The processing of your personal data is confidential and the Greek Patients’ Association takes all reasonably necessary technical and other means to ensure the confidentiality of such processing.
Access to your personal data is only available to authorised, where applicable and depending on the purpose of processing, personnel of the Greek Patients’ Association. As a visitor to this Website, you will remain anonymous. The data we store and analyse are used only for statistical purposes (indicatively, in order to continuously improve our Website and its content). The data stored in our files are the name of the Internet service provider you use, the website from which you visited our Website, the individual pages of the Association’s Website that you browsed, your IP address, and the date and duration of your browsing of the Website.
Personal data is information that can directly or indirectly lead to the identification of the person, first and last name, address, telephone number, date of birth, location data or e-mail address. We collect, process and store personal data so that we can provide services.
The data we may collect, always with your consent, are the following:
- Full name
- Your name and email address
- Contact telephone (mobile or fixed)
- Mobile or cell phone (mobile or cellular)
- Country of residence and language
- Date of birth
- Category of profession
- Results of questionnaires you have agreed to answer or information submitted to us by you when you participated in a survey
- Bank account information, debit/credit card information and payment information, if you make a donation to the Hellenic Patients’ Association through our website
- Records of contact with you either by phone, email, social media or any other means
- Information that may be automatically collected by your computer system, such as IP address, operating system, browser type and other technical information.
To give a visual overview of the details, we set out the information below in a transparent, understandable and easily accessible way in simple and understandable language. Below we present the data we collect. As there are different types of data, we have grouped them into categories to make the presentation easier to understand.
When you visit the website
Time, date, duration of visit, user’s place of origin, Internet Protocol (IP) address and other data related to the connection protocol.
This information is collected to inform us about the visit to the website. We limit the collection of data to the strictly necessary in order to achieve compliance with the data processing principle, which is to minimise the processing of data.
When you register on the website to receive our updates, i.e. when you “Subscribe”
- Email address
When you apply to register your Association with the Greek Patients’ Association through our website
- Last name
- Association name
- Email address
- Contact phone number
- Home address
When you apply to volunteer with the Greek Patients’ Association through our website
- Last name
- Date of birth
- Home address
- Contact phone number
- E-mail address
- Facebook username (optional)
When you donate through our website
Data we collect automatically
When you use our website, we also collect information automatically, some of which may be personal data. This includes information such as language settings, IP address, location, device settings, device settings, device operating system, activity data, time of use, redirect URL, status report, user information (information about browser version), operating system, browsing result (single visitor or booked visitor), browsing history, type of data viewed.
The Greek Patients’ Association may use devices (cookies) in order to carry out or facilitate the transmission of a communication between the Association and the user, via the electronic communications network. These devices (cookies), if you have chosen to accept them, based on relevant configurations of your computer, are small text files stored locally in the cache of the internet browser of the person visiting the page. The devices (cookies) make it possible to identify the internet browser, but without taking note of any document or file from your computer.
From this data, profiles for use are created under a pseudonym. Cookies or pixel tags may be used. This data is collected anonymously to be used for marketing and optimisation purposes. All visitor data is stored using an anonymous user ID and can be aggregated into a usage profile. Cookies may be used to collect and store this data, but the data remains strictly anonymous. The data will not be used to personally identify a visitor and will not be aggregated with personal data. The collection and storage of data can be rejected at any time for subsequent services.
Pixel tags, web beacons, GIFs or similar tools (all hereafter referred to as pixel tags) are used to measure the volume of use of a website and statistically increase response rates. Pixel tags allow us to count users, who visit specific secondary pages of a Website and perform our branded services and help us measure and optimise the performance of our websites.
When we delete your data
We delete the data after the purpose for which we collected it has been completed. The exact rules for deletion are described in the definitions of the concepts of periodic deletion. Different rules apply depending on the purpose of the processing. For each category mentioned in the definitions of periodic deletion we have defined different deletion periods. The data collected are also marked with the applicable erasure period. When the storage period has expired, the data is deleted accordingly.
We delete your personal data at your request or in the following cases:
In case you have subscribed to our website in order to receive notifications and updates (newsletter) by email, your personal data will be deleted if you choose to unsubscribe from the newsletter via the “unsubscribe” option.
If you are a volunteer at the Greek Patients’ Association and wish to unsubscribe, your personal data will be deleted within 90 days of your request, subject to our legal obligation to keep it on file. In the event that, despite your request to delete your data, we have a legal obligation to retain some of it, it will not be used for any other purpose. It goes without saying that we always act with the security of your personal data in mind, which we will not put at risk in any way.
The Greek Patients’ Association restricts the use of this Website to adult users only. It is our intention not to collect personal data of minors who may have access to the website, in violation of the above. However, since this cannot be ensured/verified by the Association, any minor users of the Website who transmit, through the Website, their personal data to the Association are required and expected to have obtained the consent of their parental guardians or guardians, if any. Adults are advised to exercise appropriate supervision over minors under their responsibility when they are browsing the Internet and in particular this Website.
Who we share personal data with
The confidentiality of the data of our club members is an inviolable rule for us. For this reason:
- Any registration and processing of your personal data is done strictly on behalf of the Greek Patients’ Association and your data is not transmitted or otherwise shared with third parties.
- We do not use service providers to process your personal data.
- We will never transfer your data to unauthorised third parties.
We only collect personal data when it is absolutely necessary and the purpose is lawful and has been previously identified. The legal basis for processing may vary from time to time, but it can usually be summarised as one of the following:
- compliance with obligations under a contract between us,
- where there may be legitimate interests of ours which do not conflict with your rights,
- where you have given us your free and express consent; and
- where we have a legal obligation to collect and process your personal data (e.g. obligation under tax law etc.)
The Greek Patients’ Association makes every effort and implements reasonable procedures to prevent access to and misuse of information, including personal data. We use appropriate systems and procedures to protect information that includes personal data. We also implement security procedures and technical and physical restrictions on access to and use of personal data on our servers. Only authorised personnel are permitted to access personal data in the course of their work.