Privacy Policy

Information on the Processing of Personal Data

We reassure you that protection of personal data and privacy is of paramount importance. For that reason, we are taking all necessary measures to protect the personal data we process and to ensure that its processing is always in compliance with the obligations as set by the legal framework. We also declare that we do not collect, neither process personal data on minors under 16 years of age. 

What is GDPR?

The General Data Protection Regulation (GDPR) is the new regulatory framework of the European Union (EU) on the protection of natural persons with regard to the processing of personal data and on the free movement of such data. The purpose of the Regulation is to enforce a framework around the processing of personal data to protect the rights and freedoms of natural persons, and, in particular, the right to the protection of personal data.

What personal data categories do we process?

We process the personal data you provide us with, and we only do so under the grounds of legitimate interest. Your personal data collected and processed by us are those absolutely required, necessary and appropriate to achieve our intended purposes. We hereby note that the data concerning your contact details are absolutely required and necessary for any transaction with the Project Consortium. Moreover, we note that in relation to the personal data we collect directly from you. Thus, you must inform us of any changes in the data that concern you without delay, as well as to respond to any request for update. We also consider that the personal data we collect are provided to us by you and in no way do such data come from other sources. 

These data, are: 

Through the Contact Form of this website, we collect full name and email. These data are used to communicate with you in case you request us to do so. 

Which are legitimate grounds for processing your personal data?

Legitimate grounds for processing your personal data are:

(a) the provision of information and other Project related material upon your request,
(b) the safeguarding and protection of both your and our legal interests. in our digital pages we use information such as IP address, location information, used devices and so on  to detect or prevent frauds or abuses on our websites,
(c) the compliance with legal obligations,
(d) the consent you provide under the specific conditions as set in the legal framework to receive information regarding activities, services, and so forth of the Project Consortium.

Statement

This site targets adult audiences (such individuals seeking information about the Project and respective Consortium members) and does not collect or intend to collect information from or about children.

Do we transfer your personal data?

The project consortium will not transfer personal data of individuals to third parties, other than Consortium members of the project. We will disclose your personal data to those employees of the Consortium members who are responsible for evaluating your requests, to fulfil the obligations arising out of it, as well as the related obligations imposed by law. Your personal data is handled with the strictest discretion and confidentiality, as the employees who process your personal data have a sufficient and significant level of knowledge to protect them and are bound by a confidentiality clause or are under the appropriate regulatory obligation of confidentiality.

We may share your information with relevant authorities, law enforcement bodies, government authorities and other third parties, where the law allows it, for the purpose of preventing or detecting criminal acts, for providing account information for customers, etc.

Data storage retention

The data storage retention period is determined by a set of criteria depending on the issue. Specifically: 

When processing is based on grounds of legitimate interest as set by the applicable legal framework, your personal data shall be stored for as long as defined by the relevant legal provisions.
For information purposes, your personal data shall be kept until your consent is revoked. This can be done by yourself at any time. The revocation of consent does not affect the legitimacy of consent-based processing in the period prior to said revocation.
To revoke your consent please contact the Project Consortium Coordinator at the email address ikons@cslab.ece.ntua.gr

What are your rights in respect to your personal data?

Every natural person whose data are being processed by the Consortium has the following rights: 

Right to Access 

You have the right to be aware of, and verify, the lawfulness of the processing. Therefore, you have the right to access the personal data which have been collected and get additional information about their processing.

Right to Correct 

You have the right to revise, correct, update or modify your personal data. You also have the right to be informed on the recipients of the data, should you wish to. 

Right to Delete

You have the right to request the deletion of your personal data in the course of processing under your consent or on the basis of our legitimate interests. In any other case, indicatively in the existence of a contract, a lawful obligation to personal data processing, or a public interest, the right shall be subject to restrictions or shall be withdrawn, as the case may be.

Right to limit processing:

You are entitled to request the limitation of your personal data processing in the following cases: (a) when the accuracy of the personal data cannot be established and until the data is verified, (b) when you object to the personal data deletion and request the limitation of their use rather than deletion, (c) when specific personal data are not required for processing purposes, they are, however, indispensable for the foundation, exercise, support of legal claims, and (d) when you oppose to the processing and until it is verified that there are legitimate grounds that concern us and supersede the reasons for which you are opposed to the processing. You also have the right to be informed on the recipients of the data, should you wish to. 

Right to oppose the processing

You are entitled to oppose to your personal data processing, at all times, in case where, as described above, this is necessary on the legitimate interests grounds as pursued by us, as controllers, as well as in the data processing for direct marketing purposes and consumer profile creation. You also have the right to be informed on the recipients of the data, should you wish to. 

Right to portability

You are entitled to receive your personal data free of charge in a format that allows you to access, use, and edit them with commonly used editing methods. Moreover, you have the right to request, if technically feasible, to pass the data directly to another controller. Such right is granted for the data you have provided to us and are subject to processing by automated means based on your consent or execution of a relevant contract.

Right to revoke your consent 

Where processing is based on your consent, you have the right to revoke it without affecting the legality of consent based processing in the period prior to said revocation. To exercise any of the above rights you can contact the Project Consortium Coordinator at the email ikons@cslab.ece.ntua.gr.
In the above cases we will make every effort to respond to your request within thirty (30) days upon submission. Such deadline may be extended for an additional sixty (60) days, if deemed necessary, taking into account the complexity of the request and the number of requests, and in such case we will inform you within the aforementioned deadline of thirty (30) days.

Right to lodge a complaint to the Personal Data Protection Authority

You have the right to file a complaint with the Personal Data Protection Authority of your country of residency.

Conducting automated processing and/or profiling

Project Consortium does not take decisions based solely on automated procedures of personal data processing, and does not carry out profiling.

Personal Data Security 

Appropriate technical and organizational measures are implemented, aimed at the secure personal data processing and the prevention of accidental loss or destruction as well as the unauthorized and/or unlawful access to, use, modification or disclosure thereof. 

Links to other websites

Current page contains links to other websites that correspond to each member of the Consortium.

Changes to the Privacy Policy

Information about this privacy policy reflects the current state of the data processing. In the event of changes in data processing, such data protection information will be updated accordingly. Our website will always include the latest version of data protection information so that you are informed about the extent of data processing. We recommend that you always be aware of how we process and protect your personal information. All future changes regarding this Privacy Statement will be made known on our website.

Cookies we use on our website

Cookie names Type of cookie First or Third party Can be blocked Session or Persistent Expiry Time Purpose

eThemisID_logo_2

Co-financed by the European Union,
the Innovation and Networks Executive
Agency and CEF Telecom

9 Ir. Polytechneiou
15773, Zografou, Athens
Τ. +30 2107723847
E. ikons@cslab.ece.ntua.gr

ethemis_project_European_Commission
ethemis_project_inea
ethemis_project_cef_telecom

© 2021 eThemisID | Privacy policy