Data Protection Policy
The following information regarding the protection of your personal data concerns the way we process your personal information when you interact with the Federation of Hellenic ICT Enterprises (hereinafter referred to as SEPE) or use any of our services through its Web Portal (hereinafter referred to as WP).
Contact Details of the Data Controller
For every processing of personal data carried out within the framework of any potential interaction through the WP of SEPE, the Data Controller is the Federation of Hellenic ICT Enterprises, 19 Amvrosiou Frantzi St., 117 43 Athens, Greece, Tel: 2109249540, Email: info@SEPE.gr.
Contact Details for Data Protection
For any matter concerning Data Protection of the WP of SEPE, you can directly contact the Legal Advisor, Evangelos Papalampros. To exercise your rights or for any other reason related to data processing conducted by SEPE, as outlined in this information, you can contact him at the email address info@sepe.gr at the postal address 19 Amvrosiou Frantzi St., 117 43 Athens. Please indicate "For Legal Advisor" on the envelope.
When and How We Collect Your Personal Data
Most of the personal information we process is provided directly by you for one of the following reasons:
- You have applied to become a member of SEPE.
- You have subscribed to the SEPE Newsletter.
- You have contacted us through the contact form of the WP of SEPE.
Application for New Member Registration
We use the business information and representatives' details such as: Company Name, Address, Email, VAT number, representatives' roles, and other information described in the registration application, as well as supporting documents of the company attached at the time of the application. The purpose of collecting and processing this data is to register the respective company in the registry of SEPE members and to provide further regular or exceptional updates to the company representatives as members of SEPE, in accordance with its statute and the decisions of its bodies. The legal basis for this processing is Article 6(1)(b) of the General Data Protection Regulation (GDPR), i.e., the examination and processing of your request for membership registration in SEPE according to the terms of the registration application, as well as Article 6(1)(a), i.e., your explicit consent.
We retain your personal data for as long as you remain a member of SEPE, and we regularly request updates. After your deletion, we continue to retain the data for the purpose of maintaining a member's historical record or processing your request for re-registration. Additionally, you have the rights to request access to your data, rectify inaccuracies or incompleteness, delete them if you withdraw your consent, restrict processing under certain conditions, and file a complaint.
Newsletter Subscription
We use your email address to send you the SEPE Newsletter. Once you subscribe to the Newsletter, you will receive a confirmation message, and thereafter you will receive our electronic newsletters and updates.
The purpose of collecting and processing this data is to send the e-Newsletter and our updates. The legal basis for this processing is your consent, in accordance with Article 6(1) of the General Data Protection Regulation (GDPR).
We retain your personal data for as long as you remain subscribed to our newsletter recipient list, so that you can receive our electronic newsletters and updates, and we delete them in case you withdraw your consent. This means that you have the right to withdraw your consent at any time, resulting in the deletion of your data and the cessation of newsletter delivery.
Additionally, you have the rights to access your data, rectify inaccuracies or incompleteness, delete them if you withdraw your consent, restrict processing under certain conditions, and file a complaint.
Communication via the Contact Form
We collect personal data such as: Name, Surname, Email, Phone number, and any other personal data that you may provide us with if you choose to use the contact form of SEPE's WP. We retain your personal data for one year from the date of the communication. Additionally, we store our response to the communication in our system.
The provision of the above data is necessary to satisfy your request/query.
Our purpose for processing your personal data is to be able to respond to your request for information.
The legal basis for processing your personal data for this purpose is Article 6(1)(b) of the General Data Protection Regulation (GDPR).
In this regard, you have the same rights as with Newsletter subscription.
Sharing and disclosure of personal data
As a general rule, we do not disclose or transfer data to third parties. Your data may be disclosed to processors with whom SEPE collaborates to support its systems.
We store your data through SEPE's WP on the Microsoft Azure cloud. Specifically, the WP is hosted on OVH Cloud, and your data may subsequently be stored in a Microsoft cloud service. Finally, the management of SEPE's WP is handled by ATCOM INTERNET & MULTIMEDIA SA, whose authorized personnel may have access to the data entered through the New Member Registration Application, Newsletter Subscription, and contact form.
Your rights regarding your personal data
According to data protection legislation, when we process your personal data, you have certain rights that we need to inform you about. The rights you can exercise with respect to SEPE are as follows:
You have the right to request information about the processing of your data by SEPE at any time or copies of your personal data that we retain.
You have the right to request the correction of information that you believe to be inaccurate at any time. You also have the right to request the completion of information that you believe to be incomplete.
You have the right to request the erasure of your personal data in certain cases.