Privacy Policy

Introduction

Your privacy is important to DERMA TOUCH Ε.Π.Ε. ("we," "our," or "us"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website dermatouch.gr.

This policy is compliant with the General Data Protection Regulation (GDPR) and applicable Greek data protection laws.

Last updated: March 2026

1. Information We Collect

1.1 Personal Data

We may collect personal information that you voluntarily provide to us, including:

  • Contact Information: Name, email address, phone number
  • Professional Information: Medical license number, clinic/hospital affiliation (for healthcare professionals)
  • Communication Data: Messages sent through our contact forms

1.2 Technical Data

Automatically collected information includes:

  • IP address and browser type
  • Device information and operating system
  • Referring website and pages viewed
  • Time and date of visit

2. Legal Basis for Processing

We process your personal data based on the following legal grounds under GDPR:

  • Legitimate Interest: To respond to inquiries and provide information about our products
  • Contractual Necessity: To fulfill business agreements and orders
  • Legal Compliance: To meet regulatory requirements for medical device distribution
  • Consent: When you subscribe to newsletters or marketing communications

3. How We Use Your Information

We use collected data for the following purposes:

  • Responding to inquiries and providing customer support
  • Processing orders and managing business relationships
  • Sending product information and updates (with consent)
  • Improving our website and services
  • Complying with legal obligations

4. Data Sharing and Disclosure

We do not sell your personal data. We may share information with:

  • Service Providers: Third parties assisting in website operations (hosting, analytics)
  • Business Partners: Healthcare institutions and distributors (only with consent)
  • Legal Authorities: When required by law or to protect our rights

5. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

  • SSL/TLS encryption for data transmission
  • Secure servers and access controls
  • Regular security assessments and updates
  • Employee training on data protection

6. Your Rights Under GDPR

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Restriction: Limit how we use your data
  • Portability: Receive your data in a structured format
  • Object: Object to processing based on legitimate interest
  • Withdraw Consent: Revoke consent at any time

7. Data Retention

We retain personal data only as long as necessary for the purposes outlined in this policy, unless required by law to retain it longer. Typical retention periods:

  • Customer inquiries: 2 years after last contact
  • Business correspondence: 5 years
  • Marketing communications: Until consent withdrawal

8. Cookies and Tracking

For information on how we use cookies and tracking technologies, please refer to our Cookie Policy.

9. International Data Transfers

Your data is primarily processed within the European Union. Any transfers outside the EU will only occur with appropriate safeguards in place.

10. Children's Privacy

Our services are not intended for individuals under 18. We do not knowingly collect data from minors.

11. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the new policy on our website.

12. Contact Information

If you have questions about this policy or wish to exercise your rights, please contact us:

DERMA TOUCH Ε.Π.Ε.
Ithakis 18 & Gounari 165 61
Glyfada, Greece
Email: info@dermatouch.gr
Phone: +30 2109681185

For GDPR-related complaints, you also have the right to contact the Hellenic Data Protection Authority (HDPA) at www.dpa.gr.