Whenever you use our website www.anakem.gr you are bound by the applicable Privacy Policy; therefore, you should carefully read this text whenever you use this site and make sure you accept it. If you don’t agree with these terms you may not access or use our website.
We pay special attention and we respect the privacy and confidentiality of your personal data. That is why we have invested time and resources to fully comply with the applicable national, European and international legal framework, and the European Union’s General Data Protection Regulation 679/2016, which came into effect on 25 May 2018.
If you have any questions or concerns about the processing of your personal data, you can contact us by email at info@anakem.gr or by phone +30 2314405300, 2310595085.
- Introduction
- Protection of Privacy. This Privacy Policy explains how and why the company under the name “ANAKIKLOSI A.E.K.K. KENTRIKIS MAKEDONIAS ANONIMI ETERIA” COLLECTIVE SYSTEMS FOR THE ALTERNATIVE MANAGEMENT of Excavation, Construction and Demolition Wastes and the distinctive title “ΑΝΑΚΕΜ”, collects, processes, discloses and protects the incoming information when you visit our website, the reasons it keeps the data, the type of data it processes, the period of time it stores the data and the appropriate technical and organizational protection measures it adopts to protect them.
- Implementation of the Privacy Policy. The Privacy Policy applies to all natural persons from whom or for the benefit of whom we receive information.
- Website that is not directed to minors. Our website is not directed to minors. If the personal data of persons under the age of 18 are processed without the explicit consent of their parents or legal guardian, we reserve the right to delete the data obtained.
- Data controller.
The Personal Data controller is the company under the name “ANAKIKLOSI A.E.K.K. KENTRIKIS MAKEDONIAS ANONIMI ETERIA” COLLECTIVE SYSTEMS FOR THE ALTERNATIVE MANAGEMENT of Excavation, Construction and Demolition Wastes and the distinctive title “ΑΝΑΚΕΜ”, based in Thessaloniki, 1, G. Frantzi str. (3rd floor), P.C. 54655, tel. +30 2314405300, 2310595085, email: info@anakem.gr, website: www.anakem.gr, V.A.T. ID: 800377801, (hereinafter: “Company”).
The Company adheres to the following fundamental principles of personal data protection, the observance of which is required by the GDPR:
- Lawfulness, fairness and transparency – Personal data are processed lawfully, fairly and in a transparent manner in relation to the data subject.
- Purpose limitation – Personal data are collected for specified, explicit and legitimate purposes and not further processed in a manner that is incompatible with those purposes; further processing for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes shall, in accordance with Article 89(1), not be considered to be incompatible with the initial purposes.
- Data minimisation – Personal data are adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed.
- Accuracy – Personal data are accurate and, where necessary, kept up to date; every reasonable step must be taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay.
- Storage limitation – Personal data are kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed; personal data may be stored for longer periods insofar as the personal data will be processed solely for archiving purposes in the public interest, scientific or historical research purposes or statistical purposes in accordance with Article 89(1) subject to implementation of the appropriate technical and organisational measures required by this Regulation in order to safeguard the rights and freedoms of the data subject.
- Integrity and confidentiality – Personal data are processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.
- Accountability – The controller shall be responsible for, and be able to demonstrate compliance with the aforementioned principles.
- Processing of personal data, including the transfer to third parties, is carried out only in accordance with the legal bases of article 6 and article 9 of GDPR.
- The collection and processing of data is carried out with respect to the rights of information, access and objection of the subjects.
- Processing of personal data is confidential and is conducted by persons who are committed to confidentiality.
- Personal Data.
- Concept
- The term “personal data” means any information related to an identified or identifiable natural person. The identifiable natural person is a person whose identity can be identified directly or indirectly, in particular by reference to an identifier such as a name, address, an identification number, credit card number, bank account information, social security number or driving license number, location data, an online identifier such as an IP address or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
- Personal information does not include any information that, by itself, cannot recognize you as a particular person or entity (e.g., anonymized information) or data collected for statistical purposes.
- Concept
-
- Processing
- The subject’s personal data is processed in the following cases:
- For the preparation and execution of project contracts.
- For information about project contracts and in general the services provided by the Company.
- For the invoicing of the projects and in general the services provided.
- For the management of human resource management issues, regarding the personnel employed by the Company, regardless of employment relationship and specialty (recruitment, dismissals – resignations, payroll, evaluations, corporate communications, etc.).
- For the smooth cooperation of the Company with its partners, regardless of employment relationship.
- To manage cooperation issues with suppliers of products and services, subcontractors and other partners, through relevant contracts or additional acts.
- To respond to requests from auditing authorities and manage requirements and audits prescribed by law.
- To manage customer, partner or supplier complaints.
- To manage secondary services such as access, security, access control to the Company’s premises.
- To inform the public about the services offered by the Company, through the organization of information events, through electronic media including social media as well as through other actions of all kinds.
- To promote the Company’s public relations (corporate social responsibility actions, sponsorships, etc.)
- To organize and conduct training seminars / programs for the staff.
- To handle legal matters (through the legal service).
- To manage accounting and tax services.
- When the subject communicates with the Company directly, through its website or through advertisements posted on other websites or in the press, for a job by sending his CV.
- The personal data you may enter anywhere on our site are subject to processing and are stored in a file under the responsibility of the controller mentioned above, only for reasons relating to: (a) the development, execution, and implementation of the website, or the fulfillment of obligations arising out of any agreements entered into between you and the data controller; (b) the processing of your requests and preparations of contracts; (c) the provision, with your consent, of information regarding our services. Such a provision of information includes email messages or other equivalent electronic means (e.g. SMS), and (d) in general, the improvement of the services we provide. Your personal data are not allowed to be used by any third party, except as provided by the law and this Policy.
- The Company collects and processes information that is considered purely personal data, as well as other information that is not considered as such. Information that cannot identify you as a specific person can be used without restrictions.
- When browsing this website, the Company does not collect or process sensitive personal data, namely, data related to a user’s health, sex life, sexual orientation, genetic or biometric data, or data revealing one’s racial or ethnic origin, political opinions, religious or philosophical beliefs or membership in a trade union.
- When sending a message via the contact form, we collect the information you provide us, including your first name, your last name and your email address.
- When you fill out the evaluation form, we collect the information you submit, specifically your name.
- The IP (Internet Protocol) address is not collected. The IP address is a number that is given to your computer when using the Internet. No information is collected about your actual location.
- If not required by law, the Company will not obtain your consent before collecting your personal data from third parties. Instead, it will be deemed that you have previously given such consent to any third party from whom our platform receives such information.
- We make reasonable efforts to maintain your personal data, in accordance with the terms of this Privacy Policy and the Terms and Conditions.
- Legal bases of processing.
The legal bases of personal data processing are referred to articles 6 par. 1 and 9 of GDPR.
The Company processes personal data, especially, based on the following legal bases:
- Consent (art. 6 par. 1a GDPR)
- Perfomance of a contract (art. 6 par. 1b GDPR)
- Compliance with a legal obligation (art. 6 par. 1c GDPR)
- Protection of our vital interests (art. 6 par. 1d GDPR)
- Carrying out the obligations and exercising specific rights of the controller or of the data subject in the field of employment and social security and social protection law (art. 9 par. 2b GDPR)
- Establishment, exercise or defence of legal claims (art. 9 par. 2f GDPR)
- Categories of personal data.
- For example, the personal data collected by the Company and subject to processing include the necessary information for the preparation and processing of project contracts (e.g. name, address, VAT number, telephone, occupation, signature), the invoicing of project contracts, the hiring of an employee, cooperation with suppliers – other partners, the electronic sending of newsletters to third parties, the operation of video surveillance cameras for the protection of persons and goods, etc.
- When the user browses the website, the Company does not collect or process sensitive personal data, e.g. health data, genetic or biometric data, data revealing sex life, sexual orientation, racial or ethnic origin, political beliefs, religious or philosophical views or trade union membership.
- When the user sends a message through the contact form, the information he submits is collected, including his name and email address.
- When the user fills in the evaluation form, the information he submits is collected, specifically his name.
- Internet Protocol (IP) address is not collected. An IP address is a number given to a user’s computer when using the Internet. No information is collected about its actual location.
- The Company processes a special category of personal data and specific image data of natural persons who are about to enter its offices. Personal data is not collected or stored. Audio data or other categories of data are not processed by the video surveillance camera.
- Categories of data subjects.
- Clients
- Suppliers
- Staff
- Collaborators
- Sharing.
-
-
- The Company does not share, disclose or sell your personal data to others, except as described in this Privacy Policy and the Terms and Conditions.
- The Company may provide personal data to other persons in cases where: (a) you have provided your explicit consent by clicking on the checkbox “I accept”; (b) the disclosure is required to complete a requested service / transaction; (c) has received information from third parties (provided that you previously provided such consent to any third party from whom the controller obtains such information); (d) this is required by law, court order or at the request of any other competent governmental, judicial, police, administrative or regulatory authority, upon legal request and in accordance with the relevant laws; (e) this is necessary to protect our rights; (f) the website is used in a manner that violates the Terms and Conditions or for purposes other than those for which it was intended specifically or (g) the terms of this Privacy Policy or /and Terms of Service allow or /and require such a disclosure.
- Third party services. In order to perform, improve, promote and protect our Services, it may be necessary for us to employ the use of third party services. These third parties may access, process or store your information to perform tasks only for the purposes we’ve authorized, and we require them to provide at least the same level of protection for your information as described in this Privacy Policy. Personal data may be disclosed to third party service providers who assist in our business operations, always, however, under conditions that fully guarantee that your personal information is not illegally processed.
- Categories of recipients.
- The Company limits access to the subjects’ data only to those persons who are necessary to use them for a specific purpose.
- Recipients of the personal data that the Company processes may be the following:
- Employees or partners who may process personal data under the Company’s instructions.
- Collaborating companies within the scope of their responsibilities.
- Any competent supervisory authority.
- Any public or judicial authority, as long as this is required by law or by court order.
- Purposes.
- The personal information we process will be only used for the defined, explicit, and legitimate purposes explained to you and will not be further processed in a manner incompatible with those purposes. Moreover, we limit the collection to only those information that is appropriate, relevant and necessary for the purposes explained to you.
- The purpose of processing the image data of the subjects through the video surveillance camera is to protect the persons and material goods located in the internal and external spaces of the Company as well as to prevent the commission of illegal acts.
- Period of maintenance.
- The Company keeps the personal data and other information for as long as required by the respective processing purpose or the applicable legislation, according to the more specific information provided separately for each category of data subject.
- In particular, for the counterparties to project contracts, suppliers and partners, the retention period for personal data is 20 years, in accordance with the obligation imposed by the applicable legislation, unless legal proceedings are in progress, in which case the retention period is extended until the issuance of an irrevocable court decision.
- CVs sent to the Company are kept for a period of one year.
- We keep your personal data and other information for a period of five (5) years from the completion of each transaction through our website.
- When we no longer require your personal information, we will destroy, delete or anonymize the information without prior notice to you.
- Place of processing / Transfers.
- Personal data is processed within the European Economic Area (EEA).
- In the event that an investigation is required for the provision of services outside the E.O.X. then this is done with the express consent of the subject (article 49 par. 4 of GDPR).
- Security.
- Our website addresses the issue of protecting your anonymity and personal information very seriously. We protect your personal data and, in general, the information we receive about you, and we guarantee their confidentiality, integrity and availability using appropriate security measures, according to the most up-to-date and advanced technological methods. These measures include technical and procedural steps to protect your data from misuse, unauthorized access or disclosure, loss, alteration or destruction.
- To prevent unauthorized access and transmissions, promote data security, and encourage appropriate use of information, we and our service providers use a variety of tools (encryption technologies, passwords, physical and electronic security, procedural safeguards) to assist in the protection of your information. However, “perfect security” does not exist on the internet or through data transmissions, so we make no guarantees. Third parties may unlawfully intercept or access transmissions or private communications and you should not expect that your personal information will remain private.
- Your personal data is stored on an encrypted server, which uses security protocols (SSLs), and is accessible only by the controller, and only when necessary, eg. to manage your requests.
- For security reasons, we do not disclose all of our security measures. Please be assured that we use commercially reasonable industry standards to protect your information.
- For your own safety, you should also treat all information provided on our website as confidential and private and not disclose it to third parties. Additionally, it is your responsibility to limit access to your computer and browser.
- Cookies.
-
- We use cookies to collect information, only for the purposes listed in this policy.
- What are cookies? Cookies are pieces of information in the form of very short alphanumeric text, stored on your computer with your own approval, and they help the more efficient operation of our platform. Cookies in no way cause harm to the user’s computers or the files kept on them.
- How can you opt-out?
- Most web browsers automatically accept and collect cookies. To opt-out of our use of cookies, you can instruct your browser, by changing the relevant options, to stop accepting cookies or to prompt you before accepting a cookie from websites you visit. Depending on your web browser’s security settings, you may be able to decline all cookies. Please note that you will be unable to use certain features on the website if cookies are disabled.
- More information on how to modify your browser settings or how to block, manage or filter cookies can be found in your browser’s help file or through such sites as: www.allaboutcookies.org.
- For safe browsing on our website, we comply with the European Directive 2002/58/EC on the processing of personal data and the protection of privacy in the electronic communications sector, as amended by Directive 2009/136/EC.
- Your prior consent is necessary to use cookies. An exception to this rule will be only cookies that serve our site’s operational needs (operational cookies) and are necessary for its display and efficient operation. By accepting the Terms and Conditions of our website and this Privacy Policy it is deemed that you have consented to the use of cookies, as above.
- Consent.
- The Company can receive personal information about you from various sources or by different methods. The way of consent may vary depending on each source or method.
- We assume that by using our services and / or accessing thereto you have read the Terms and Conditions and the Privacy Policy. Moreover, by providing the information, whether personal or not, you declare it to be true and accurate and have explicitly given your consent to be disclosed and processed for the purposes stated, by clicking on the relevant checkbox “I accept”, unless you inform the controller that you explicitly no longer wish your information to be used. Your consent to this access / disclosure includes those cases where for the effective service provision, providers are likely to be established in the United States of America or other countries or regions outside the European Economic Area.
- In the event that you transmit third party personal data, you are responsible for informing that party about the use of his or her data and for obtaining his or her explicit consent that such information is given for the purposes explained above. In any case, the Privacy Policy applies to any information gathered from a third party.
- You can revoke your consent at any time by sending an email to info@anakem.gr, without prejudice to the legitimacy of the consent-based processing prior to its revocation.
- Access to personal data.
- You are entitled to receive from us a confirmation of whether or not your personal data is being processed and, if so, you have the right to access your personal data, as well as (a) the purposes of the processing; (b) the relevant categories of personal data, recipients or any types of recipients to whom personal data have been or will be disclosed; (c) where possible, the period during which personal data will be stored; (d) the existence of a right to request us to correct or delete personal data or to restrict the processing of personal data or the right to object to such processing; (e) the right to submit complaint to a supervisory authority; (f) when personal data are not collected by you, any available information about their origin; (g) the existence of automated decision-making, including profile making and important information about the philosophy followed, as well as the importance and predicted consequences of such processing for you.
- You can ask us to provide to you a copy of your processed personal data. For additional copies that may be required, a fee of fifteen (15) Euros is required.
- Any request for access to information should be addressed to the person in charge of processing your personal data at info@anakem.gr.
- We will respond within one (1) month.
- Rights of correction, deletion, limitation, portability, objection and complaint submission.
- We are committed to ensure that your personal data is kept confidential and to ensure that you exercise your rights of access, correction, deletion, restriction, portability and objection by sending an email to info@anakem.gr. If necessary, we will ask you to provide us with a photocopy of your identity card, passport or other valid documentary evidence.
- Right of correction. The user is entitled to require us without undue delay to correct inaccurate personal data. Having regard to the purposes of the processing, the user is entitled to require the completion of incomplete personal data, including among others through a supplementary statement.
- Right of deletion. The user is entitled to ask us to delete personal data without undue delay if: (a) the personal data is no longer necessary in relation to the purposes for which it was collected or otherwise processed; (b) the user has revoked the consent on which the processing is based and there is no other legal basis for the processing; (c) the user objects to the processing and there are no compelling legitimate grounds for the processing; (d) the personal data have been processed illegally; (e) data must be deleted so that the controller’s legal obligation is respected; and (f) personal data has been collected in connection with the provision of services in the information society. Requests for deletion of personal data are processed within one (1) month. In the event that personal data is disclosed, the Company, taking into account the available technology and implementation costs, shall take reasonable steps, including technical measures, to inform third parties processing such data that the platform’s user has requested the deletion of any links to such data or copies or replications of personal data. Please note that there may be latency in deleting your personal information from our servers and backup storage, and the Company may retain your personal information in order to comply with the law, protect our rights, resolve disputes or enforce our agreements.
- Right to restriction of processing. The user is entitled to obtain from us restriction of processing where one of the following applies: (a) the accuracy of the personal data is contested by the data subject, for a period enabling the controller to verify the accuracy of the personal data; (b) the processing is unlawful and the data subject opposes the erasure of the personal data and requests the restriction of their use instead; (c) the controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defence of legal claims; (d) the data subject has objected to processing pursuant to Article 21(1) GDPR pending the verification whether the legitimate grounds of the controller override those of the data subject. Where processing has been restricted, such personal data shall, with the exception of storage, only be processed with the data subject’s consent or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the Union or of a Member State. A data subject who has obtained restriction of processing shall be informed by the controller before the restriction of processing is lifted.
- Right to data portability. The user is entitled to receive the personal data concerning him or her, which he or she has provided to a controller, in a structured, commonly used and machine-readable format and has the right to transmit those data to another controller without hindrance from the controller to which the personal data have been provided, where: (a) the processing is based on consent pursuant to point (a) of Article 6(1) GDPR or point (a) of Article 9(2) GDPR or on a contract pursuant to point (b) of Article 6(1) GDPR; and (b) the processing is carried out by automated means.
- Right to object. The user is entitled to object, on grounds relating to his or her particular situation, at any time to processing of personal data concerning him or her which is based on point (e) or (f) of Article 6(1) GDPR, including profiling based on those provisions. The controller shall no longer process the personal data unless the controller demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.
- Υου have the right to lodge a complaint with a supervisory authority, in particular in the member state of your habitual residence, place of work or place of the alleged infringement if you consider that the processing of personal data relating to you infringes the General Data Protection Regulation (EU) 2016/679 (GDPR). The competent supervisory authority of Greece is the Hellenic Data Protection Authority (1-3 Kifissias str., P.C. 115 23, Athens, tel. +30 2106475600, fax +30 2106475628, email: complaints@dpa.gr).
- Disclaimer on third-party websites.
- Links to third-party websites. When you visit our site, you may be forwarded to third-party internet pages which are not under our control. These links are set up to make it easier for you to use the internet. Please be aware that the Company is not responsible for the privacy practices or content of such other sites and expressly disclaims any liability for any loss or damage that may be caused by the use of such links. The Company encourages you to be aware when you leave its site and to read the privacy statements of each and every website that collects personally identifiable information.
- Social media platforms and The Company also maintains presences on social media platforms including Facebook. Any information, communications, or materials you submit to us via a social media platform is done at your own risk without any expectation of privacy. The Company cannot control the actions of other users of these platforms or the actions of the platforms themselves. Your interactions with those features and platforms are governed by the privacy policies of the companies that provide them.
- We encourage you to be aware when you leave our site and to read carefully the privacy statements of each and every website that collects personal data.
- User obligations.
The user of the website guarantees that the provided information is correct and accurate and is committed to disclose any changes or modifications thereof. The user is the sole responsible for any loss or damage caused to the site or to any third party responsible for the site as a result of incorrect, inaccurate or incomplete information in the login fields.
- Newsletter.
- Generally, personal data is not required to be submitted to the Company online, but the Company may ask subjects to provide certain personal data in order to receive additional information about its services and events. The Company may also seek their permission for certain uses of their personal data, and subjects may either consent to or refuse such uses.
- In order for the subject to become a recipient of electronic information material (e.g. newsletters) sent by the Company, in order to be informed about matters of our services, he may provide his express consent. The subject will be able to remove itself from the relevant list of recipients at any time by following the instructions contained in each communication. If the subject decides to unsubscribe from any service or communication, the Company will try to delete his data as soon as possible, although it may require a certain amount of time and/or information before being able to process the subject’s request.
- The personal information collected is stored on password-controlled limited-access servers, and the Company uses special technologies and procedures to enhance the protection of this information against loss or misuse, as well as to protect it from unauthorized access, disclosure, modification the disaster. However, although the Company makes every effort to protect the above data, it cannot guarantee that the above technologies and procedures will never be compromised in any way.
- To this end, if any visitor/user becomes aware of any illegal, malicious, inappropriate or unfair use of personal data, which is related in any way to the use of the website, he undertakes the obligation to notify the Company immediately.
- Communications.
We use third party service providers to assist us in managing and administering communications and emails sent to us through the website. Any personal information disclosed through such communications will be governed by such third-party vendors privacy policy.
- Additional information.
When you post content on our site, this may include your personal data. You are solely responsible for the information that you: (a) post online, (b) post via our website and / or (c) share with another website where you log in from our site.
- Changes to the “Privacy Policy”.
- We reserve the right to revise or modify this “Privacy Policy”, the “Terms and Conditions” and other policies and agreements at any time and in any way.
- We will notify you of such changes by posting the revised policies our site.
- It is your responsibility to read the “Terms” and the “Privacy Policy” at regular intervals, since the Terms and Privacy Policy in force at the time you use our website are applicable.
- Final provisions.
If you have any questions, comments or complaints about our privacy practices, or if you want to update, delete, or change any personal information we hold, you can contact us by post at 1, G. Frantzi str., P.C. 54655, Thessaloniki – Greece or by email at, info@anakem.gr.
Last updated date: 23/08/2022, 10.00 a.m.
-