Personal Data Privacy Policy - Beasy.gr

MAYRIDES GEORGE - BEASY APP (VAT number 141142789 - GEMI number 175542248000) Address: An. Gogou Zografou 21, 60100, Katerini, Pieria, Phone: 6983391922, contact e-mail: info@beasy.gr, hereinafter referred to as the 'Business') respects your privacy and gives absolute priority to the protection of your personal data.

The Merchant shall take the necessary technical and organisational measures to ensure that its actions are in accordance with the provisions of national and European legislation on the protection of personal data (Law 4624/2019 and Regulation 2016/679 of the European Parliament and of the Council for the protection of natural persons with regard to the processing of personal data 'General Data Protection Regulation' - hereinafter 'Regulation' as applicable, respectively).

1. Definitions

Some of the terms used in this Policy are legal terms defined by the applicable regulatory framework. Thus:

• 'Edit' means any act or series of acts carried out with or without the use of automated means on personal data. It includes, but is not limited to, the collection, recording and organisation of personal data.
• 'Personal data' or 'personal data' means any information relating to an identified or identifiable natural person. The identifiable natural person is one whose identity can be established, directly or indirectly, in particular by reference to an identifier, such as a name, an identification number, location data, an online identifier or one or more factors that are relevant to the identity of the concerned natural person's physical, physiological, genetic, psychological, economic, cultural or social identity.
• 'Consent' means any indication of will, free, specific, explicit and fully informed, by which the natural person declares that consents, by a statement or by a clear affirmative action, to the processing of their personal data.
• 'Data Controller' means the natural or legal person, or public authority, or agency or other body that determines the purposes and means of the processing of personal data.

More definitions can be found in Article 4 of the Regulation.

(https://eurlex.europa.eu/legalontent/EL/TXT/HTML/?uri=CELEX:32016R0679&from=EL)

2. Principles Governing the Collection and Processing of Your Data

The collection and processing of your personal data is governed by the following principles, as further detailed in the Regulation:

• Legitimacy, objectivity, and transparency: ΗThe Business processes the personal data of the subjects in accordance with applicable law and with transparency. In line with the principle of transparency, efforts are made to ensure that the subject is informed in a concise, understandable manner, with clear and simple wording.
• Purpose limitation: The personal data provided to our Business are not further processed in a manner incompatible with the purposes for which they were collected. These purposes are defined, explicit, and legitimate, within the framework of operation and service provision to the participants.
• Data minimization: The Business only collects personal data that are appropriate, relevant, and limited to what is necessary for the purposes for which they are processed.
• Accuracy: The aim is for the personal data collected to be accurate and kept up to date, where necessary, taking all reasonable steps to ensure the immediate correction or deletion of inaccuracies, considering the intended purposes of the processing.
• Storage limitation: The data collected are retained only for the period necessary to achieve the purposes of their collection and processing, and are securely deleted after this period, unless continued retention is required by applicable law.
• Integrity and confidentiality:Appropriate technical and organizational measures are taken to ensure that personal data is processed in such a way as to ensure adequate security, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage.

3. Data We Process – Purpose of Processing

The Business and any processors acting on its behalf collect, process, and use personal data of the Data Subject in accordance with applicable legal provisions and this Privacy Policy. The data collected include first name, last name, contact phone number, address, email, resumes, user photos, work experience. The purpose of the collection and processing of personal data is to provide the service of job-seeking for registered users, communication, information, and advertising. Specifically:

• To service a request

Through your communication with the responsible person for your service, the minimum required personal data collected are your first name, last name, and email. The purpose is for the Business to respond to your request.

• To comply with legal obligations

• To comply with obligations imposed by legislation, judicial, or supervisory authorities. We retain your data for as long as necessary to fulfill the above purposes and, in any case, until you withdraw your consent or object to the processing.

4. Retention Period of Your Data

We keep your personal information for as long as required by the applicable regulatory framework. In any case, your data is deleted or destroyed after a period of 10 years from their collection. If we do not need to retain the information for this period, we may destroy, delete, or anonymize it sooner.

Exceptionally, the Business may retain your personal data for a further period only if deemed necessary for the protection of its legal interests or to defend against claims. In this last case, you will receive relevant information.

Specifically, the retention period for personal data depends on the legal basis of processing, as detailed below:

• In cases where the legal basis for processing is the exercise of legitimate interest, processing and retention of personal data will be carried out for as long as deemed necessary for the achievement of the Business's intended purpose as well as for the necessary period until the expiry of any relevant claims (Article 6, paragraph f of the GDPR).
• In cases where the legal basis for processing is the execution of a contract, we will retain the data for as long as you maintain a contractual relationship with us in both paper and electronic form, or as long as required until the expiry of any relevant claims (Article 6, paragraph b of the GDPR).
• In cases where the processing of personal data is carried out based on a legal obligation (Article 6, paragraph c of the GDPR), the retention period is determined based on the requirements of the legislation and the period during which inspections can be carried out by the competent authorities.

In any case, the criterion used to determine the retention period is based on compliance with the deadlines permitted by law and the...

5. Your Rights

In the context of our ongoing and immediate service to you, we ensure that if you wish, you can be informed about your personal data stored with us, as well as request their correction or deletion. The fastest and simplest way to achieve this is to log in to your customer account and either edit the stored data directly or completely delete your account. In the latter case, your data is not destroyed but remains in our possession for the absolutely necessary period as determined by our institutional, contractual, or legal obligations. After this period, your data will be deleted.

In light of legislation regarding the protection of personal data, you are equipped with the following rights:

• Right to access your personal data: This means that you have the right to be informed by us if we are processing your Data. If we are processing your Data, you can request to be informed about the purpose of the processing, the type of your Data we hold, to whom we give it, how long we store it, whether automated decision-making occurs, as well as your other rights, such as rectification, deletion of data, restriction of processing, and lodging a complaint with the Data Protection Authority.
• Right to rectify your personal data in case of inaccuracies: If you find that there is an error in your Data, you can submit a request for us to correct it (e.g., correction of name or updating address changes).
• Right to delete your personal data: You can request us to delete your data if it is no longer necessary for the aforementioned processing purposes or if you wish to revoke your consent in cases where this is the only legal basis.
• Right to restrict processing:If you find that your data is inaccurate or if you find illegal processing or believe that the processing of your data is no longer necessary for the purpose of processing, you can request the restriction of the processing of your data by us.
• Right to data portability: You can request to receive your provided Data in a readable format or ask us to transfer it to another data controller.
• Right to object to the processing of your personal data and Right to withdraw your consent for the processing of your personal data: You can object to the processing of your Data, and we will stop processing your Data if there are no other compelling legitimate grounds that override your right. If you have given your consent for the collection, processing, and use of your personal data, you can withdraw your consent at any time with future effect.
• Right to lodge a complaint with the Supervisory Authority: Without prejudice to any other administrative or judicial remedies, every data subject has the right to lodge a complaint with a supervisory authority, particularly in the member state where they have their habitual residence or place of work or where the alleged infringement has occurred, if the data subject believes that the processing of personal data concerning them violates this regulation. If you wish to exercise your rights or would like more information regarding the above rights, please contact us using the contact details below.

6. Security of Your Personal Data

The security of your data retention by the Company is a priority for us. Your personal data is securely stored by us. We ensure that the necessary security measures are in place to protect your personal data from loss and/or misuse, as well as from unauthorized access or transfer.

The personal data we collect (or process) in the context of the Company’s website will be stored in the MongoDB database program. However, some of the recipients of the Data with whom the Company shares your Personal Data may be located in countries other than the one in which your Personal Data was originally collected. The legislation in these countries may not provide the same level of data protection compared to the country that initially provided your Personal Data. Nevertheless, when we transfer your Personal Data to recipients in other countries, including the USA, we are committed to protecting your Personal Data as described in this Privacy Policy and in accordance with applicable law.

We take measures to comply with applicable legal requirements for the transfer of personal data to recipients in countries outside the European Economic Area or Switzerland that do not provide adequate levels of protection. We use various measures to ensure that your Personal Data transferred to these countries enjoys adequate protection according to data protection rules.

We inform you that you can contact us for any issues regarding the security of your data at the Company, via email info@beasy.gr.

If you are not satisfied with the way your data is processed, you can submit a related complaint to the Personal Data Protection Authority (DPA), using the following contact details: Website: www.dpa.gr, Mailing Address: Kifisias Avenue 1-3, P.C. 115 23, Call Center: +30 210 6475600, Fax: +30 210 6475628, Email: complaints@dpa.gr.

However, before you file a complaint with the Personal Data Protection Authority, we would appreciate it if you gave us the opportunity to resolve any of your complaints internally as soon as possible.

7. Modification of the Privacy Policy

This privacy policy is modified whenever required and always in accordance with National and Community legislation.

8. Contact

For any clarification or request regarding the Privacy Policy of the website, you can contact us at the email info@beasy.gr or by phone at 6983391922.