For CLIMERGIA ENERGY AND CLIMATE INVESTMENTS SINGLE MEMBER P.C. (hereinafter referred to as “CLIMERGIA”), and for REIDDL Technology and Strategy Consultants Single Member Private Company (hereinafter referred to as “REIDDL”) both (hereinafter referred to as the “Companies” or “we”) based in Athens, Pythodorou 18-22, postcode 10441, TIN (AFM) 801601131, Tax Office (DOY) A’ Athens, respecting and protecting your personal data is a priority and, therefore, we are committed to keeping them safe and processing them in accordance with the law and under conditions of absolute transparency.
Your personal data are processed in accordance with the provisions of the General Data Protection Regulation (GDPR 2016/679), any specific national and European legislation for certain sectors, the current Greek legislation for the protection of personal data (Law 4624/2019), as well as for the protection of personal data and privacy in the electronic communications sector (Law 3471/2006) and the decisions of the Data Protection Authority (DPA).
We understand that the protection of your personal data is a continual responsibility and therefore we will update and amend this Policy from time to time, if so required.
CLIMERGIA is a climate consulting and green energy equipment-provider company, that aims to make our world greener by helping you design and implement the most complex green projects you may possibly think of. REIDDL is a technology and strategy consulting and smart-solutions-provider company specializing in digital data. Through our Site we introduce ourselves, present our services, inform you on related issues and allow you to contact us in various ways to have your questions answered and benefit from our services.
Personal data: any information relating to and identifying a person, such as identification information (name, age, residence, occupation, family status, contact details, etc.), physical characteristics (weight, height, etc.), education (qualifications, degrees), job (experience, work behaviour, etc.), financial status (income, assets, financial behaviour), interests, activities, habits. The individual (natural person) to whom the data refer is called the data subject.
Sensitive personal data : racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic or biometric data for the purpose of positive identification of a person, data concerning the health of the data subject, data concerning his or her sex life or sexual orientation, criminal prosecutions and convictions, as well as membership of associations related to the foregoing.
Processing of personal data : any operation carried out, whether or not using a computer, on personal data or on groups of personal data, such as collecting and recording, organising, structuring, storing, adapting or altering, retrieving and searching, using, disclosuring by transmission, disseminating or otherwise making available, aligning or combining, restricting, deleting or destroying data.
Controller : the natural or legal person, public authority, agency or other body which, alone or jointly with others, determine the purposes and means of the processing of personal data.
Processor : the natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller.
Recipient : the natural or legal person, public authority, agency or other body to whom personal data are disclosed, whether a third party or not.
Consent of the data subject : any freely given, specific, explicit and informed indication of the data subject’s wishes by which the data subject signifies his or her agreement, by a statement or by a clear affirmative action, to the processing of personal data relating to him or her.
Personal data breach : a breach of security leading to the accidental or illegal destruction, loss, alteration, unauthorised disclosure of or access to personal data transmitted, stored or otherwise processed.
In order to be able to provide our services and depending on the requirements of every particular situation, we may collect and process the following personal data:
4.1. When you browse the Site
When you visit the Site just to browse the materials located on it, you do so anonymously unless you choose to provide us with information about yourself. In that case, we only gather and store automatically certain information about your visit, which does not identify you personally.
The following are representative of the types of information automatically collected and stored about your visit:
(a) The Internet domain and Internet Protocol (IP) address from which you access the Site;
(b) The type of Internet browser and the operating system of the computer you use to access the Site;
(c) The date and time you visit the Site;
(d) The pages you visit on the Site;
(e) If you linked to the Site from another website, the address of that website; and/or
(f) If you linked to the Site from a search engine, the website address of that search engine and the search term you used.
4.2. When you send us an e-mail or fill our online Contact form or contact us in any other means available
When you choose to submit a question, feedback, comment or information about a case or ask for our services via e-mail or using our online form or in any other means available, you provide us with your name, your contact details and any further data you choose to disclose in the message you send us.
4.3. When you submit your CV
With regard to job applicants, the data that the Companies collect are : full name, address, e-mail address, telephone number, previous experience and education, any references, desired position and any other information that may be provided through the submission of the CV or is necessary depending on the vacancy to be filled.
We try to minimise the risk to your rights and freedoms by not collecting your sensitive personal data unless it is absolutely necessary and, in any case, with an explicit and clear justification of such a necessity.
Sharing personal data of yours with us is not compulsory. However, failure to provide personal data which have been identified as necessary will prevent us from providing our services. Failure to provide the other personal data, which are not necessary, shall in no way affect the provision of our services.
Please help us keep your information up to date by informing us of any changes to your personal data.
We collect your personal data directly from you either by email or via our online form or by phone.
Some of your personal data are collected through cookies or other trackers and third-party providers, such as Google.
We use your personal data for the following purposes:
6.1. Provision of our services; In order to be able to provide you with our services in the best possible way ensuring the quality of them and the security of our Site.
6.2. Customer service; To assist our clients with any issue related to the provision of our services.
6.3. Marketing; For marketing, promotional and public relations purposes.
6.4. Improvement of our services and satisfaction of our legitimate interests, e.g. by keeping statistics or conducting market – customer and user satisfaction researches.
6.5 In the context of organisational and auxiliary functions necessary for the proper operation of the Company.
6.6. Compliance with our legal obligations;
6.7. Staffing; It relates to the data we receive in the context of workforce search.
6.9. Legal protection of the Companies.
CLIMERGIA and REIDDL process your personal data only if there is a relevant lawful basis.
7.1. The processing of your personal data is based on the conclusion and performance of a contract or – at your request – on preparatory actions for the conclusion and performance of a contract.
7.2. The processing of your personal data carried out for marketing purposes or for your convenience and for the provision of privileges to you, as well as the processing of CV data is based on your consent.
7.3. In some cases the processing of your personal data is necessary for the purposes of our legitimate interests or for the purposes of our compliance with national and / or European legislation.
8.1. Personal data submitted for the above processing purposes will be kept by the Companies for the period deemed absolutely necessary for the fulfillment of the above purposes and in accordance with the law.
8.2. In respect of personal data processed in the context of our contractual obligations, the Companies may retain it for as long as may be necessary to protect our legitimate interests in relation to potential liability associated with the provision of our services to you. Data relating to you will be retained throughout the duration of our business relationship and, after the termination of that relationship, for as long as the applicable legislation allows for claims by the parties or, if a claim is made, until the irrevocable resolution of any dispute.
8.3. The data that we process on the basis of your consent, depending on the purpose of the processing, will be kept until your consent is withdrawn or the time for which you agreed to give your consent has expired or until they are no longer useful to us. As a general rule, the retention period is one (1) year.
8.4. Resumes and data received as part of the employee search process shall be retained for one (1) year.
8.5. We restrict access to your data to those persons who need to use them for each specific purpose.
8.6. Your personal data are stored securely, as appropriate, in electronic and physical folders, in our e-mail accounts, in the server and the cloud back up of our Site.
8.8. For any clarification on where and for how long your personal data are kept, please contact us at firstname.lastname@example.org.
When you give us your personal data, we take steps to ensure their safety. In order to protect your personal data, we take physical, technical and organisational measures, whether they are in physical or electronic form. We update and monitor the security technology we use on an ongoing basis. We restrict access to your personal data to only those employees who need to know that data in order to provide benefits or services to you. In addition, we educate our employees on the importance of confidentiality and privacy and security of your personal data. Among other things, we have implemented the following technical and organizational measures and procedures to protect your personal data from any loss, alteration, illegal processing or modification:
– Anonymization / pseudonymization, where applicable;
– Use of antivirus;
– Access to the electronic media of the Companies only with a password;
– Security monitoring and detection / handling of security breaches;
– Backup copies;
– Procedure for managing requests from subjects;
– Data minimisation;
– Emailing using security protocols that guarantee, to the extent possible, the prevention of data leakage;
– Measures for the physical security of printed material and IT devices (locking of drawers, etc.).
In addition, the Site has an SSL certificate. The SSL (Secure Sockets Layer) protocol is currently the global standard on the Internet for the certification of websites to network users and for the encryption of data between network users and web servers. An encrypted SSL communication requires all information sent between a client and a server to be encrypted by the sending software and decrypted by the receiving software, thus protecting personal data. All information sent using the SSL protocol is protected by a mechanism that automatically verifies whether the data have been changed in transit.
We must point out that, although we make every effort to safeguard your personal data, and in particular any data we receive through our Site, we are unable to guarantee the absolute security of data transmission via the Internet or any other public network, as this is not under our complete control.
10.1. As part of our activities, we may contract with third parties (processors) who will provide services on our behalf. Thus, we may need to share some of your personal data with them. However, we only share with them the data that are necessary so that they can provide the services we ask them to provide and we require them to protect your data and not to use them for other purposes.
10.2. Furthermore, your personal data may be transferred to the competent authorities (e.g. tax authorities, judicial authorities, police, auditing bodies) and only to them, when required for the provision of our services to you or when required by a provision of law or a court order or a prosecutor’s order / decree, as well as for the protection of the Companies’ rights.
10.3. We do not offer or sell your personal data.
You have the right to receive clear information in relation to how we use your personal data. For example, why we receive your personal data, where it will be stored, for how long, for what purpose and so on.
You have the right to access your personal data as long as you contact us. We will try to assist you as quickly as possible depending on our workload.
You have the right to request that we correct your personal data if they are incorrect or not up to date.
You have the right to request deletion of your personal data from our computers and our records provided that this does not contravene our legal and regulatory obligations.
You can withdraw your consent to the processing of your personal data even if the processing was carried out so far with your consent. If such a withdrawal does not allow us to perform the contract we have agreed with you, you must contact us again so that we find a new way of working together that is beneficial to both parties.
If you consider that you have a legitimate interest, you have the right to object to the processing of your data.
You have the right to transfer your data from our database to another database.
You have the right to request that we restrict the processing of your data (e.g. we may store them, but not use or process them) in accordance with what is set out in the General Regulation.
You have the right to choose yourself whether and which cookies to accept, with the exception of the essential ones, i.e. those that are strictly necessary for the operation of our Site.
Finally, you have the right to lodge a complaint with the competent Greek independent authority, which is the Data Protection Authority (http://www.dpa.gr/).
Given the international character of CLIMERGIA and REIDDL, your personal data that we collect and process may occasionally be transferred outside the European Union. In such cases, we commit to ensure the adequate level of protection in accordance with the applicable law [transfers based on an adequacy decision, transfers subject to appropriate safeguards, binding corporate rules, explicit derogations for specific situations (CHAPTER V GDPR) ].
For any questions about the processing of your personal data or the cookies we use, or if you want to exercise your rights, you can contact us by sending an email to email@example.com .