We treat your personal data with responsibility and we believe that it should be collected and processed only when absolutely necessary. Therefore, all of our Company’s systems and our website https://www.geyer.grare designed and operate in accordance with the applicable European and Greek legislation regarding personal data protection (and mainly with the Regulation EU 679/2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data -hereinafter «GDPR»- and Law no. 4624/2019).
The present Privacy Policy has been adopted by the company “GEYER HELLAS A.E. ANONYMI EMPORIKI VIOMICHANIKI KAI ILEKTROTECHNIKI ETAIREIA ILEKTROLOGIKOU, ILEKTRONIKOU YLIKOU KAI FOTISTIKON” (hereinafter “GEYER HELLAS” or “Company”), having its registered seat in Drosia, Chalkida, Greece, PC 34100, which is the Controller of the personal data you provide to us and is responsible to provide to you all the information you shall need in relation to its processing.
We invite you to read the following terms before browsing, and if any user does not agree, they are requested not to use it.
1. What is considered as personal data?
Personal Data is any information that relates to you or may be attributed to you and allows us to identify you. Such data is, for example, your name, surname, father’s name, address, telephone number, e-mail address etc. Additionally, personal data also includes some technical data relating to you, such as your IP address or the websites from which you entered our site, etc. Moreover, as special categories of personal data (sensitive data) are namely treated data that relate to your health condition, your biometric data and your political or religious views.
2. Which personal data are being processed by GEYER HELLAS and on which legal ground?
2.1. The collection and processing of your personal data is carried out for purposes directly related to the services you request and we offer you, and/or for the purposes for which you have given us your consent, always in accordance with the applicable laws and regulations regarding the protection of personal data. Specifically, we may process, in particular, the following types of personal data concerning you:
– contact detail and personal information (such as name, address, telephone number, e-mail);
-communications you exchange with us or address to us via letters, emails, and calls;
– by automated means, we generally collect technical information about your device with which you access our website, such as the IP address or other device identifier, the type of device you use, and the version of the operating system, and
– data related to our employees, such as payment account details, personal identification details, tax details, any health data they provide to us.
In the course of our usual operations, we do not receive special categories of personal data (sensitive data) or data of minors. If we become aware of such data, we will process it only if you have given us your explicit consent or based on our legal obligation (e.g., regarding our employees), in any case in accordance with the applicable legislative provisions and the GDPR.
2.2. We shall only process your personal data when:
– you have given us your consent;
– the processing is necessary for the investigation of potential cooperation with us, as well as the fulfillment of our contractual obligations and the provision of our services/sale of our products to you;
– processing is necessary for the compliance with our legal obligations (e.g. for accounting and tax reasons) and/or;
– processing is necessary for our Company’s legitimate interests (e.g. improvement of the provided services, safe internet connection, collection of statistical data).
3. For what purposes do we process your personal data?
We may process your personal data mainly in the following cases:
– to communicate with you, in relation to your inquires;
– to provide to you the services/products you require, to manage your orders and their payment and shipment;
– to archive your data in our database;
– for accounting and tax reasons;
– for developing and improving our services and for statistical purposes,
– to perform our contractual obligations (e.g. employment contract), and/or;
– for advertising and marketing related purposes.
Indicatively, GEYER HELLAS may collect and process your personal data as follows:
3.1. Website visitors:
i. IP Address – Cookies
Our Company collects personal information about you when you visit our website or open electronic correspondence from us, when you provide us with information to receive updates from us (for example, when you fill out the contact form on our website), or when someone wishes to apply for a vacant position in our company. In these cases, our servers may record data about your device and the network you use to communicate with us, including your Internet Protocol (IP) address. The IP address is a series of numbers that identify your computer, and we may use it to analyze your traffic exclusively on our website, manage our system, investigate any security issues, and compile anonymous statistics regarding the use of our website.
Cookies are small data files that are stored on the device from which you visit our website, through the browser you use. We use cookies to ensure that our website functions properly, to remember returning visitors, to understand your experience while browsing, and to collect anonymous data for statistical analysis, such as which areas you visited and how long you used our website, as well as to improve and upgrade its content.
The data collected by cookies for the above purposes may include, in particular, the type of browser you use, the type of computer/device, the operating system, internet service providers, the locations you visit, and links to third-party websites you may select through our website, the products and advertisements you view, and the IP address of your device.
The legal basis for processing your personal data is your consent (GDPR Article 6.1.a). By browsing the website, you consent to the processing by GEYER HELLAS of the information collected from you through the use of cookies. You can manage your preferences through our site’s specific cookie settings; however, after disabling cookies, some features of our website may not function fully. For the cookies necessary for the operation of the website, the legal basis for processing is the legitimate interest of the Company to ensure its operation (GDPR Article 6.1.f).
ii. Contact form – Career opportunities
If you wish to contact the Company through the contact form available on our website, you must fill in your full name, email address, phone number, the subject you wish to contact us about, and the content of the relevant message.
Additionally, if you are interested in working for our Company, you can fill out the special form on the website, specifically providing your full name, email, and phone number, the position you are interested in, and upload your resume and cover letter.
The purpose of collecting and processing this personal data is to optimally respond to and serve the users of the website and to evaluate potential staff recruitment, respectively. The legal basis for processing your personal data is the legitimate interest of the Company to provide you with services, as well as the users’ consent (GDPR Article 6.1.f, 1.a).
iii. Social media widgets
Our website includes social media widgets (Facebook, YouTube, X, Instagram, LinkedIn) which, when used by the user after logging into the social network, create a unique digital footprint for which both GEYER HELLAS and the respective social network act as joint data controllers.
For the Company, the purpose of processing this data is to improve the functionality of the website and the services provided, as well as to analyze its traffic. The legal basis for processing personal data is the legitimate interest of the Company to improve and ensure the services it provides to its users (GDPR Article 6.1.f).
The Company does not control nor is it responsible for any subsequent processing that may be carried out by the above social media.
3.2. Newsletters
We will not send you newsletters for the purpose of advertising or promoting our products unless you choose to subscribe to this service. In this case, GEYER HELLAS will collect the information you provide us (e.g. your name/surname, your email address, and/or your mobile phone number) in order to receive informational and promotional material regarding exhibitions we participate in, our new products, and/or any offers from the Company. By giving your consent to subscribe to the newsletter service, you accept the terms of this Policy.
The legal basis for processing your personal data is your consent (GDPR Article 6.1.a). If you do not wish to receive our newsletters, you can request to be removed from the recipient list at any time, either by following the instructions provided at the end of each newsletter you receive or by sending the relevant request to info@geyer.gr
3.3. Employees and partners’ data
Our Company collects personal information from job applicants, including contact details, professional qualifications, and previous work experience, in order to make hiring decisions with all necessary information. After hiring, we collect information about our employees as part of our contractual relationship and for related purposes, such as processing their payroll and for tax purposes. Indicatively, we collect name, surname, father’s name, mother’s name, gender, date of birth, home address, phone number (landline/mobile), email, marital status, number of children, marriage/civil union certificates, identity details, tax identification number, tax office, IBAN, educational qualifications, language certifications, military service completion certificates, CV, seminars, trainings, grades of educational qualifications, work experience, service seniority, hiring date, signatures, payroll details, allowances, etc. This information is collected and stored in a secure database, accessible only to authorized individuals. We may also process similar information regarding freelancers, consultants, and other third parties who collaborate with our Company to provide products or services to it.
The legal basis for processing data in cases of job applicants is the legitimate interest of the Company (GDPR Article 6.1.f), while after hiring, it is the performance of the employment contract (GDPR Article 6.1.b) and the Company’s compliance with legal obligations under labor and social security law (GDPR Article 6.1.c).
3.4. Sensitive Personal Data
In certain cases, the Company may process sensitive personal data (special categories of personal data) exclusively within the context of the employment relationship. Specifically, the Company may process health data of its employees, such as medical certificates concerning themselves or their family members (spouse, children), disability certification attestations, sick leave, AMKA (Social Security Number), information regarding the employees’ insurance coverage, data related to criminal convictions and offenses, investigative material, etc.
The legal basis for processing these data is the fulfillment of the Company’s obligations and the exercise of specific rights of the Company or the employee in the field of labor law and social security and social protection law. There is no reason to consider that the legitimate interest of the data subject outweighs the purpose of the processing (GDPR Article 9, paragraph 2b). In many cases, these specific sensitive data are provided by the employees themselves and are processed based on their prior free and explicit consent.
3.5. Customer Data
In the course of its activities, the Company primarily collaborates with legal entities (companies), which are not subject to the provisions of the GDPR. In cases where the Company’s customers are natural persons/sole proprietorships, the Company processes mainly contact details and personal information (e.g., name, address/headquarters, phone number, email address), professional activity, website, identity details, VAT number/Tax Office, data related to payment transactions from or to the customer within the framework of the applicable legislation for the provision of payment services. Communications exchanged with us, as well as order details, may also be maintained. We do not process special categories of data (sensitive data) in the course of our usual operations.
The Company processes the aforementioned data for the purpose of customer service, the completion of document and item dispatch, and the invoicing of provided services.
The legal basis for processing is the fulfillment of the Company’s contractual obligations to the customer (GDPR Article 6, paragraph 1b).
3.6. Supplier and Partner Data
In the course of its activities, the Company processes personal data of suppliers and partners for the purpose of selecting suitable individuals, concluding assignment contracts, and monitoring the collaboration. The data collected mainly include the following: name, surname, patronymic, gender, date of birth, phone number, home address, phone (landline/mobile), email (corporate/personal), ID card number, VAT number, Tax Office, IBAN, educational qualifications, language proficiency certifications, data related to criminal convictions and offenses, as well as any further information that may be required by national legislation (e.g., tax legislation).
The legal basis for processing these data is the execution of the contract with the suppliers/partners (GDPR Article 6, paragraph 1b) and the Company’s compliance with its legal obligations (GDPR Article 6, paragraph 1c).
3.7. Image Data via CCTV Systems
The Company collects, processes, and stores image data through the CCTV systems installed in its critical facilities. The processing of image data is carried out exclusively for the purpose of ensuring the security of the premises and the individuals and goods within them, particularly due to the production and distribution of high-value goods, as well as the Company’s significant investment in infrastructure elements that are closely linked to its operations.
The legal basis for processing is the Company’s legitimate interest (GDPR Article 6, paragraph 1f).
3.8. Audio Data in Telephone Calls
The Company may record telephone calls received at its call center to better serve callers. Subjects are always informed in advance through an automatic voice message, so if someone disagrees, they can terminate the call. The existing legislation for the retention of audio data is applied.
The legal basis for processing is the Company’s legitimate interest (GDPR Article 6, paragraph 1f).
4. Data retention period
The information you provide to us may be archived or periodically stored in accordance with our relevant security procedures. We do not retain your data for longer than necessary to fulfill each purpose for which it was collected, unless the law requires us to retain it for a longer period (e.g., regarding the tax records of our product sales to you), or to delete it sooner, or unless you exercise your right to delete or restrict your data (where applicable).
For example, we will keep the resumes we receive, without ultimately proceeding with the hiring of the applicant, for a period of twelve (12) months, unless the person consents to us keeping their data for a similar opportunity in the future, and you will receive newsletters until you withdraw your consent. Also, according to Directive 1/2011 of the Hellenic Data Protection Authority, the recording files from security cameras legally installed on our premises must be kept for a specific period, according to the purpose for which they are processed. Unless otherwise required by law or necessary in cases where a security incident has been observed, these files are automatically destroyed every 15 working days.
5. Who are the third-party recipients of your data?
We do not sell, rent, or trade your personal information, nor will we do so at any time in the future. We may disclose (share, send, or otherwise make available) your personal data according to the terms of this policy to third parties or use it for a purpose different from the one for which it was originally collected, only if you consent to such processing or if required by law, and always under conditions that fully ensure there is no unlawful processing.
In any case, the employees of GEYER HELLAS who have access to and process your personal data are specific and appropriately trained, bound by confidentiality terms, and act only on a need-to-know basis to fulfill the legitimate processing purposes mentioned above. Unauthorized access to your data is strictly prohibited.
Specifically, we may disclose your data to third parties only in the ways specified in this Policy, particularly in the following cases:
•To external partners (such as accountants and lawyers);
• To EFKA or private insurance companies;
• To advertising companies and advertising services providers in general. GEYER HELLAS does not disclose your personal data without your explicit consent; however, it may share with third-party advertising service providers information that cannot identify you, particularly statistical information regarding the areas of the website you visited, demographic data, or information about the technical characteristics of the devices used to access our website, etc.;
• To service providers for hosting our customer and employee database, managing our information systems (IT providers), and providing overall technical support and management of all our systems;
- Τo third parties who provide GEYER HELLAS with technical services for the operation of the website, such as developers, data analysts, vendors and data security providers;
• To any third party to which/whom we may sell or transfer all or a portion of our business or assets;
- Αs required or authorized by any applicable law, according to our legal obligations and
• To judicial, public or independent authorities and regulatory bodies, to comply with relevant decisions/requests and procedures, to protect the Company against fraud and for related security purposes.
6. Security Measures
We are committed to safeguarding and protecting your personal data. We continuously implement appropriate technical and organizational measures to ensure a level of security suitable to prevent accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access to your personal data that is collected, stored, or otherwise processed by our Company.
Therefore, we have implemented security procedures and measures in our physical and electronic records, which we review regularly. Additionally, we will destroy or eliminate your personal data when we no longer need it or as otherwise required by law.
Indicatively:
General Control Procedures: Regular and systematic checks are carried out at workstations, such as automatic locking of computers, frequent hardware and software upgrades, and configurations to minimize the possibility of unauthorized access and exploitation of critical data stored in our files. The Company’s equipment is connected to an uninterruptible power supply (UPS) system to ensure continuous operation in case of system failure, and in the event of a prolonged power outage, our servers are safely shut down.
Storage of Physical Files: Our Company may maintain records in physical, paper form, which contain your personal data (such as medical examinations, invoices, etc.). We keep these records in secure areas protected by security locks, accessible only to employees or partners who need them for purposes within their duties. For the destruction of physical files, we use a document shredder to prevent unauthorized access.
Electronic Storage: Some of your personal data will be stored in the database we maintain. We have implemented graded access to files containing personal data on our network, which is protected by a VPN (Virtual Private Network). Based on this graded access, special codes are required, which are provided only to our employees or partners who need access to these files. Our network is additionally protected by antivirus software and a firewall, which separates the local network and prevents unauthorized access. Finally, we ensure the security of your data by continuously creating backups of our system files.
We regularly review security measures and will try to protect your personal data as if it were our own. However, we are not responsible for the actions of third parties or their security measures regarding the information these third parties may collect or process through their websites, services, or otherwise.
7. What rights do you have regarding your data?
We are committed to promptly responding to your requests to exercise all your rights under the GDPR regarding the personal data we hold and process about you. Specifically, you have the following rights:
- access to your data held by the Company,
- information about the processing of your personal data that may be carried out by the Company,
- correction of your data in case of inaccurate, incorrect, or incomplete entry by the Company,
- withdrawal of your previous consent,
- deletion of your data,
- restriction of the scope of their processing,
- objection to the processing of your data,
- portability/transfer of your personal data
Furthermore, within the European Union, individuals have the right to lodge a complaint regarding the handling of their information with the competent supervisory authority. A list of all EU supervisory authorities is available on the European Commission’s website: http://ec.europa.eu/justice/data-protection/article-29/structure/data-protection-authorities/index_en.htm
If you wish to exercise any of your rights regarding the personal data we hold about you, to the extent provided for by law, you can contact our Company in writing at the email info@geyer.gr You have the right to request free access to your data; however, depending on the volume of data our Company holds about you, we may ask you to cover part of our costs.
8. How can you contact us?
If you wish to request any clarification or information regarding the terms of this Policy, exercise any of your rights, or have a complaint regarding the processing of your personal data, you can contact our Company at tel. 2221098711 or by sending an email to info@geyer.gr
9. Changes to this Policy
This Policy may change from time to time, in accordance with legislation or industry developments, without prior notice. Therefore, we invite you to regularly check this page.
WOULD YOU LIKE TO KNOW MORE?
Contact us here.
