Introduction
We would like to assure you that for the company “GRID TELECOM SINGLE MEMBER S.A” the protection of the personal data of the individuals involved in any way with our Company is of paramount importance. Therefore, your personal data is processed in full compliance with the relevant legislation (indicatively the General Data Protection Regulation (EU) 2016/679 (GDPR) and its implementing Greek Law 4624/2019.
Data Controller – Data Protection Officer (DPO)
The Company “GRID TELECOM SINGLE MEMBER S.A”, herein after “GRID TELECOM” or “Our Company”, having its registered office in Athens, at the junction of Dyrrachiou 89 & Kifissou Str., GR- 104 43, email info@grid-telecom.com, website: Grid Telecom (grid-telecom.com), informs you that, it processes the personal data of the data subjects, in its capacity as data controller, in accordance with applicable national law and the European Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data in full compliance with the relevant legislation (General Data Protection Regulation, hereinafter referred to as the "Regulation") as it is currently in force.
In order to ensure the effective protection of your personal data, please contact the Data Protection Officer (DPO) directly at any time for any matter relating to the processing of your personal data and the exercise of your rights at the following email address: privacy@admie.gr
Definitions
Personal Data - any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one whose identity can be identified, directly or indirectly, in particular by reference to an identifier such as a name/surname, an identification number, location data, an online identifier or one or more factors specific to the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.
Data Controller - the natural or legal person, public authority, agency or other body which alone or jointly with others determines the purposes and means of the processing of personal data.
Data processing - any operation or set of operations which is performed, whether or not by automated means, on personal data or on sets of personal data, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Personal Data Breach - any breach of security leading to accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access of personal data transmitted, stored or otherwise processed.
Consent of the Data Subject - any freely given, specific, explicit and informed indication of intent by which the data subject signifies his or her agreement, by a statement or by a clear affirmative action, to the processing of personal data relating to him or her.
Recipient - any natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether or not a third party
Which personal data we process.
The personal data you provide us when you express your interest in being included in the assessment process for the possibility of starting cooperating with us either in the context of an existing career opportunity or for other positions, current or future, based on your qualifications and skills as reflected in your CV. In particular, your name, surname, home address, e-mail address, telephone number, date of birth, nationality, gender, marital status, academic data, professional activity data, areas of professional expertise and certificates, if any.
The personal data of potential suppliers and contractors, such as, but not limited to, name, surname, telephone number, e-mail address, home address of managers and legal representatives of suppliers, contractors or, in the case of a sole proprietorship, the name and address of the sole proprietorship.
Legal grounds for processing your personal data.
The performance of a contract existing between you and the Company, as well as for taking measures at the request of the data subject prior to the conclusion of the contract (Article 6(1b) GDPR).
To safeguard and protect the legitimate interests of both the data subjects and our Company.
Compliance with an obligation imposed by law.
The consent you provide the consent you provide us with, under the specific conditions set out in the applicable legal framework.
What is the purpose of the processing and how we use your personal data.
In order to properly comply with our contractual obligations, whether it is the processing of personal data in the context of actions that need to be carried out at a pre-contractual stage, we process the information required for the development of our cooperation.
Our Company processes personal data in its capacity as a contracting entity, as part of calls for tenders and the performance of relevant contracts and projects, for the following purposes:
- To confirm that all required legal conditions for the submission of bids to each tender are met by the bidders and to verify their general compliance with the legal requirements and the conclusion and performance of the contract.
- To confirm that all required and legal conditions are met by the members of Boards of Directors, operators and legal representatives of the provisional and final contractors, subcontractors and bidders as part of calls for tenders and the performance of relevant contracts and projects.
Safeguarding and protecting the legal rights of yours as well as our Company’s. Therefore, we use closed circuit television (CCTV) and security systems to be able to protect the security of individuals, materials, facilities.
To whom and where do we transfer personal data.
Our Company discloses your personal data to the following categories of recipients:
We may share or disclose your personal data when you have expressly requested it or when required by law. Furthermore, when necessary, in order to comply with our legal obligations, we transfer your personal data to administrative, tax or judicial authorities for the purpose of carrying out audits (e.g. Data Protection Authority, etc.) and in accordance with the statutory procedures.
Recipients of the personal data are the Company's strictly necessary authorized personnel, who are bound by confidentiality obligations, and our partners (e.g. hiring and marketing service providers) who process your personal data as Data Processors on our behalf and in accordance with our instructions. In the latter case, our Company remains responsible for the processing of your personal data and sets out the details of the processing, signing a specific contract with the third parties to whom it commissions processing activities, in order to ensure that the processing is carried out in accordance with the applicable legal framework and that any individual may freely and without hindrance exercise the rights conferred on him/her by the legal framework.
Transfer of personal data to third countries.
Our Company does not transfer personal data outside the European Economic Area, or to countries or international organizations that the European Commission has decided do not ensure an adequate level of protection.
In case of transfer outside the European Economic Area, the latter will be carried out on the basis of legally approved binding corporate rules, in accordance with the safeguards provided by EU Regulation 679/2016.
Storage Time
The data storage time is decided on the basis of the following specific criteria, as appropriate on each case:
When processing is required as a requirement under provisions of the applicable legal framework, your personal data will be stored for as long as required by the relevant provisions.
When processing is done on the basis of a contractual relationship, your personal data will be stored for as long as is necessary to perform the contract and for the foundation, exercise, and / or support of legal claims under the contract.
What are your rights with respect to your personal data
Any natural person whose data is being processed by our Company enjoys the following rights:
Right of Access:
You have the right to be aware and verify the legitimacy of the processing. So, you have the right to access the data and get additional information about how your date is processed.
Right to Rectification:
You have the right to study, correct, update or modify your personal data.
Right to Erasure (“Right to be forgotten”):
You have the right to request the erasure of your personal data if you no longer wish to have them processed and if there is no compelling and legitimate reason for us to process them.
Right to Restriction of Processing:
You have the right to request a restriction on the processing of your personal data in the following cases: (a) when the accuracy of the personal data is questioned and until such accuracy is verified; (b) when you oppose the erasure of personal data and request (instead of erasure) the limitation of its use; c) when personal data is not needed for processing purposes, but is, however, indispensable for the foundation, exercise, support of legal claims; and (d) when you object to the processing and until it is verified that there are legitimate reasons that concern us and supersede the reasons for which you oppose processing.
Right to Oppose Processing:
You have the right to object at any time to the processing of your personal data unless there are legitimate and compelling reasons for the processing which override your interests, rights and freedoms or for the establishment, exercise or maintenance of legal claims by our Company as controller.
Right to Data Portability:
You have the right to receive your personal data free of charge in a format that allows you to access, use, and edit them, using commonly used editing methods. You also have the right to ask us, if technically feasible, to transfer the data directly to another data controller. This right exists for the data you have provided to us and it is processed by automated means based on your consent or for the performance of a relevant contract.
Our Company will respond to your requests without delay, and in any case within one (1) month from the date we receive your request. However, if your Request is complex or there are a large number of Requests, we will notify you within the month if we need to obtain an extension of another (2) two months within which to respond to you.
If your Requests are manifestly unfounded or excessive in particular because of their repetitive nature, the Company may impose a reasonable fee, taking into account the administrative costs of providing the information or performing the requested action, or refuse to follow up on the Request.
Right to file a complaint with the Data Protection Authority
You have the right to file a complaint with the Data Protection Authority (www.dpa.gr) through the portal https://eservices.dpa.gr/ as well as the right to bring a legal action.
Personal Data Security
Our Company implements appropriate technical and organizational measures aimed at the safe processing of personal data and the prevention of accidental loss or destruction and / or unauthorized access to, use, modification or disclosure thereof.
Automated Processing and/or profiling
We do not make decisions, nor profiling, based on automated processing of your personal data.
We use "cookies" on our website grid-telecom.com, always upon receiving your informed consent.
Updating the existing Privacy Policy.
We update this Privacy Policy whenever necessary. If there are significant changes to the Privacy Policy or the way we use your Personal Data, we will notify you either by posting a notice in a prominent place before the changes take effect or by any other appropriate means. We encourage you to periodically read this Privacy Policy to know how your Personal Data is protected.
Last updated: 09/10/2024