ITALIAN FOOD EXHIBITION – Information Security and Privacy Policy
ORMEDITERRANEAN INTERNATIONAL TRADE EXHIBITIONS S.A.(hereinafter the “Company”), acting as “Data Controller”, is responsible for the processing of your personal data on the website itafoodexpo.com (hereinafter “Web page“). In this Policy, the words “we” or “us” refer to the Company.
This Policy aims, in accordance with Article 13 of the General Data Protection Regulation (EU Regulation 2106/679, hereinafter “GDPR”), to inform you about the use of your personal data, to describe the framework under which we collect, retain and use the personal data of visitors to the Website (“Personal Data”), to explain our relevant obligations as well as the rights of visitors to the Website with regard to the processing of their data.
If you have any questions about this Policy and how we process your personal data, you can contact the Company’s Data Protection Officer (DPO):
Data Controller
MEDITERRANEAN INTERNATIONAL TRADE EXHIBITIONS S.A.
16 KILOMETER LAVRIOU STREET 301, PEANIA / EAST ATTICA, ZIP CODE 19002
Telephone: 2299150564
Data Protection Officer Contact Details (Data Protection Officer) : [email protected]
Mr. Kouzouloglos Iraklis
Definitions
Personal Data:any information concerning an identified or identifiable natural person and whose identity can be verified directly or indirectly, in particular through reference to an identifier, such as, but not limited to, name, telephone number, email address, identity number, tax registration number (TIN).
Special Categories of Personal Data:personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs or trade union membership, as well as genetic data, biometric data used for the purpose of unambiguously identifying a person, data concerning health or data concerning a natural person’s sex life or sexual orientation.
Data Subject:the identified or identifiable natural person to whom the Personal Data refers.
Edit:any operation or set of operations which is performed upon personal data or upon sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Performing the Processing:the natural or legal person, public authority, agency or other body that processes Personal Data on behalf of the Controller.
Consent:any freely given, specific, explicit and informed indication of the Data Subject’s wishes by which the Data Subject signifies agreement, by a statement or by a clear affirmative action, to the processing of Personal Data concerning him or her.
Personal Data Breach:the breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of or access to Personal Data transmitted, stored or otherwise Processed.
Collection and Processing of Personal Data
As a general principle, we process your data through the Website only when you actively provide it yourself (e.g. when you contact us via email).
However, some data is collected either with the help of cookies (for more information on the use of cookies, please also read our policy on cookies) or automatically during your visit to the Website.
Specifically, due to the way the internet works, as soon as you visit the Website, our server records your IP address, which constitutes personal data, even if we cannot identify you ourselves based on this element, as well as some other information, such as the date and time of your visit.
The legal basis for collecting and storing data in special files (log files) is our legitimate interest in ensuring the security of networks, information and services from random events or illegal or malicious actions that endanger the availability, authenticity, integrity and confidentiality of stored or transmitted data (e.g. control of “denial of service” attacks), but also to effectively address any technical problems.
This processing is in accordance with the relevant legal framework, as it does not involve serious risks to your rights and freedoms, while it is permitted, in accordance with the GDPR and national law, for this processing to be based on our legitimate interest.
In the table below you can find information regarding the purposes of processing personal data collected through the Website, the categories of such data, as well as the legal basis for their processing:
Personal Data | Purpose of processing | Legal basis |
Name, email address and other information that may be included in your request. Important note: In your message, you should only include the necessary information about the issue you are interested in and avoid referring to your own or third party personal data. | We process this data in the context of serving you, in order to be able to handle your request and communicate with you, responding to your message. | We process the data within the framework of serving the legitimate interests of the Company (article 6 par. 1f GDPR), in this case to serve your requests, maintain and improve the Company’s communication with visitors. |
Personal Data | Purpose of processing | Legal basis |
Email address | We use your email to send you updates about news, offers and other matters that we think may be of interest to you. | We process the data you provide to us based on your consent (Article 6(1)(a) GDPR), which you have the right to withdraw at any time and to request the deletion of your data. The withdrawal of consent does not affect the lawfulness of the processing that was based on consent before its withdrawal. |
The accuracy of the information submitted in all cases is the responsibility of the visitors themselves. Please find out about the possibility of correcting your information in the section of the policy concerning your rights.
The personal data provided by visitors to the Website is used exclusively for the purpose for which it was submitted, as stated at the respective point of collection.
Disclosure to third parties
The Company may disclose the above personal data to companies providing IT support and website support. For more information regarding the recipients of your data, you can contact the Company’s DPO at the email address [email protected].
Safety
The Company processes your personal data in a manner that ensures their protection. Specifically, the processing of your personal data is carried out exclusively by personnel authorized for this purpose or by partners who are bound to the Company by the same obligations to protect your personal data. The Company takes all appropriate organizational and technical measures for the security of data and their protection against accidental or unlawful destruction, accidental loss, alteration, prohibited dissemination or access and any other form of unlawful processing. Among other things, it adopts internal security policies, trains its staff, while utilizing a series of technologies that ensure the security of your data (e.g. SSL certificate, encryption, certified hosting providers).
Retention Period
The personal data you submit to the Website is retained only for as long as is necessary for the purposes for which it was collected or as required by the relevant legal framework.
Rights of subjects
This section sets out your rights in relation to your personal data. These rights are subject to certain exceptions, reservations or limitations.
Please submit your requests responsibly. The Company will respond as soon as possible and in any case within one month of receipt of the request. If the examination of your request is going to require more time, you will receive relevant information. To exercise your rights, you can contact the Data Protection Officer (DPO) at the email address [email protected].
The Company ensures the unhindered exercise of your following rights:
You have the right to request and receive clear, transparent and easily understandable information about how we process your personal data.
You have the right to access your personal data free of charge, except in the following cases, where a reasonable charge may be made to cover the Company’s administrative costs:
You have the right to request the correction of your personal data if it is inaccurate or incomplete.
You have the right to request the deletion or removal of your personal data when it is no longer necessary for the purposes for which it was collected or there is no legitimate reason for its continued processing. The right to deletion is not absolute, to the extent that there is a specific legal obligation or other legitimate reason for the Company to retain your personal data.
In certain cases, you have the right to restrict or remove the further processing of your personal data. In cases where processing has been restricted, your personal data remain stored without being further processed.
You have the right to request the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format, and to transmit such data to another controller.
You have the right to object at any time and for reasons related to your particular situation to the processing of your personal data, unless the Company demonstrates compelling and legitimate reasons for such processing.
The Company does not engage in automated individual decision-making, including profiling.
We inform you of the existence of your right to withdraw your consent at any time, without affecting the lawfulness of the processing that was based on consent before its withdrawal.
Submit a complaint
For further information and advice regarding your rights or to submit a complaint, you can contact the Hellenic Data Protection Authority, tel: +30-210 6475600 (Kifisias 1-3, P.C. 115 23, Athens, tel. 210 6475600, on the special form of the Hellenic Data Protection Authority on the websitehttps://www.dpa.gr/el/syndesi/polites/kataggelia).
Social media media)
Facebook Page
The Website maintains an official page on the Facebook social networking platform (https://www.facebook.com/italianFoodExhibition), which is connected to the Website via hyperlinks.
You can contact us through our Facebook page, using the “send message” function.
In order to answer your questions, we process your Facebook username as well as other information that is publicly available through your profile (e.g. email address). We process this data in the context of serving the legitimate interests of the Company (Article 6, paragraph 1f GDPR), in this case to serve your requests, to maintain and improve the Company’s communication with visitors. Access to and use of the Facebook page is subject, in addition to Facebook’s own policies, to this Privacy Policy.
If you choose to “LIKE” our page, this implies that you give your consent to see the news and promotions (via newsfeed) that we carry out through the Facebook page. If you do not wish to receive such updates, you can click the “UNLIKE” option at any time.
The controller responsible for the operation of Facebook in the European Union is Facebook Ireland Limited, Hanover Reach, 5-7 Hanover Quay. You can find out more about the processing of your data by Facebook at the following links:
https://el-gr.facebook.com/policy.php?CAT_VISITOR_SESSION=c7b73ebc78d1681ade25473632eae199
https://el-gr.facebook.com/business/GDPR
The Website maintains an official page on the Instagram social networking platform (https://www.instagram.com/italianFoodExhibition/)
Through the Instagram platform, you have the ability to follow the Website’s account and comment on its publications, providing data for processing on the platform.
Instagram, whose operation in the European Union is controlled by Facebook Ireland Limited, Hanover Reach, 5-7 Hanover Quay, has its own policies on cookies and data protection, over which we have no control and are unable to influence.
Access to Instagram is solely at your own risk and we encourage you to read the Terms of Use carefully.its data protection policy, as you accept it by using its services.
General information about social media
According to decisions of the Court of Justice of the European Union, the Management Company, as the manager of a page through which it processes personal data of visitors on social media, can be considered a joint controller with the respective provider. This relationship concerns exclusively and only the processing of the visitor’s data through the page, such as for example the indication “like” on a publication. This processing is based on the visitor’s consent, as detailed above.
The Company takes all appropriate technical and organizational measures for the security of data processing through social media, such as, for example, limiting the number of people who have access to the management of each page.
The Company is only responsible for the manner and means of processing your data for the purposes it sets (communication, information and promotional actions) and to the extent that it exercises control over your data. On the contrary, it bears no responsibility for the manner or means by which the respective social networking platform processes your data. The terms of use of each social networking medium where your comments are submitted apply normally.
In any case, we urge you to be particularly careful with the content you send to our social media pages, especially when you provide personal data of yours or that of third parties, while you should confirm that the page you are communicating with is indeed the official one.
Comments on social media
The Company encourages users to submit comments on posts and/or pages it maintains on social media, within the framework of an open dialogue with respect for different opinions.
The Company has no general obligation to monitor the content submitted by users of these media, however, it makes efforts to ensure a safe online environment.
Therefore, the administrators of the Website reserve the right to remove any type of content deemed to violate its terms of use, such as content that is abusive, vulgar, pornographic, threatening, advertising or that violates intellectual property rights or contains a false statement regarding the user’s identity, while retaining the ability to block users who submit it.
If you believe that user content hosted on the Company’s social media pages violates or otherwise violates our terms of use, please contact the administrators immediately.
Changes to this Policy
Our goal is to continually review and update this Policy in order to comply with relevant legal and regulatory requirements, while providing the best possible protection for your personal data. Any updates will be communicated via the Website.
Last Update: 11/4/2025
