CONFIDENTIALITY AND PERSONAL DATA PROTECTION POLICY
Last update: 20.5.2021
Respect for your privacy and the protection of your personal data are a priority when planning our professional action. That is why we are in an ongoing process of information and training, taking the appropriate technical and organizational measures, in order to fully comply with the applicable national, European and international legal framework and in particular with the General Regulation on Personal Data Protection 679/2016 / EU and Law 4624/2019.
This Policy also applies to our website.
Details of the controller
The Law Office “Fiflis & Associates” operates as a person in charge of processing your personal data.
It is located in the Municipality of Paros, in the Municipal District of Naoussa, PC 84401
Email address: firstname.lastname@example.org
Purpose of this civil protection
This policy is intended to inform you of the manner in which your personal data is processed, the technical and organizational measures we take to protect it, the reasons for its processing and the length of time it is stored,
Processing is defined as any operation or sequence of operations performed with or without the use of automated means, in personal data or in personal data sets, such as the collection, registration, organization, structure, storage, adaptation or modification, retrieval, search for information, use, disclosure by transmission, dissemination or any other form of disposal, association or combination, restriction, deletion or destruction.
The Data Protection Policy is updated at regular intervals and may be amended whenever necessary, without prior notice, always within the applicable legal framework and in accordance with any changes in national and European data protection legislation. That is why it is advisable to check our Company Policy at regular intervals in order to be informed of any changes that have been made.
Personal data (personal data) is any information that concerns a specific natural person or a person whose identity can be verified. Such information is the name, identity number, home address, AMKA, VAT number, Internet Protocol (IP) address, email address, etc. Health data (physical or mental condition, receiving medical services) etc.) are included in the general term personal data but are a special category of data (sensitive data).
How to collect personal data
- Your personal data is collected in the following ways:
- You provide them to us during the pre-contractual stage, either by sending an email or through the contact form of our page, or by phone in order to assign an order to us or to seek cooperation opportunities.
- You provide them to us through corporate emails, to which we have access to monitor the progress of our cases and to prove that illegal actions have been taken and in general actions that endanger our interests.
They are provided by third parties (public authorities, banks, etc.) after your written authorization
- You generally provide them to us when handling your case following a warrant, in accordance with the Bar Code.
- You provide them to us when such use is necessary to comply with our legal obligation, as is the case with filing for accounting and tax purposes.
- They are automatically provided to you through the browser you use to access our websites.
Types of personal data collected
In summary, personal data collected and further processed include:
- Identity data: name, surname, surname, date of birth,
- Contact details: home address, email address, phone number
- Data for the assignment of an order or for the execution of an assigned order (ID card number, occupation, sex, age, criminal and medical history, trade union status, religious beliefs)
- Transaction-invoicing data: include details on payments to and from you but also information necessary for the issuance of tax documents (such as VAT and the Tax Office)
- Data that are necessary for the payment of salaries to the employees of the company and their collection is required for the observance of the labor, insurance and in general legislation
We take care of the exercise of your following rights:
- Right to information (Article 15 GIP)
You have the right to request and receive information about your personal data
- Right of access (Article 15 GIP)
You have the right to access and receive a copy of your personal data free of charge
- Right of correction and updating (Article 16 GIP)
You have the right to request a correction of your personal data if it is inaccurate or incomplete. However, we reserve the right to ask you to validate the accuracy of the new data you provide to us.
- Right of deletion (right to be forgotten, Article 17 of the ICCPR)
You have the right to request the deletion or removal of your personal data when it is no longer necessary for the purposes for which it was collected or there is no reasonable reason to continue processing.
- Right to restrict processing (Article 18 GIP)
You have the right to request the restriction or removal of further processing of your data. In cases where processing is restricted, your personal data remains stored without further processing.
- Right to portability (Article 20 GIP)
You have the right to request the transfer of your personal data to other processors or to you.
- Right of objection (Article 21 of the ICCPR)
Withdrawal of consent (Article 7 GIP)
You have the right to withdraw your consent at any time. in the event that our processing of your personal data is based on your consent. In the event that you withdraw your consent, we may not be able to provide specific products or services to you. We will notify you in such a case upon withdrawal of your consent. Withdrawal of consent shall not affect the lawfulness of the proceedings which were based on consent before its withdrawal.
You can exercise the above mentioned rights by submitting in writing, free of charge, a relevant application to the address email@example.com. For any question you have about your personal data you can contact via e-mail at the above address.
In any case, you can apply to the Personal Data Protection Authority (APDP) as well as to appeal to the Courts, if you believe that your above rights have been violated.
We try to respond to your requests without delay and in any case within fifteen days of receipt. This period may be extended by ten days, if necessary, taking into account the complexity of the request, the number of requests or the need for assistance of the Personal Data Protection Authority.
Security of personal data
Considering our primary obligation to protect your data, we take all appropriate measures, organizational and technical, which are specially designed to protect your information from loss, misuse or unauthorized use, disclosure, destruction, distortion and so on. .
We take care of the fair and legal collection and processing of your data as well as their safe observance by constantly monitoring the Greek, European and international legislation for the protection of personal data, as well as the decisions of the Personal Data Protection Authority (APDP).
Access to the personal data of the visitors of our Website is limited to authorized persons, who in fact are committed to maintaining confidentiality and use your data exclusively for the execution of the tasks assigned to them.
Visitors to our office
To protect the safety and health of those inside our office, the safeguarding of our property (premises, equipment) and the case files within our office, there is a closed circuit television (CCTV) which records (only with image) on a continuous basis the movement that takes place in the outside corridor and on the balconies of our office. The basis of the processing of your data is our legal interest to ensure the protection of all of the above while visual material is retained for a period of thirty (30) days and then deleted automatically.