1. The company under the name PANAGIOTIDIS L.P. and distinctive title ROOFTOP GREECE AROUND with registered office in Thessaloniki, 26th October Street, 28 – Anagenniseos 2, ZIP 54627 and no. G.E.MI 142151906000 (hereinafter referred to as the company) is responsible for the processing of personal data in the context of the products and services sold on website as well as in the web application It recognizes the importance of protecting your personal data and respects your privacy. It implements the relevant EU and national legislative framework for the protection of personal data, as well as the General Data Protection Regulation (EU) 2016/679.
  2. Our company collects only the personal data necessary for the reason for which they are collected and implements appropriate technical and organizational measures to ensure the appropriate level of security.
  3. At the time it collects your personal information, our company informs you about the reason why they are collected, the duration of their processing, any recipients, any transfer to a country outside the European Union, as well as your relevant rights against our company.
  4. Nevertheless, to provide the above information under 3 in a concise, understandable, transparent and easily accessible form, we have drafted this policy, which includes general information. Please read this policy carefully.
  5. This privacy policy will be revised in case of changes in our company’s activity or legislation. The revision will be updated through this website.

Personal data collected, purpose and legal basis of collection

  1. Our company processes and in particular, receives, maintains and uses, the following categories of personal data:
  2. Your contact data (name, telephone, email, etc.). This data is obtained from you upon your request to contact you. The legal basis for processing is your consent, as well as our legitimate interest to better understand your needs and expectations and, consequently, to improve our services and products.
  3. Identity and financial data (name, telephone, email, VAT number, address, profession, bank account details, etc.). These data are received by you, as you state them, for the purpose of concluding the contract between us, its execution and support, our communication with you and the issuance of the required tax documents. The legal basis for the processing is the performance of the contract; compliance with tax legislation or other applicable legislation or fulfillment of our duty, such as to comply with a court order, instructions, requests or decisions of a Public Authority, as well as our legitimate interest in managing and dealing with judicial or extrajudicial disputes between us.
  4. Your contact data (email and mobile phone). This data is obtained upon your request to send informative and advertising material about our products and services (newsletter, sms, viber). The legal basis for processing is your consent.
  5. Login data – customer identification (password to your account and email) – mobile software (ilo app). This data is obtained from you in order to provide our services to you. The previous data entered by you can be modified by you. For security reasons, the company recommends complex passwords of at least 12 characters consisting of uppercase, lowercase, numbers and special characters and keeping you secret. The legal basis for processing is the performance of the contract and our legitimate interest in security in the provision of Services.
  6. Your order data and usage statistics. This data refers to the history of your orders through the online store. They also refer to ilo card usage statistics, such as activation date, number of scans per day or week, scan date. The legal basis for processing is the performance of the contract and our legitimate interest in your better service.
  7. Login data (Internet identifier). Our company uses cookies when you navigate our website. For more information visit:
    The legal basis for processing is our legitimate interest in promoting our products and services.
  8. When you log in to our company’s social networking account or participate in our activity, e.g. like or share, our company has access to your social networking identity and the relevant information you have stated. This access is defined by the mechanisms of the applications and services of social media providers in accordance with the terms of personal data protection they abide by.
  9. Our website from time to time contains links to and from third party websites. We point out that the websites of these third parties have their own privacy policy, independent of that of our company, for which it bears no responsibility.
  10. Please note that the link – file data are entered by you on your own initiative, choice and responsibility.

Categories of recipients of personal data

  1. During the fulfillment of our company’s contractual and legal obligations, the performance of its duty, the service of its legitimate interests as well as in case the company has received your consent, the recipients of the data concern the following categories, depending on the services we have undertaken to offer you:
  2. External partners of the company (accountants, courier companies, persons who provide services on our behalf, such as for the newsletter service, for credit card payment processing services, for marketing services, for hosting, support and administration services of the website, lawyers / legal advisors, etc.), who perform processing on our behalf in accordance with the legislation on personal data.
  3. Servers located within the European Union in a completely secure environment, which are under the appropriate regulatory obligation of confidentiality.
  4. Public authorities (Tax Office, Independent Authority of Public Revenue, Ministries), to comply with the law, with a court decision, with their instructions, requests or decisions.
  5. Judicial and prosecuting authorities in case of claims or criminal offences.
  6. Payments shall be made through a secure environment of a cooperating financial operator.

Period of retention of personal data



Contact request

6 months from the processing of the request

Invoicing documents

In accordance with applicable tax legislation

Identity data – financial data

5 years from account deletion

Newsletter service – information via sms

Until receipt of a deletion request

Login data (password) – Ilo products

Until account deletion

Login data – mobile software (ilo app)

Until account deletion

Order data, link – file data

Until account deletion

Sign in with a social networking account

According to the mechanism of social media benefits

If a shorter or longer period of retention of personal data is provided by law, the above duration is reduced or increased accordingly.
In the event that claims or criminal acts are raised until the expiry of the above period, otherwise legal actions are in progress, the relevant duration is extended until an irrevocable court decision is issued.

Personal data from children

Our services through the website and our website itself are not directed to children under the age of majority. Our company does not knowingly collect information or personal data from children. If we become aware that we are processing information of a child under the age of 18 without the valid consent of a parent or guardian; We will delete the relevant data.

Your rights

  1. According to the General Data Protection Regulation (EU 2016/679) you have the right to lodge a complaint before the competent Personal Data Protection Authority (HDPA) for any complaint regarding the processing of personal data, at the following contact details: email [email protected], telephone 210 6475600, postal address: Leof. Kifisias no. 1-3, P.C. 115 23, Athens.
  2. According to the same Regulation, you have the right of access, rectification, deletion, restriction or objection to the processing and portability of personal data collected by our company. In particular, you have the right to confirm whether or not your personal data are being processed and, if so, to have access to relevant information and, where applicable, to request the restriction of processing. You have the right to correct inaccuracies or to complete them incomplete personal data by providing any necessary document from which the need for correction or completion arises. You have the right to request the deletion of personal data, provided that our company has no legitimate or valid reason to retain such data. You have the right, on a case-by-case basis, to object to the processing of your personal data based on your legitimate interest and, on a case-by-case basis, to receive your personal data in a structured, commonly used and machine-readable format or to request their transmission to a third party.
  3. To exercise the rights under 2, you may contact the [email protected] in writing via e-mail
  4. In order to handle your requests, we are entitled to request verification of your identity.
  5. The exercise of the above rights acts for the future and not for processing already performed.

Last updated: 05 February 2024 (third edition)