The protection of your personal data is of a great importance to IDCAP (hereinafter “IDCAP”, “We”). This Privacy Policy (“Policy”) aims to IDCAP collects, uses, shares, and stores personal data under the European General Data Protection Regulation (GDPR) 2016/679. This Policy applies to the site, applications, and services (collectively, “Services”).

Data Processing

Type of personal data held by IDCAP

We hold information relating to you from the information you provide us when you subscribe to our newsletter in order to receive information regarding IDCAP and services and/or through the Contact forms of the Website. Nevertheless, the information we hold comes solely from the information you personally provide us or that was transferred to us from a Controller pursuant to the terms of a Data Processing Agreement and the services we provide.

Data Records contain: (a) Basic Identity Identifiers (such as full name, address, telephone number, e-mail address, the city, country), (b) a job description, and (c) Company name.

Contact forms

There are contact forms on IDCAP Website that can be used to communicate electronically. When registering, the data entered by you into the online data entry form will be transmitted. Your consent is required for the processing of this data, and you will be referred to our Privacy Statement and asked to grant your consent when you send the form. Alternatively, contact may be initiated using an email address provided by you. In this case, the personal data provided in the email will be stored. This information will not be passed on to third parties. These data are processed subsequent to user consent pursuant to Art. 6 (1 ) GDPR. The processing of information received from the sending of an email is lawful under Art. 6 (1) GDPR. These data are only stored for the purposes of processing that communication. The data will be deleted when they are no longer needed for the purpose they were collected. 3. Accessing this website and creation of log files Information is collected every time this website is accessed or used. These data and information are stored in log files on the server. The temporary storage of data and log files is lawful pursuant to Article 6 (1) of the GDPR. The IP address is temporarily stored in the system as it is necessary to provide website access to the User’s computer. The IP address is retained while the website is being accessed. These log files are stored to ensure website functionality, optimize the content of our website, and ensure the security of our IT system.

The data will be deleted when they are no longer needed for the purpose they were collected. For data collected to provide access to the website, this will be at the end of every session. For log files, this will occur after seven days at the latest. Some data may be preserved for a longer period of time, in which case user IP addresses are deleted or removed, rendering it impossible to link the data to any individual.

Our website uses cookies

Cookies are small data files, created and stored by the Internet browser on your computer’s hard drive. Accessing a website may result in a cookie being saved on your operating system. This cookie contains a specific string of characters that allows the browser to be clearly recognized every time the website is accessed. The processing of personal data based on the use of cookies is lawful pursuant to Article 6 (1) of the GDPR.

The purpose of these technical cookies is to simplify website use and make our website more user-friendly. Cookies are stored on the User’s computer and transferred to us. That is why you, as the User, have full control over cookie implementation. You can deactivate or restrict cookies by changing your browser settings. Cookies already stored on your hard drive can be deleted at any time. This can also be done automatically. However, disabling cookies for our website may result in some functions not working correctly.

Εmail contact

There is an email contact on the Website of IDCAP [email protected] that can be used to communicate with us electronically. The processing of information received from the sending of an email is lawful under Article 6 (1) (b) of the GDPR. These data are only stored for the purposes of processing that communication. The data will be deleted when they are no longer needed for the purpose they were collected.

Your Reinforced rights:

IDCAP has taken appropriate measures to provide any information relating to your rights as well as the exercise of these rights. Under Chapter III of the GDPR you have the following rights:

Transparent information, communication and modalities for the exercise of your rights:

You have the right to be provided with your data freely and in an intelligible and easily accessible form. Following your request, IDCAP shall provide information without undue delay and in any event within one month of receipt of the request. That period may be extended by two further months where necessary, taking into account the complexity and number of requests. In that case IDCAP will inform you for the reasons of the delay.

Contact details for your requests: Email: [email protected]

Information to be provided where personal data are collected from the data subject

You have the right to know the contact details of the agent who collects your data, the purposes of the processing for which the personal data are intended, the legal basis for the processing, the recipients or categories of recipients of the personal data and where applicable the fact that the controller intends to transfer personal data to a third country.

Right of access

You have the right to request and receive a copy of your personal data undergoing processing. However, for any further copies requested, IDCAP may charge you a reasonable fee that is based on administrative costs.

Right to rectification

You have the right to ask from IDCAP without undue delay the rectification of inaccurate personal data concerning you.

Right to erasure (‘right to be forgotten’)

There is a right to ask for the erasure of your personal data and no longer processed where the personal data are no longer necessary in relation to the purposes for which they are controlled or otherwise processed.

Hence, in the cases where IDCAP retains and process personal data in accordance with the provisions of Article 6(1)(c) of the GDPR, IDCAP may object to such a request and may keep the relevant personal data that are required in order for the Council to comply with its legal obligations or the legal obligations of a Controller that cooperates with IDCAP, pursuant to the terms of a Data Processing Agreement.

Right to restriction of processing

We ensure that IDCAP has in place a procedure, where you have the right to restrict the processing of your personal data. Nonetheless, for those personal data that are necessary for compliance with a legal obligation, IDCAP may object to the restriction.

Right to data portability

You have the right to receive the personal data concerning you, which you have provided to IDCAP in a structured, commonly used and machine-readable format and you have the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided.

Right to object

You have the right to object to the processing of your personal data. However, since IDCAP lawfully processes such data under Article 6(1)(c), IDCAP will still have the right to process the data.

Automated individual decision-making, including profiling

You have the right no to be subject to a decision solely on automated processing, including profiling, which produces legal effects concerning you or similarly significantly affects.

How to exercise these rights

Any requests to exercise User rights can be directed to IDCAP through the contact details provided in this Policy.