Privacy Policy

Update of the Greek National Tourism Organisation for Personal Data Protection according to the Regulation (EU) 2016/679 and the pertinent Greek legislation

As of 25.5.2018 the General Regulation for Data Protection (EU) 2016/679 is applied, known as GDPR, by which the framework of protection of the subjects of data is reinforced, as regards the processing of data of personal character in the European Union.

Greek National Tourism Organisation, with respect to the personal data complies with GDPR within the scope of the activity and its goal and takes the provided technical and organisational measures for the effective protection of personal data, as provided in the GDPR and further in the Greek legislation.

Head of Processing – Contact data

Greek National Tourism Organisation is responsible of processing with the following contact data:

Address of registered offices: 7, An. Tsoha street, Athens | TK. 11521

Telephone: 210 8707000

E – mail: dpo@gnto.gr

Which personal data are collected and how?

The personal data that Greek National Tourism Organisation collects and processes are only those that are considered necessary for any specific and clearly defined goal and the specific legal basis.

Within this scope, the processing that takes place regards personal data that you provide in the Greek National Tourism Organisation in real interaction time, when you use our services, our official web sites, for instance a request, or you are a worker such as:

Surname and Name

E-mail address

Nationality

In any of the cases the processing is founded in the receipt of consent, Greek National Tourism Organisation abides by the provided by Law proceedings for the receipt hereof.

For which purposes is the processing effected and which is its legal basis?

The personal data are collected according to GDPR and the legislation in force, either by the commencement of your relation with the Organisation or after that and they constitute an object of processing by a legal basis:

Your consent, when required

The execution of an agreement by and between us

The fulfillment of our legal obligations

The safeguarding of vital interest

The fulfillment of duty for the public interest

The safeguarding of our legal interest or of a third party

Greek National Tourism Organisation can process your personal data, for the following purposes per legal basis:

1. With your consent

Transfer of personal data to third parties

Dispatching of updates

2. For the fulfillment of the contractual obligation in the event of entering into an agreement with the Greek National Tourism Organisation or according to the pre-contractual process

For the communication upon the pre-contractual process or upon the execution of the agreement

3. For the fulfillment of our legal obligations

Update of data of staff in insurance entities, the State Audit Council etc.

For the fulfillment of our obligations according to the legislation into force against public authorities and entities (Supervisory, Independent, Police, Judicial Authorities).

4. For the safeguarding of your vital interest or of a third party

In the event that your life or the life of a third party is in danger

5. For the fulfillment of duty for the public interest

The provision of First Degree and Second-Degree health care

6. For reasons of our legal interest, as:

For the development and the improvement of our provided services through your activities and your interests.

For the handling of your complaints.

For the protection and the safety of IT systems.

Who are the receivers of my personal data?

The staff of the Organisation has access to your personal data within the scope of execution of the duties assigned by the Greek National Tourism Organisation as responsible for processing.

Greek National Tourism Organisation is obliged or entitled to communicate your personal data to third parties such as:

Public entities

Independent authorities under the provision of the compliance in any event of the classified and the confidentiality and secrecy duty.

How long are my data preserved?

Greek National Tourism Organisation keeps your personal data only for the period required for the purposes of processing and according to the legal and regulatory framework in force.

What are the cookies and why does the Greek National Tourism Organisation select them?

In order to ensure that our website operates properly, sometimes it is possible to store a small part of data that is known as cookie in your computer or your mobile device during the visit in our website. A cookie is a text file that is stored by a web server to a computer or a mobile device. The content of a cookie can be retrieved or read only by the server that creates the cookie. The text in a cookie often consists of identifiers, website names and certain numbers and characters. The cookies are unique for the browser or the mobile applications that you use and they allow to websites to store data as your preferences. Read our cookie policy here.

How my data are protected?

In the Greek National Tourism Organisation we work on a daily basis in order to ensure that the personal data that we receive are processed lawfully, fairly and transparently.

Data are collected only for specific and legal purposes and are limited to what is necessary.

They are accurate and kept updated.

They are maintained only for the necessary period according to the legal framework.

What are my rights?

Greek National Tourism Organisation processes data automatically and does not create profiling for natural persons.

The subject of the data has the following rights:

The right to access

At any time you may request information about your personal data that we maintain and have access to them.

The right to data correction

You may request the correction of inaccurate or incomplete data.

The "right to oblivion"

If we are not obliged by law to maintain your personal data you may request their deletion.

The right to data transferability

You may request the transfer of your personal data to another public or private entity.

The right to objection and limitation of processing

If you disagree with the processing of your personal data you may request restriction or termination of the processing.

Revocation of consent

You may withdraw your consent at any time without affecting the lawfulness of processing based on consent before its withdrawal.

Head of Data Protection

For any questions regarding your personal data you may contact the Data Protection Officer at dpo@gnto.gr or at 7 An. Tsoha street, Athens, 11521 Greece.

Personal Data Protection Authority

You have the right to submit a complaint to the Personal Data Protection Authority (www.dpa.gr) if you believe that your rights regarding personal data protection have been violated.