Privacy Policy

Πλοήγηση

Subject of an Information Note on the Protection of Personal Data

The National Organization for the Certification of Qualifications and Vocational Guidance (hereinafter «EOPPEP») which is based in Nea Ionia Attica, on National Resistance Avenue no. 41, P.O. 14234, tel. 210 2709000, in his capacity as Controller, collects and further processes your personal data, only if absolutely necessary, for clear and legitimate purposes, based on Regulation (EU) 2016/679, Law 4624/2019 and Law 3471/2006, as applicable.

This information note aims to inform users of the Website https://eqavet.eoppep.gr about the processing of their personal data.

Definitions

For the purposes of this Policy, the following terms have the following meaning:

  • “Personal Data”: any information concerning an identified or identifiable natural person («data subject»); the identifiable natural person is one whose identity can be ascertained, directly or indirectly, in particular by reference to an identifier such as name, identity number, location data, online identifier or one or more factors peculiar to physical, physiological, genetic, psychological, economic, cultural or social identity of the natural person in question.
  • “Special categories of personal data”: personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs or trade union membership, as well as the processing of genetic data, biometric data for the purpose of indisputable identification of a person, data concerning health or data concerning the sexual life of a natural person or sexual orientation.
  • “Processing”: any act or series of acts carried out with or without the use of automated means, on personal data or on sets of personal data, such as collection, registration, organization, structure, storage, adaptation or alteration, retrieval, information search, use, disclosure by transmission, dissemination or any other form of disposition, association or combination, restriction, deletion or destruction.
  • “Anonymization”: the processing of personal data in such a way that the data can no longer be attributed to a specific data subject.
  • “Pseudonymization”: the processing of personal data in such a way that the data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separate and subject to technical and organizational measures to ensure that it cannot be attributed to an identified or identifiable natural person.
  • “Data Controller”: the natural or legal person, public authority, agency or other body that, alone or jointly with others, determines the purposes and manner of the processing of personal data; when the purposes and manner of such processing are determined by Union law or the law of a Member State, or the specific criteria for his appointment may be provided for by Union law or the law of a Member State. For the purposes of this policy, EOPPEP acts as Controller.
  • Data Processor: the natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller.
  • “Data Subject”: the natural person whose personal data is processed, e.g. the trainees, partners, employees of the Municipality, etc.
  • “Consent”: of the data subject: any indication of will, free, specific, express and fully informed, by which the data subject manifests that he agrees, by declaration or by clear positive action, to be the subject of processing of the personal data concerning him.
  • “Personal data breach”: the breach of security resulting in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access of personal data transmitted, stored or otherwise processed.
  • “Existing Legislation”: The respective national and EU legislation on the protection of personal data and specifically Regulation (EU) 2016/679 (hereinafter «GDPR»), Law 4624/2019, Law 3671/2006, the jurisprudence of the Court of Justice of the European Union (hereinafter «WE») as well as the Decisions, Directives and Opinions of the European Data Protection Board (hereinafter «EDPS») and the Hellenic Data Protection Authority (hereinafter «HDPA»).

Personal data collected and processed by EOPPEP

Data collected by EOPPEP through the website https://eqavet.eoppep.gr

Data we collect automatically

When you use our Website, we also collect information automatically, some of which may constitute personal data. These include items such as language settings, IP address, location, device settings, device operating system, activity details, time of use, redirect URL, status report, user information (information about browser version), operating system, result of browsing (mere visitor or registered customer), browsing history, type of data you viewed. We may also collect data through cookies. For information about the use of cookies, read the Cookie Policy.

Collection and further processing of Personal Data of Minors

As a rule o EOPPEP does not carry out direct or indirect collection and processing of data of minors (that is, persons who have not reached the age of 18). However, since it is impossible to cross-check and verify the age of persons entering or using the website, parents and guardians of minors are advised to contact EOPPEP immediately if they find any unauthorized disclosure of data by the minors for whom they are responsible, in order to exercise corresponding rights granted to them, such as e.g. to delete their data. In the event that EOPPEP realizes that it has collected the personal data of a minor, it undertakes to delete it immediately and take all necessary measures to protect this data.No automated decision-making processes including profiling are carried out.

Transfer of Personal Data outside the EEA.

In principle, EOPPEP does not transmit your personal data to third countries and/or International Organizations. In case of transmission of your personal data, to a country outside the European Economic Area (EEA) or International Organization, EOPPEP previously certifies that one of the legal bases of article 6 of the Regulation is respected and:

  1. The Commission has issued a relevant adequacy decision for the third country to which the transmission will be made (Article 45 GDPR) or
  2. Appropriate guarantees are respected in accordance with the GDPR for the transmission of such data (Article 46 GDPR) or
  3. For occasional processing, there is one of the exceptions provided for in Article 49 of the GDPR (e.g. the express consent of the user and his information about the risks involved in the transmission, the transmission is necessary for the execution of a contract at the request of the subject, there are reasons of public interest, it is necessary to support legal claims and vital interests of the data subject, etc.).

Data Retention Period

The personal data of the data subjects is collected and kept for a predetermined and limited period of time, depending on the purpose of the processing, after which the data is deleted from our files.

When the processing is imposed as an obligation by provisions of the current legal framework or a specific retention period is provided for, your personal data will be stored for as long as the relevant provisions impose.

Rights of Data Subjects

EOPPEP ensures that it is able to respond immediately to the requests of the subjects, for the exercise of their rights in accordance with the Existing Legislation.

In particular, each data subject has the following rights:

  • Access
  • Correction
  • Restraint
  • Delete

In case of exercising any of the above rights, EOPPEP will respond immediately [in any case within thirty (30) days from the submission of the request], informing you in writing of the progress of its satisfaction.

For any complaint you may have regarding this information note or personal data protection issues, if we do not satisfy your request, you can contact the Greek Personal Data Protection Authority via the following link: www.dpa.gr.

Data Protection Officer (DPO) details

For the exercise of all the above rights, as well as for any issue concerning the processing of your personal data by EOPPEP, you can contact its Data Protection Officer at e-mail dpo@eoppep.gr.

Disclaimer for Third Party Websites

O EOPPEP does not control or be responsible for any subsequent processing carried out on the personal data of the subjects by Third Party Websites.

Updates of the Information Note on Personal Data Protection

This Information Note on the Protection of Personal Data may be amended/revised in the future, in the context of the regulatory compliance of EOPPEP as well as the optimization and upgrading of the Website’s services. We therefore recommend that you refer each time to the updated version of this Information Note on the Protection of Personal Data, for your adequate information.

March 2025