DECLARATION OF CONFIDENTIALITY - PROTECTION OF PERSONAL DATA

Our company takes the necessary measures to fully ensure your privacy and the security of your data, in full compliance with the applicable European and national legislation. This Privacy Statement (hereinafter the Statement) applies to personal information held by our company and our affiliated companies, as "data controllers", as described below. The Statement sets out and explains what information we collect about you, how we will use that information, if and with whom we will share it, when we will share it, and how we will ensure that it remains private and secure. This Statement continues to apply even if you cease to be a member of our company and in the event that your data is otherwise entered into our information system. It should also be recognized jointly with the Terms of Use - Privacy Policy posted on the copyfree.eu website (https://copyfree.eu/terms). This Privacy Statement covers any relationship you have with us.

Purpose for which we collect the information

The main purpose of processing your personal data is to comply with the law, the operation of our company and its compliance with the regulatory framework. We may also collect your data for the purposes of communicating with you, informing you about competitions, offers, gifts, etc. promoted by our company, informing you about our news and activities, communication based on your free consent. Withdrawal of consent can be requested at any time, by submitting the relevant request by sending the relevant message on our website using the special contact form.

What information we collect

Our company collects mainly information that you have provided to us (as required by law) such as personal data, e.g. name, gender, date and place of birth, social security number, tax identification number, contact details, e.g. postal address, e-mail address, fixed and mobile phone numbers, identity card or passport details, nationality. Also, login and user registration data, e.g. authenticated login details for online applications and other information about you that you provide to us by filling in forms or by contacting us, either by physical presence or by telephone or email or online or otherwise (e.g. by proxy).

We also collect information from other sources or information we have created, such as marketing information, for example details of the services you receive and your preferences, cookies and similar technologies that we use to recognise you, remind us of your preferences and tailor the content we provide to you. (our detailed cookie policy can be found at: https://copyfree.eu/terms).

In addition, we keep records of correspondence and other communications between us, including email, face-to-face communications, instant messages and social media communications.

Finally, we process information that we need to fulfil our regulatory obligations in accordance with the law, as amended and in force.

The use of your information

Our company will only use your information either when we have your consent or we have another legitimate reason for using it. Legitimate reasons for using your information include, but are not limited to, situations where:

- it is necessary to pursue our legitimate interests, - it is necessary to process the information to provide a service or generally perform our contractual obligations with you, - it is necessary to process the information to comply with a legal obligation, - we consider that the use of your information as described is in the public interest, e.g. for the purpose of preventing or detecting criminal offences.

In addition, we use your data in order to:

- investigating and resolving complaints, - ensuring the safety and business continuity of our company, - managing risks - improving the products and services we provide or will create, - analysing data to better understand your preferences and recommend targeted services from our company.

Recording your actions or deeds

We may record and keep a record of your conversations with us - including letters, emails, live chats or any other forms of communication. We may use these recordings to evaluate, analyse and improve our services, train our staff, manage risk or prevent and detect fraud and other criminal activity. We may also collect additional information about these communications, such as telephone numbers you call us from and information about the devices or software you use if required. We are required by law to give access to investigative, judicial or other competent authorities.

Marketing and market research

Any use of your personal information for marketing and market research purposes will be done with your prior consent. This consent may be withdrawn at any time. We may use your information to enable us to provide you with information about our company's activities, and also products and services from our partners and other relevant third parties. We may send you marketing messages by mail, email, telephone, text message or social media. You can change your mind about how you communicate with us about these messages or even choose to stop receiving them. To make this change, please contact us via the dedicated form on our website.

Please note that if you ask us to stop sending you promotional messages, we may need a short period of time to update our systems and records to respond to your request, during which time you may continue to receive such messages.

With whom we may share your data

In general, our company does not share the data it processes with third parties. However, we may share your information with others where this is required by law or is necessary for us to provide you (or third parties to provide you on our behalf) with products or services that you have requested.

We may also share your information where necessary in connection with regulatory compliance reporting, litigation, or asserting or defending our legitimate rights and interests.

We share your personal information with third parties when we have a legitimate and lawful business reason to do so e.g. to verify your identity, to facilitate another company to provide you with the services you have requested, or to assess your suitability for the products or services you have requested.

Finally we share your information when we have asked your permission to share/share this information and you have agreed.

Purpose for which we may share your information with third parties

We may share your information with third parties and for other purposes such as with other affiliated companies and any subcontractors, agents or service providers who work for us or provide services to us. We may also share your information with governmental bodies and agencies, courts, our supervisory and regulatory bodies, our auditors and anyone else who has been appointed, or requested, by our supervisory and regulatory bodies to conduct investigations or audits of our operations. Finally, we may share your information with other parties involved in disputes, including any disputed transactions.

Time for which we keep your data

We keep your personal information for as long as required by the applicable regulatory framework. In general, the period of time we keep your information is limited to three years, with the sole exception of marketing contact information which is kept for a period of five years.

We may also retain your data for a longer period of time where this is required to comply with the regulatory framework.

If we do not need to keep the information for this three-year period, we may destroy, delete or anonymise it immediately before then.

The security of your data

Our company has taken and implements a number of measures to keep your information safe and secure. These measures may include role-based access control as well as encryption or other forms of security. Our staff or third parties have been made aware of our company's privacy policy and we require them to comply with it by protecting your personal data to the highest degree.

Your rights

We inform you that you have the right to :

- Access to your data, - Correction of your data in case of inaccuracy, - Deletion of your data in specific cases, - Restriction of the processing of your data, - Objection to the processing of your data, - Transfer of your data to another company, - Complaint to the Personal Data Protection Authority in case of an unfortunate incident of data breach.

Our company will respond to your above requests within one (1) month from the receipt of your request, and this deadline may be extended by two (2) more months if additional time is required.

Deletion of Personal Data

If you wish to submit a request to delete any Personal Data we may hold about you, please visit the website https://copyfree.eu/diagrafi/ and fill in the relevant form.

Responsible

The company managing the website is "LOUNGEST LIMITED", which is located in the city of Manchester, United Kingdom, in Wilson Park (Initial Business Centre).We inform you that for any issue you may have regarding the security of your data, as well as if you wish to receive more information or are not satisfied with the way your data is processed by our company in Greece, you can contact the company by email: [email protected].

For more information on the management and protection of personal data by our Company, we recommend that you read the Terms of Use.