Data Protection Regulation

Company Zoumi Georgia., with Trade Name MDHellas is committed to protect your personal data which are disclosed to the company by any source such as emails, fax, business cards, company’s site and other sites, databases etc. according to the law 2472/1997 as it is modified and valid and also according to the General Data Protection Regulation (GDPR – EU 2016/679).

Personal data that our company collects are usually the following:

PERSONAL DATA USE OF PERSONAL DATA
      Identifiable and contact information such as:

  1.  Name, Surname, date of birth, nationality, mobile and land-line, e-mail, address details (street, postal code, etc.), proof of address ( e.g. municipality statement), marital status, military obligations, copy of identification card/passport, driving license, VAT registration number, Tax Office, Curriculum Vitae (CV) with candidate’s photo, criminal record, degrees and certificates, letters of recommendation, professional experience, professional license, preferred jobs,  personal skills, insurance application, bank account details, voucher, airline confirmation/tickets, payment copies e.t.c.
  2. Health Data (dermatological conditions, nutritional habits, allergies, special needs), biometrical data ( height, weight, etc.)
  • Contracts (placement contracts, education contracts, trainee contracts, rental agreements)
  • Recruitment services
  • Newsletters
  • ·Educational services including video.
  • Internal use by our company.

MDHellas ensures all legal and appropriate processes for the protection and confidentiality of personal data which collects, amongst other reasons, in order to prevent any non-authorized access to these data as well as to the equipment that is used for their processing and archiving.

For the purposes of this policy, the term ¨data subject¨ includes all the individuals or single member companies, whose personal data we possess (data subject is the individual who is related to the term personal data)

Our company guarantees that your personal data will not be used for other purposes, except the ones who are mentioned in this policy, without prior notice and when required, your approval as well. We do not share personal data with third parties who are not related to us unless it is required by our legal professional purposes and needs, in order to fulfil your demands or/and it is imposed by law.

TIME PERIOD OF CONSERVATION AND USE OF PERSONAL DATA

We are committed to keep your personal data in a safe space with controlled access for as long as it is required. You may submit a deletion request in a shorter time which we will satisfy your request after checking on the processing legal basis and our obligations to the law, and/or to the agreement between us.

DISCLOSURE OF PERSONAL DATA

We may disclose your personal information to third parties who are processing data on behalf of our Company, including, but not limited to, data processing systems support providers.

Transmission to third parties, processing data, will take place only under legal preconditions provided in articles 24 and 28 of Regulation.

In case of data transmission to non-European countries, Company shall inform the data subject in advance and ensure that there are adequate safeguards provided, that all the appropriate technical and organizational measures by means of expertise, reliability and recourses  are implemented, in such a way that the processing is legal and that the rights of the subjects are being protected.

SAFETY AND PROTECTION OF DATA

Our company applies all the necessary policies and processes of technical and organizational safety in order to protect your personal data from being lost, changed, damaged or used in a wrong way or accessed by a non-authorized person.

Our Company executives who have access to the data are required to keep the confidentiality of these data.

RIGHTS ON PERSONAL DATA

You have the possibility to apply for

  • Access to your data
  • Review of the personal data that we possess
  • Rectification of false/inaccurate information and completion of incomplete information
  • Erasure of your personal data
  • Portability of your data
  • Restriction to the processing of your data
  • Opposition to your data processing as long as the conditions of 21 Article of GDPR are met.

We handle your requests with the utmost care to ensure that your rights are protected. We may ask for your identity to make sure we do not share your personal information with someone else.

You should be aware that in certain cases (for example, due to legal obligations), we may not be able to respond to your request immediately. However, we will notify you of the progress of your request within one month after submitting your original request.

You should be aware that during our contractual relationship, personal data required by law or by our contract, are legally complied with and cannot be objected to. Consequently, the rights of objection, limitation and deletion should concern data processing for other purposes and not for the legal or contractual ones.

Furthermore, in some cases (due to, for example, legal obligations), we may not be able to satisfy your request immediately. However you will receive a response to your request at the latest within one month after submission.

You have always the right to submit a complain by contacting Data Protection Officer of the company MDHellas either by sending a letter at company’s office Monis Agarathou 7 , 71201 Iraklion , Crete or by email at dpo@md-hellas.gr , mentioning your full  personal details  and the reason you contacted MDHellas

WITHDRAWL OF CONSENT

You may, at any time, withdraw the consent you have granted to our company for the processing and disclosure of your Personal Data.

However, you must understand that this withdrawal will not affect the legitimacy of the processing, based on your consent for the period before your withdrawal.

Furthermore, your right to withdraw your consent is subject to the above-mentioned law or contract.

In case you want to withdraw your consent, please send a signed declaration at the Data Protection Officer of the company MDHellas either by sending a letter at company’s office Monis Agarathou 7 , 71201 Iraklion , Crete or by email at dpo@md-hellas.gr , mentioning your full personal details and the reason you contacted MDHellas

 

I am fully informed,

Place , ……………/……………/ 2018

Name Surname …………………………………………………………………………………….

Signature……………………………………………………………………………………………….

Notes

  1. Please return this signed by email at info@md-hellas.gr Or by fax at +302810285749
  2. For exercising your rights ask the company to send you the application form