Effective as of 01 Sep. 2022
Any processing undertaken in this context shall be in compliance with the provisions of the GDPR and the Greek Law providing for the Protection of Natural Persons with regard to the Processing of Personal Data and for the Free Movement of such Data of 2016 (Law 2016/679).
References in this policy to “we”, “us” and “our” are references to Encodica. References to “you” and “your” are to the Users.
OptinSpot is an application for Android , iOS, and Windows devices, provided by Encodica which allows the exhibitors of a trade show to collect business contact details of their visitors, and send them informative material by e-mail.
In a nutshell:
- We never resell or share personal information about you.
- Protection of your Data is our top priority and we take significant measures to keep it safe and secure.
An application for Android , iOS, and Windows devices, provided by Encodica which allows the exhibitors of a trade show to collect business contact details of their visitors, and send them informative material by e-mail.
Refers to Solutions Encodica Software Development G.P, registered under the laws of the Republic of Greece, with registration number 1507901000, which is the owner of the OptinSpot app.
Personal Data (or Data)
Any information relating to an identified or identifiable natural person; an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
In the context of the services provided by us via the App, Personal Data refers to data relating solely to the User/Users, as these are set out in the Types of Data Collected paragraph below.
Information collected automatically from us (or third-party service providers retained by us), as set out in detail in the Types of Data Collected paragraph below.
The individual/individuals (natural persons) downloading and using the App.
The natural person to whom the Personal Data relates.
In the context of the services provided by us via the App, Data Subject refers to User/Users.
The natural person, legal person, public administration or any other body, association or organization authorized by the Data Controller to process the Personal Data.
The natural person, legal person, public administration or any other body, association or organization with the right, also jointly with another Data Controller, to make decisions regarding the purposes, and the methods of processing of Personal Data and the means used, including the security measures concerning the operation and use of the App.
Small piece of data stored in the User’s device.
Business Card Data
The image of the business card being scanned.
With respect to the processing of Personal Data of the Users, our Company acts as a Data Controller. Our contact details are set out below:
Solutions Encodica Software Develo0pment G.P.
6 Arapaki str
17676 Kallithea – Athens
Types of Data collected
We collect your Personal Data either by you when you download the Application and you create an account with us or automatically when using the App.
We may collect the following types of information relating to Users, which also include:
- Full name
- Email address
- Phone Number
- Company name
- Company position
- Company website address
- Answers in surveys
Information collected automatically by us (or third party service providers retained by us), which can include: the unique device identifier, the time of server requests, the method utilized to submit the request to the server, the size of the file received in response, the numerical code indicating the status of the server’s answer (successful outcome, error, etc.), the features of the browser and the operating system utilized by the User, the various time details per visit (e.g., the time spent on each page within the Application) and the details about the path followed within the Application with special reference to the sequence of pages visited.
- User Account Data: Anonymous information about the settings chosen by you and any plans or subscriptions you have purchased (no credit card details are held by our Company).
- System Logs and Maintenance
For operation and maintenance purposes, our Company and any third-party service providers retained by our Company may collect files that record interaction with our Company (System Logs) or use for this purpose other Personal.
Users are responsible for any Personal Data of third parties obtained and/or published and confirm that they have the third party’s consent to provide the Data to us.
Mode and place of processing the Data
Methods of processing
Data is processed in a proper manner and appropriate security measures are undertaken to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Data.
Data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated.
In addition to our Company, in some cases, the Data may be accessible to certain types of persons in charge, involved with the operation of the site (administration, sales, marketing, legal, system administration) or external parties (such as third party technical service providers, mail carriers, hosting providers, IT companies, communications agencies) appointed, if necessary, as Processors or by potential purchasers or assignees of our Company.
The Data is processed at the operating offices of our Company and in any other places where the parties involved with the processing are located. For further information, please contact us.
The Data is kept for the time necessary to provide the service requested by the User, or stated by the purposes outlined in this document, and the User can always request that we correct, suspend or remove the data.
Security of personal data
We protect your personal data by taking all necessary organizational and technical measures to avoid any form of illegal or unlawful processing. In particular:
- Ensuring the Confidentiality of the Transfer of Your Personal Data
To ensure the confidentiality of data transfer, the SSL encryption protocol with RSA key 2048 bits (e 65537) is used. In addition, all backup systems we use have additional encryption (AES-256) before being transmitted to an approved cloud provider via SSL connection as an additional data safeguard measure. The backup providers we use today to store the data are:
infrastructure of the company Top Host
- Controlled Access
The back-end infrastructure is hosted and installed in Data Centers that have ISO 27001 security standards and meet the GDPR requirements for data protection. Access to the Company’s systems (servers) is controlled by a firewall, which allows the use of specific services by users while prohibiting access to systems and databases with confidential data and information of the Company. The web hosting provider we use today is: Top Host
With the use of special software, the Company’s electronic system first decrypts the information it receives before processing it. The Company’s systems send information following the same encryption process. Wherever on the website you enter personal data (password, email, etc.) there is SSL encryption with an RSA key of 2048 bits (e 65537).
The encryption protocol ensures that all the data you provide to us, including your name and address and password to your account, are encrypted so that they cannot be decrypted or changed when transferred online.
Legal bases for the use of the collected Data
The Data concerning you as a User is collected to allow us to provide its services via the Application as well as, wherever required, with your consent, for any of the following purposes: traffic optimization and distribution and hosting and backend as a service.
We may also process your Personal Data where it is necessary for compliance with a legal obligation to which we are subject, for example if we are required by law to disclose certain Data to public authorities.
Finally, it may be necessary for us to process your Personal Data for the purposes of legitimate interests pursued by us and where such interests are overridden by the interests or fundamental rights and freedoms of Users. For example, your Personal Data may be used for legal purposes in Court proceedings or in the stages leading to possible legal action arising from improper use of the Application or the related services.
Detailed information on the purposes of the processing of Personal Data
Personal Data is collected for the following purposes and using the following services:
The services contained in this section enable us to monitor and analyze web traffic and can be used to keep track of User behavior.
We use Firebase (https://www.firebase.com/), a framework maintained by the Google subsidiary Firebase, through which we track and administer the following real-time functions:
Google Analytics (Google Inc)
Google Analytics is a web analysis service provided by Google Inc. (“Google”). Google utilizes the Data collected to track and examine the use of the App, to prepare reports on its activities and share them with other Google services. Google may use the Data collected to contextualize and personalize the ads of its own advertising network. Personal Data collected: Cookie and Usage data.
Place of processing: USA https://policies.google.com/privacy
Hosting and backend as a service
These services have the purpose of hosting data and files that enable us to run and be distributed as well as to provide a ready-made infrastructure to run specific features or parts of our Company. Some of these services work through geographically distributed servers, making it difficult to determine the actual location where the Personal Data are stored.
Information not contained in this policy
More details concerning the collection or processing of Personal Data may be requested from us at any time. Please see the contact information at the beginning of this document.
The rights of Users
You have the following legal rights with regard to the processing of your Personal data:
- the right of access to the personal data we hold about you
- the right to obtain rectification of any inaccurate personal data
- the right of erasure of your personal data
- the right of restriction of processing of your personal data
- the right to object to processing of your personal data
- the right to data portability
- the right to lodge a complaint with the relevant data protection supervisory authority in Greece, the details of which are available on their website at: https://www.dpa.gr/el/polites/katagelia_stin_arxi
- Where the processing of any of your Personal Data is based on your consent, you may withdraw such consent at any time either by deleting your account or by contacting email@example.com .
You may exercise your above rights by contacting us at firstname.lastname@example.org .
The App does not support “Do Not Track” requests.
To determine whether any of the third party services it uses honor the “Do Not Track” requests, please read their privacy policies.
Users over 18 years old
The use of the App can be made only by adults over 18 years of age.