3.- Intellectual Property Rights Any texts, images, graphics, sound/video/animation files and their arrangement on the site are protected by the intellectual property legislation applicable in Greece. Redistribution, modification, reproduction, republication or retransmission of any information from this site using any electronic, printed or other medium is strictly prohibited. The site may contain images that are the intellectual property of third parties.
5.- Linked Sites This site may be linked to other websites which are not under the control of, and are not maintained by the Company. The Company is not responsible for the content of those sites and the link does not imply that the Company agrees with its content. The Company is providing these links to you only as a convenience and at your own risk, and the inclusion of any link to such sites does not imply endorsement by the Company of those sites, nor does it imply any partnership or cooperation whatsoever between the Company and the owners or operators of such linked sites.
Last update: February 2021
1.- Introduction: Protecting the data is of primary concern to ARITI. In order to success the above, ARITI applies all modern and appropriate for the purpose of processing technical and organizational measures, the response of which is checked at regular intervals. This Policy informs data subjects about the data that ARITI processes due to its business activity (hardcopy and online) in accordance with Regulation EU 2016/679 (hereinafter Regulation). This Policy describes how ARITI collects and uses your personal data (including personal data or personal information that our Company may collect during the use / visit of our website “www.ariti.gr”), how ARITI protects your personal data, how long ARITI processes your data and your rights.
2.- Definitions PERSONAL DATA means any information relating to an identified or identifiable natural person (‘data subject’): an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number. SPECIAL CATEGORIES OF PERSONAL DATA (sensitive data) means the data referring to racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, data concerning health or data concerning a natural person’s sex life or sexual orientation. DATA CONCERNING HEALTH means personal data related to the physical or mental health of a natural person, including the provision of health care services, which reveal information about his or her health status. PROCESSING means collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination. CONTROLLER means the natural or legal person, public authority, agency or other body which determines the purposes and means of the processing of personal data. PROCESSOR means the natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller. RECIPIENT means the natural or legal person, public authority, agency or another body, to which the personal data are disclosed. SUPERVISORY AUTHORITY means an independent public authority which is established by each Member State. In Greece is the Hellenic Data Protection Authority (HDPA). CONSENT OF THE DATA SUBJECT means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
3.- Principles relating to processing of personal data According to the Regulation, every company shall :collect the personal data lawfulness and fairness, keep only the needed data,keep data secure, use appropriate technical and organizational measures in order to ensure appropriate security of personal data, including pretection against unauthorized or unlawful processing and against accidental loss, destruction or damage and be able to demonstrate its compliance with Regulation.
6.- Rights of the data subject
The data subject has the right to obtain from ARITI confirmation as to whether or not personal data concerning him or her are being processed by this company and have access to his or her personal data. The data subject may at any time contact the Company, and in particular the Data Protection Officer (telephone number: 210-3645691 & e-mail: firstname.lastname@example.org), to exercise the rights provided for in the General Data Protection Regulation (Articles 15-22), such as access to personal data (in order to know the purposes of the processing and the recipients of the data), the verification of the content of the data, its origin, accuracy and location, the obtaining of a copy of your data, updating, modification of the data, in the cases stipulated by the law, the request for definition of the data, the request for deletion of data etc. These rights are, in principle, exercised at no cost to the underlying. In addition, if you (the data subject) have given explicit consent to the processing of your personal data for one or more specified purposes, you may withdraw your consent at any time by a simple revocation statement (contact phone number: 210-3645691, e-mail: email@example.com, address: 52, Tatoiou Avenue, 136 77 Acharnes). Finally, at any time you have the right to submit directly a complaint to the Hellenic Data Protection Authority (HDPA) (www.dpa.gr). We reserve the right, in our sole direction, to modify or update this Policy at any time. Last update: February 2021
The security and confidentiality of information and data are a high priority for the company “ARITI S.A.” (hereinafter referred to as “the Company”) To achieve the above, the Company applies all the appropriate technical and organizational measures for processing purposes, the response of which is controlled at regular intervals. This POLICY explains what cookies are and how we use them on this website, the type of cookies the Company uses each time you visit our sites, the information the Company collects using the cookies, and how this information is used. The Company may amend this Policy.
3.- What cookies do we use on our Site? At this site our Company uses only technical cookies, which are technically necessary to make the connection to the site. Otherwise, our Company uses only the necessary cookies, which are essential for the proper functioning of our Website, allowing you to browse and use their features, such as access to secure sites. These cookies do not recognize your personal identity. Without these cookies, we cannot provide effective operation of our Sites. If you do not accept these cookies, the performance and functionality of our site may be affected and your access to its content may be restricted.
5.- Rights Every data subject has the right to know and have access to his personal data held by the Company in accordance with this Policy, to verify the accuracy of the personal data provided to the Company and to update his personal information data. The data subject may at any time contact the Company and in particular the Data Protection Officer (firstname.lastname@example.org) to exercise his rights under the General Data Protection Regulation (Articles 15-22), such as, inter alia, access to his data (in order to know what his data is and why it is processed by the Company and his recipients), verification of the content of his data, his origin, accuracy and location, acquisition copy of his data, the request to supplement, update, modify his data, as required by law, a request to limit his data processing, request to delete his data, etc. These rights are in principle exercised at no cost to the individual. Finally, data subject may at any time directly inform the Personal Data Protection Authority if it deems inappropriate the Company’s use of their data (www.dpa.gr). The Company may modify and update the Cookies policy from time to time for compliance with regulatory changes or to meet its operating needs and legal obligations. We reserve the right, in our sole direction, to modify or update this Policy at any time. Last update: February 2021.
1.- Controller: ARITI SA, 52 Tatoiou Avenue, 13677, Acharnes – Attiki, Greece
Phone: +30 210 8002650
DPO: Εvaggelia Rentoumi (mail: email@example.com & phone: 210-3645691)
2.- The purpose of the processing and the legal basis:
We have placed CCTV cameras up at some of our venues to monitor specific areas for security and safety purposes of persons and property. The processing is necessary for purposes of legitimate interests that we seek as the Controller (article 6 §. 1. f GDPR).
3.- Legitimate interest
Our legitimate interest is to control the access to the building and to ensure the security of the building, the safety of our staff and visitors, as well as property and information located or stored on the premises. We collect just images caught on camera, and no voice is recorded. The CCTV system is not used for any other purpose, such as to monitor the work of employees or their attendance. The CCTV system covers only areas where we have assessed that there is an increased likelihood of committing illegal acts, like area of entry and exit points of the building, entry points inside the building, delivery, garage and outer area of the building.
4.- Recipients of the data
The images can be accessed by our security staff members and by the contracted security company MEGA GROUP SECURITY SA.
In certain circumstances we may be required to disclose CCTV images to certain bodies of authority, such as the police and emergency services.
5.- Retention period
We will keep your personal data for fifteen (15) calendar days after your visit to our premises. After that period any CCTV recorded footage is automatically deleted. In case we find an incident during this period, we isolate part of the video and keep it for another (1) month, in order to investigate the incident and initiate legal proceedings to defend our legal interests, while if the incident concerns thirdly we will keep the video for up to three (3) more months.
6.- Rights of the data subject
As a data subject, you have the right of access (in order to know the purposes of the processing and the recipients of the data), the right to restrict processing, the right to object, the right to erasure.
You have the right to exercise your rights by sending an email request to firstname.lastname@example.org or by sending letter to our postal address.
To consider a request related to your image, you should tell us about when you were within the range of our cameras and give us a picture of you, in order to locate your data and hide the data of third parties pictured. Alternatively, we give you the opportunity to come to our facilities to show you the images in which you appear. We also note that the exercise of the right of objection or deletion does not imply the immediate deletion of data or the modification of the processing. In any case, we will answer you in detail as soon as possible, within the deadlines set by the GDPR.
7.- Complaint to the Hellenic DPA
You also have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA): Kifissias 1-3, PC 115 23, Athens, Greece, Telephone: +30-210 6475600, Ε-mail: email@example.com, https://www.dpa.gr.
Last update: February 2021