Evac Privacy Policy

Home

Personal Data Protection Policy/Privacy Policy for EVAC

Preamble
This Policy, which has been designed in accordance with the statutory provisions of the General Data Protection Regulation of the European Union (Regulation 2016/679) (“GDPR”) which entered in force on May 25, 2018, L. 4624/2019 and the other European and national legislation, has been adopted by the company under the trade name “ARROW TECH G.P.” (“ARROW TECH O.E.”) and the distinctive title “ARROW TECH”, with registered offices in Alimos of Attica with tax number 802012776 and registration number 168122801000, tel. +30 6940401072 , e-mail: support@arrow-technologies.co (the “Company”).

The Company has created and operates the application EVAC-Evacuation Management (“EVAC” or the “Application”). EVAC has been created to be used in crisis situations (i.e., earthquakes, fire(s), natural disasters) or any and all scenarios where evacuation procedures are deemed necessary, as described in the relevant Terms of Use of the Application.

General Provisions
The Company respects your privacy and is committed to protecting your personal data (the “Personal Data”). This Policy explains and describes the way, practices and policies in which the Company, in its capacity as Data Controller, processes, uses, collects, storages, transfers, discloses, erases and protects your Personal Data which the Company collects from you, while registering for use and /or using the Application.

By registering as a User of the Application and providing your Personal Data to the Company, you consent and accept that this Policy will apply to the way that the Company uses your Personal Data and you consent to the Company collecting, storing, transferring, processing, using and disclosing your Personal Data, as described in detail in this Policy. This Policy applies only to online activities and the information collected while registering for use and /or using the Application. This policy is not applicable to any information collected offline or via channels other than this application.

When you register for an Account, the Company may ask for your contact information, including items such as name, email address, and telephone number. The Personal information/Data that you are asked to provide, and the reasons why you are asked to provide it, will be made clear to you at the point you are asked to provide such information. It is important that the Personal Data you provide are accurate and current. In case that you do not agree with any part of this Policy, you must refrain from registering as a User of the Application and providing your Personal Data. If you have any question regarding this Policy, you may address and contact with the Company via e-mail using the following e-mail address: support@arrow-technologies.co

Changes to the Policy
This version was last updated on March 2023. The Company may need to update this Policy from time to time. If substantial changes are made, the Company reserves the right to inform the Users about these changes by sending a notification via email.

Collection and Use of Personal Data
Personal data, or personal information, means any information about an individual from which that person can be identified. In particular, we may collect, store and use information provided by you for the purposes of registering for an Account/as a User of the Application; such as name, last name, middle name, email address, telephone number, etc, employment data, such as employment, position / title, employment location.

The Application may store various files of different types on a User’s and / or Admin’s and / or Visitor’s device to ensure correct functionality.

Log Files
The Application follows a standard procedure of using log files. These files log visitors when they visit applications. All hosting companies do this and a part of hosting services analytics. The information collected by log files include internet protocol (IP) addresses, browser type, Internet Service Provider (ISP), date and time stamp, referring/exit pages, and possibly the number of clicks. These are not linked to any information that is personally identifiable. The purpose of the information is for analyzing trends, administering the site, tracking users' movement on the application, and gathering demographic information.

Advertising Partners Privacy Policies
You may consult this list to find the Privacy Policy for each of the advertising partners of EVAC.

Third-party ad servers or ad networks uses technologies like cookies, JavaScript, or Web Beacons that are used in their respective advertisements and links that appear on EVAC, which are sent directly to users' browser. They automatically receive your IP address when this occurs. These technologies are used to measure the effectiveness of their advertising campaigns and/or to personalize the advertising content that you see on applications that you visit. Note that EVAC has no access to or control over these cookies that are used by third-party advertisers.

Third Party Privacy Policies
EVAC's Privacy Policy does not apply to other advertisers or applications. Thus, we are advising you to consult the respective Privacy Policies of these third-party ad servers for more detailed information. It may include their practices and instructions about how to opt-out of certain options.

You can choose to disable cookies through your individual browser options. To know more detailed information about cookie management with specific web browsers, it can be found at the browsers' respective applications.

Purposes of Processing and Legal Basis
The Company uses the information that collects in various ways, including to:
Provide, operate, and maintain the Application
Improve, personalize, and expand the Application
Identify and/ or reproduce errors that may occur while using the Application
Understand and analyze how you use the Application
Develop new products, services, features, and functionality
Communicate with you, either directly or through one of our partners, including for customer service, to provide you with updates and other information relating to the application
Marketing Actions and Promotions: The Company may also use your data for marketing actions and to inform you about new offers/categories of services by sending to you promotional information (newsletters) through e-mails and/or sms, as permitted by law and subject to your explicit consent.

Security, detection and fraud prevention: The Company uses the information, which may include Personal Data, to prevent investigate and detect cases fraud and other illegal activities. The Company may also use your Personal Data for risk assessment and security purposes, including user authentication. For these purposes, your Personal Data may be disclosed to third parties, such as law enforcement authorities, as permitted by applicable law, and to external consultants.

Legal Basis for Processing
The use of Personal Data is necessary for registering as a User of the Application/creating an Account Where required by applicable law, the Company will seek your consent before processing your Personal Data, especially for direct marketing purposes. You may withdraw your consent at any time whatsoever by contacting us at any of the addresses in the preamble of this Policy.

Protection and Retention of Personal Data
The Company takes appropriate legal, organizational and technical measures in order to protect your Personal Data in accordance with the applicable legislation for privacy and data security. The Company implements various security technologies and procedures in order to protect your Personal Data from any illegal destruction, loss, misuse or modification, as well as against any unauthorized or illegal processing, use or disclosure.

We retain your Personal Data, for as long as you use the Application.

The Company will delete or re-identify your Personal Data once they are no longer required for the provision of its services and/or for legal purposes, or as required otherwise by the applicable legislation for the protection of Personal Data from time to time.

Disclosure of Personal Data to Third Parties
Save as otherwise provided in this Policy, the Company is bound not to sell, rent or otherwise publish or disclose your Personal Data to third parties (individuals or legal entities) unless:
a) you have provided explicit written consent and (i) the third party (individual or legal entity associate/ supplier / service provider of the Company) has provided sufficient guarantees in respect of the technical and organizational measures governing the processing to be carried out and (ii) the third party (individual or legal entity associate / supplier/ service provider of the Company) has entered into a written contact with the Company which imposes on the third party obligations identical to those imposed on the Company under the provisions of Personal Data protection;
b) required in order for the Company to comply with the respective legislation and only to any competent public prosecutor, police, criminal investigation and judicial authorities in response to their requests;
c) in connection with any legal/judicial proceedings or impending legal/judicial proceedings;
d) in order for the Company to establish, exercise or defend its legal rights –including information to regulatory, prosecution οr other authorities for the purposes of fraud prevention and anti-counterfeiting, unauthorized use and illegal activities-. Unless otherwise provided in this Policy, the Company is bound not to transfer your Personal Data in third countries outside the European Union without your prior written consent unless the Company and the recipients of such Personal Data have entered into and use the standard contractual clauses approved by the European Commission and annexed to the Commission Decision of 5 th February 2010 on standard contractual clauses for transfer of personal data to processors established in third countries (2010/87/ΕU).

Your Rights
As a subject of data, you are entitled to legal rights regarding the personal data the Company collects from you. The Company will respect your rights and will sufficiently deal with your concerns.

The following list contains information regarding the legal rights you are entitled to exercise and which arise from the provisions of GDPR and the applicable national legislation which implements or supplements GDPR or otherwise is related to the processing of individuals’ Personal Data together with the binding directives and Codes of Practice issued from time to time by the respective supervisory authorities: Right to be informed: You can ask for information regarding your personal data, the processing of such data, as well as the legal basis for such processing and all details related to it.

Right of access and correction.
Right to delete: You can ask us to delete your personal data, where Personal Data are no longer necessary in regards to the purposes they have been collected or have been processed or for the provision of any services.
Right to restriction the processing of your Personal Data.
Right to object to the processing of your Personal Data.
Right to portability to another data controller, i.e. your right to receive data in appropriate format, so that their transfer to another data controller is technically feasible.
In order to exercise your above-mentioned rights or for any enquiry you may contact with us:
By sending an e-mail to the following e-mail address support@arrow-technologies.co or By sending a letter to the address set out in the Preamble of this Policy.

You are also entitled to withdraw at any time the consent you have provided (in cases that its provision is necessary) regarding the processing of your Personal Data (without retroactive effect) following one of the two (2) ways described above. Furthermore, you (a) are entitled to lodge a written complaint before the competent supervisory authority regarding the protection of your Personal Data, i.e. the Data Protection Authority (1-3, Kifisias Avenue, P.C. 115 23, Athens, +30 210 6475600, e- mail contact@dpa.gr) and (b) have the right to an effective judicial remedy in case you consider that your Personal Data have been violated.

Applicable Law
The processing and protection of your Personal Data is governed by the terms of this Policy, the provisions of GDPR and the applicable Greek legislation which implements or supplements GDPR or otherwise is related to the processing of individuals’ Personal Data together with the binding directives and Codes of Practice issued from time to time from the respective supervisory authorities (see European Commission).