Screen XRay

Personal Data Processing Notice

What data do we collect about you?

  • Image data - During the screen health check process of your mobile phone device via the Screen XRay application, you will be asked to take a photo of your device's screen using a mirror. Additionally, during the device verification process through the same application, an IMEI (International Mobile Equipment Identity) check will be performed, during which we will capture an image (via screen capture) of your entire phone screen, including any content displayed on it.
  • Data about your mobile phone device to be insured - Purchase date & time, activation date & time, phone model, storage capacity, production location, whether the device has been reported as lost.

The above data is collected directly from you.

Who is the Data Controller and who processes your data?

  • The company "WALLBID SINGLE MEMBER SOCIETE ANONYME" based in Greece, at 27B Chaimanta Street, Chalandri, acts as the Data Processor.
  • The insurance company that will issue your insurance policy for Screen XRay acts as the Data Controller for the conclusion and execution of the insurance contract. For more information on how the Data Controller processes your data, please refer to the personal data processing notice provided by the aforementioned insurance company.
  • Your data will be processed by the personnel and partners of the above companies, who are bound by strict confidentiality obligations.
  • "WALLBID SINGLE MEMBER SOCIETE ANONYME" may share your personal data with its parent company "Wallbid Limited", based in the United Kingdom at 35 Ballards Lane, London, during software upgrade or maintenance processes.
  • For the temporary processing of your data during the device assessment process, they are temporarily stored on Microsoft and Amazon Web Services cloud servers within the European Union. Subsequently, after the assessment process is completed, your data is retained on the same servers, always within the European Union, in accordance with the Data Controller's instructions.
  • Your data may also be transferred to administrative or judicial authorities, upon their lawful requests.

For what purpose and on what legal basis do we process your personal data?

  • To assess your mobile phone device's screen, in order to insure you against the risk of screen breakage of the said device.
  • To anonymize your data for statistical purposes, based on our legitimate interests. We ensure that any data publication will include data only in anonymized form.

How long and where do we retain your data?

  • The retention of your data is determined by the Data Controller. For more information, please refer to the personal data processing notice provided by the Data Controller.
  • Your data is always stored within the European Union.
  • After the expiration of your data retention period, as well as in cases where it is determined following the assessment of your mobile phone device's screen that you cannot be insured against the risk of screen breakage, the personal data already collected will be anonymized in an irreversible manner, ensuring that the data can no longer be linked to any natural person.

What are your rights?

You may request from the Data Controller:

  • To further inform you about how your data is processed.
  • To provide you with a copy of the personal data held about you.
  • To correct certain data if it is incorrect.
  • To delete your data.
  • To stop processing your data.
  • To restrict processing to certain uses.
  • To send your data to another company or entity by reasonable means.
  • If decisions concerning you or significantly affecting you, based on your personal data, are based on automated processing, to have them made by natural persons and not only by computers. You also have the right in this case to express your views and to contest the decision.
  • To withdraw your consent if you have provided it.

How can you exercise your rights?

Send us an email at: dpo@wallbid.io

The Data Protection Officer appointed by Wallbid will respond to you within 30 days of receiving your request and will forward the request to the Data Controller as appropriate.

If you believe that the protection of your personal data has been violated, you may file a complaint with the national Hellenic Data Protection Authority (www.dpa.gr).