Terms – IDL Ορθοπεδικά

Copyright and Material License

Unless otherwise specified, IDL and/or its licensors own the copyright in all material on IDL.gr (IDL). All copyrights are reserved. You may access it from IDL for your personal use, but you will be subject to the restrictions set out in these terms and conditions.

You must not:

Republish material from IDL
Sell, rent, or sub-license material from IDL
Reproduce and/or copy material from IDL
Redistribute content from IDL
IDL is not liable for any damages or expenses incurred

Privacy Policy & Temporary Data

Introduction

The controller of your personal data is a company under the name “IDEAL ABEE ORTHOPEDIC PRODUCTS,” which specializes in the manufacture and marketing of orthopedic products and is based at: 2 Archimidou Street, Tavros, Postal Code: 17778, Telephone: 210-4830103, Tax Identification Number: 094459080, General Commercial Registry Number: 8482090200, E-mail: info@idl.gr.

In our daily activities, we process data relating to natural persons, including:

Customers/Patients
Visitors to our website
Other interested parties (employees, suppliers)

Our Company complies with the General Data Protection Regulation (2016/679 EU GDPR) and any other European and national legislation concerning the protection of personal data, the code of conduct for the medical profession, electronic communications, etc. and undertakes to ensure the protection of your data at all times:

Data is collected for specific, clear, and legitimate purposes and is not further processed in a manner incompatible with those purposes.
We collect the personal data necessary for each processing purpose and process it lawfully, fairly, and in a transparent manner in relation to the data subjects.
We ensure that it is, as far as possible, accurate and up to date, and we only keep it for as long as is necessary for the purposes for which it is processed.
In any case, the criterion we use to determine the storage period is based on and takes into account the need to comply with any relevant legal requirements and the principle of data minimization.
We process the Data electronically and manually and take all appropriate measures to protect personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organizational measures.

Collection, purpose, legal basis for processing, and retention period of your data

1. Data Automatically Collected Through Our Website

The website www.idl.gr uses the SSL (Secure Sockets Layer) protocol, which applies encryption methods to the data exchanged between two devices (typically personal computers), establishing a secure connection via the internet and ensuring the protection of your personal data.

When you visit our website, our server automatically collects so-called server log files, including:

Date and time of access to the website.
Volume of data transmitted (in bytes).
Browser type and operating system used to access the website.
Internet Protocol (IP) address. When you access our website, the IP address is personal data combined with the date and time of your visit, even if we cannot identify you solely through this information.

The legal basis for collecting and storing your IP address in special log files is our legitimate interest, in order to ensure network, information, and service security against accidental events or unlawful or malicious actions that could compromise the availability, authenticity, integrity, and confidentiality of stored or transmitted data (e.g. prevention of denial-of-service attacks), as well as our legal obligation to provide an appropriate level of security for the processing of personal data (GDPR Article 6(1)(f) and (c)).

The data will not be transferred or used in any other way. However, we reserve the right to review server log files if specific indications of unauthorized use arise.

2. Patient / Customer Data

When you visit us, we collect personal data such as full name, patronymic, email address, postal address, and contact details, as well as medical data contained in Orthopedic Device Order Forms that we execute for you.

The purpose of processing your personal data is the provision of the requested medical and orthopedic services.

The legal basis for processing is the performance of a contract between us (GDPR Article 6(1)(b)) and the processing of special categories of data for medical purposes (GDPR Article 9(2)(h)).

Personal data is retained for the required period in order to enable us to provide long-term support (e.g. follow-up of orthopedic devices, progress monitoring, etc.). 3. Δεδομένα που συλλέγουμε μέσω ηλεκτρονικού ταχυδρομείου και φόρμας επικοινωνίας

3. Communication via Email and Contact Forms

In the context of communication between us via email and the contact form on our website, we collect your name, email address, and any other information you voluntarily provide to us.

This data is stored and used exclusively in order to respond to your request.

The legal basis for processing your personal data is your consent (GDPR Article 6(1)(a)).

Your data will be deleted after the final completion of our communication, once the purpose and scope of the communication have been fulfilled, provided that there are no existing legal obligations requiring the retention of such data.

4. Supplier Data

For the performance of our contractual obligations, we collect supplier data such as:

Full name
Address
Contact details
Shipping details
Financial data voluntarily provided to us

The legal basis for processing supplier data is the performance of a contract and compliance with legal obligations (GDPR Article 6(1)(b) and (c)).

Supplier data is retained for a period of up to twelve (12) years following the last provision of services, or for as long as required by tax and other applicable legislation.

5. Facebook Page

Our company maintains a page on the social media platform Facebook.

You may contact us via our Facebook page in order to receive further information about our services by using the messaging option. In order to respond to your inquiries, we collect and process:

Your Facebook username
Any information you choose to share publicly through your Facebook profile

Sending a message via our Facebook page constitutes your consent to the processing of your personal data.

If you choose to connect with our page (by clicking “Follow” or “Like”), you consent to receiving news and promotional updates via your Facebook newsfeed. If you do not wish to receive such updates, you may opt out at any time by selecting “Unfollow” or “Unlike”.

We take all appropriate technical and organizational security measures to protect personal data processed via Facebook, including restricting access to individuals authorized to manage our social media accounts.

Please note that we have no control over the way personal data is processed by social media platforms. You may find additional information about how Facebook processes personal data at the following link:
Facebook Privacy Policy

Who Has Access to Your Data – Data Transfers

Your personal data may be accessed by our employees, as well as by any other person duly authorized to process your data in the course of their duties.

In addition, we cooperate with third parties, whether natural or legal persons (such as professionals, independent consultants, suppliers, etc.), who provide us with information technology, professional, technical, hosting, accounting, or other services, in order to support our Company in whole or in part in relation to its activities.

Where such third parties act as Joint Controllers or Independent Controllers, they process personal data under their own responsibility, exclusively for the purposes mentioned above, while implementing appropriate security measures and complying with applicable legal obligations.

Before any third party receives Personal Data, we ensure that:

(1) an appropriate confidentiality and due diligence assessment is carried out in order to evaluate their data protection practices and related risks,
(2) a written agreement is concluded, requiring that personal data be processed in accordance with our Privacy Policy and applicable law,
(3) the third party undertakes to immediately notify our practice of any personal data breach, security incident, inability to comply with required standards, or any other incident relevant to data protection,
(4) the third party cooperates in responding to any such incident, assists us in safeguarding the rights of data subjects, and allows the Data Controller to audit compliance with data protection requirements.

Finally, personal data may be disclosed to competent judicial or administrative authorities, as well as to legal advisors and legal representatives, including insurance companies, where required by law or for the establishment, exercise, or defense of legal claims.

Except as described above, personal data is not disclosed to third parties, whether individuals or legal entities, and is not shared or transferred.

The Company does not transfer Personal Data outside the European Union, unless required for the provision of cloud services, in which case such transfer is carried out in compliance with the requirements and safeguards set out in Articles 44 et seq. of the GDPR, including the use of approved standard contractual clauses or transfers to countries recognized by the European Commission as providing an adequate level of protection.

Data of Minors

When it is necessary to process data of minors (e.g. data of underage patients), meaning persons under the age of 15 according to the GDPR, such processing is carried out only with the written and explicit consent of the person exercising parental responsibility over the minor.

In all cases, we record all necessary evidence to ensure that valid consent has been provided by the person who legally exercises parental responsibility, including identity verification and any other available information.

Cookies and Similar Technologies

Like most websites, we use cookies and similar technologies when you access and browse our website, in order to make navigation as easy and effective as possible.

Cookies are small text files stored on your computer’s hard drive or other electronic devices through which the user accesses the website. Cookies are unique to each web browser (e.g. Google Chrome, Mozilla Firefox, Internet Explorer, Opera, etc.) and contain anonymized information related to the websites you visit and the devices you use.

Types of Cookies We Use

• Essential (Functional) Cookies

These cookies are necessary for the basic operation of our website and applications. They are required in order for you to browse our website and access its various sections. The provision of core online services is not possible without these cookies.

• Performance and Analytics Cookies

These cookies collect information about how users interact with our website, such as:

The website from which you were referred
Pages visited most frequently
The browser used
General navigation behavior

These cookies are used to analyze website traffic and improve website performance. The information collected is aggregated and anonymous and cannot identify individual visitors.

• Google Analytics Cookies

We use Google Analytics to monitor website traffic and improve our services. Google Analytics uses cookies to collect information such as:

Duration of visits
Browser type
Location from which the visit originated
Frequency of visits

We have access to these data; however, Google Analytics stores cookies on the user’s device. Google Analytics is a service provided by Google Inc.

More information about Google’s data processing practices can be found here:
Google Privacy Policy and Google Analytics Cookie Usage.

You can opt out of Google Analytics tracking by installing the browser add-on available at:
https://tools.google.com/dlpage/gaoptout

• Third-Party Cookies

We also use third-party services such as Google Web Fonts, Google Maps, and external video providers. These providers may collect personal data such as your IP address. You may disable these cookies; however, doing so may significantly affect the functionality and appearance of our website.

Changes will take effect after reloading the page.

Cookie Management

You may choose to accept or reject cookies, either individually or collectively, when visiting our website.

You may also configure your web browser to notify you about cookie usage and allow or block cookies accordingly. Each browser manages cookie settings differently, usually through its “Help” menu.

Below are links to cookie management instructions for common browsers:

Internet Explorer
Firefox
Chrome
Safari
Opera

Please note that cookie settings must be adjusted separately for each browser and device you use. Restricting cookies may limit your ability to use certain services and may affect website functionality.

For more information about cookies, you may visit:

www.allaboutcookies.org
www.youronlinechoices.eu

Alternatively, you can disable third-party cookies through the Network Advertising Initiative.

See here which cookies we use.

Rights of Data Subjects

You may contact us by phone, mail, or email at the addresses listed in paragraph (1) above to exercise your rights under Articles 15 et seq. of the GDPR, including the right to: