Privacy Policy

1) Who we are (Controller)

This website certusonline.nmweb.gr (the “Website”) is operated by Certus Online S.A. (the “Company”, “we”, “us”), acting as the data controller for the processing described in this Privacy Policy.

Company name: Certus Online S.A.
Address: [Filonos Street 141]
Email: [info@certusonline.com]
Phone: [2103004488, 2104293644]

If you have any questions about this Policy or your personal data, you can contact us at the email above.

2) What personal data we collect

Depending on how you use the Website, we may collect:

2.1 Data you provide to us

  • Contact details (name, email, phone, company, job title) when you submit a contact form or request information.
  • Message content you submit through forms or email.
  • Business information you provide when requesting a demo/offer (e.g., company needs, service requirements).

2.2 Data collected automatically

  • Technical and usage data such as IP address, browser type, device type, operating system, pages visited, date/time, and referral URL.
  • Cookie data as described in our Cookie Policy / cookie banner.

2.3 Data from third parties (if applicable)

We may receive limited data from third‑party providers (e.g., analytics, security services) strictly for the purposes described below.

3) Purposes and legal bases for processing

We process personal data for the following purposes:

  1. To respond to inquiries and requests (e.g., “Contact Us”, demo requests)
    Legal basis: legitimate interests (Art. 6(1)(f)) and/or taking steps at your request prior to entering a contract (Art. 6(1)(b)).

  2. To provide and improve the Website, ensure functionality and security
    Legal basis: legitimate interests (Art. 6(1)(f)).

  3. Analytics and performance measurement (if enabled)
    Legal basis: consent (Art. 6(1)(a)) where required (e.g., non‑essential cookies).

  4. Compliance with legal obligations (e.g., to meet regulatory requirements)
    Legal basis: legal obligation (Art. 6(1)(c)).

  5. Marketing communications (only if you opt in, where required)
    Legal basis: consent (Art. 6(1)(a)) and/or legitimate interests (Art. 6(1)(f)) depending on local law and context.

4) Cookies and similar technologies

We use cookies and similar technologies to operate the Website and, where applicable, to analyze traffic and improve user experience.
You can manage your cookie preferences through our cookie banner and/or your browser settings. For more details, see our Cookie Policy [add link if you have one].

5) Sharing of personal data (Recipients)

We do not sell your personal data. We may share data with trusted service providers that support the Website and our operations, such as:

  • Website hosting and infrastructure providers
  • Email and communication providers
  • Analytics providers (if enabled)
  • Security and anti‑spam providers

These providers process data on our behalf under appropriate contractual safeguards (e.g., data processing agreements).

6) International transfers

If any of our service providers are located outside the European Economic Area (EEA), we ensure appropriate safeguards for international transfers, such as Standard Contractual Clauses or other lawful transfer mechanisms, as required by GDPR.

7) Data retention

We retain personal data only for as long as necessary for the purposes described in this Policy, including:

  • For handling inquiries and maintaining communication history
  • For compliance, security, and dispute resolution Retention periods may vary depending on the type of data and applicable legal requirements.

8) Security

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, alteration, disclosure, or destruction. However, no online system is 100% secure, and we cannot guarantee absolute security.

9) Your rights (GDPR)

Depending on your location and applicable law, you may have the right to:

  • Access your personal data
  • Rectify inaccurate data
  • Erase your data (“right to be forgotten”)
  • Restrict processing
  • Object to processing
  • Data portability
  • Withdraw consent at any time (where processing is based on consent)
  • Lodge a complaint with a supervisory authority

To exercise your rights, contact us at [insert email].

10) Third‑party links

The Website may contain links to third‑party websites. We are not responsible for the privacy practices of those websites. Please review their privacy policies separately.

11) Children’s privacy

The Website is not intended for children under the age of 16, and we do not knowingly collect personal data from children.

12) Changes to this Privacy Policy

We may update this Policy from time to time. The updated version will be posted on this page with a revised “Last updated” date.