Privacy Policy

We care about our privacy

Our privacy is important to us at Natech. We respect our privacy regarding any
information we may collect from you across our website.

INTRODUCTION

Natech S.A. (“Natech”, “we” or  “us”) fully understands the importance of privacy and the protection of Personal Data in the digital era and is committed to ensure an adequate level of data protection for the visitors of its websites.

This Privacy Policy & Data Security (“Policy”) describes the practices we have adopted with respect to processing Personal Information including the collection, use, storage or disclosure of Personal Data, (i) on our websites that link to this Policy (collectively the “Websites”); or (ii) when you interact with our support center or other online forums.

This Privacy Policy does not describe the cookies used in our websites. To know more, please refer to our cookies policy available in the banner of our websites or here.

For the purposes of this Policy Natech means Natech S.A. (Greece) and all its affiliates, acting as data controllers either independently or jointly. Please note that in order to exercise your rights or ask any question, you should reach the affiliate in your country (if such affiliate exists) or use the form available here.

This Policy may be modified by Natech, from time to time, in particular to reflect changes in applicable legislations and / or in Natech’s practices. Changes will be available on this page. We invite you to check this Policy on a regular basis.

PERSONAL DATA THAT WE COLLECT AND PROCESS

When you interact with us on our Websites we may collect and process Personal Data about you.

Information We Collect Directly From You. We collect personal data you choose to provide, e.g., through registrations, applications and surveys, and in connection with your inquiries and purchases. For example, you may choose to provide your name, contact information etc.

Information We Collect Automatically. We and our third party business partners, including analytics and advertising partners, automatically collect information when you use our Site through cookies, pixel tags, clear GIFs, or similar technologies, such as your browser type and operating system, web pages you view, your interactions with content or webpages on the Site, links you click, your IP address or other identifiers, the length of time you visit our Site, the referring URL or webpage that led you to our Site, the information, content, or advertisements you view, hover over, or click on, and the search terms you enter. Our third party business partners may use these technologies to collect information about your online activities over time and across different websites and services. You may find further information on cookies and related technologies here.

Information We Collect From Other Sources. From time to time, we may use or augment the personal data we have about you with information obtained from other sources, such as public databases, social media platforms and other third parties.

This data may include:

Personal Information: When you register for an account, make a purchase, subscribe to our newsletter, or fill out a contact form, we may collect personal information such as your name, email address, postal address, phone number, and payment information.

Usage Information: We automatically collect certain information about your device and how you interact with our website, such as your IP address, browser type, operating system, referring URLs, pages visited, and the dates and times of your visits.

Cookies and Similar Technologies: We use cookies, web beacons, and other similar technologies to collect information about your browsing activities and preferences. This may include information about your browsing history, preferences, and interactions with our website.

Location Information: With your consent, we may collect and process information about your approximate location based on your IP address or other geolocation data provided by your device.

User-Generated Content: If you choose to submit comments, reviews, or other user-generated content on our website, we may collect and process the content of your submissions, as well as any associated metadata.

If you submit any personal data relating to other people to us, you represent that you have the authority to do so and to permit us to use the information in accordance with this Privacy Policy.

Natech processes Personal Data within the framework of operating its Websites for the following purposes, as these are supported by the respective legal bases, as follows:

PurposeLegal Basis
Administering our Websites, conduct identity verification and other fraud detection activities;

Monitoring, maintaining and improving the performance of our Websites, communications, services and products, and analyzing trends and usage;

Improving and personalizing your experience with us and our Websites and to tailor and send content, communications, advertisements and offers to you (where consent is not required);

Sending you information you have requested;

Ensuring the security of our Websites;

For our own internal functions, management, accounting and corporate reporting, relationship management, internal research and analytics and to improve business efficacies;

To enforce compliance with our terms of use and other policies or otherwise in connection with legal claims, compliance, regulatory and investigatory purposes as necessary (including disclosure of such information in connection with legal process or litigation);

To create aggregate and statistical data (which cannot be used to identify you). We reserve the right to transfer and/or sell aggregate or group data about a Website’s users for lawful purposes.		As required to conduct our business and pursue our legitimate interests (Art. 6 para. 1 p.1 lit. f) GDPR).

You can obtain information on any of our balancing tests by contacting us using the details below.
For sales and marketing activities (where applicable legislation requires consent);

Where you provide consent to place cookies or similar technologies on your device;

On other occasions where we explain the purpose at the time.		Consent (Art. 6 para. 1 lit. a) GDPR)
Responding to requests from government or law enforcement authorities conducting an investigationRequired by Law (Art. 6 (1) lit. c GDPR)

If you provide Personal Information to us for a certain reason, we will use the Personal Information in connection with the reason for which it was provided. We may process Personal Information for longer or for other purposes than described herein, when required by law.

RECIPIENTS OF DATA

We may share your personal information with the following categories of recipients:

Service Providers: We may disclose your personal information to third-party service providers who perform services on our behalf, such as payment processing, data analysis, email delivery, hosting services, customer service, and marketing assistance.

Affiliates: We may share some or all of your personal information with our parent company, subsidiaries, joint ventures, or other companies under common control with us.

Business Partners: We may share your personal information with our business partners to offer you certain products, services, or promotions.

Legal Compliance and Protection: We may disclose your information to third parties if we believe that disclosure is necessary to comply with applicable laws, regulations, legal processes, or government requests, or to protect the rights, property, and safety of our users, employees, or others.

Business Transfers: In the event of a merger, acquisition, reorganization, sale of some or all of our assets, or similar transaction, your personal information may be transferred or disclosed as part of the transaction.

With Your Consent: We may share your information with third parties when you explicitly consent to such sharing.

We require these third parties to maintain the confidentiality of your personal information and to use it only to provide the services we’ve requested.

Your personal data may be transferred to and processed in countries outside of the European Economic Area (EEA). These countries may have data protection laws that are different from the laws of your country (and, in some cases, may not be as protective).

Specifically, our website servers are located in [insert location], and our third-party service providers and partners operate around the world. This means that when we collect your personal information, we may process it in any of these countries.

However, we have taken appropriate safeguards to require that your personal data will remain protected in accordance with this Privacy Policy. These include implementing Standard Contractual Clauses for transfers of personal data between our group companies and third-party service providers, which require all parties to protect personal data they process from the EEA in accordance with European Union data protection law.

By providing your personal data to us, you consent to the transfer, processing, and storage of your personal data outside of the EEA as described in this Privacy Policy.

DATA RETENTION PERIOD

We will hold your personal data on our systems for the longest of the following periods: (i) as long as is necessary for the relevant purpose of collection; (ii) any retention period that is required by law; (iii) the end of the period in which litigation or investigations might arise in respect of services provided to you.

YOUR RIGHTS

Under the General Data Protection Regulation (GDPR) and other applicable data protection laws, you have certain rights regarding your personal information. These rights include:

Right to Access: You have the right to request access to the personal data we hold about you. This enables you to receive a copy of the personal data we hold and to check that we are lawfully processing it.

Right to Rectification: You have the right to request the correction of inaccurate personal data about you and to have incomplete personal data completed.

Right to Erasure: In certain circumstances, you have the right to request the deletion of your personal data. This right is not absolute and only applies in specific situations.

Right to Restriction of Processing: You have the right to request the restriction of processing of your personal data in certain circumstances. This means that we will suspend the processing of your data temporarily.

Right to Data Portability: You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used, and machine-readable format and have the right to transmit that data to another controller.

Right to Object: You have the right to object to the processing of your personal data in certain circumstances, including where we are processing your personal data for direct marketing purposes.

Right to Withdraw Consent: If we rely on your consent to process your personal data, you have the right to withdraw that consent at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.

To exercise any of these rights, please contact us using the contact details provided at the end of this Privacy Policy. We will respond to your request within the timeframes required by applicable data protection laws.

Please note that these rights are not absolute and may be subject to limitations and exemptions under applicable data protection laws.

In accordance with Art. 77 GDPR, you can contact a data protection supervisory authority and lodge a complaint if you believe that we are not processing your data properly. The Hellenic Data Protection Authority (https://www.dpa.gr/) is responsible for our company.

DATA CONTROLLER AND DATA PROTECTION OFFICER CONTACT DETAILS

You may contact Natech for further information at the following contact details:

Tel. …………

Email ………………

Postal Address …………

You can reach our data protection officer at: dpo@natechbanking.com or at our postal address mentioned above, with the addition “Data Protection”.