Welcome to www.digitalpioneers.gr, a website owned by Digital Pioneers, a company based in Athens, which offers web development and other relevant services (“Company” or “we”).
The protection of your personal data is very important to us. This is why we created this policy, in order to provide you with adequate information regarding the processing of your data by our Company.
Introduction – Data Controller
In order to be able to provide our services, while also complying with our legal obligations, we process information concerning the Website visitors, which may lead, directly or indirectly, to their identification.
According to the respective legal framework, some of this information is “personal data”, while you, the visitors, are characterized as “data subjects” and we, the Company, are the “processors” of your data.
In case you have any questions regarding the processing of your data or the exercise of your rights, you are more than welcome to contact us at firstname.lastname@example.org
Data processing principles
We are committed to ensuring that your personal data will be processed in a fair and transparent manner, according to the legal framework, particularly the General Data Protection Regulation (GDPR). In plain terms, this means that:
- We process your data only for specified, explicit and legitimate purposes (purpose limitation)
- We process only data which are adequate, relevant and limited to what is necessary in relation to the purposes set (data minimisation)
- We make every effort in order to ensure that your data are accurate (accuracy)
- We keep your data in a form which permits your identification for no longer than is necessary for the purposes set (storage limitation).
- We make every effort in order to ensure the security of your data (integrity and confidentiality).
In order to ensure the protection of your data, the Company takes all appropriate technical and organisational measures, trains its staff and uses technologies which ensure the security of your data (for example SSL certificate, encryption, certified hosting providers).
We monitor the security measures on a regular basis and, if deemed necessary, we align them with the new best practises.
What types of data we process
We process your data through the Website only when you fill out the contact form or send an email.
Τhis does not apply to your data that are automatically collected while visiting the Website or/and through cookies or similar technologies (visit our cookies policy).
Α. Automatically obtained information
When you visit our Website, your IP address, as well as other information, such as the date and time of your visit, the page, the browser type and the operating system you use in order to visit our website, is recorded by our server. Τhis processing of your data is based on the Company’s legitimate interest, given that it is technically necessary for running the Website as well as for protecting the networks, the information and the services against unforeseeable circumstances, or illegal and malicious actions that compromise the availability, authenticity and confidentiality of stored or transmitted data (e.g. control of denial of service attacks), without entailing serious risks for your rights and liberties.
Β. Information provided to us
We process the personal data provided by you in the following cases:
|Data we process||Purpose||Legal Basis|
Important note: Your message should include only the necessary information related to your request and not your or a third person’s personal data.
|We process this data, in order to be able to contact you in response to your message. Sending an email or submitting a form does not make you our client, however it might show intention to enter into a contract.||We process your data based on your consent (article 6 (1) (a) GDPR), which you have the right to withdraw at any time and you can also request the erasure of your data. In case you withdraw your consent, the lawfulness of the processing already carried out will not be affected. Your withdrawal prevents us from communicating with you in the future.|
Important Note: The obligation to submit accurate data falls upon the person who provides the data. Find out about your right to rectification of your inaccurate data by reading the policy section regarding your rights.
Who has access to your data
Typically, access is permitted to authorized members of the Company staff, who process your data in a strictly confidential manner, and only to the extent and in the context of the purposes which you have already been informed about. We handle our communication internally, so the only third party that processes some information in this context is our hosting provider Amazon AWS.
Amazon processes minimum data only for the purposes mentioned above and only on behalf and for the Company, with the exception of any legal obligations. Respect for the rules regarding the security of the processing of your data is one of the most important criteria when choosing our partners.
Amazon Web Services EMEA SARL, (“AWS Europe”) is based in Luxemburg and offers its services in compliance with the General Data Protection Regulation (GDPR), as it is widely considered one of the best cloud providers in the world.
You can learn more about Amazon AWS policy here.
Where and for how long we store your data
Your data is stored in the Company’ server, which is hosted in a data center located within the EU. In any case, while appropriate technical and organisational measures required to avoid any data breach, are constantly applied.
The data is stored strictly for a period of time considered necessary for each processing purpose.
What rights you have as data subjects and how you exercise them
Under the current legal framework, you have a set of rights regarding the processing of your rights by the Company. In particular, you have the right:
- To submit a request to the Company to be informed whether we process data and, if so, what types of data (right of access).
- To request the rectification of the data (right to rectification).
- To request, under conditions, the erasure of the data (right to erasure).
- To request, under conditions, the restriction of the data processing (right to restriction of processing).
- To object, under conditions, to the processing of your data by us (right to object), mainly regarding the processing relating to marketing purposes (e.g. newsletter).
- To request the data that you have provided to us in a structured, commonly used and machine-readable format (right to data portability), as long as it is technically feasible.
- In case of a data breach, which is likely to result in a high risk to your rights and freedoms and as long as it does not fall under any of the exceptions provided in General Data Protection Regulation, the Company has the obligation to communicate the breach to you without undue delay.
Compliance with the legal framework regarding the processing of personal data and, in this context, the exercise of your rights, are our top priority. Therefore, we have the right to request additional information, which are considered necessary for your identification confirmation before exercising your rights.
In principle, the Company has the obligation to respond to your request promptly and within one month at the latest. If deemed necessary, taking into account the complexity of the request and the number of requests, that period may be extended by two further months. In any case, we will inform you as soon as possible, and in any case within one month after the submission of your request, concerning the progress made and the reason for any possible delay in dealing with it.
In case your requests are manifestly unfounded or excessive, in particular because of their repetitive character,the Company may either charge a reasonable fee taking into account the administrative costs of providing the information or communication or taking the action requested, or refuse to act on the request.
In case you consider that we do not comply with the personal data protection laws, you have the right to lodge a complaint with the Hellenic Data Protection Authority (www.dpa.gr).
The Company directs its services exclusively to individuals over 18 years of age. When a request to the Company is submitted, the user/visitor is presumed to be over 18 years of age or, if they are under 18, they are presumed to have obtained the necessary consent from the person having parental responsibility, and it is also presumed that said person’s information will be provided if requested by the Company.
Changes in policy and updates
This policy may be changed at any time and without prior notice. Guided by the principle of transparency, we are committed to notifying you of any major changes in our policy. In any case, however, you should periodically review our policy, since the use of our services implies acceptance of its terms by you.
What are cookies?
Cookies are small text files stored on the hard drive of your computer or other electronic device . Cookies are unique to each web browser (web browsers including, e.g. Google Chrome, Mozilla Firefox, Internet Explorer etc) and contain anonymized information , relating to the websites you visit and the devices you use.
We only use essential cookies.
These cookies relate to the saving of information or the acquisition of access to already stored information on your device, with the sole purpose of facilitating communication via an electronic communications network, and to an extent that is absolutely necessary to provide a social information service, that you have expressly requested. You cannot reject these cookies, since it would not be possible for us to offer our services otherwise.
How to control cookies in your browser
You are able to adjust the installation of cookies at any time through the settings of the browser you use.
To manage and deactivate cookies, follow the instructions for each browser:
For any information about our cookies policy, please contact us at email@example.com