Privacy Policy

bigArrow
  1. Introduction

Thank you for visiting https://tassis.com/ (hereinafter referred to as the “website”). The website has been created by Tassis & Associates Law Office (hereafter: “Firm”, “we”, “our” or “us”).

Before using our website, please read this privacy policy which applies to all users of the website in order to obtain information about our services, regarding the collection and use of personal data of individuals (data subjects) by the Firm as a Data Controller.

Our contact information is “Tassis & Associates Law Office”, 8 Ippokratous Str., 10679 Athens, Greece, T: +30 210 3600366, E: info@tassis.com

The Firm is committed to collecting and processing your personal data in accordance with the EU General Data Protection Regulation (EU) 2016/679 (hereinafter “GDPR“) and the applicable national legislation. This policy informs you on how we collect and process information about you that is governed by the terms that follow and the relevant provisions of the GDPR and relevant Greek and European legislation on Personal data protection.

Personal data is any information that refers to natural persons whose identity is known or can be ascertained (hereinafter referred to as “personal data“).

2. Principles of Data Processing

Personal data shall be:

  • processed lawfully, fairly and in a transparent manner in relation to the data subject
  • processed for specified, explicit and legitimate purposes
  • adequate, relevant and limited to what is necessary in relation to the purposes that we have set
  • accurate and kept up to date
  • kept for no longer necessary in relation to the purposes for which they are collected and in accordance with the applicable data protection legislation

3. What personal data we collect

We collect personal data directly from you when you contact us via e-mail or phone for any reason or seek information or by e-mailing your CV. We do not collect personal data by automated means since our website does not use cookies or similar technologies.

The data that we collect in the course of our business activity and operation of our Firm varies according to the purpose of collection and may include the following:

  • Personal Data & contact information such as name, surname, telephone numbers, address, email address and message data you may provide by contacting us.
  • Level of education, work history, professional training data, when you submit your CV.

4. Purpose of processing

The purpose of the data collection/processing is:

  • To support, promote and perform the contractual relationship with our website’s users, and to inform users about our services.
  • To communicate with the users and send informational messages concerning the stages of the contract/processing.
  • To support and promote our Firm and our services
  • To protect and ensure the security of transactions (so that we can detect and prevent cases of fraud, abuse, security incidents and other harmful activities and conduct security surveys and risk assessments)
  • To provide information on services for which you have expressed interest and in general to respond to customer service requests.
  • To provide smooth access and use of our website and enforce the website’s terms of use and other policies.
  • To comply with the legal obligations
  • To conduct a general analysis and evaluation and improve the provided services through our website to tailor our web presence to your needs, making our website easier and more efficient to use.

 

5. Legal Basis for Processing

The legal basis for the processing of personal data collected in accordance with the above is:

  • processing of the personal data is necessary for the performance of the contract between you and the Firm specifically to provide the services and/or information requested or in order to take steps at your request prior to entering a contract.
  • processing is necessary for the purposes of the legitimate interests pursued by the Firm, such as for the purposes of promoting the Firm’s image and its services, ensuring the security of networks and information. The Firm will always balance your rights and interests in the protection of your personal data against Firm’s rights and interests or those of any third party. We consider it as our legitimate interest to appear on social media and information society services trying to promote our services by giving the opportunity to users of these networks to participate in promotional actions, click the “like” button our page and post comments about our services.
  • processing is necessary for compliance with a legal obligation to which the Firm is subject (such as tax law or lawful law enforcement requests).
  • your consent, in order to process your personal data in any instance where consent is required under applicable law.

 

6. Recipients of Personal Data

We do not disclose your personal data to any recipient and we do not transfer your personal data to third countries or international organizations.

7. Social Media Share Button

We appear on LinkedIn

You can visit this network by clicking on the Social Plug-in Button on our website. This button link to third-party website that collects and processes personal data in accordance with its own policy. We are not responsible for the content or data processing performed by this website, and it is your responsibility to be informed about its own privacy policy.

This processing is based on purposes of the legitimate interests pursued by the Firm, such as for the purposes of promoting its image and its services.

8. Retention Period

We retain your personal data no longer necessary in relation to the purposes for which they are collected, for compliance with a legal obligation or for the establishment, exercise or defence of legal claims.

In case you submit your CV your personal data is retained for……….

In case you submit a request via e-mail, your personal data is retained for as long as it is required for fulfilling your request

We will also retain personal data:

  • To the extent required by law (for example, in order to comply with tax legislation)
  • In order to comply with court proceedings (any ongoing or future court proceedings)
  • To establish, exercise or defend our legal rights, personal security of the users and the public.

However, some necessary personal data regarding your contractual relationship with the Firm as well as information concerning your notification on the processing of your data and your consent, where applicable, may be retained so as to establish the lawfulness of processing of user/client data by the Firm and the legal claims of the parties.

9. Technical and Organizational Measures

The Firm implements appropriate technical and organizational security measures to protect personal data against unauthorized access, misuse, loss or destruction. Such measures include, but are not limited to, the use of firewalls, secure server facilities, network security measures, and other reasonable organisational and technical measures, so as to provide adequate protection of personal data. All associates of the firm are bound by confidentiality and privacy clauses and personal data is processed only by specially authorized associates of the Firm.

Similarly, the Firm shall apply appropriate technical and organizational measures to ensure the best protection of personal data from any unlawful processing, as well as to guarantee the possibility of restoring the availability and access to them. These measures aim to ensure a level of security that corresponds to the risk, taking into account the nature, scope, context and purposes of processing as well as the risks of varying likelihood and severity for the rights and freedoms of natural persons, while applying procedures for the regular testing, monitoring and evaluation of the effectiveness of said technical and organisational measures.

10.Your rights

Under the GDPR (articles 12-22) you have the following rights:

  • Request a copy of your personal data.
  • Withdraw your consent when this is the legal basis of the processing of your personal data.
  • Request that your personal data be corrected if it is inaccurate.
  • Request erasure of the personal data you have provided, under the conditions set out by law.
  • Request restriction of processing, under the conditions set out by law.
  • Request the portability of your personal data, if you have provided us with the data and the processing is based on consent or performance of a contract and processing is based on automated means.
  • Oppose some form of processing of your personal data by the Firm.

To exercise any of the above rights, you may contact us via e-mail. We will take all possible measures to satisfy your request within a reasonable period, no later than one (1) month after the submission of the request and receipt of proof of your identity. That period may be extended by two (2) months where necessary, taking into account the complexity and number of the requests. Please note that the absolutely necessary user data may be retained, in order to safeguard the legal interests of the Firm.

You also have the right to file a complaint with the Data Protection Authority online by filling the appropriate form depending on the case/subject-matter of the complaint on https://www.dpa.gr/el/polites/katagelia_stin_arxi/.

 

Feel free to contact us at our contact information.