The Website https://newsite.korinthos.gr/εφεξήςthe “Website”, is managed by the Municipality of Corinth. Personal data, i.e. all information that identifies you as a person or can identify you directly or indirectly, which you provide voluntarily and obligatorily when you enter the website or register for various applications related to services provided by the Municipality and any additional personal data requested at later stages, are collected, processed, transferred, stored and used by us, in the capacity of controller, as well as by service providers.
Our Municipality takes the protection of your privacy and personal data very seriously and has taken all necessary measures in order to safeguard the security and confidentiality of the information concerning the visitors/users of its website.
Please read carefully this Privacy and Personal Data Protection Policy in order to be informed about the information collected from you when you visit the website and when you use its online services, the information posted on it, its use, as well as your rights. These terms may be improved, updated or otherwise modified in whole or in part at any time.
This Policy is intended to inform data subjects in accordance with Articles 13-14 of the General Data Protection Regulation of the EU 679/2016. If you have any questions regarding this Policy and in general the way the Municipality collects and processes your personal data, please contact us at mail@korinthos.gr.
WHAT INFORMATION OUR WEBSITE COLLECTS
1) Information automatically collected during your visit and interaction with our Website
Our Website has informative content about the services provided by our Municipality and browsing it alone does not require the visitor to provide/enter personal data. However, by merely visiting and browsing the Website, certain information may be automatically collected, which may identify you directly or indirectly, such as:
- the Internet Protocol (IP) address of your computer,
- the type of browser and operating system,
- the websites you visited immediately before and after you visited the page,
- the speed of the connection and information about the software programs installed on the computer,
- basic connection information to the server; and
- information collected through HTML cookies, Flash cookies, web beacons and other similar technologies (see below under Cookies).
With regard to the information automatically collected from your browsing our website, please refrain from visiting it if you do not wish the collection and processing of this information.
2) Information you provide us directly:
– Contact us
In case the visitor of the Website wishes to contact the Municipality through the Website, he/she is invited to fill in and submit the corresponding contact form, upon submission of which the Website collects and processes, with your consent, the following personal data:
- Full name
- Email (email address)
- Message subject category
- Message (free text of the person concerned)
– Online Applications (e-Services of the Municipality of Corinth)
When you make online applications for digital certificates via our Website (relevant field: e-Services) you will be asked to provide personal information necessary for the examination and processing of your application. You will be logged into the e-Services application to identify yourself by entering your taxisnet codes (username, password).
The Municipality of Corinth processes the personal data you enter in the e-Services and the documents you attach exclusively for the purpose of examining and processing your application by the competent department of the Municipality. The legal basis of the processing is the compliance of the Municipality with its legal obligation (Article 6(1)(c) GDPR), as it results from the provisions of the applicable legislation. To the extent that you enter special categories of data (such as health data) to substantiate your request, the legal basis is the exception in Article 9(9)(a) of the GDPR. 2(b) of Regulation 2016/679/EU, i.e. the processing is necessary for the performance of the obligations of the Municipality of Corinth under social protection law.
Only the employees of the Municipality responsible for processing your application have access to your personal data. The Municipality has concluded a confidentiality agreement for the protection of your personal data with the company developing and supporting the application.
Your data are kept for the time necessary to fulfil the purpose of processing, without prejudice to the applicable legislation (P.D. 480/85 etc.) and all necessary protection measures are taken. At the end of the retention period, your data will be securely destroyed or anonymised.
Before submitting the request, you must indicate that you have been informed through this policy about the processing of your personal data by selecting the relevant option.
Through our website it is possible to connect to gov.gr services and other government websites and useful links.
– Submit a request via Novoville
In order to log in/register in the Novoville application and to register a request regarding a matter of public interest (damage etc.) you will be asked for personal information, i.e. name, surname, email and your personal password, in order to enter the application.
The Municipality of Korinthia processes the personal data you enter in the Novoville application and the attachments exclusively for the purpose of examining and processing your application by the competent department of the Municipality. The legal basis of the processing is the compliance of the Municipality with its legal obligation (Article 6(1)(c) GDPR), as it results from the provisions of the applicable legislation.
Only the employees of the Municipality responsible for processing your application have access to your personal data. The Municipality has concluded a confidentiality agreement for the protection of your personal data with the company developing and supporting the application.
Your data are kept for the time necessary for the fulfilment of the purpose of processing, without prejudice to the applicable legislation (P.D. 480/85 etc.) and all necessary protection measures are taken. At the end of the retention period, your data will be securely destroyed or anonymised.
Before submitting the request, you must indicate that you have been informed through this policy about the processing of your personal data by selecting the relevant option.
3) We may collect personal information from various sources, including:
-through the Website
-via social media (e.g. Facebook).
FOR STATISTICAL ANALYSIS:
In order to learn more about how our Website is used by our visitors, we aggregate and analyse the data we collect. We may use this information, for example, to monitor and analyse the use of the Site, to enhance its functionality and to better tailor its content and design to the needs of our visitors.
ADOLESCENTS
When collecting information directly from you, we take reasonable care to determine which of the personal information collected relates to minors. In any case, if we determine that we have collected any personal information from a minor under the age of 15 without verifiable parental consent, in accordance with the provisions of Article 21 of Law 4624/2019, we will delete the information from our database as soon as possible, by informing the parent or guardian of the minor. If you believe that we may have collected information from a minor under the age of 15, please contact us immediately.
FOR WHAT PURPOSES WE USE THE INFORMATION WE COLLECT
We collect, process, use and store your personal data:
– For the verification of your information by us when you log in to our websites.
– For the smooth and effective operation of our Municipality, our compliance with our legal obligations and the exercise of our responsibilities.
– For the provision of our services to you.
– For the examination and processing of requests from the residents or the submission of complaints or grievances, as well as for the issuance of any kind of certificate or attestation issued by the services of our Municipality.
– For the submission by users of electronic applications for the issuance of digital certificates through a relevant application on the website of the Municipality of Corinth, the examination and processing of these applications.
– For the submission by users of electronic requests regarding an issue of public interest (e.g. damage) etc. through a relevant application on the Municipality’s website.
– For the communication of the Municipality with the citizen to inform him/her regarding his/her affairs or other actions of the Municipality and for the participation of citizens in actions and events of the Municipality.
– To assess and obtain data for administrative purposes and to operate and improve the quality and effectiveness of our services, our websites, Programs and Activities related to our operations.
-To represent and defend the interests of the Municipality before judicial and other authorities.
– To keep records when required by law.
– To comply with applicable law.
– To support IT purposes and the operation of the Website.
– To inform citizens about the actions and events of the Municipality.
– To support the procedures of the Municipality.
LEGAL BASES FOR DATA PROCESSING
Public bodies, such as in this case the Municipality of Corinth, according to Article 5 of Law 4624/2019, are allowed to process personal data when the processing is necessary for the performance of a task carried out in the public interest or in the exercise of public authority entrusted to them (Article 6(1)(e) of the General Data Protection Regulation).
Processing is also permitted if it is necessary for the performance of a contract to which the data subject is a party or in order to take measures at the request of the data subject prior to the conclusion of the contract (Article 6(1)(b) GDPR).
Processing is permitted if it is necessary for the compliance of the Municipality with its legal obligation (Article 6(1)(c) of the GDPR).
For the category of special categories of personal data, when their processing is necessary for the provision of social welfare services through the municipal structures and social services of the Municipality and the management of health and social systems and services under the legislation, the legal basis is Art.9 par. 2 f. b GDPR, i.e. the processing is necessary in the context of the obligations of the municipality in the field of social protection law.
Special categories of data may also be processed for the establishment, exercise or support of legal claims of the Municipality (Article 9(2)(f) GDPR).
When it is deemed necessary to obtain the data subject’s consent for the processing of his/her personal data (in accordance with the conditions of Article 7 of the GDPR), the legal basis is Article 6(1)(a) GDPR or, if it concerns special categories of data, Article 9(1)(a) GDPR or Article 9(1)(b) GDPR. 2(a). Consent may be withdrawn at any time and in an easy manner, without affecting the lawfulness of the processing of personal data up to that point.
USE AND EXCHANGE OF INFORMATION
- Our Municipality respects your right to have your privacy and information protected and therefore uses this information for the aforementioned purposes. For this reason, we do not share, transmit or make your information accessible to third parties. We also do not transfer this information outside the European Union.
We may make information about you available to other companies, applications or persons in the circumstances set out below:
- We may share aggregate information or information that does not directly identify you with third parties so that we can develop the content and services on our Site. Please note that we do not share your contact information in any way with third parties.
- We may use or may in the future use third parties to provide services related to our Website, such as database management, maintenance services, analytics, data processing and the distribution of email and text messages. These third parties will only have access to information about you to perform the above tasks on our behalf and with express contractual commitments to protect your privacy and personal data.
- We may disclose information about you to investigate, prevent or take action regarding illegal activities, if we suspect illegal conduct or criminal acts against the rights and legitimate interests of any person or entity, in the event of a violation of our Website Terms of Use or if required by law, and in other cases where we believe in good faith that disclosure of the information is necessary.
- We may disclose information about you to respond to subpoenas, search warrants, court proceedings, court orders, legal process or other law enforcement actions by any competent authority, including the Data Protection Authority and the Data Protection Supervisory Authorities of other European Union Member States, and to assert and defend our legal rights or to defend against claims against us.
- We may disclose information concerning you to other local authorities, Committees, Ministries, Public Services, Public and Judicial Authorities, Audit Mechanisms.
Please note that third parties may independently collect data about you, including your IP address and information about the websites you visit and the links you click on, through cookies, clicks on links or other means during your visit. For more information, see our Cookies Policy in detail.
Where you provide us with personal data of third parties, you warrant that you have informed them of the purposes and manner in which we must process their personal data.
TIME FOR KEEPING THE INFORMATION
The Municipality will retain the personal data collected through its Website for the time strictly necessary to fulfill the above processing purposes or to comply with applicable laws or restriction agreements or terms of this Policy. We will retain the information collected automatically for up to 12 months, after which it may be stored in an unidentifiable summary form. Emails containing personal data will not be retained for longer than necessary to process the case, unless they relate to critical official matters of the City, in which case they will be retained for a longer period of time, subject also to applicable law. If you withdraw your consent to the collection and processing of your personal data, we will delete your data from our electronic and physical records, unless the retention of such data becomes necessary to comply with a legal obligation or to exercise, establish or defend our rights or legitimate interests before judicial authorities.
Where processing is required as an obligation by provisions of the applicable legal framework, your personal data will be stored for as long as the relevant provisions require.
Where processing is carried out on the basis of a contract, your personal data is stored for as long as necessary for the performance of the contract and for the establishment, exercise, and/or support of legal claims based on the contract.
Where processing is carried out to meet a request, we will process your data for as long as it takes to meet your request.
When the processing is carried out to inform you about your affairs, but also about the actions of our Municipality, the data will be kept until you request their deletion and the cessation of your information.
In particular, according to the provisions of the Decree 480/1985 “Clearing of the records of the local authorities and the institutions of public bodies and their associations”, the Municipality has the obligation to maintain its records according to the type of document for a certain period of time and to carry out a periodic clearing of its records within the first quarter of the year. The data shall be destroyed in the lawful manner as specified in the provisions of the aforementioned legislation and other applicable legislation.
SECURITY OF INFORMATION
The security of your personal data is our absolute commitment. In order to achieve this, we apply all technical and organisational measures that are up-to-date and appropriate for the purposes of processing, to reasonably protect your personal data against unauthorised and unlawful access and processing or accidental loss, destruction, damage, theft, use or disclosure, the responsiveness and adequacy of which we check regularly.
We make every effort to ensure as fully as possible the safe use of our website. We recommend that you do not include any confidential information at all when using email. For your protection, our email responses to you will not include any confidential information.
Third-party social networks that provide interactive activities, plugins or social networking features (e.g., to allow you to log in to Facebook or Google to find friends to add as links or to “Like” a page) may use cookies or other methods (e.g., web beacons) to collect information about your use of our website and applications. The use of this information by third parties is subject to the privacy policy available on the social network site, which we encourage you to review carefully. Such third parties may use these cookies or other tracking methods for their own purposes, correlating information about your use of our site with any personal information you may have.
YOUR RIGHTS
You can exercise the following rights, where applicable:
- the right to information, exceptions to the right to information of the data subject are provided for in Articles 31 and 32 of Law No. 4624/2019 and Articles 13 par. 4 and 14 par. 5 GDPR.
- the right of access, to find out which data we process, for what purpose and to whom we process it, exceptions to the right of access are provided for in Articles 29, 30 and 33 of Law No. 4624/2019,
- the right of rectification, to correct any deficiencies or inaccuracies in your data,
- the right to erasure (right to be forgotten), to have your personal data deleted from our records, but where processing is no longer necessary or the retention of your data is not required in order to comply with our legal obligations. Pursuant to Article 17(3)(b) of the GDPR and Article 34 of Law 4624/2019, this right does not apply to the extent that processing is necessary for compliance with a legal obligation that requires processing under Union law or the law of a Member State to which the controller is subject or for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
- the right to restrict processing, in case the accuracy of your data is questioned
- the right to portability, to receive your data in a structured and commonly used format. This right only applies where the processing of personal data is based on consent or a contract. It cannot be exercised against data controllers who process personal data in the exercise of their public tasks, i.e. public sector bodies and other legal entities to which the exercise of public authority has been delegated, such as our Municipality.
- the right to object if you do not want your data to be used. The right to object, in accordance with Article 21(1) of the GDPR, does not apply in relation to a public body if there is an overriding public interest in the processing which overrides the interests of the data subject or a provision of law requiring the processing to be carried out.
If the processing of your data is based on your consent, you have the right to freely withdraw it at any time you wish in order to stop further processing of your personal data. The lawfulness of the processing based on consent prior to its withdrawal is not affected.
Your rights are subject to the conditions and limitations of the applicable legislation (Articles 12 – 22 of the GDPR and the provisions of Law no. 4624/2019, indicatively Articles 29 – 35).
In order to exercise your rights, please address your request in writing to the Municipality of Korinthia at the following postal address: 32 Koliatsou 32, 201 31 Corinth or by telephone by calling the call centre: 27413-61000 or by sending an e-mail to the e-mail address: mail@korinthos.gr or by contacting the Data Protection Officer at the e-mail address dpo@korinthos.gr.
The City will make every effort to respond to any such request within thirty (30) days of receipt. However, in the event that due to the complexity of your request or the volume of information involved, it is not possible to meet your request within thirty days, we commit to inform you in writing within the above time period of the reasons for the delay and to make every effort to meet your request as soon as possible and in any event within two (2) additional months.
The Municipality reserves the right not to meet your request if it is considered manifestly unfounded or excessive, informing you of the reasons for not meeting it.
In any case, you have the right to lodge a complaint with the Data Protection Authority(www.dpa.gr),
PROCESSING MANAGER
Municipality of Corinth, 32 Koliatsou Street, 201 31, Corinth, telephone: 27413-61000, e-mail: mail@korinthos.gr
DATA PROTECTION OFFICER (DPO)
Taseis Management Ltd, 72 Aeolou Street, 10559, Athens, Greece, telephone: 210-3310240, 6944964225, e-mail: dpo@korinthos.gr
CHANGES IN THE PRESENT POLICY
The Municipality of Korinthia reserves the right to modify this Policy, always in accordance with the applicable legal rules on privacy and personal data protection. Visitors to our Website should periodically read the Privacy and Personal Data Protection Policy, in order to be informed of any change that takes place, while the Municipality undertakes to make the necessary updates to its visitors and users by any appropriate means, in compliance with the conditions set by the General Data Protection Regulation of the EU 679/2016.
