- This website belongs to the civil not-for-profit organisation with the name ‘Incubator for Media Education and Development’ (hereinafter referred to as ‘iMEdD’ or the ‘Organisation’).
- Any use of the website for profit or for misleading purposes is prohibited. Any unlawful move in the use the website will result in exclusion from access to the services provided by the website.
Β. Intellectual property issues
- All of the website’s contents and settings, save the expressly mentioned exceptions (third-party copyrights), which – indicatively – include Maps, text, graphics, images, photographs, data, designs, videos, sounds, etc. (hereinafter content), are the intellectual property of iMEdD and are protected by the relevant provisions of Greek law, European law and international conventions. iMEdD retains all intellectual property rights relating to the content and copies made on the basis thereof, subject to the exceptions cited in paragraph Β.3 below.
- Articles, applications, data, multimedia, tools or any other content on the website which bear specific markings relating to creative commons licences are excluded from these provisions. iMEdD may use any type of creative commons licence it wishes. The user is obliged to learn about the specific terms of each type of creative commons licence from the corresponding website of the links provided. iMEdD may freely, at any time, either change the type of creative commons licence granted for part of the content of the website or cease granting such a licence. In the latter case, the provisions of the foregoing paragraphs shall apply.
C. Personal Data Protection Policy
iMEdD fully recognises the importance of safeguarding your privacy and protecting your personal data in any capacity in which you communicate or collaborate with us, including in your capacity as simple website users, partners and/or legal representatives, media outlet employees (or not).
The Organisation – in other words, the civil non-profit company with the corporate name “iMEdD – Incubator for Media Education and Development – Civil Non-Profit Organisation” with headquarters at 3A Stadiou Street, PC 10562 Athens, tel. +30 211 1035100, email [email protected] – is the Controller for any processing of personal data carried out in the context of any potential interaction between you and the Organisation, including your visit to this website.
Your personal data include all information which could directly, or in combination with other information result in your being recognised or identified as a natural person.
This category includes, indicatively, your name, age, Tax Reg. No, social security number, physical and e-mail addresses, fixed and mobile phone numbers, your bank/debit/prepaid cards, evaluation data, your online search history (and any other information that allows you to be identified according to the provisions of the General Data Protection Regulation (EU) 2016/679 (GDPR) and Greek legislation in force from time to time, as well as the decisions of the Hellenic Data Protection Authority (HDPA).
1. How your personal data is collected and the purposes of processing
You can browse the website without the Organisation requesting any personal data at all, unless you are expressly notified beforehand in this regard.
In this case, the Organisation will request only the minimum required personal data in order to inform you about our actions and enable you to receive our services. These include the following data: first name, surname, email address, telephone number, postal address.
Additionally, if you are the owner/legal representative/legally authorised representative of a media outlet that you would like to be included in the iMEdD Map, you will need to submit a special application for/declaration of interest in registration of the above media outlet. To this end, you will be asked by iMEdD to provide your specific personal data so that we can cross-check the required data and vet your application. For more information regarding the form for Expression of Interest in/Application for Registration on the iMEdD media map, click here.
As a rule, personal data are received for the following purposes:
a) for the execution of a contract between us in your capacity as a user of our services and/or as our supplier;
b) in your capacity as a user of our website and/or a party interested in our activities and various programs;
c) to subscribe to the Organisation’s newsletter; and
d) to register the media outlet you represent on the iMEdD Media Map.
We retain your personal data only for such time as is required by our relationship with you, in conjunction with the relevant legislation, based on the given purposes for which it was processed, and we then anonymise or destroy said data.
2. Personal data of minors
We do not collect any personal data on minors under 15 years of age.
3. Processing of sensitive data
The Organization may, in certain cases, process special categories of personal data (“sensitive data”). Sensitive data are personal data that reveal racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data for the purpose of identifying a natural person, their health or sex life or sexual orientation. For example, sensitive data that a user has made public may be processed. Sensitive data may also be processed, on a case-by-case basis, to support, exercise, or defend legal claims. A user’s sensitive personal data may also be processed if said user has freely provided prior express and separate consent, in a specific context for a specific purpose.
4. Legality of processing
The Organisation will use your data if at least one of the following legal grounds for processing exists:
A. To sign and execute our contract and discharge our contractual obligations.
B. Provided it is deemed necessary for compliance with a legal obligation on our part to discharge our tax and accounting obligations.
C. To serve our legitimate interests and the legitimate interests of third parties in the sense of a business or commercial reason to use the information, provided that such processing does not impair your fundamental rights and freedoms, such as to provide you with effective service and support, to respond to your requests, to improve the security and ease of use of our website, to carry out our transactions, to inform you about our services and to record any complaints you may have.
D. You have legally granted us your consent, including if you granted consent in the context of submitting the Expression of Interest in/Application for Registration on the iMEdD media map.
5. Sending your personal data to third parties.
When your data are being processed, we may send some of that data to various service providers and suppliers who will operate either as processors in our name and on our behalf or as data controllers. These service providers and suppliers are bound by data processing agreements and are obliged to ensure the security of your data in accordance with the GDPR. Examples of third parties may be external legal advisors, financial and business advisors, IT and telecommunications companies, external auditors and accountants, insurance companies, advertising companies, etc.
In all events, we ensure that all persons processing your personal data on our behalf take the appropriate technical and organisational measures to ensure that your personal data are collected, transferred, stored and processed in accordance with appropriate standards and security measures and in accordance with the terms of this Policy and the applicable data protection laws in force.
6. Dispatch to third countries
Your personal data may be sent to third countries (meaning countries outside the European Economic Area) based on our contractual obligations or because you have given us your consent. Controllers or processors in third countries are obliged to comply with European data protection standards and to provide suitable safeguards in relation to the transfer of your data in accordance with Article 46 of the GDPR. In particular, such suitable guarantees usually include the signing of standard data protection clauses which have been approved by the European Commission. You are entitled to receive a copy of these clauses by contacting us in the manner indicated below.
7. How long do we retain your data?
We shall process and store your personal data for the entire duration of our relationship and for such time as is necessary to discharge our contractual and legal obligations.
We shall delete your data when it is no longer necessary for the purposes for which it was collected and processed, and following your request or your objection to the processing, provided that there are no legal grounds requiring us to retain it further, when it is not necessary for the purposes of complying with legal obligations or when you withdraw your consent (if the data was collected and processed based on such consent).
8. Automated decision-making and profiling
When carrying out our activities, we do not use any automated decision-making process. Should we do so, we will inform you in good time in advance, informing you about rationale behind the intended automated processing, the means we will use and any consequences this may have for you.
9. Use of customer data for marketing purposes.
We may process your personal data to inform you about our services and to market our services or programmes to you only if we have your express consent or if we consider that we have an overriding legitimate interest in doing so.
You are entitled to object at any time to the processing of your personal data for marketing purposes and to withdraw your consent for that purpose. The personal data we process for this purpose consists of information you provide us with and data we collect when using our services.
10. Your rights
You have the following rights in relation to your personal data held by us:
A. Right of access, namely the right to view or receive a copy of the personal data we hold about you and to check that we are processing it lawfully. To obtain a copy, you can fill out the web form on the Organisation’s website or contact us using the contact information stated below.
B. Right to rectification, namely the right to request the rectification of personal data we hold about you, which may be incomplete or inaccurate.
C. Right to erasure, namely the right to request the deletion of your personal data (also known as the “right to be forgotten”). This allows you to request that your personal data be deleted when there are no lawful grounds for our continuing to process it.
D. The right to object, namely the right to state your opposition to the processing of personal data, when we rely on our overriding legitimate interest, but, on grounds relating to your particular situation, you want to object to the processing.
E. The right to restrict processing, namely the right to request that we limit the processing of your personal data when your data is not accurate, processing is unlawful or we do not need to retain it for the purposes for which we collected it.
F. The right to portability, namely the right to receive a copy of your personal data in a structured, commonly used and machine-readable format and to transfer that data to other organisations and to request that the data be sent by us directly to other organisations you will indicate to us.
G. The right at any time to withdraw consent given to us concerning the processing of your personal data. Note that any withdrawal of consent does not affect the lawfulness of processing which was based on consent (before it was withdrawn or revoked), but this may entail the termination of certain services we provided to you.
To exercise any of your rights you can contact the Organisation at 3A Stadiou St., Athens GR-10562 or at the email address [email protected], or you can fill out the web form on the Organisation’s website.
10. Right to lodge a complaint with the Hellenic Data Protection Authority (HDPA)
The legislation grants you the right to lodge a complaint with the Hellenic Data Protection Authority if you consider that the Organisation is infringing the applicable legislation on the protection of your personal data.
11. Personal data security
Firstly, the staff who are involved in processing your personal data are trained and responsible. We also have suitable security policies and use suitable organisational and technical/operational tools such as anonymisation, pseudonymisation, data encryption, use of firewalls, establishment of authorised access levels, processing by specially authorised employees, staff training and periodic checks.
12. Cookies Policy
This Policy was published by the Organisation on […] and is subject to periodic improvement and revision. Any changes to this Policy will apply to the processing of your personal data from the date on which the revised version is published.