PRIVACY STATEMENT
Information on the Processing of Personal Data
Introduction
We would like to assure you that for KADMOS SETE, it is of primary importance to protect the personal data of the individuals involved in any way with the company. For this reason, we take appropriate measures to protect the personal data we process and to ensure that the processing of personal data is always carried out in accordance with the obligations imposed by the legal framework, both by the company itself and by third parties that process personal data on behalf of the company. Translated with www.DeepL.com/Translator (free version)
Processing Manager
The company “KADMOS ANONYMIH COMMERCIAL TECHNICAL COMPANY” and the distinctive title “KADMOS AETE”, with headquarters in the Municipality of Thebes, 3rd km of the Old National Road, TK 32200 email: info@kadmosaete.com, tel: 2262025500 website: www.kadmosaete. com, informs that, for the purposes of carrying out its business activities, it processes personal data of the subjects, natural persons (such as, but not limited to, its employees, its customers, its suppliers, its shareholders, as well as its prospective employees), in accordance with the applicable national legislation and the European Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation). Translated with www.DeepL.com/Translator (free version)
For any issue regarding the processing of personal data, please contact the Company directly as follows, email: info@kadmosaete.com , telephone: 2262025500.
What personal data do we process?
The personal data you provide us with, such as indicative contact details (e.g. full name, home address, email address, telephone number, other additional personal information, etc.), data required in the context of an employment relationship (e.g. education/training/special knowledge and skills, previous work experience, social security, income tax, etc.) are only processed when we have a legitimate reason to do so.
What are the legitimate grounds for processing your personal data?
Lawful grounds for processing your personal data include:
(a) the performance of a contract that you have awarded or intend to award to us, such as the performance of a project, or the provision of services, for the purpose of fulfilling our contractual obligations in the above context.
b) to safeguard and protect your and our legitimate interests. Thus, we use closed circuit television (CCTV) and security cameras in order to be able to protect the security of natural persons, materials and other company facilities, and we also record the details of visitors to the company for the same reason.
(c) compliance with legal obligations, such as, for example, the publication of documents and data of the public limited company (including data of natural persons, such as shareholders), in accordance with article 7b of Law 2190/1920, the management of claims for compensation for accidents caused during the execution of a project, the management of court cases, etc.
(d) the consent you give under the specific conditions set out in the legal framework.
(e) manifest disclosure by the data subject and processing necessary to protect the vital interests of the data subject or another natural person (where the data subject is physically or legally incapable of consenting) are the legitimate grounds on which we process any information provided relating to health data.
How and why do we use your personal data?
To ensure proper compliance with our contractual obligations and to maintain communication between us.
From the contractual relationship between us (whether it is a contract for the execution of works by a contractor/subcontractor, supply contract, service contract, etc., or the processing of personal data at the pre-contractual stage), we derive and use the information required for the smooth development of the cooperation between us, such as for example for the signing of amendments to the main project contract, the management of any financial pending issues arising from a cooperation, etc.
For our communication with you and the management of our relationship with you
We may need to contact you by email or telephone for administrative purposes, such as to inform you about the progress of our cooperation, to set up a business meeting for a staff candidate, to manage other requests or complaints, etc.
To comply with legal obligations
For example, when we publish on our website, on the GEMI website, decisions of the General Assembly of the company (including details of the shareholders – natural persons), with statutory authorisation we appoint and disclose as representatives of the company third natural persons for the performance of acts related to its business activities.
To safeguard our legitimate interests and protect persons and property
When we use closed circuit television (CCTV) and security cameras in order to be able to protect the safety of individuals, materials and company premises.
Who may be recipients of your data?
KADMOS SA may transmit/communicate personal data to the following categories of recipients:
State authorities, Law enforcement agencies
Where necessary to carry out an audit (e.g. application of financial, stock exchange, tax, insurance, labour or other general and/or specific legislation) and in all cases in accordance with the legal procedures provided for.
Partners of our company (subcontractor partners, banks, insurance companies, auditing company, etc.)
The Company maintains partners to whom it entrusts the processing of personal data on its behalf (e.g. subcontracts, banking transactions, auditing of the share transfer deed by a statutory auditor). In these cases, the Company remains responsible for the processing of your personal data and defines the individual elements of the processing and signs a specific contract with the partners to whom it entrusts the performance of processing activities, in order to ensure that the processing is carried out
In addition, KADMOS SA may transmit data to other cooperating third party companies (e.g. to members of consortia or associations of companies) in order to provide information on the company’s image and provided that consent has been provided by the natural person, as mentioned above and that the aforementioned provisions on the written assignment of processing apply.
In third countries where the Company does business
In the event that the Company needs to transfer personal data outside the EU in the context of its legitimate activities, it fully complies with the applicable provisions of Chapter V of the Regulation.
Storage period
The period of data storage is decided on the basis of the following specific criteria depending on the case:
Where processing is imposed as an obligation by provisions of the applicable legal framework, your personal data will be stored for as long as required by the relevant provisions.
Where processing is carried out on the basis of a contract, your personal data is stored for as long as necessary for the performance of the contract and for the establishment, exercise, and/or support of legal claims based on the contract.
What are your rights in relation to your personal data?
Every natural person whose data is processed by the Company enjoys the following rights:
Right of access:
You have the right to be aware of and verify the lawfulness of the processing. Therefore, you have the right to access the data and to obtain additional information about the processing.
Right to rectification:
You have the right to review, correct, update or modify your personal data by contacting the Data Controller at the above contact details.
Right to erasure:
You have the right to request the deletion of your personal data when we process it on the basis of your consent or in order to protect our legitimate interests. In all other cases (such as, but not limited to, where there is a contract, an obligation to process personal data imposed by law, public interest), this right is subject to specific limitations or does not exist as the case may be (Article 17 of the Regulation). Translated with www.DeepL.com/Translator (free version)
Right to restrict processing:
You have the right to request restriction of the processing of your personal data in the following cases: (a) when the accuracy of the personal data is contested and until it is verified; (b) when you object to the erasure of personal data and request the restriction of their use instead of erasure; (c) when the personal data is not necessary for the purposes of processing, but is necessary for the establishment, exercise, support of legal claims; and (d) when you object to the processing and until it is verified that the personal data exists.
Right to object to processing:
You have the right to object at any time to the processing of your personal data where, as described above, it is necessary for legitimate interests pursued by us as data controllers.
Right to portability:
You have the right to receive, free of charge, your personal data in a format that allows you to access, use and process them by commonly used processing methods. You also have the right to ask us, where technically feasible, to transfer the data also directly to another controller. This right exists for data that you have provided to us and is processed by automated means on the basis of your consent or in performance of a relevant contract.
Right to withdraw consent
Where processing is based on your consent, you have the right to freely withdraw it, without prejudice to the lawfulness of the processing based on your consent before you withdraw it.
To exercise any of the above rights, you may contact the Company at the above contact details.
Right to complain to the CPVO
You have the right to lodge a complaint with the Personal Data Protection Authority (www.dpa.gr): telephone: +302106475600, fax: +30210 6475628, email: contact@dpa.gr
Personal Data Security
KADMOS SETE applies appropriate technical and organizational measures in order to ensure the secure processing of personal data and to prevent accidental loss or destruction and unauthorized and/or unlawful access, use, modification or disclosure.
In order to ensure the appropriate level of security against the risks and to select the appropriate technical and organisational measures, the Company takes into account the latest technological and other developments, the cost of implementation, the nature, context and purposes of the processing, as well as the likelihood and risk of accidental loss or destruction and unauthorised and/or unlawful access, use, modification or disclosure of personal data, on the one hand, and the seriousness of the risks involved, on the other hand.
In any case, the way the internet works and the fact that it is free to anyone does not allow for guarantees that unauthorised third parties will never be able to breach the technical and organisational measures in place by accessing and possibly using personal data for unauthorised and/or illegitimate purposes.
Changes to the privacy policy
The information on our privacy policy reflects the current state of data processing on our website. In the event of changes in data processing, this information will be updated accordingly. Our website will always have the latest version of this data protection information on our website, so that you can be kept up to date with the scope of processing within our website.