Last updated: 7/06/2018
1. Privacy and data protection
Data is a requirement, and must be collected and processed only when it’s absolutely necessary. We hate spam as much as you do! We will never sell, rent or distribute in any other way or disclose your personal information.
2. Relevant legislation
This site is designed to comply with the following national and international legislation on data protection and privacy of users:
- EU Data Protection Directive 1995 (DPD)
- General Data Protection Regulation 2018 (GDPR)
- United Kingdom Data Protection Act 1988 (DPA)
3. Personal information collected by this site and why we collect it
This site collects and uses personal information for the following reasons:
3.1 Website Traffic Analysis
Like most sites, this one also uses Google Analytics (GA) to track user activity. We use this data to determine the number of people who use our site to better understand how they find and use our web pages and to see their course on the site.
Although GA records data such as your geographic location, your device, your web browser, and your operating system, none of this information makes you personally familiar to us. GA also records your computer’s IP address, which could be used to identify you, but Google does not provide access to it. We believe that Google is a third data processor.
Disabling cookies on your browser will prevent GA from tracking any part of your visit to pages within that site.
3.2 Communication forms and Email links
If you choose to contact us using the “Contact Form” contact form or an email link like this, none of the data you provide will be saved from this site or will be transferred or processed by any third party data processor as defined in section 6.0. Instead, these data will be sent to you via an SMTP protocol (Simple Mail Transfer Protocol). Our SMTP servers are protected by a TLS security protocol (sometimes known as SSL), meaning that email is encrypted using 256-bit SHA-2 encryption before being sent over the Internet. The content of the email is decrypted by our local computers and devices. In addition, our e-mail platform is hosted by Google using G Suite, which is fully GDPR compliant.
4. How we store your personal information
As described in detail in Section 3 above, some personal information will be stored in the database of this site. This data is stored in pseudonymous form, that is, the data requires additional processing using a separately stored ‘key’ before it can be used to identify a person.
Pseudonymization is a GDPR requirement that we have implemented on this site.
5. About the server of this site
All web traffic (file transfer) between this site and your browser is encrypted and transferred through the HTTPS protocol.
6. Our third-party data processors
We use a number of third parties to process personal data for us. This organization has been carefully selected and complies with the legislation set out in Section 2. This organization is headquartered in the United States and is in agreement with the transnational agreement known as EU-U.S Privacy Shield.
7. Data breaches
We will report any unlawful violation of the database of this third party data processing site or database to anyone and to all relevant stakeholders as well as authorities within 72 hours of the violation if it is obvious that the personal data that is stored in recognizable form, have been stolen.
8. Data controller
The webmaster of this site is: Tsegkos Vaios, whose headquarters are: Veria, Imathia, 59131 Greece – ID Designs