Privacy Notice

This website https://cy.coca-colahellenic.com is operated by Coca-Cola HBC Cyprus Ltd (registered in Cyprus, with registered address at 66 Kyriakos Matsis, Ave., Nicosia - 2409, Cyprus) a member of the Coca-Cola HBC group of companies, the ultimate holding company of which is Coca-Cola HBC AG (registered in Switzerland with company number CHE - 235.296.902 and registered address at Turmstrasse 26, 6312 Steinhausen, Switzerland).

All references to 'our', 'us', 'we', or 'company' within this policy and within the opt-in notice are deemed to refer to Coca-Cola HBC Cyprus Ltd and its subsidiaries, as appropriate.

Coca-Cola HBC Cyprus Ltd is committed to preserving the privacy of all visitors to https://cy.coca-colahellenic.com and to protecting any personal data that you may provide to us.

We provide this Privacy Notice to help you to understand what we do with any personal data that we obtain from you. By providing your personal data to us, you signify your acceptance of our Privacy Notice and agree that we collect, use, and disclose your personal data as described in this Privacy Notice. If you do not agree to this Notice, please do not provide your personal details to us.

This Privacy Policy notice covers the following areas:

• What is personal data

• Personal data that we collect from you and use of data collected

• Cookie Policy

• Disclosures. Who are the recipients of your personal data

• How we protect your personal data

• Contacting us and your rights to access and update your personal data

• How changes to this Privacy Policy and the Cookies Policy will be made

In general, you can visit this website without telling us who you are or revealing any information about yourself. Our web servers collect the source IP addresses, for IT reasons, enabling you to connect to our platform and providing you with our services, not the email addresses, of visitors. In addition, there are parts of this website where we need to collect personal data from you for a specific purpose, such as to provide you with certain information you request and where requested to register you to our website.

We do this through the use of online forms and every time you email us your details. You will find that it is not compulsory to provide us with any additional information we request which is not necessary or reasonable in order to provide you with the services you have requested.

If you submit personal information to us, you agree to such sharing.

Are your personal data transferred outside the EU?
Since Coca-Cola HBC operates in many countries, your personal data, in particular the data which you upload through the Careers section of the Site, may be accessed by staff or suppliers in, transferred to, and/or stored at, a destination outside the EU in which data protection laws may be of a lower standard than in the EU. However we always seek to ensure that your personal data receives the same level of protection as it would had it stayed within the EU, including seeking to ensure that it is kept secure and used only in accordance with our instructions and for the agreed purpose(s). 

Certain countries outside the EU have been approved by the European Commission as providing essentially equivalent protections to EU data protection laws and therefore no additional safeguards are required to export personal information to these jurisdictions (see the full list here http://ec.europa.eu/justice/data-protection/international-transfers/adequacy/index_en.htm). In countries which have not had these approvals (such as Russia), we will either ask for your consent to the transfer or transfer it subject to European Commission approved contractual terms that impose equivalent data protection obligations directly on the recipient unless we are permitted under applicable data protection law to make such transfers without such formalities.

Please contact us as set out in Contact us section below if you would like to see a copy of the specific safeguards applied to the export of your personal data.

All of the parties outside the EU to which personal data will be transferred process data, fulfil and deliver orders and provide support services on our behalf. We may also pass aggregate information on the usage of our site to third parties, but this will not include information that can be used to identify you. We reserve the right to disclose your personal data as required by law, or when we believe that disclosure is necessary to protect our rights and/or comply with a judicial proceeding, court order, request from a regulator or any other legal process served on us.

Unless required to do so by law, we will not otherwise share, sell or distribute any of the personal data you provide to us without your consent.

Finally, if our business enters into a joint venture with or is sold to or merged with another business entity, your data will be disclosed to our new business partners or owners.

How we protect your personal data
Users aged 16 and under
If you are aged 16 or under, please get your parent's or guardian's permission before you provide any personal data to us. Users without this consent are not allowed to provide us with personal data.

Other websites
Our website contains links to other websites which are outside our control and are not covered by this Privacy Notice. If you access other sites using the links provided, the operators of these sites may collect information from you which will be used by them in accordance with their Privacy Policies, which may differ from ours. We do not accept any responsibility or liability for their policies or processing of your personal data. We encourage you to read the privacy and cookie notices and terms and conditions of any linked, referenced, or interfacing websites you enter before you submit any personal data to such third-party websites.

Security of data collected and data retention
We employ strict physical, electronic, and administrative security measures to protect your data from access by unauthorised persons and against unlawful processing, accidental loss, destruction and damage both online and offline. We will retain your data for as long as necessary for said purpose of the collection and after that we will retain your data as long as the law requires.

We retain personal data in an identifiable format only for the interval that is necessary as identified by the purposes of processing for which data are collected.

We must not keep personal data for longer than necessary to fulfil the identified lawful business purposes or as long as required by applicable law. 

We establish a personal data retention period in accordance with relevant laws and regulations as part of the record of processing activities. 

We must justify the requirements to retain personal data for periods longer than the maximum retention period as per business and regulatory requirements if required. 

Some data must be retained in order to protect the company's interests, preserve evidence, and generally conform to good business practices. Some reasons for data retention include:

• Litigation

• Accident investigation

• Security incident investigation

• Regulatory requirements

• Intellectual property preservation

Internet-based transfers and disclaimer
Whereas Coca-Cola HBC Cyprus Ltd employs reasonable measures to protect against viruses and other harmful components, the nature of the internet is such that it is impossible to ensure that your access to the website will be uninterrupted or error-free, or that this website, its servers or emails which may be sent by us are free of viruses or other harmful components.

Contacting us and your rights to access and update your personal data
Accessing, updating and deleting data
You are entitled to see the personal data we hold about you; you may also ask us to make any necessary changes to ensure that it is accurate and kept up to date or to delete the personal data we hold about you. You may also inform us if you would like to restrict the data processing or object to the processing of personal data, we hold about you. If you wish to do this, please contact us using the contact details provided at the Contact Us section below. You are also entitled to provide the personal data we hold about you to another service provider of your choice.

Withdrawing the consent
In case we asked you for your consent to process personal data we hold about you, you can withdraw your consent at any time, without affecting the lawfulness of processing based on consent before the withdrawal. If you wish to do this, please Contact Us  using the contact details provided at the Contact us section below.

Complaint
You have the right to lodge a complaint before the national data protection authority by sending your claim to it. Country Data Protection Authority contacts can be found at http://ec.europa.eu/newsroom/article29/item-detail.cfm?item_id=612080. For Cyprus, this is the Office of the Commissioner for Personal Data Protection Authority, Iasonos 1, 1082 Nicosia, Cyprus (P.O.Box 23378) and website: www.dataprotection.gov.cy

Contacting us
If you have any comments relating to our use of your personal data or any questions about this Privacy Notice and Cookie Notice, please contact us using the following e-mail address: DataProtectionOffice@cchellenic.com. We welcome your questions and any suggestions you may have about our Privacy Notice and Cookie Notice.

To formally exercise your rights in relation to your personal data we process, please submit a request accessing the below link:
Web Form
or contact us using the following email address: DataProtectionOffice@cchellenic.com

How changes to this Privacy Policy and the Cookies Policy will be made
Please check this Privacy Notice and the Cookies Notice periodically to be informed of any changes. Although we reserve the right to modify or supplement this policy, we will provide notice to you on this website of any major changes for at least 30 days following the change and, where appropriate, through email notification.