EPAPHY places great importance on security and respects your privacy and the confidentiality of your personal data. This is why we invest time and resources in protecting your privacy. In this effort, we are in a continuous process of updating and training in order to fully comply with the national EU and international framework in place and, in particular, the General Personal Data Protection Regulation (Regulation 679/2016) of the European Union.

PURPOSE OF THIS POLICY

The purpose of this policy is to inform you about how the personal data of our customers are collected, stored, used and transmitted, the security measures we take in order to protect your personal data, the reasons and period for which they are stored, as well as the type of personal data collected. This concerns any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

This Policy is updated from time to time and may be amended at any time this is deemed necessary, without prior notice, always in compliance with the legislative framework in force and in accordance with any changes to the applicable personal data protection legislation. Therefore, we recommend that you review this Policy at regular intervals in order to learn about any changes made.

What are personal data?

Personal data are any information regarding any particular natural person or a person who can be identified (e.g. name, identity card number, address, etc.). Data concerning health (physical or mental health, provision of medical services, etc.) are included in the general term ‘personal data’ but constitute a special category of data. TIF EPAPHY shall not process your personal data without your consent. However, TIF EPAPHY reserves the right to process your

personal data in exceptional cases to the extent permitted or required by law and/or Court judgments or prosecutorial orders.

How long are my personal data kept?

Your personal data are kept as long as required by the nature of the TIF EPAPHY service you have selected and, additionally, as long as required by the applicable legislation.

What are my rights? What are my options if I have any issues with the processing of my personal data?

You have the right to ask us at any time which personal data we process, for which purposes we process them, whether we communicate them to third parties and if so to whom, and other relevant information. You also have the right to receive a free copy of your personal data upon request. Other rights under the relevant personal data protection legislation include the right to request the updating and/or rectification of your data, the right to have your personal data no longer processed and/or to restrict their processing and to have your personal data erased from the systems of  EPAPHY if there is no legal obligation for their retention. You also reserve the right to portability and/or to oppose the processing of your personal data.

More specifically, with respect to the newsletter service, you can unsubscribe by following the instructions included in each newsletter in order for the processing of the personal data relating to this service to cease.