Privacy Policy

1. Introduction

EWHMS ("we", "our", or "the Application") is committed to protecting your personal data and respecting your privacy. This Privacy Policy complies with the General Data Protection Regulation (GDPR) (EU) 2016/679 and explains how we collect, use, store, and protect your information when you use our warehouse management and inventory control application.

2. Data Controller

The data controller responsible for your personal data is:

3. Legal Basis for Processing

We process your personal data based on the following legal grounds under Article 6(1) of the GDPR:

• Contractual necessity: Processing necessary for the performance of our services
• Legitimate interests: Processing necessary for our legitimate business interests
• Legal obligations: Processing necessary to comply with legal requirements
• Consent: Where you have explicitly consented to specific processing activities

4. Data We Collect

Personal Information

• Name and contact details (email, phone number)
• Company affiliation and role
• User account credentials (encrypted)
• Device identifiers for mobile application usage

Activity Data

• Inventory management records and adjustments
• Warehouse and bin location data
• Login times and session information
• Application usage patterns

Integration Data

• SAP Business One synchronization data
• Inventory and item master data
• Barcode scanning records

5. How We Use Your Data

We use your personal data for:

• Providing warehouse management and inventory control services
• User authentication and access control
• Synchronizing data with SAP Business One systems
• Generating reports and analytics
• Improving application performance
• Ensuring security and preventing fraud
• Complying with legal requirements
• Providing customer support

6. Data Sharing and Disclosure

Your data is only shared in the following limited circumstances:

• Within your organization: Data is shared only within your company based on role-based access controls
• Your SAP systems: Data synchronization with your own SAP Business One installation
• Legal authorities: Only when required by law or court order

Important commitments:

• We NEVER sell your personal data
• We NEVER share your data for marketing purposes
• We NEVER allow third-party access to your business data
• All data remains under your control and ownership

7. Data Retention

We retain your personal data for:

• Active account data: As long as your account is active
• Inventory records: According to your subscription plan and legal requirements
• Activity logs: 3 months for security purposes
• Backup data: 90 days in secure backup systems

8. Your Rights Under GDPR

You have the following rights:

• Right to access: Request a copy of your personal data
• Right to rectification: Correct inaccurate data
• Right to erasure: Request deletion ("right to be forgotten")
• Right to restrict processing: Limit how we use your data
• Right to data portability: Receive data in machine-readable format
• Right to object: Object to certain processing
• Right to withdraw consent: Withdraw consent at any time

To exercise these rights, contact: privacy@connectit.gr

9. Data Security

We implement appropriate technical and organizational measures:

• Encryption of data in transit (TLS/SSL) and at rest
• JWT token-based authentication with EdDSA signing
• Role-based access controls (RBAC)
• Regular security audits
• Secure backup procedures
• Employee training on data protection

10. Contact Us

For questions about this Privacy Policy or your personal data, please contact us:

You may also contact the Hellenic Data Protection Authority (HDPA):