- Privacy Policy

In order to enable us to provide you with our services and offer you our advice by subscription, we collect the following data: https://deliverback.com/ ("Site") is committed to protecting your personal data. Therefore, it takes necessary and proportionate measures to protect, secure and maintain the integrity and availability of your data.

By using our Website you accept the terms of this Privacy Policy. If you do not agree to the terms of this Privacy Policy, you should not use the Website. Your use of our Website after any changes to this Privacy Policy have been posted means that you accept those changes.

 

1. Data we collect from you

In order to enable us to provide you with our services and offer you our advice by subscription, we collect the following data:

ACTIVITY
DATA
Communication data
Name
Email address
Telephone
Message content
customer contact chat// Hubspot
full name, telephone number, address, free field
Completing the return form (return form)
Location data, address for shipping, name phone, email, personal notes Payment details, credit cards, payments/debts.
Airport - Lost and found 
Flight and position data, address for dispatch, full name, telephone number, e-mail, notes.
Add your business to Deliverback
Company name, Address, Telephone, email, name of the person in charge of the company
lost and found (Hotels)
Position data, address for sending, full name, telephone number, e-mail, notes.  Payment details, payments/debts.
  
Login to the website
IP address, 
Date and time of access,
URL,
referrer URL, 
access provider,
browser,
operating system

 

2. Purpose and legal basis for the processing of personal data

We use data for the following purposes: providing services, identification and authentication, archiving, improving the services of the website, communicating with users.

The legal bases for the processing of your personal data under the General Data Protection Regulation (2016/679) are as follows:

- Contract: the processing is necessary for the performance of the service contract or to take steps at the user's request to obtain knowledge of programs before entering into a contract.

- Legitimate interest: processing is necessary in order for the website to protect its legitimate interests. 

- Consent: where none of the above legal bases apply, the Website will process visitors' personal data based on their legal consent.

Pricing of products/services: The data under points 1, 2 and 3 above of Section B. related to your payments are additionally processed, where applicable, for the purpose of invoicing the Company's services/products and the legal basis for their processing is the fulfilment of the Company's legal obligations arising from tax legislation, pursuant to Art.6 par. 1 c) GDPR. 

Direct marketing by electronic means: your electronic contact details are also used for the purpose of promoting our similar services by electronic means (e-mail/sms), with the legal basis for processing being the overriding legitimate interest of our company for the direct marketing of its services (Art.6 par.1 f GDPR and Art.11 par.3 Law 3471/2006).

 

3. Minimize, store, and delete data

The Company will always ask you for the minimum required personal data. The Company shall retain your personal data only for as long as required by the contractual terms, in combination with the period required under the applicable legislation.If, until the expiry of the above time periods, legal proceedings are in progress, in which the Company is involved and which concern you directly or indirectly, the period of retention of your data shall be extended until the issuance of an irrevocable court decision.

After the expiry of the above mentioned periods, your personal data will be deleted/destroyed based on the Company's destruction policy.

4. Data concerning minors

Our Company does not process personal data of persons who have not reached the age of 18 and reserves the right, in case it is established that any minor person has made his/her data available to the Company, without the consent of his/her legal representative, to proceed to the deletion of the specific data. If you become aware that a minor person has provided their data to us without the consent of their legal representative, please contact us.

Additional contact data that you provide us with your consent in order to receive information material from the website, we keep them until the withdrawal of the relevant consent.

 

5. Transmission of data - Recipients


In order for the Company to meet the above mentioned functions and its relevant obligations, it discloses the personal data of its customers to categories of persons or entities (recipients). The recipients have access only to as much of your Personal Data as is strictly necessary for the performance of their duties or the provision of the services they have undertaken vis-à-vis the Company. These categories are as follows:

 1. Processors: the Company cooperates with the following processors on its behalf, in order to assist it in fulfilling its legal or contractual obligations, which are:

  • courier companies
  • accounting service providers
  • IT systems support service providers
  • electronic invoicing providers
  • legal advisers

provided that your data is kept confidential.

2. Financial institutions, to the extent necessary for the execution of the transaction

3. Tax authorities, in accordance with current tax legislation

4. Lawyers, if this is necessary for the exercise of the Company's rights and the defence of its legal interests

5. Bailiffs, notaries, judicial, prosecutorial and police authorities, as well as auditing authorities, if required by legal provisions or court decisions or at their legitimate request in the exercise of their duties.

 

6.Contacting the website


Contact with our website is made through the contact form available.
Only our authorized personnel, bound by confidentiality clauses or a regulatory obligation of confidentiality, have access to the messages we receive on our platform.
We do not forward to third parties messages that we receive on our platform without the express consent of the sender.
Exceptions are cases in which forwarding to third parties or not deleting the e-mails we receive is necessary to comply with our legal obligations or to establish, exercise, or support legal claims.
We use email service providers based in Greece. Therefore, our emails are subject to the legal access permitted under Greek law.

 

7. Technical measures of the website

Our website uses an encryption system (SSL) to ensure greater security during your browsing.

The website uses third-party vendors and hosting partners to provide the necessary hardware, software, storage, and related technology required for the operation of the website. The https://deliverback.com/ database is stored on secure servers owned and operated in Frankfurt.  We may store encrypted backups of our database with a third-party storage provider to ensure data security in the event of an emergency or disaster.

Digitalocean Holdings acts as the data processor, while deliverback is the data controller.

8. Social Media

Deliverback uses social media to promote its activity.

When you use social media to contact our website, this policy does not apply. Instead, the processing of your personal data is subject to the privacy policy of these social media. We advise you to carefully read the privacy policy of social media before using them.

 

9. What rights you have in relation to your data and how you can exercise them

As customers of the Company, you have a number of rights, in accordance with the provisions of Articles 15-22 of the GDPR, regarding your personal data, which are processed by the Company.

The table below lists your rights by purpose of processing and the corresponding legal basis. By selecting the relevant right from the table below, you will find detailed information (meaning, method, and deadlines) and a form for exercising it.

The table below lists your rights by purpose of processing and the corresponding legal basis. In this table, you will find detailed information (meaning, method, and deadlines) and a form for exercising each right. General information on how to exercise your rights is available here.

If you wish to exercise any of your rights, please fill in the relevant form and send it to the following e-mail address [[email protected] ] or in writing [4 Leontos Street, Argyroupoli, 16452, Athens, Greece]. Please note that in case of reasonable doubt about the identity of the data subject, we may request additional information to confirm the identity. 

 

RIGHTS

Access (Article 15 of the GDPR)

Correction (16)

Deletion (17)

Constraint (18)=

Portability (20)

Enantiosis (21)

Automated decision (22)

Withdrawal of consent (7.3)

PURPOSE

LEGAL BASIS

       

Provision of services to general customers (identification and contact details)

Performance of a contract (Article 6.1b GDPR)

Χ

Χ

Χ

Χ

Χ

 

 

 

Pricing of products/services

Compliance with legal obligation (6.1c) + tax legislation

Χ

Χ

 

Χ

 

 

 

 

Promotion of products/services to customers by electronic means[1]

Legitimate interest (6.1f + Law 3471/2006 art. 11.3)

Χ

Χ

 

Χ

 

Χ

Χ

 

 

Please note that the Company has in any case the right to refuse, in part or in full, to comply with your request for restriction of processing or deletion of your data, if the processing or retention of your personal data is necessary for the establishment, exercise or support of its legal rights or the fulfillment of its legal obligations. 

The Company must respond to your request within one month of receiving it. This deadline may be extended by two more months, if required at the Company's discretion taking into account the complexity of the request and the number of requests, in which case the Company will inform you within one month of receipt of the request for such extension and the reasons for the delay.

If the Company fails to act on your request in the exercise of the above rights or after its response you consider that your above mentioned rights have been violated, you have the possibility of filing a complaint with the Personal Data Protection Authority, 1-3 Kifissia Street, 115 23, Athens, https://www.dpa.gr/, tel. 2106475600.

For any matter concerning the protection of your personal data you can contact the Data Protection Officer  of our Company, at the following details: tel. +30 2108907111e-mail: [email protected] 

Last modification: 17/06/2023