GDPR Compliance Policy
STATEMENT FOR PROTECTION OF PERSONAL DATA
Introduction:
Our company with the trade name “V + O ADVERTISING CONSULTING S.A” (hereafter referred as the “Company”), under its capacity of Data Controller, would hereby like to inform you that it will proceed with the lawful collection and processing of your personal data according to the provisions of EU General Data Protection Regulation (GDPR) 2016/679, that enters into force on May 25th, 2018.
More specifically:
Which personal data do we process?
Our company collects and processes the following personal data of yours: your full name and other business contact information (job position, professional title, postal address, landline and mobile telephone number, e-mail address).
Why do we process your data?
The purpose of the collection and further processing of the abovementioned personal data is exclusively the fulfillment of our contractual obligations towards you and/or your Employer, or when the processing is deemed necessary for the preliminary assessment of a new contract /cooperation and always under strict professional terms.
If we receive your explicit consent, we may use your contact details for sending informational and other promotional material, according to your industry sector, invitations for events and conferences, newsletters from our Company and/or other companies of the V+O Group. Please be advised that you can revoke your consent at any time by sending an e-mail to: dpo@vando.gr. In that case, our company will immediately cease any such kind of communication.
With whom do we share your data?
Our Company may share your personal data with other companies of our Group for the purposes listed above. Furthermore, and to the extent that this is deemed necessary under our contractual relationship, our Company may use storage and filing companies, IT support services, lawyers, and consultants. In this case, the Company is committed that its processors are under its control and act only on its behalf, are authorized in writing and specifically for that purpose and are fully bound by confidentiality and other obligations stemming from applicable legislation.
How does the Company protect your data?
Our Company guarantees that it has taken all appropriate organizational and technical measures in accordance with relevant technology standards and applicable laws and regulations, in order to ensure that the processing of your personal data, either by itself or by third parties on the Company’s behalf, is lawful, appropriate, and ensures an adequate level of security, in order to prevent any unauthorized or accidental access, processing, deletion, alteration or other use of data.
How long do we keep your data?
The personal data processed by the Company is compulsorily retained throughout the duration dictated by the purpose of processing and/or provided by law. Upon expiration of the said period of time, your data is retained in accordance with applicable legislation on retention periods after the termination of a professional relationship or for as long as this is required for the defense of the Company’s legal claims before a Court or other competent Authority.
Which are your rights?
In any case, please be advised that pursuant to applicable legislation, you have and you may exercise the following rights: (a) the right to access your personal data, as well as the information relating to the processing, (b) the right to rectify inaccurate or incomplete data of yours, (c) the right of erasure ("the right to be forgotten") and (d) the right to restrict the processing of your data in cases expressly provided by law, (e) the right to portability of your data in a structured, commonly used and machine readable format (e.g. CD-ROM), (f) the right to have your data transferred to another data controller, and (g) the right to object to the processing of your personal data in cases expressly provided by law. The exercise of each of the above rights can take place by submitting the relevant written request to our Company, to which we shall respond within one (1) month following its receipt. Please be advised that the said period may be extended for two (2) additional months depending on the complexity of your request and the overall volume of requests received.
Furthermore, our Company undertakes to notify you, without undue delay, for any breach relating to your personal data, which is likely to result in a high risk to your rights and freedoms, unless this notification falls within one of exceptions expressly provided by law. In any case, if you find out a breach to the protection of your personal data, you have the right to lodge a complaint with the Hellenic Data Protection Authority, as well as to initiate court proceedings.
Who can I contact for any questions / issues?
For any queries, clarifications or requests regarding the protection of your personal data by our Company, you may contact V+O Group CFO George Gerardis, using the following contact details:
T: +30 210 7249000
M: +30 6944869843
Email: dpo@vando.gr