ΕΠΙΚΟΙΝΩΝΙΑ

Privacy Policy

Privacy Policy

  1. GENERAL – DATA CONTROLLER
  • This website is provided and controlled by XIROGIANNIS LAW FIRM. XIROGIANNIS LAW FIRM is a law FIRM with registered seat in Greece KALAMATAS BAR ASSOCIATIONS.
  • This Privacy Policy applies to all users who browse Our website in order to obtain information about Our services, contact the Firm through the contact details listed on the website or subscribe to Our Newsletter. The Firm’s customers receive ad hoc information about their personal data processing during Our business acceptance procedure.
  • XIROGIANNIS LAW FIRM is the Data Controller of your personal data processed while you browse Our website and is committed to preserving privacy and processing your personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (hereinafter referred to as “GDPR”) and the applicable data protection legislation.
  • We provide this Privacy Policy to inform you about how We collect, use, protect, and otherwise process your personal data when browsing the website.
  1. DEFINITIONS

The following terms have the following meanings when used in this Privacy Policy:

  • “Applicable data protection legislation” means any applicable data protection laws, regulations, directives and any associated regulations or instruments, including the GDPR and the applicable Greek legislation, such as Laws 4624/2019, 3471/2006, relevant national laws and regulations as well as the decisions and guidelines issued by the Hellenic Data Protection Authority.
  • “Personal data” means any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
  • “Processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
  • “Data Controller” means an entity that determines the purposes and means of the processing of personal data.
  • “Data Processor” means an entity that processes personal data on behalf of the controller.
  • “Recipient” means a natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not.
  • “Third party” means a natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.
  • “Consent” of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
  1. HOW WE COLLECT PERSONAL DATA

We may collect personal data:Directly from you:

  • When you communicate with Us via e-mail, phone or otherwise for any reason or seek information.
  • When you subscribe to our Newsletter list.
  • By submitting your CV to apply for a job in XIROGIANNIS LAW FIRM. To obtain information about the collection and processing of your personal data processing when you apply for a job in XIROGIANNIS LAW FIRM, please review Our Recruitment Privacy Notice.

By automated means using the website:

  • When you visit Our website, We may collect data from you based on your browsing and using our services.
  1. PERSONAL DATA WE MAY COLLECT

We may collect and process the following personal data:

  • Personal details, such as your name, surname, the company you work for, your title or position;
  • Contact information, such as your e-mail address, postal address and phone number (s).
  • Any information that you may provide to us during our communications.
  • Technical information based on your browsing and using our services, when you visit Our website. This data may include information about how you use Our website, search history, IP address, screen resolution, type of browser and device used, operating system and settings, access times, URL reference as well as data collected through cookies. For more information on the use of cookies please refer to Our Cookie Policy.

When communicating with Us, We do not require you to disclose any sensitive personal data or data concerning third parties without their prior consent; therefore, We recommend that you share only the information that is absolutely necessary for the purpose of the communication.

  1. PURPOSES AND LEGAL BASES FOR DATA PROCESSING

We may process your personal data based on one of the following legal bases and for the purposes outlined:

For the performance of contractual obligations or in order to take steps at the request of the data subject prior to entering into a contract (article 6§1 b’ of GDPR):

  • To respond to website’s users’/potential customers’ requests.
  • To communicate with Our potential customers in order to provide information regarding Our business acceptance procedure.

For the purposes of the legitimate interests pursued by the firm (article 6§1 f’ of GDPR), in particular:

  • To provide information on services for which you have expressed interest.
  • To support, promote Our Firm and Our services and conduct Our business.
  • To protect the security of Our communications and other systems as well as to prevent and detect security threats, frauds or other criminal or malicious activities.
  • To analyze and improve Our services and communications and to monitor compliance with Our policies and standards.
  • To provide smooth access and use of Our website and enforce the website’s terms of use and other policies.
  • To appear on social media and information society services in order to promote Our services by giving the opportunity to users of these networks to interact with us through social media, participate in promotional actions, click the “like” button to our page and post comments about Our services.

For compliance with a legal obligation (article 6§1 c’ of GDPR) to which We are subject:

  • To comply with Our legal obligations.
  • For the establishment, exercise or defense of legal rights or proceedings.

Your prior consent (article 6§1 a’ of GDPR):

  • In order to receive Our Newsletter upon subscribing to our Newsletter form (11§1 of Law 3471/2006 – in cases where no prior contractual relationship exists between the Firm and the data subject).
    You have the right to withdraw your consent at any time for the purpose of receiving our Newsletter by clicking on the “Unsubscribe” button in any relevant communication you receive and to request the deletion of your data. In the event of consent withdrawal, We will discontinue the relevant processing activities, however, the withdrawal will not affect the lawfulness of the processing prior to the withdrawal.
  • In order to process your personal data to use non-essential cookies on Our website.
  • For any other specific purposes where consent is required under the applicable data protection legislation.
  1. WHERE WE STORE YOUR PERSONAL DATA

The personal data We collect are stored at secure servers within the European Economic Area (EEA). In the event that, within the scope of the processing described in this Privacy Policy, We need to receive services from providers located outside the EEA or in a jurisdiction that is not deemed adequate under the GDPR, such data transfer will only take place if appropriate safeguards, as provided in Articles 44 et seq. of the GDPR, have been implemented.

  1. RETENTION OF PERSONAL DATA
  • We retain personal data for the period of time necessary to fulfill the purposes, that it was collected for as outlined in this Privacy Policy, including for the purposes of satisfying any legal requirements, establish the lawfulness of processing your data by XIROGIANNIS LAW FIRM and, where required for Us to assert or defend against legal claims, until the end of the relevant retention period or until any claims in question can be lawfully challenged.
  • In case you submit a request via e-mail, your personal data is retained for as long as it is required to fulfil your request. However, where necessary, certain data may be retained for legal purposes specified in section 7.1.
  • If you subscribe to Our Newsletter, your personal data is retained for as long as you wish to receive the Newsletters and you do not withdraw your consent or object to your personal data processing for such marketing purposes.
  1. WHO WE SHARE YOUR PERSONAL DATA WITH

For the fulfilment of each of the above processing purposes and within the scope of the recipient’s responsibilities, the recipients of your data may be:

  • Third parties who provide services to Us, such as website hosting services, information technology services.
  • Upon legal request or obligation, law enforcement and other public authorities, for the defense of legal rights or the fulfilment of the Firm’s obligations.
  • We may share anonymous, aggregated statistics about your use of Our website to third parties who provide to Us research and analysis services.
  • It should be noted that when storing, accessing and/or processing your personal data, the employees and agents of XIROGIANNIS LAW FIRM fully comply with the relevant provisions of the applicable data protection legislation. XIROGIANNIS LAW FIRM requires of its employees, as well as its third party partners (data processors) to take all necessary technical and organisational measures (including appropriate policies and procedures) to prevent unauthorised disclosure of personal data to which they gain access, and implement procedures for the management and processing of personal data in a manner that is lawful and protect such data according to the GDPR’s imposed obligations.
  1. YOUR RIGHTS

Under the applicable data protection legislation you have the following rights, subject to the restrictions set therein:

  • The right to access: You have the right to request a copy of the personal data We hold about you as well as information about how your personal data is being processed.
  • The right to rectification: You have the right to request to correct personal data We hold about you where it is inaccurate or incomplete.
  • The right to erasure: This right entitles you to require the erasure of your personal data from Our systems and records.
  • The right to restrict processing: This right entitles you to obtain from Us to restrict the processing of your personal data.
  • The right to object to processing: You have the right to object to the processing of your personal data in certain circumstances, such as for direct marketing purposes.
  • The right to data portability: You can request the transfer of your personal data to you or to another data controller. We will provide your personal data in a structured, commonly used, machine-readable format. Please note that the right to data portability applies only to data that is processed automatically, which you have initially consented to or where we have used the data to perform a contract with you.

The right to withdraw consent: To the extent that processing requires your consent, you may withdraw that consent at any time. However, the withdrawal of your consent will not affect the lawfulness of processing based on consent before its withdrawal.

  • To exercise any of the above rights, you may contact Us via e-mail at the following email address: alexxiro@outlook.com.
  • We will take all possible measures to satisfy your request within a reasonable period, no later than one (1) month after the submission of the request. That period may be extended by two (2) months where necessary, taking into account the complexity and number of the requests.
  • Please note that the Firm may refuse, in part or in full, to fulfil your request for restriction of processing or deletion of your data, provided that the processing or retention of your personal data is necessary for the establishment, exercise or support of its legal rights or the fulfilment of its legal obligations.
  • If you believe that the processing of your personal data described above, is unlawful, you may also file a complaint with the Hellenic Data Protection Authority (1-3 Kifissias str., Post Code: 115 23, Athens, T: +30 210 64 75 600, F: +30 210 64 75 628) online by filling the appropriate form depending on the case/subject-matter of the complaint on https://www.dpa.gr/el/polites/katagelia_stin_arxi.
  1. HOW WE PROTECT YOUR PERSONAL DATA

We implement appropriate technical and organizational security measures to protect personal data against unauthorized access, misuse, loss, or destruction. All employees are bound by confidentiality and privacy clauses and personal data is being processed only by specially authorized personnel of the Firm.

  1. LINKS TO OTHER WEBSITES AND SOCIAL MEDIA
  • Our website may contain links to third-party websites. If you follow a link to any of these websites, please note that these third-party websites may collect and process personal data in accordance with their own policies. We are not responsible for the content or data processing performed by these websites, and it is your responsibility to be informed about their own privacy policies.
  • The Firm is active on LinkedIn for the efficient promotion of the Firm’s services. You can visit this network by clicking on the Social Plug-in Button on our website. This button links to a third-party service that collects and processes personal data in accordance with its own policy. We are not responsible for the content or data processing performed by this website, and it is your responsibility to be informed about its own privacy practices.
  1. USE OF COOKIES

Our website uses cookies or similar technologies in order to facilitate and personalize your experience on Our website but also to obtain insights regarding the use of the website. For more information on the use of cookies, also read our Cookie Policy.

  1. CHANGES TO OUR PRIVACY POLICY

This Privacy Policy is in effect as of the date noted at the top of this Policy. We may change this Privacy Policy from time to time. If we do, We will post the revised version here and change the “effective date” (the date it applies from) at the top of the Policy. We encourage you to regularly check this page to review any changes we might make to this Privacy Policy.

  1. HOW TO CONTACT US

If you have any questions about this Privacy Policy and how we process your personal data, as well as for the exercise of your rights, you can reach us at the following email: alexxiro@outlook.com