What information do we collect?
We may collect personal identification information from Users in a variety of ways, including, but not limited to, when Users visit our site, register on the site, subscribe to the newsletter, fill out a form, and in connection with other activities, services, features, or resources we make available on our Site. We may ask for users’ name, gender, job title, telephone number, email address, demographic information such as postcode, preferences, and interests. Users may, however, visit our Site anonymously. We may obtain personal identification information from Users only if they voluntarily submit such information to us. The information could be about the usage of our Website to help us develop and improve it further through online surveys and other requests.
Non-personal identification information
We may collect non-personal identification information about Users whenever they interact with our Site. Non-personal identification information may include the browser name, the type of computer, and technical information about Users’ means of connection to our Site, such as the operating system and the Internet service providers utilized and other similar information.
How is children’s personal information treated?
If a user is not of legal age to form a binding contract (in many jurisdictions, this age is 18), they may only use the Services and disclose information to us with their parent’s or guardian’s express consent. Users should review this Privacy Policy with their parent or guardian and make sure they understand it, and do the same with the privacy policies of all websites they visit or mobile applications they use.
We only collect personal information through the Services from a child under 13 where that student’s school, teacher, and/or parent has agreed to obtain parental consent for that child to use the Services and disclose personal information to us, for the use and benefit of the learning environment. If a user is a student and the school or teacher has generated an account for them, please do not send any personal information about yourself to us if your school, and/or teacher has not obtained this prior consent from your parent or guardian, and please do not send any personal information other than what we request from you in connection with the Services. If we learn we have collected personal information from a student without parental consent being obtained by their school, district, and/or teacher, or if we learn a student has provided us personal information beyond what we request from them, we will delete that information as quickly as possible. If you believe that a student may have provided us personal information in violation of this paragraph, please contact us at info@vertitech.gr.
If a user is a student registrant and their parent or guardian has signed up for the Services with an Access Code provided by the teacher or the school, they should understand that the parent or guardian can view all information within or associated with their Services account, including, without limitation, messages between the user and the teacher and grades the user received on assignments.
What the data will be used for?
Users’ data will enable us, and our processors, to notify users about important functionality changes, provide our services to them, personalize the user experience, and for statistical or survey purposes to improve this website. We may also send from time to time (by email or post) information about products and services and details of promotions. If at any time the user does not wish to be contacted for these purposes, we offer a range of ways in which they can inform us about their marketing preferences:
All email messages and email newsletters will contain information on how users can unsubscribe; or
Write to us at: info@vertitech.gr
In assessing users’ requests for goods or services, we may use their information for the purposes of the prevention and detection of fraud.
This document sets out the obligations of Vertitech with regard to data protection and the rights of people under the Data Protection Act 1998 (the “Act”). We comply with the standards, procedures, and requirements laid down in the Act to ensure that the personal information users give us is kept secure and processed fairly and lawfully.
Data protection procedures
The Company shall ensure that all of its employees, contractors, agents, consultants, partners, or other parties working on behalf of the Company comply with the following when processing and/or transmitting personal data:
– All emails containing personal data must be encrypted;
– Personal data may be transmitted over secure networks only – transmission over unsecured networks is not permitted in any circumstances;
– Personal data may not be transmitted over a wireless network if there is a wired alternative that is reasonably practicable;
– Personal data contained in the body of an email, whether sent or received, should be copied from the body of that email and stored securely. The email itself should be deleted. All temporary files associated therewith should also be deleted;
– Where Personal data is to be sent by facsimile transmission the recipient should be informed in advance of the transmission and should be waiting by the fax machine to receive the data;
– Where Personal data is to be transferred in hardcopy form it should be passed directly to the recipient. Using an intermediary is not permitted;
– All hard copies of personal data should be stored securely in a locked box, drawer, cabinet, or similar;
– All electronic copies of personal data should be stored securely using passwords and suitable data encryption, where possible on a drive or server which cannot be accessed via the internet; and
– All passwords used to protect personal data should be changed regularly and should not use words or phrases which can be easily guessed or otherwise compromised.
What information do we share with others?
We may contract with other companies to provide certain services, including name verification, email distribution, market research, and promotions management. We provide these companies with only the information they need to perform their services and work closely with them to ensure that users’ privacy is respected and protected. These companies are prohibited by contract from using this information for their own marketing purposes or from sharing this information with anyone other than Vertitech. We will not pass users’ information on to any other company or third parties for marketing purposes unless users have agreed for us to do so.
One of the purposes for which we may disclose users’ address and zip code details is to check against the IMRG Security Alert or any other Fraud Prevention Scheme. We may also disclose specific information upon governmental request, in response to a court order, or when required by law to do so. We may also share information with companies assisting in fraud protection or investigation. We do not provide information to these agencies or companies for marketing or commercial purposes.
Cookies
A Cookie is a small data file that is stored by the Web browser on the user’s computer. We use Cookies to keep track of the user’s current session, to enable them to proceed to any page and fulfill forms at any time, and to personalize the user’s online experience.
Links to third-party sites
In an attempt to provide the user with increased value, we may from time to time include third-party links on our Website. These linked sites have separate and independent privacy policies. We encourage the user to review those policies when visiting those sites. This Privacy Policy Statement only covers our Website and does not cover any other website. We, therefore, have no responsibility or liability for the content and activities of these linked sites.
Changes to this privacy policy
Vertitech has the discretion to update this privacy policy at any time. When we do, we will revise the updated date at the bottom of this page. We encourage Users to frequently check this page for any changes to stay informed about how we are helping to protect the personal information we collect. Users acknowledge and agree that it is their responsibility to review this privacy policy periodically and become aware of modifications.
Access by data subject
A data subject may make a subject access request (“SAR”) at any time to see the information which the Company holds about them.
SARs must be made in writing, accompanied by the correct fee.
The Company currently requires a fee of €10 (the statutory maximum) with all SARs.
Upon receipt of a SAR, the Company shall have a maximum period of 40 days within which to respond. The following information will be provided to the data subject:
– Whether or not the Company holds any personal data on the data subject;
– A description of any personal data held on the data subject;
– Details of what that personal data is used for;
– Details of any third-party organizations that personal data is passed to; and
– Details of any technical terminology or codes.