COOKIES?
Cookies are pieces of information in the form of very small text, stored in the browser you use on your PC on your Smartphone & tablet (Chrome, Mozilla Firefox etc.), helping our site to function more efficiently. Cookies in no way cause damage to the users’ computers or to the files stored on them. The information stored in cookies is used for identification & optimization purposes.
CATEGORIES
1) Necessary Cookies
They allow the execution of basic functions of the site, without these absolutely necessary Cookies, the smooth operation of the site is directly affected, but your personal browsing experience is also degraded since basic functions are underperforming.
2) Performance cookies
Performance cookies collect information about how visitors use the website. They allow us to see which pages are visited most often or show us if they have a problem while browsing. These cookies do not collect information that identifies the visitor. All information collected by these cookies is aggregated and used only to improve the way startapp.gr works.
3) Functionality cookies
These cookies “remember” your preferences when you browse our site so that we can recommend the right services based on your needs. With these cookies you enjoy a personalized version of startapp.gr, making it much easier to find what you are looking for.
4) Advertising cookies
These cookies are used to provide ads more relevant to you and your interests. They are also used to send targeted advertising or offers with the aim of limiting bulk, unwanted and meaningless advertising messages. At the same time, they help us measure the effectiveness of advertising campaigns.
5) Cookies Analytics
They are a subset of Functionality Cookies and enable us to evaluate the effectiveness of the various features of our site, so that we can continually improve the experience we offer you.
Specifically:
Third party vendors, including Google, may display Company advertisements on internet sites.
Third party vendors, including Google, may use cookies to inform, optimize and display advertisements based on the user’s previous visit to the startapp.gr website.
Startapp.gr may also use cookies from a previous visit to its website for repeat marketing.
Users can opt out of such use of cookies by Google here.
You can set your Browser to inform you each time before a cookie is downloaded and you can decide whether to accept or reject it. In this case, bear in mind that you may not be able to use it to its full potential.
startapp.gr may use Google Analytics features for display ads (e.g., repeat marketing, Google Display Network display reports, Doubleclick Campaign Manager integration and demographic and interest reports).
Using Ads Settings, visitors can opt out of Google Analytics for display ads and customize Google Display Network ads.
Here are the available options for opting out of Google Analytics for the web.
startapp.gr complies with the Google AdWords Interest-Based Advertising Policy and the restrictions for sensitive categories and:
It uses iterative marketing with Google Analytics for online advertising.
startapp.gr and third-party vendors, including Google, use both an original manufacturer cookie (such as the Google Analytics cookie) and a third-party cookie (such as the DoubleClick cookie) to inform, optimize and display advertisements according to some users’ previous visits to its website.
startapp.gr and third-party vendors, including Google, use both an original manufacturer cookie (such as the Google Analytics cookie) and a third-party cookie (such as the DoubleClick cookie) to run reports on how startapp.gr’s ad impressions, other uses of advertising services and interactions with these ad impressions and advertising services relate to visits to startapp.gr’s website.
startapp.gr may use the data from Google’s interest-based advertising or third-party audience data (such as age, gender and interests) with Google Analytics.
We reserve the right to change this cookie policy at any time. Please locate “LAST REVIEW” at the top of this page to see when this Cookie Policy was last revised. Any changes to this Cookies Policy will take effect once the revised Cookies Policy is made available on the Website.
Third-party advertisers and other businesses we work with may use their own cookies to collect information about your activities on our Site. We do not control these cookies.
- Links to other websites
Where we provide links to other organisations’ websites, this Privacy Policy does not cover how the other organisation processes personal data. We encourage you to read the privacy policy of the other website you are visiting.