With the personal data protection policy, we determine our commitment to respect privacy and responsible handling of personal data.
In the company TEHNI S.A. - PANTELOS we are aware of the importance of privacy protection, so all employees who process and use personal data in their work are familiar with the provisions of General Regulation 679/2016 on the protection of personal data (hereinafter: GDPR), applicable national regulations and guidelines. competent institutions for the protection of personal data in the field of our work.
The principles that apply in compliance with the GDPR Regulation and national regulations in TEHNI S.A. - PANTELOS are:
The principle of legality, fairness and transparency means that data is processed lawfully, fairly and transparently and in relation to the data subject.
The purpose limitation principle means that personal data of an individual are collected for specific, explicit and lawful purposes and are not further processed for a purpose incompatible with that purpose, except for archiving in the public interest, for scientific research, historical research purposes or statistical purposes.
The principle of minimum data means that personal data are relevant and limited to the reason for which they are collected, ie for the purpose for which they are processed.
The principle of accuracy means that the personal data collected is accurate and, where necessary, updated. Appropriate measures must be taken to ensure that inaccurate personal data are erased or corrected at any time, taking into account the purposes for which they are processed.
The principle of storage limitation means that personal data are stored in a form that allows the identification of the data subjects only for as long as is necessary for the purposes for which the data are processed. For a longer period, only personal data of individuals may be stored when it comes to archiving in the public interest, for scientific research, historical research or statistical purposes.
The principle of integrity and confidentiality means that personal data are processed in a way that ensures adequate security of personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage by appropriate organizational and technical measures.
The principle of responsibility means that the controller of personal data is responsible for the processing of personal data in accordance with the mentioned principles and is able to prove this at any time.
In case you cooperate with our company, the controller of your personal data is the company TEHNI S.A. - PANTELOS, 2nd Km Kimmeria - Pigadia 67100 Xanthi - Greece.
We handle your personal data carefully and we have appropriate technical and organizational measures in place to protect personal data.
In certain cases, your data may also be processed by our contractual processors. The processors process the data exclusively according to our instructions and on our behalf. These are trustworthy legal entities or individuals who are duly verified before concluding a contractual contract, by which both parties undertake to diligently and lawfully process all personal data with which they come into contact.
We process your data solely on the basis of your prior consent and in accordance with the purpose of the consent.
We collect different types of personal data, and the exact type depends on the type of contractual or other cooperation with you. The purpose of the processing of your personal data also depends on the type of contractual cooperation.
We only store your personal data until the purpose for which it was given has been fulfilled, or for as long as required by law.
This site uses, for security reasons and to protect the transmission of confidential content, such as orders or requests that you send to us as a site operator, an SSL or. TLS encryption. You can recognize an encrypted connection in the address line of the browser "https: //" and the lock symbol in your browser line. SSL or TLS encryption enables, the data you submit to us cannot be read by third parties.
The data subject has the right to request the controller to provide him or her with an explanation of whether any personal data are being processed in relation to him or her. When the data of this individual are processed, the controller is obliged to provide the individual with access to personal data and inform the individual about the purpose of personal data processing, the types of data concerned, users to whom the data are or will be disclosed, the envisaged retention period or criteria. on the basis of which the period of retention of personal data is determined, on the individual's right to request correction, deletion or restriction of the processing or objection to such processing. He must also inform the individual that he has the right to appeal to the supervisory authority and all other available information on the source of the collection of his personal data when they are not collected from the individual.
The data subject has the right at any time to request that the controller, without undue delay, correct inaccurate data concerning him or request the completion of incomplete data, including the submission of a supplementary statement.
That right of the data subject shall not apply where the processing of personal data is necessary in order to guarantee the right to freedom of expression and information, to fulfil a legal obligation to process under European Union or national law or to perform public tasks in public. interest or when it comes to the exercise of public authority conferred on the controller, for reasons of public interest in the field of public health and for the purpose of archiving in the public interest, scientific research, historical research or statistical purposes or when asserting, implementing or defending legal claims .
The data subject shall have the right to receive personal data concerning him which have been transmitted to the controller and the right to transfer such data to another controller without being transferred by the controller to whom the personal data have been transferred. provided, hindering this.
The data subject has the right to object at any time to the processing of personal data concerning him or her.
TEHNI S.A. - PANTELOS decide on your request without undue delay and at the latest within one month of receiving the request. In the case of a more complex matter or in the case of a larger number of requests, this period may be extended by a maximum of two additional months, of which we shall notify you no later than one month after receipt of the request, together with reasons for delay and legal advice.
TEHNI S.A. - PANTELOS it may decide on your application in the form of a written notice, which must include an explanation of the reasons for the manager's decision and information on the right to appeal in accordance with national rules.
TEHNI S.A. - PANTELOS bears the burden of proving the accuracy and up-to-datedness of personal data and the lawfulness of the processing of personal data, provided that the personal data have not been obtained solely on the basis of the data subject's data.
If your request is incomplete or incomprehensible, it should not be rejected for that reason alone. TEHNI S.A. - PANTELOS it must, within five working days, request that the deficiencies be rectified and state that the applicant complete the request within three working days.
If the deficiencies are remedied within the time limit, the application shall be deemed to have been filed when the request to remedy the deficiencies was made. If the deficiencies are not remedied within this period, TEHNI S.A. - PANTELOS reject the request by decision. An appeal is allowed against this decision.
When we reject your request, you can contact TEHNI S.A. - PANTELOS file a reasoned appeal within 15 days of receipt of the notification or decision of TEHNI S.A. - PANTELOS
TEHNI S.A. - PANTELOS from the receipt of your request to the grant or in case of rejection of your request until the final conclusion, it may not destroy, change or dispose of the requested personal data regardless of the expiration of prescribed or internally determined retention periods of personal data.
If you believe that your rights to personal data protection have been violated in any way, or that we have not decided on your request within a certain period of time, you can complain to the supervisory body: Information Commissioner.
The privacy policy may change. Changes will be published in the same way as this policy is published.
Date: 1st January 2021