INFORMATION NOTE ON THE PROTECTION OF PERSONAL DATA
Subject of an Information Note on the Protection of Personal Data
The Ministry of Culture (hereinafter: the "Ministry") based in Athens, 20-22 Bouboulinas Street, P.C. 10682, through the Ephorate of Antiquities of the City of Athens, in its capacity as Data Controller, collects and processes your personal data only if absolutely necessary, for explicit and legitimate purposes, based on Regulation (EU) 2016/679, Law 4624/2019 and Law 3471/2006 as in force. This information notice aims to inform https://th-ink.gr/ users about the processing of their personal data. Iστοτόπου https://th-ink.gr/ σχετικά με την επεξεργασία των προσωπικών τους δεδομένων.
Definitions
For this Notice, the following terms have the following meanings:
- "Personal Data": any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
- 'Processing' means any operation or set of operations that is performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available; association or combination, restriction, deletion or destruction.
- 'Controller' means a natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, or the specific criteria for its appointment may be provided for by Union or Member State law. For the purposes of this policy, the Ministry acts as Data Controller.
- 'Processor' means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
- "Data Subject": the natural person whose personal data are processed, e.g. trainees, associates, employees of the Ministry, etc.
- "Existing Legislation": The respective national and EU legislation on the protection of personal data, namely Regulation (EU) 2016/679 of the European Parliament and of the Council (hereinafter "GDPR"), Law 4624/2019, Law 3671/2006, the case law of the Court of Justice of the European Union (hereinafter "CJEU") as well as the Decisions, Directives and Opinions of the European Data Protection Board (hereinafter "EDPB") and the Data Protection Authority (hereinafter "DPA").
Personal data collected and processed by the Ministry
Data collected by the Ministry through https://th-ink.gr/ website
During browsing and using the website, the following are collected and processed:
- Communication
Purpose | Legal basis | Retention Time | Recipients |
The direct communication of users with the implementing bodies of Act Th-ink | The legitimate interest of the Ministry is to provide an easy and direct channel of communication with the users of the website, following Article 6 para. 1 item f GDPR | Data is kept for 7 days | Ephorate of Antiquities of the City of Athens |
- Borrowing of Museum Kits
Purpose | Legal basis | Retention Time | Recipients |
The utilization of the material of the Museum Kit of Act Th-ink in the context of educational activities | The conclusion of a contract with the Ministry, following Article 6 para. 1 item b' GDPR | Data is kept for 7 days | Ephorate of Antiquities of the City of Athens |
No automated decision-making processing, including profiling, shall be carried out.
Data we collect automatically
When you use our Website, we also collect information automatically, some of which may be personal data. This includes information such as language settings, IP address, location, device settings, device operating system, activity details, time of use, redirect URL, status report, user information (information about browser version); operating system, browsing result (simple visitor or registered customer), browsing history, type of data viewed. We may also collect data through cookies. For information on our use of cookies, click here.
Collection and further processing of Personal Data of Minors
As a rule, the Ministry does not directly or indirectly collect and process data of minors (i.e. persons under the age of 18). However, since it is impossible to cross-check and verify the age of persons entering or using the website, parents and guardians of minors are advised to contact the Ministry immediately if they find any unauthorized disclosure of data on behalf of the minors for whom they are responsible, in order to exercise respectively the rights granted to them, such as deleting their data. If the Ministry becomes aware that it has collected personal data of a minor, it undertakes to delete them immediately and to take all necessary measures to protect such data.
Rights of Data Subjects
The Ministry ensures that it is able to respond immediately to the requests of the subjects for the exercise of their rights in accordance with the Existing Legislation.
In particular, every data subject shall have the following rights:
Access | Διόρθωση | Opposition |
Deletion | Restriction |
In case of exercising any of the above rights, the Ministry will respond immediately [in any case within thirty (30) days from the submission of the request], informing you in writing of the progress of its satisfaction.
For any complaint regarding this information notice or personal data protection issues, if we do not satisfy your request, you may contact the Hellenic Data Protection Authority via the following link: www.dpa.gr. www.dpa.gr.
Data Protection Officer (DPO) detailsDPO)
For the exercise of all the above rights, as well as for any matter concerning the processing of your personal data by the Ministry, you may contact the Data Protection Officer of the Ministry at dpo@culture.gr
Disclaimer for Third-Party Websites-Social Media Buttons-Κουμπιά κοινωνικών μέσων
On this Website there are social media buttons – Social media widgets (eg Facebook, YouTube) with the use of which, after the user connects to the social network, a special digital footprint is created, for which both the Ministry and the social network itself act as joint controllers.
For the Ministry, the purpose of processing these data is to improve the functionality of the website and the services provided as well as to analyze its traffic. The legal basis for processing personal data is the fulfillment of a duty of the Ministry performed in the public interest (GDPR article 6 par.1 par. e' & Article 5 law 4624/2019).
The Ministry does not control nor is responsible for any subsequent processing carried out on them by the joint Controllers.
For more information on the data processing policy and the options for configuring these networks, you can visit the following websites:
- http://www.facebook.com
- https://www.youtube.com/
Updates to the Privacy Notice
This Information Notice on the Protection of Personal Data may be modified/revised in the future, in the context of the regulatory compliance of the Ministry as well as the optimization and upgrading of the services of the Website. We therefore recommend that you refer each time to the updated version of this Information Note, for your adequate information.
November 2023