The private limited company “PAWSITIVE VET CARE M IKE,” headquartered in Halandri, Attica, at 128 Agia Paraskevi Street (ZIP code 15232, tel. 2108771111), hereinafter also referred to as the “Company,” informs, in accordance with Regulation (EU) 2016/679 and the relevant provisions of current Greek legislation on the protection of personal data, in its capacity as data controller, its customers (hereinafter “Customers” or “Customer”), that it or third parties acting on its behalf and for its account will process their personal data in accordance with the following:

01. DATA CONTROLLER

Data Controller:
Company Name: PAWSITIVE VET CARE M I.K.E.
Headquarters: 128 Agia Paraskevi Street, Halandri, Attica, Postal Code 15232
Email: info@pawsitivevetcare.gr
Contact person: Vasiliki Kouneli (daughter of Dionysios)

02. DATA WE COLLECT

– Identification data, such as first name, last name, father’s name, date of birth, Tax ID number, ID or passport details, pet’s name.
– Contact information, such as home address, email address, phone number.
– Payment details, such as credit/debit card number, PayPal, bank account number.
– Identification details, such as username, IP address
– Customer signature

03. PURPOSE OF DATA COLLECTION

In accordance with the provisions of the General Data Protection Regulation 2016/679, as well as any applicable national law, we inform you that we process the personal data you provide to us for the following purposes:
(i) Management of the contractual relationship consisting of the care of the animal.
(ii) Management and billing of our clients.
(iii) Management of potential incidents during the animal’s hospitalization period.
(iv) Managing administrative and legal procedures as well as communications that may arise from the contractual relationship.
(v) To keep you informed in a timely manner, via email or any other equivalent means, of all offers, products, services, as well as promotions for any new services of our Company.

04. PURPOSE OF PROCESSING

The Company collects user data for the purposes of providing its services, including, but not limited to:
a) Making reservations for appointments with our company,
b) To manage the user’s booking request, e.g., to communicate with and inform the user regarding appointment availability on the selected dates
c) Sending informational and promotional material via email regarding the Company’s services and products. Any use of your personal information for marketing and market research purposes will be made with your prior consent. You may withdraw this consent at any time. We may use your information to provide you with updates regarding our company’s products and services, as well as products and services from our partners and other relevant third parties. We may send you promotional messages via mail, email, phone, text messages, or social media. You can change your mind about how you communicate with us regarding these messages or even choose to stop receiving them. To make this change, please contact us via the dedicated form on our website.
Please note that if you ask us to stop sending you promotional messages, it may take a short period of time for us to update our systems and records to reflect your request, during which time you may continue to receive such messages.

05. DATA RETENTION PERIOD

Please be advised that your data will be retained for as long as necessary to provide the services or fulfill the contractual relationship, and in any case for as long as their deletion is not required. It will also be retained for the period required to comply with the legal obligations applicable in each case and to each type of data. The maximum retention period for your data is twenty years, in accordance with the general statute of limitations for claims.

06. LEGAL BASIS FOR DATA PROCESSING

The legal basis for the processing of your personal data in the cases (i), (ii), and (iii) mentioned in paragraph two (2) above is based on the performance of the contract with the Company regarding the services you have entrusted us to perform.
Similarly, the lawful basis for the processing of your personal data for the processing operations referred to in section (v) is based on the explicit consent you provide for each purpose at the time of collection of the personal data you provide to us, with the consent you give us for the purposes described above in this category.
We remind you that we have the right to directly obtain your personal data from social networks if you register or log in with your Facebook, Twitter, or Google profile.

07. DATA RECIPIENTS

Your personal data will be transferred to third parties for the processing of payments for bookings made (e.g., banking entities and financial institutions of the payment methods used, payment gateways, etc.).
In addition, the Company may transfer your data to insurance companies for the management or processing of any accidents that occur during the care of your pet.
Your data may also be transferred to organizations and public authorities (police, administrative, judicial) in cases where this is required by law.
Recipients of your data may also include processors acting on our behalf, who have agreed and are contractually bound to the Company:
a) to maintain confidentiality,
b) not to disclose your data to third parties without our permission,
c) to implement appropriate security measures,
d) to comply with the legal framework for the protection of personal data, and in particular Regulation (EU) 2016/679 (GDPR).
The Contractors may, in the performance of their duties, engage other persons, who are referred to as Subcontractors. In such cases, the data controller must have authorized them to handle the processing of the Data in whole or in part. Consequently, the sub-processor has the same obligations and rights as the Processor, as set forth in this Policy and always within the scope of its assigned responsibilities, and is jointly and severally liable with the Processor.
Categories of recipients (including but not limited to):
1) Insurance companies partnering with our Company.
2) Users of our brands and systems partnering with our Company.
3) Accounting firms and certified public accountants who audit our Company’s financial statements.
4) Legal service providers (lawyers, law firms, court bailiffs) for the protection of our company’s interests against third parties, natural or legal persons, judicial and administrative authorities, independent authorities, and bodies.

08. RIGHTS

You have the right to access your personal data, as well as to request the correction of inaccurate data or, if necessary, to request its deletion when, among other reasons, the data is no longer necessary for the purposes for which it was collected.
In certain cases, you may request the restriction of the processing of your data, in which case we will retain it only for the purpose of asserting or defending legal claims.
In certain cases and for reasons related to your particular situation, you may object to the processing of your data.
After reviewing your request, the Company will cease processing your data, except for compelling legitimate reasons, or for the exercise or defense of potential claims.
Similarly, you may exercise your right to data portability, as well as withdraw the consents you have provided at any time, without affecting the lawfulness of processing based on consent prior to its withdrawal. If you wish to exercise any of your rights, you may contact us by sending a written notice addressed to the Customer Service Department at: info@pawsitivevetcare.gr
Your request to exercise any of your rights must be accompanied by a copy of an official document that identifies you (ID card, passport).

09. PERSONAL DATA SECURITY

The Company declares that it takes all necessary organizational and technical measures to protect customer data, with the sole purpose of ensuring their security and protection against any form of accidental or unauthorized processing.
These measures are updated and amended when deemed necessary by the Company.

10. GOVERNING LAW

This policy is governed by Greek law and interpreted in accordance with the laws of the State of Greece. For any dispute arising from access to or use of the Company’s website, the competent courts shall be those of the city of Athens.
This policy has been drafted in Greek and translated into English. In the event of any discrepancy in interpretation between the Greek and English texts, the Greek text shall prevail.

11. COMPETENT AUTHORITY FOR THE EXERCISE OF RIGHTS

Hellenic Data Protection Authority (HDPA)
Mailing Address: 1-3 Kifissias Ave., 115 23 Athens, Greece
Tel.: +30 210 6475600
Email Address: contact@dpa.gr