Personal Data Privacy Policy
Our company attaches particular importance to the protection of the privacy and personal data of the subjects. With this (form)/(text) we inform you regarding the Personal Data Privacy Policy of the company under the name "V.KATSAROS SA ACCOUNTING AND TAX CONSULTANTS" and distinctive title «PROVLEPSI S.A.», (hereinafter referred to as the company) in order to grant your express consent to their processing in accordance with the provisions of General European Regulation 2016/679 (GDPR).
Responsible for processing of personal data is the legal entity with the company name "V.KATSAROS SA ACCOUNTING AND TAX CONSULTANTS" and distinctive title «PROVLEPSI S.A.», with headquarters in Thessaloniki, Dodekanisou street, number 7, with VAT number 099868385 and no. GEMI: 042182506000, whose representative is designated Vasilios Katsaros, with contact phone number 231 051 0361 and e-mail address personaldata@provlepsi.gr
How do we collect and which personal data do we process?
Personal data are generally collected actively, i.e. they require positive action by the data subject. More specifically, each subject (e.g. customer, website user, partner, employee) may provide us with their personal data orally (in person or by phone), in writing (by sending or delivering documents or any other printed material) or digitally by completing an existing form on the website www.provlepsi.gr contact form with empty fields, by subscribing to the "newsletter" as well as by sending a message to the relevant email address. In the above ways we actively collect and process any personal data that is necessary for the management and maintenance of the relationship between us, for the drawing up and fulfillment of a contract between the company and the data subject, the invoicing of the services provided or received and also for the execution for the purposes described below.
More specifically,
Client
Information that directly or indirectly identifies him : e.g. first name, last name, patronymic, identity card or passport number, AMKA, tax registration number, sole proprietorship name
Access codes to electronic services of public bodies: e.g. Taxisnet, EFKA etc.
Finances and assets: as well as relevant forms related to them, Bank Account number, etc.
Details regarding his family situation: e.g. single, married, number of children, etc.
Information relating to a sole proprietorship: e.g. stamps of the company, payroll statements and details of employees, etc.
Contact details: Telephone, Residential Address, Sole Proprietorship Headquarters, Fax, E-Mail Address.
Customer Contact Manager (if defined)
Contact details: e.g. Name, Address, Telephone, Email Address, etc.
Employee or Prospective Employee
Information that directly or indirectly identifies him : e.g. name, surname, patronymic, identity card or passport number, tax registration number, IKA registration number, etc.
Resume Details: e.g. professional qualifications, skills, interests, education, qualifications, professional experience, etc.
Other necessary details: Age, marital status, working hours, etc.
Furthermore, your personal data may be passively collected through cookies. Cookies are short pieces of software code, which are sent to be stored by the server of the cookie sender on the user's terminal equipment, and have as their basic function the recording and sending of stored data of the user's browser. to the sender. The use of cookies facilitates the access of the visitor/user regarding the use of specific services of the website, the areas which are useful or popular are determined and the effectiveness of the website is assessed. More specifically, from our website, personal data is collected regarding user choices regarding the presentation of the website such as the choice of language, to understand how visitors use our website and to improve its structure and content to reflect their particular needs and interests. Also, the company may use functions of Google Analytics in order to collect information through cookies from or about the computers, mobile phones or other devices that you use to access them, depending on the rights you have assigned, as well as functions of Google Adwords for display ads (e.g., remarketing, Google Display Network impression reports, Doubleclick Campaign Manager integration, and demographic and interest reports).When you enter the site, as a non-registered user, a window pops up informing you about the processing of your personal data data, its purposes and the use of cookies. Through this the user can activate or deactivate the use of categories of cookies.
Personal data of children
The company understands the importance of protecting children's personal data, especially in an online environment. Specifically, the Website is neither intentionally designed nor directed at children under 16 years of age. The Company will not collect or process personal data of children under the age of 16, unless parental consent has been given in accordance with applicable local law.
For what purposes do we process your personal data?
As already mentioned above, when a non-registered user enters the website, a window appears informing him of the processing of his personal data, its purposes and the use of cookies, while the user can refer to the full text of the Personal Data Protection Policy of the company by clicking on the relevant link. Through the website, the user can choose between the limited purposes of processing his personal data and activate or deactivate the use of categories of cookies.
Specifically, the above data may, if you consent or there is another legitimate reason, be further processed both by the company and by the other recipients as mentioned below with the aim of:
a) the drawing up and execution of the contract between us as well as any related contract with partners and third parties if this is deemed necessary as well as customer service according to their needs and having their own approval e.g. bookkeeping, employment contracts, submission of tax and other declarations before public services, banks, etc.
b) the invoicing of the services provided as well as the calculation of employee salaries and partner fees
c) communication with data subjects both in contractual and pre-contractual stages for the purposes of information or service promotion
d) carrying out checks provided for by applicable legislation
e) the prevention, prevention and suppression of illegal acts
f) the functionality of the website e.g. the identification of the user as registered or not
g) optimizing and upgrading the services provided
h) Promotion of the company through advertising
i) For any other compatible purpose, as long as the collection has as a legal basis an existing contract with the data subject, legal or vital interest thereof
How long do we keep your personal data?
Your personal data are kept only for the period of time considered necessary to serve the above purposes of the collection and are deleted in a secure manner immediately after, unless the current legislation provides for the continuation of their observance (p .eg obligation to keep records and accounting documents).
In the event that the legalizing reason for their acquisition is the contractual relationship between us, if for any reason it is terminated, we may retain your personal data in addition to the above and for as much additional time as is required until the statute of limitations for any related claims expires.
Who has access to your personal data (recipients)?
Your personal data is processed by the partners and employees of the company as well as by its external partners and other processors if this is deemed necessary for the fulfillment of the above purposes, and on the condition that the latter meet the specifications set by the GDPR for the protection of personal data, undertake to observe the necessary confidentiality, respect the rights of the data subjects provided for in the Regulation and process them exclusively for the above aims.
What are the general principles that the company follows when processing personal data?
In the context of the execution of its operations, the company ensures that the processing of personal data is based on one of the limited bases of legality of processing (Consent, Contract, Legal Obligation, Vital Interest, Public Interest) and that it is in accordance with with the rules and principles provided by Regulation (EU) 2016/679. The purposes of the processing are clear, legal and known in advance to the data subject, while the data collected is as much as is required for these purposes and is kept as long as necessary for their implementation. Adequate organizational, technical and physical security measures are taken by the company to prevent risks such as loss, unauthorized access, destruction or illegal use.
What are the rights of the Subject of personal data?
The data subject has at all times :
– Right of Access
He has the right to request confirmation as to whether or not his personal data is being processed, and if this is the case, access to it and to information regarding the purposes of processing, the categories of data and the recipients thereof. If the personal data is processed by electronic means and in a structured and commonly used format (e.g. collection through the website), the user receives a copy of the data that also concerns him in a commonly used electronic format.
– Right of Correction
He may request the correction of inaccurate or incomplete personal data
– Right to be Forgotten
He may request the deletion of his personal data by withdrawing his consent, unless the obligation to retain personal data is imposed by the current legislation or the processing thereof is based on a valid legitimizing reason other than consent.
– Right to Portability
He is entitled to request and within a reasonable time to receive personal data that he has provided to the data controller in order to transmit them to another data controller
– Right to Object and Limit Processing
He may intervene by suspending the processing of his data, pending verification of their accuracy or the legality of the processing.
– Right to file a complaint
He may file a complaint with the Personal Data Protection Authority (Personal Data Protection Authority, Offices: Kifissias 1-3, P.O. 115 23, Athens Telephone Center: +30-210 6475600, www.dpa.gr), if he considers that his rights are infringed in any way, after having previously exercised them before the data controller, without a satisfactory response within a reasonable time.
To exercise the above rights, the data subject may contact the data controller either by phone or via e – mail or in person to the company headquarters at the above details. These rights are exercised free of charge, unless they are repeated frequently and due to volume they have administrative costs for us, in which case the subject will bear the relevant costs. The data controller complies from the moment he became aware of it and within a reasonable time to the exercised right, while he is entitled to refuse to comply with it if his exercise is contrary to the law, or conflicts with another superior to the law stipulated obligation thereof. Compliance with certain rights may lead to an unjustified inability to fulfill contractual or pre-contractual obligations of the company.
Are personal data security measures taken?
The company "V.KATSAROS SA ACCOUNTING AND TAX CONSULTANTS", receives appropriate organizational (Indicative: Classification of data access, declarations of confidentiality, proper management of physical file which is kept only when necessary due to the nature of the data) technical (Indicative: Identification – Authentication of users, automatic disconnection of computers, keeping backup copies) and physical security measures ( security door, alarm, cameras, access by unauthorized persons only with supervision ) in order to ensure the security of the personal data it processes, as well as its protection from accidental or unlawful destruction, loss, alteration, prohibited dissemination or any other form of unlawful processing.