Data Protection Policy

This Privacy Policy concerns the Website of Dimitris Avramopoulos, who also acts as the Administrator of this website (hereinafter, for brevity, the “Administrator”).

1. Subject of this Notice

1.1. The Administrator acts in the capacity of Controller of the personal data that are processed during the operation of the Website.

1.2. In the context of using the Website, the user — data subject may, if they so wish, enter their personal data in the following cases:

a) When subscribing to the newsletter, where the following data are entered: First name, Last name, email.

b) When registering for volunteer activities, where the following data are entered: First name, Last name, email, contact phone number.

c) In the contact form to submit a request, question, or comment, where the following data are entered: First name, Last name, email, contact phone number.

1.3. In compliance with the applicable national and EU legal framework on the protection of personal data, and in particular the General Data Protection Regulation [Regulation (EU) 2016/679] (hereinafter the “GDPR”), as well as Law 4624/2019 (Government Gazette 137/A/2019), the Administrator of this Website provides this privacy notice in order to inform data subjects about the personal data that are collected and processed.

2. Purpose of Processing and Legal Basis for the Processing

2.1. The purpose of the processing is the Administrator’s communication with users, the provision of information on various matters, in particular by sending the newsletter at regular intervals regarding his activities or other related content, as well as enabling the participation of users who wish to join volunteer activities that are organized.

2.2. The processing of personal data for the aforementioned purpose is based on the data subjects’ consent, which you may withdraw at any time. Withdrawal of consent does not affect the lawfulness of processing based on consent prior to its withdrawal.

Processing may also be based on legitimate interest, in accordance with Guidelines 1/2023 “Processing of personal data for the purpose of political communication” of the Hellenic Data Protection Authority.

3. Categories of Personal Data Processed

The categories of data of natural persons that are processed are:

a) For newsletter subscription: First name, Last name, email.

b) For registration in volunteer activities: First name, Last name, email, contact phone number.

c) For the contact form: First name, Last name, email, contact phone number.

4. Data Transfers

The Website transfers certain data to partner companies in order to receive essential services such as web hosting and online promotion services. These companies (processors) process your data only for the purposes stated above and solely on behalf of and under the instructions of the Website, except where any legal obligations apply. When transferring your data, all necessary technical and organizational measures are taken to ensure an appropriate level of security.

The newsletter is sent via “Mailchimp,” a newsletter delivery platform provided by Rocket Science Group, LLC, 675 Ponce De Leon Ave NE 5000, Atlanta, GA 30308, United States of America. Standard Contractual Clauses and a Data Processing Agreement are in place for the transfer, and appropriate security measures are applied. Detailed information on the protection of your data and Mailchimp’s compliance can be found here.

5. Period and Place of Data Retention

The data are processed and retained solely for the period necessary for each processing purpose and are then deleted, unless further retention in an identifiable form is required by applicable law. With regard to your personal data (first name, last name, email) that have been entered with your consent in the context of newsletter subscription, from 01.01.2024 they will be deleted no later than three (3) months after the sending of the last newsletter that was not received or not opened by the recipient (inactive contact), and in any case immediately, with prospective effect, upon withdrawal of your consent. Your data are stored on the Website’s servers, which are hosted in a data center located within the European Economic Area. In all cases, appropriate organizational and technical measures are always applied as required to prevent any breach.

6. Rights of Personal Data Subjects

6.1. Data subjects may exercise the rights granted to them by national and EU law regarding the collection and processing of personal data concerning them, to the extent that exercising such rights is compatible with the operation of the Website. These rights under the GDPR are as follows:

I. The right of access to the data, so that data subjects are informed about which of their data are processed, for what reason, and any recipients thereof.

II. The right to rectification of the data, in order to correct any errors, inaccuracies, and omissions in the data of the subjects.

III. The right to erasure of the data, so that, under the conditions of the Regulation, the data of the subjects are deleted from the records kept.

IV. The right to restriction of processing, in cases of contesting the accuracy of the data, where the right to object has been exercised and a decision is pending, and where the data are no longer necessary for the original purpose but cannot yet be erased for legal reasons.

V. The right to data portability, so that the subject receives their data in electronic form and transmits them to a third party.

VI. The right to object to processing, as well as the right to withdraw consent, whereby the subject may withdraw—where consent had been required—their consent, without such withdrawal affecting the lawfulness of the processing carried out prior to the withdrawal.

6.2. The Administrator may refuse to fully or partially satisfy a request received from a data subject only when this possibility is provided for by the GDPR or by national legislation.

6.3. Requests concerning the exercise of the above rights in paragraph 6.1 are examined by the Controller within one (1) month from receipt of the request. This period may be extended by a further two (2) months, if necessary, where the request is complex or there is a large number of requests.

To exercise your rights or for any other reason related to the processing of your data as described in this notice, you may contact us at [email protected]

7. Right to Lodge a Complaint with the Hellenic Data Protection Authority

Data subjects have the right to lodge a complaint with the Hellenic Data Protection Authority (“HDPA”) regarding matters related to the processing of their personal data. For the Authority’s competence and the procedure for submitting a complaint, detailed information is provided on the HDPA’s website at www.dpa.gr

 

Dimitris Avramopoulos
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.