COGNINN, tax registration no: GR 800790185 of the Tax Authority of Psychiko, registered seat and address: Kifisias Avenue 125-127, GR11524, Athens, Greece is a controller and in certain cases the processor of personal data and processes your personal data lawfully, in good faith and in a transparent fashion.
a. What and whose personal data and information do Cogninn?
COGNINN collects and processes information about the visitors/users/clients/subscribers logging in to our webpage and the platforms and applications hosted, the user of the COGNINN System and his affiliation. More specifically we collect:
COGNINN does not collect any sensitive data about individuals and organisations or companies.
b. How does COGNINN protect client/user/subscriber/visitor information and personal data?
COGNINN has put in place several appropriate security measures to protect the personal data and organisation information stored and processed to prevent them from being accidentally lost, used or accessed in an unauthorized way. In COGNINN, we use the following mechanisms to ensure that your personal data and client/user/subscriber/visitor information is and will remain safe:
COGNINN has all the processes and measures to ensure that your data will be safe. We use the cloud service providers that have robust processes and technologies and apply high-level security standards and mechanisms to ensure that data and information will be safe. Our service providers have monitoring services in case optimal practices for secure data storage and processing are not followed. At COGNINN, we ensure that we are taking the necessary measures to have all the processes in place to secure the personal data and company information.
Information required by Law and Governments: COGNINN may also share information as required by any law, regulation and governmental request that may apply in your jurisdiction.
Enriching your data: If you so request, COGNINN may share information with third parties or other systems that you are using because you would like to share with them some or all of the organisation or Company data you store in our system.
The personal data and company information that COGNINN collects are stored in Cloud services provided by third parties located in the E.U. or elsewhere. COGNINN collaborates with third parties that may be using servers outside Europe and ensure a level of data protection at least as protective as that of the country you reside in. If you reside within the EU region, they ensure that they provide the same level of protection as required in the EU or recognized by the European Commission to be providing an adequate level of protection, including compliance with the approved standard contractual clauses approved by the European Commission. Although the list of third parties we collaborate with is not published here, we can provide you such information upon request to firstname.lastname@example.org.
5. Exercising rights under Regulation (EU) 2016/679
In addition to your right to withdraw the consents you have given to us, you have also the following rights, provided that the relevant contractual and legal circumstances also apply:
Right of access (article 15 GDPR)
You have the right to obtain, upon request and free of charge, access to your personal data processed by COGNINN pursuant to art.15 of the Regulation. This includes particularly:
Where personal data are transferred to a third country or to an international organisation, the data subject shall have the right to be informed of the appropriate safeguards pursuant to article 46 of the Regulation relating to the transfer.
Right to rectification (article 16 GDPR)
You have the right to obtain from COGNINN without undue delay the rectification of inaccurate personal data concerning you. Taking into account the purposes of the processing, you have the right to have incomplete personal data completed, including by means of providing a supplementary statement.
Right to erasure (article 17 GDPR)
You have the right to obtain from COGNINN the erasure of your personal data without undue delay, where one of the following grounds applies:
Where COGNINN has made the personal data public and is obliged to erase, taking account all available technology and the cost of implementation, shall take reasonable steps, to inform the third parties which are processing your personal data that you have requested the erasure by them of any links to, or copy or replication of, those personal data.
Right to restriction of processing (article 18 GDPR)
You have the right to obtain from COGNINN restriction of processing where one of the following applies:
Right to data portability (article 20 GDPR)
You have the right to obtain the personal data concerning you, which you have provided to COGNINN, in a structured, commonly used and machine – readable format, and have the right to transmit those data to another controller without hindrance from COGNINN, where:
In exercising the right to data portability, you have the right to have the personal data transmitted directly from COGNINN to another controller, where technically feasible.
Right to object (article 21 GDPR)
Under the provisions of article 21 (1) of the Regulation, you have the right to object to the processing of personal data on grounds relating to your particular situation. The above- mentioned general right to object applies to all the purposes of data processing referred herein, where the data are processed pursuant to article 6 (1) point (f) of the Regulation. To the contrary, as regards the specific right to object relating to the processing of the data for marketing purposes, COGNINN is obliged according to the Regulation to apply this general right to object only if you specify superior grounds, e.g. a possible danger of life or health. Additionally, you can address to the Hellenic Data Protection Authority, which can accept the filing of complaints either in writing to her protocol services (1-3 Kifisias str, GR11523 Athens) or electronically (www.dpa.gr).