• Products on Cart ( 0 )

Τerms and Conditions

TERMS OF USE

Welcome to our websites . By using our site , you agree to the following terms , which should be read carefully .

Any software available for loading (downloading) from this server , is the intellectual property of our COMPANY . The use of such Documents from this Server is limited solely for informational and non-commercial or personal only and will not be copied nor be put to another network computer or be distributed through other means of communication. There absolutely no interference occurs in the documents . Any other use is strictly prohibited by law and may result in severe civil and criminal penalties . Violators will be prosecuted legally .

The company did not indicate in any way that the information contained in documents and notices in this server is suitable for any purpose . All such documents and related graphics are provided " as is" without any warranty of any kind.

You are free to use www.nutritherapy.gr accordance with the law and the moral and merchantable . The responsibility for the contents of the transaction is solely to you . The Company does not exercise any kind of correction or intervention to the data transfer . We ask you to fill in correctly the following fields (name , address , e-mail) to the on line contact forms . The use of the COMPANY site is subject to Greek and international laws and each USER agrees not to use our site in order to violate these laws .

Responsibility of the User

  • Users agree and undertake not to use the online store
  • Send , post, send by e-mail or otherwise transmit any Content that is unlawful , for any reason , causing injury and unlawful infringement to the Company or to any third  party or breach confidentiality or confidential information of any perso
  • Send , post, send by e-mail or otherwise transmit any content that causes a breach of morality , social values ??, etc. are minors
  • Send , post, send by e-mail or otherwise transmit any content that users do not have a right to transmit under law or valid contracts ( such as inside information , proprietary and confidential information learned or disclosed as part labor relations or covered by confidentiality agreements)
  • Send , post, send by e-mail or otherwise transmit any Content that infringes any patent , trademark, trade secret , copyright or other proprietary rights of third parties ,
  • Send , post, send by e-mail or otherwise transmit any material that contains software viruses or any other computer code , files or programs designed to interrupt , damage, destroy or operation of any equipment software or hardware,
  • Intentional or non- violation of applicable law .
  • Harassment of third parties in any way ,
  • Collect or store personal data about other users .

Responsibility of the Company

The USER agrees and accepts that all members, partners , employees , management , shareholders and other partners COMPANY is not responsible for anything resulting from non- members who use the site of COMPANY . Any use contrary to the above except the possible civil penalties and suspension of service without notice.

Copyright

On site includes material , trademarks, service marks, trade dress and other content are owned and protected by law. All contents of the site (including text , graphics , images , photographs, and software ) is the intellectual property of the COMPANY and protected by Greek and International Law . Prohibited any copying , reproduction or retransmission of material without written permission from the company . The appearance of the world wide web website should in no way be construed as a transfer or license or right to use them .

Limits of Liability

By using the site, you agree fully that the use is at your own risk. The company makes every effort to provide high quality , but can not guarantee that there will be no interruptions or errors . Any reference or link (link) to another site, is provided for your convenience only and are not responsible for the content, products and services (advertising or selling ) on this site . Product pictures are indicative and not binding in any way the company.

The advice given in the texts does not replace in any way the personal instructions of your doctors . The author is not liable for any loss or claim emerged from the misuse of the information provided or the lack of medical monitoring .

Applicable Law

This site is created and controlled by the Company , in Athens and the Greek legislation guiding the use of the site and its interpretation. If you choose to access our site from another country , you have the responsibility to follow the laws of this country . These conditions constitute the entire agreement with the Company and the Company has the right to make changes to the content of the site and these terms and conditions without notice.

Privacy Statement

This privacy statement on the company's site (www.nutritherapy.gr) The Company recognizes that , when communicating with the user for the execution of orders made ??receiver and takes insider knowledge - sensitive personal data of the latter.

When each USER sends a request online, the information provided to the Company used solely to meet the request. The Company considers the applications and e-mail exchanges with which the USER confidential. There is no transfer of this content only directly relevant to the recipient and to the competent bodies of respect for the law , if requested or if the content of the message that we affect in any way the Company .

The Company is required to operate as confidential all information and data and to not divulge to any third party other than its employees or its partners and only to the extent absolutely necessary for the fulfillment of their obligations under this Agreement, without the prior written consent of the other party . It also undertakes to take all necessary measures against any breach of the same obligation of confidentiality from colleagues or staff , which in the present , it was necessary to take note of this information.

In any case , both parties are obliged not to copy, disclose or use such information for any other purpose without the prior consent of the other Party , and always subject to the relevant provisions of the current legislation . Each party during processing and storage of the contractor , it shall comply in accordance with the terms of Law 2472/1997 as in force and generally applicable law on Privacy .

The obligation of confidentiality shall apply to the parties and especially for companies without a time limit.

Such action is necessary to :

• protect the rights and property of COMPANY

• COMPANY protect against misuse or unauthorized use of the site

• protect the personal safety of employees , partners, and generally in any way associated with the company and that of the users and the public .

Nevertheless , any USER declare false email address or try to get someone else when sending information online, all information - as well as the IP address - will be part of any investigation . People of COMPANY may need to edit your e-mail in collaboration with the technical department. Also , if you ask one of our customer service specialists COMPANY's help in any e-mails , he will be able to access the full range of information that is relevant to your request , including your email address and your messages . The COMPANY has links to other sites. We are not responsible for their security policy or the way in which they manage their electronic visitors .

Return policy for e-books

We declare that we have the rights laid down in the provisions relating to consumer protection , and in particular the provisions of Law 2251/1994 and Presidential Decree 131/2003 analog , interpreted and applied in this case. Even more particularly should know that according to Article 10 of Law 2251/1994 applied proportionally have the right to withdraw without giving any reason of this Agreement until the completion of the installation of the digital book to your computer and / or your tablet and / or your mobile. In this case, please notify us via email at This email address is being protected from spambots. You need JavaScript enabled to view it. your desire for cancellation and will refund the amount you paid within 30 days from the day our alerts . If you " open " ( click on) the hyperlink (link) digital book (e-book), it is not feasible for us to refund your money because service from our side has been completed and it is technically possible the return of the product .

 

GDPR COMPLIANCE STATEMENT

From 25 May 2018 the General Data Protection Regulation (GDPR) applies in the entire EU. These new privacy rules apply to every organisation processing personal data from individuals located in the EU, including NUTRITHERAPY.GR and its customers. The GDPR replaces and extends the scope of the former EU directive and its national implementation laws.

The aim of this document is to:

  • Inform you about the GDPR;
  • Let you know what we as NUTRITHERAPY have done and will continue doing to comply with the GDPR; and
  • to help you comply when using NUTRITHERAPY servises;

We may update this document whenever we think this will help to better achieve the above purposes.

GDPR Compliance Statement

About this document

Internal privacy policy

About the GDPR

  1. Informed consent;
  2. Performance of a contract;
  3. Compliance with a legal obligation;
  4. Vital interests of the data subject;
  5. Performance of a public task;
  6. Legitimate interests pursued by the controller
  • All processing of personal data must comply with fundamental principles, such as lawfulness, fairness, transparency, purpose limitation, data minimisation, accuracy, storage limitation, integrity and confidentiality, and accountability);
  • All processing of personal data must be founded on a valid and applicable legal basis listed in the GDPR (e.g. if the data subject has given informed consent, or if processing is necessary to perform a contract with the data subject);
  • Data subjects must be informed about what information is processed about them, why (including the applicable legal basis), for how long, and how it is secured;
  • The following rights of data subjects must be complied with, and data subjects must be explicitly informed about their rights to:

Storage limitation

About this document

  • a description of the applicable processing activities;
  • applicable purposes and instructions;
  • measures for security and confidentiality;
  • applicable sub-processors and procedure for engaging another 
  • (sub-)processor;
  • personal data breach notification obligations;
  • assistance obligations to help ensure data subjects’ rights;
  • returning or deleting personal data upon termination;
  • audits and inspections.
  1. obtain access to the data processed about them;
  2. have their data corrected, erased or restricted when incorrect or no longer necessary;
  3. object to certain processing of their data;
  4. take their data with them to another provider;
  5. not be subjected to profiling and automated decision-making without their consent;
  6. complain to a supervisory authority about the way their personal data is processed;

Appropriate safeguards for international transfer

  • Organisations processing personal data more than just occasionally must keep an up to date record (overview) of the kinds of personal data they process, about what kinds of data subjects, why (which applicable legal basis), for how long, using which data processors, and where;
  • Organisations whose core activities revolve around processing personal data must appoint a data protection officer (DPO), a privacy expert who is responsible to help them comply with the GDPR and should be consulted on all important privacy matters;
  • For new and riskier forms of personal data processing, a data protection impact assessment (DPIA) must be performed first;
  • Personal data must be appropriately secured against accidental or unlawful destruction, loss, alteration and unauthorised disclosure or access;
  • In the event of a personal data security breach, the supervisory authority and/or affected data subjects must be notified;
  • In designing systems used to process personal data, privacy should be implemented by design and by default;
  • Where another party (a ‘processor’) is contracted to process personal data on the organisation’s behalf, a data processing agreement is required;
  • Processing of personal data may not be outsourced to countries outside the EEA, unless specific appropriate safeguards are in place, such as contractual model clauses, binding corporate rules, or a specific arrangement such as the EU-US Privacy Shield.

Accountability

Important terms and definitions of the GDPR

  • our processing purposes;
  • the categories of data subjects we process information from;
  • the types of personal data (e.g. name, etc);
  • Data subjects’ rights (e.g. correction, erasure, restriction, objection, complaints)

"personal data"

Security documentation

GDPR art 4(1)

Data Protection Officer

‘personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person

Accuracy

This definition is very broad: all information relating to an identified or identifiable natural person (called the ‘data subject’). Importantly, this does not only cover ‘personally identifiable information’ (knows as ‘PII’ mostly in US jurisdictions) which directly identifies a person, such as names, addresses, and telephone numbers; but also IP-addresses, information on personal interests, and much of the information stored and read via cookies. Even if someone’s name is not known, a customer profile still contains personal data. 

Integrity and confidentiality

"processing"

Lawful basis for processing personal data

GDPR art 4(2)

Our measures demonstrating GDPR compliance

‘processing’ means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction

External privacy policy

This definition is also very broad. ‘Processing’ is every operation that is carried out using personal data: not only viewing or modifying the data, but also its mere storage, transfer, and even its deletion. 

Data processing agreement

"Controller"

Internal record of processing activities

GDPR art 4(7)

Privacy by design and by default in our products and services

‘controller’ means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law

Data Protection Impact Assessment

In essence, the controller is the party who determines why and how personal data is processed. This often is a party who has a contract with individual persons to provide products or services to them. E.g. a hotel is generally the controller for the processing of its guests’ personal data.

Much has already been written and said about the GDPR and much more will be said and written in the future still. It is widely regarded as one of the most important pieces of legislation applicable to the digital sector in the EU, if not the most important. 

A core value of the GDPR is that human beings (‘data subjects’) should have control over their own personal data. When an organisation controls personal data (any information that says something about, or can be used to identify, a human being), the organisation must comply with the following key obligations.

"Processor"

The principle of accuracy also is a requirement for controllers. It means that data should be kept up to date where necessary and should always be as accurate as possible. If you need us to help you in correcting certain data about your guests or yourself, please let us know and we will provide all the help we can. 

GDPR art 4(8)

Personal data should not be kept longer than necessary to reach the predefined goals. This means that if personal data is no longer needed, it should be securely deleted.

‘processor’ means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller;

To protect, secure and preserve personal data controllers should implement an information security framework. NUTRITHERAPY takes adequate technical and organisational measures to protect personal data, as explained in our security documentation (see below).

The processor is the party who is engaged by the controller to process personal data on behalf of the controller. 

The principle of accuracy also is a requirement for controllers. It means that data should be kept up to date where necessary and should always be as accurate as possible. If you need us to help you in correcting certain data about your guests or yourself, please let us know and we will provide all the help we can. 

We have drafted the present document specifically to help demonstrate our compliance with the above principles, and also to help you demonstrate your compliance if you decide to purchase our products and services.

We have also drafted and adopted several relevant internal documents and policies, helping us to demonstrate that we actually put the principles and obligations of the GDPR into practice. More information about this is provided further below. 

What NUTRITHERAPY has done and continues doing to comply with the GDPR

Article 6 of the GDPR provides the valid legal grounds for processing personal data. This list is exhaustive, meaning that these grounds listed are the only valid legal grounds, and at least one of these grounds must always be valid and applicable to justify any processing of personal data.

NUTRITHERAPY as processor

When you request us to deliver products or services, or request us to provide relevant information, we process your information to perform a contract with you, or to make the appropriate preparations (e.g. to provide an offer tailored to your needs). 

When you have concluded an agreement with us to use our products and services, we process personal data of you as (potential) guests in order to perform our agreement. A more comprehensive description of our processing activities and purposes can be found in our privacy policy

NUTRITHERAPY privacy policy regulates the processing of your own personal data and provides you with all the required information and data subjects’ rights.

A data processing agreement for NUTRITHERAPY customers can be requested by emailing at This email address is being protected from spambots. You need JavaScript enabled to view it.

Data processing principles

Our data processing agreement has been drafted by legal specialists in order to incorporate all that is required by the GDPR. For example, our DPA contains provisions concerning:

Processing of personal data must comply with the GDPR’s fundamental principles. We do our utmost, and will continue doing so, to implement these data processing principles into the very core of our products, services, and organisation.

Lawfulness, fairness and transparency

Under the GDPR it is mandatory for both data controllers and data processors keep a record of processing activities. NUTRITHERAPY keeps a record of whose personal data is being processed, and for which purposes. We also document to whom we transfer the data, and which security measures we have taken to protect the data. 

We only process personal data when we deem this necessary for a legitimate purpose under the GDPR, and we do our utmost to provide complete yet concise and easily accessible and understandable information about all of our personal data processing activities.

We do not process more personal data than we deem strictly necessary to provide you with optimal products and services. We don’t combine any personal data we have gathered in providing our products and services to you, with any other personal data we may have obtained elsewhere, unless we have first obtained your specific, explicit, informed consent. If your agreement with NUTRITHERAPY has ended, we return your data to you upon your request, and/or it will be deleted from NUTRITHERAPY server.

The GDPR requires appropriate safeguards for the transfer of personal data outside the European Economic Area (EEA), which includes all EU countries and non-EU countries Iceland, Liechtenstein and Norway. When we store data outside the EEA, we make sure to conclude EU Standard Contractual Clauses with the relevant third party, or make sure that the relevant US-based service provider is Privacy Shield certified.

 

Controlling information about you

When you fill in a form or provide your details on our website, you will see one or more tick boxes allowing you to:

  • Opt-in to receive communications from us by email

If you have agreed that we can use your information for communication purposes, you can change your mind easily by sending an email to This email address is being protected from spambots. You need JavaScript enabled to view it.  

We will never lease, distribute or sell your personal information to third parties unless we have your permission or the law requires us to.

Any personal information we hold about you is stored and processed under our data protection policy, in line with the Data Protection Act 1998.

Security

We will always hold your information securely.

To prevent unauthorised disclosure or access to your information, we have implemented strong physical and electronic security safeguards.

We also follow stringent procedures to ensure we work with all personal data in line with the Data Protection Act 1998.