Privacy Policy
PERSONAL DATA PROTECTION POLICY IN THE CONTEXT OF THE OPERATION OF “MY IASO” PROGRAM
The clinic with the trade name “IASO PRIVATE GENERAL, OBSTETRIC - GYNAECOLOGICAL & PAEDIATRICS CLINIC - DIAGNOSTIC, THERAPEUTIC & RESEARCH CENTER S.A.” (hereinafter, “IASO”) has the protection of personal data which it processes as a main priority. For this purpose, it constantly complies with the current legislation for the protection of personal data, in particular, with the General Data Protection Regulation (EU) 2016/679 (hereinafter, “GDPR”) and the L. 4624/2019.
This Data Protection Policy (the “Policy”) is intended to inform you regarding the processing of your personal data, in the context and for the purposes of your participation in the loyalty program “MY IASO”, as well as regarding your relevant rights and how to exercise them.
1. General Information and Data Controller
The clinic with the trade name “IASO PRIVATE GENERAL, OBSTETRIC - GYNAECOLOGICAL & PAEDIATRICS CLINIC - DIAGNOSTIC, THERAPEUTIC & RESEARCH CENTER S.A.” and the distinctive title “IASO S.A.”, having its registered office at 37-39, Kifissias Avenue, Maroussi, Attica, the VAT No. 094055324, its Tax Office is the Athens Tax Office for Commercial Companies (FAE Athens) and the General Commercial Registry (G.E.MI.) number 001403101000, as legally represented, is the Data Controller, for the collection, storing and, in general, the processing of your personal data in the context of your participation in the loyalty program “MY IASO”.
2. Purpose of Processing
IASO processes the personal data collected from the patients/clients for the purposes of your participation in the loyalty program “MY IASO” and, in particular, for the purposes of your registration in the program, the issuance of your personal digital “MY IASO” membership card, as well as for the purposes of your registration in the micro-site of the program, https://my.iaso.gr/, for your usage of the discount codes available at the time and your regular briefing regarding new offers and discounts. In addition, IASO processes said data to define the "Loyalty Level" of each user, for the planning and implementation of Marketing actions and the promotion of new services, as well as for general statistical purposes of commercial policy and strategic planning.
3. Which of your personal data we process, in what way and for how long
In the context of the aforementioned purposes, IASO processes, with your consent, your personal data, which you have already declared to it and/or during your registration in the program and/or during your registration in the micro-site of the program and, in particular, your full name, your mobile phone number, your email address, your gender, your date of birth, your address, information related to your use of the services provided by IASO, consents for communication via email/SMS, as well as information regarding the history of the usage of coupons and o your digital membership card through the micro-site of the program and details of your response to IASO's promotional activities.
The aforementioned personal data will be processed by IASO for as long as “MY IASO” program is in force, otherwise until your consent is revoked. Upon expiration of the program or revocation of your consent, the Clinic will continue to process your personal data for the fulfillment of its legal obligations in relation to the program and/or its legal interests, exclusively for the required period and no more than necessary, always in accordance with the legislation in force.
4. Legal Basis for Processing
IASO processes personal data for the aforementioned purposes under your consent (GDPR, Article 6 par. 1 (a)), or when the processing is necessary for IASO’s compliance with its legal obligations (GDPR, article 6 par. 1 (c)), or for the pursuit of IASO’s legal interests (GDPR, article 6 par. 1 (f)).
5. In what way and with whom we share your personal data
IASO does not transmit your personal data to third parties, except in exceptional cases where IASO proceeds to the transmission of your data to persons who assist it in the execution of the aforementioned processing purposes, provided that the legal conditions are met. In particular, the company with the trade name [SAP], as well as the company with the trade name [MERCURY] act as data processors on behalf of IASO, in the context and for the purposes of your usage of the digital “MY IASO” membership card.
IASO requires from all its associates - data processors on its behalf, to take the appropriate measures in order to protect the confidentiality and security of personal data and enters into contracts with them with corresponding commitments, as provided in the applicable legislation.
6. Data Security
IASO takes all appropriate technical and organizational measures for the security of your personal data, to ensure the confidentiality of their processing and the protection against accidental or illegal destruction / loss / tampering, prohibited dissemination or access and any other form of unlawful processing. In addition, it binds all persons who have access to or process personal data on its behalf with confidentiality clauses and with the obligation of privacy compliance.
7. Your rights in relation to your personal data
In relation to your personal data, which are submitted to the processing described above in the context of the loyalty program “MY IASO”, you are entitled to the following rights:
Right to information & access: You have the right to be informed and have access to your data and receive additional information in regard to their processing.
Right of correction: You have the right to request the correction, modification, completion and updating of your data.
Right of deletion: You have the right to request the deletion of your kept personal data, when the right in question is not subject to restrictions in accordance with the legislation in force or any other restrictions.
Right to restrict processing: You have the right to request a restriction on the processing of your personal data when: (a) the accuracy of the personal data is questioned and pending verification; (b) the processing is illegal and you request, instead of deletion, the restriction of the use of your personal data; (c) the personal data are not needed for processing purposes, however they are necessary for the establishment, exercise, support of legal claims; and (d) you object to the processing and until it is verified that there are legitimate reasons that concern us and which override the reasons why you oppose processing.
Right to object to the processing: You have the right to object to the processing of your personal data at any time, only under certain conditions provided by law.
Right to portability: You have the right to receive your personal data free of charge, in a form that allows you to access, use and process them, as well as to request, if technically possible, your data to be transmitted directly to another data processor. The right in question applies to the data you have provided and their processing is realized by automated means under your consent.
Right to withdraw consent: You have the right to withdraw your consent, as long as it has been received for the intended processing, at any time.
In order to exercise any of the aforementioned rights, you may contact the email address: [email protected], or send a letter to our postal address.
Right of complaint to the HDPA: You have the right to file a complaint to the Hellenic Data Protection Authority (https://www.dpa.gr). Call Center: +30 210 6475600, Fax: +30 210 6475628, Email: [email protected].
8. Data Protection Officer
You may contact IASO’s Data Protection Officer (“DPO”), Ms. Chara Daouti, regarding issues related to the processing of your personal data at the email address: [email protected].