Privacy Policy

Website Privacy Policy

The Société Anonyme under the corporate name «KRYACON S.A.», (hereinafter the “Company”), pays special attention to the importance of the lawful collection, processing, use, security and protection of your personal data, regardless your identity when communicating or cooperating with us.

The Company is the Controller of the Data that are processed while you are browsing around its website (https://www.kryacon.com/), and it remains at your disposal for any clarification. Our address is in 4 Kon/nou Oreopoulou str., 141 21, Irakleio, Athens, Greece, phone number: 2117150302, and email address: dpc@kryacon.com.

Please dedicate some of your time to read carefully the terms of this Privacy Policy, which refers to the website https://www.kryacon.com/.

1. Our website

The website https://www.kryacon.com/ is the Company’s website and it is provided for your communication with the Company (e.g. CV submission).

2. Which categories of personal data we process

During your visit to our website we process, indicatively, the following categories of personal data:

• Basic data of individuals: full name, email
• Business data: company / work organization
• Data included in a CV
• Data collected through cookies that are installed on our website and for which you can be informed by clicking here.

We collect the above data when you visit our website, and also when you submit your CV.

In the context of our website, we do not collect special categories of personal data (racial or ethnic origin, political beliefs, religious or philosophical beliefs, membership in trade unions, as well as the processing of genetic data, biometric data for the purpose of unambiguously identification of a person, data concerning health or data concerning the sexual life of a person or the genetic orientation). Therefore, we strongly recommend you refrain from sending data of this category, and we inform you that in case of sending such data, our Company will immediately delete them.

3. Purpose of Personal Data Processing

The Company and/or those acting under its instructions and on its behalf (processors), process your personal data exclusively for the following purposes:

1. to process your CV under the recruitment procedure
2. to answer your questions or
3. to improve the operation of our website as well as your navigation in it, by using cookies. You can learn more about our website’s Cookie Policy

The data is processed exclusively for the above purposes, or in certain cases, for the purpose of the legal/regulatory compliance of our Company or for supporting our legal claims.

The process of your personal data is carried out with respect to the basic data protection principles, which are imposed by the General Data Protection Regulation, such as the lawfulness, fairness and transparency, the purpose limitation, the data minimization, the accuracy, the storage limitation, the integrity and confidentiality, and, finally, the accountability.

4. Lawful basis for processing

Regarding your Personal Data received by the Company when you submit your CV through the website, the processing is necessary in order to take steps at your request prior to entering into a contract.

The Personal Data, which you provide by submitting a question in the website’s contact form, are processed for the purposes of legitimate interests.

Regarding your Personal Data that we receive from the cookies installed in our website, the processing is based on your expressed consent, in case the cookies are not strictly necessary for the proper function of the website.

5. Who has access to the Personal Data?

Access to your personal data have exclusively the necessary, in each case, employees of the Company, which have received the required information for the secure processing of your personal data. Indicatively, access to your data may have the following departments of the Company: Marketing Department, HR Department, Management.

Third parties, who may have access to your data, are official government and supervising bodies (e.g. law enforcement and prosecuting authorities, supervising authorities, etc.), when we are obliged to comply with the law, when the transfer is deemed necessary for significant public interest reasons, as well as for the establishment, exercise, or defense of legal claims.

6. Transfer of personal data outside the EEA

Your Personal Data are not transferred outside the EEA. In case such a transfer occurs in the future, we will ensure that there is an appropriate legal basis for such a transfer, in accordance with the articles 45-49 of the GDPR, and where required by law, we will notify you again.

7. Do we use automated decisions making/including profiling while processing your Data?

No profiling is made through the Company’s website.

8. The retention period of your personal data

Your personal data are retained only for the reasonable period required by the nature of their processing, the fulfillment of our legal obligations concerning the storage of these data, and the potential defense of our legal claims. In any case, your data are not retained for a period longer than 6 months.

9. Link on websites of third parties

The potential interconnection of the present website with other third parties’ websites through links, hyperlinks, banners, etc. does not entail any liability on behalf of the Company for the content of those websites, the quality and completeness of the products or services that might be promoted, or the policy that might be used concerning the protection and the processing of the personal data. The individual should pay the necessary attention and be informed concerning the protection and processing of his/her personal data in the above websites, by reading their respective data protection policies.

10. The security of your data

We commit to safeguard your Personal Data by taking all the appropriate organizational and technical measures to secure and protect them from any form of accidental or unlawful processing. It must be noted that our authorized employees, who process your personal data, have received the appropriate guidance and information.

The measures that we receive are reviewed and amended when this is deemed necessary.

11. Your rights as data subjects

As data subject you have the following rights:

1. You have the right to access your Personal Data.

This means you have the right to be informed by us about whether we process your Data. If we process your Data, you can request to be informed about the purpose of processing, the type of Data that we keep, the recipients, the retention periods, whether we are carried out automated decision making, as well as about your other rights, such as rectification, erasure, restriction of processing and lodging a complaint with the Hellenic Data Protection Authority.

2. You have the right to rectify your inaccurate Personal Data.

If you find that your Data is incorrect, you can request us to correct it (e.g. rectify your name or change your email).

3. You have the right to erase your Information / right to be forgotten.

You can request from us to delete your Personal Data if it is not necessary for the above-mentioned purposes or if you wish to withdraw your consent in case this is the only lawful basis for processing.

4. You have the right to Data portability.

You can request form us to receive us in a structured, commonly used, and machine-readable format the Data that you have provided us or request from us to transfer those to another data controller.

5. You have the right to restrict the processing of your Personal Data.

You can request from us to restrict the processing of your Data for as long as the examination of your objections is pending.

6. You have the right to object to the processing of your Personal Data.

You can object to the processing of your Data, in case we process them upon the lawful basis of our legitimate interest. In that case, we shall no longer process your Data, unless we have compelling and legitimate grounds for the processing which override your right.

7. You have the right to withdraw your consent.

You have the right to withdraw your consent at any time, in those cases where processing is based on that legal basis.

12. How can you exercise your rights?

• If you wish to receive further information about the processing of your personal data, exercise any of your abovementioned rights, or withdraw your provided consent, you can contact the Company by email to the email address dpc@kryacon.com, stating “To the person responsible for the Protection of Personal Data”, with a description of your Request, and we will investigate and respond to it as soon as possible.
• Our response will be within (1) one month after receiving it and without any cost for you. The above period might be extended for two (2) more months, due to the complexity or the number of the requests. In such case, you will be duly informed for the time extension as soon as possible and in any case within (1) one month since receiving your request. In the latter case, we will inform you about the delay and its reasons.
• If your requests are manifestly unfounded or excessive, the Company may either refuse to respond to the request or impose a reasonable fee, taking into account the administrative costs for providing information or performing the requested action.
• In case you believe that: a. your request has not been satisfied sufficiently and lawfully satisfied or b. your right in protecting your personal data has been violated by our processing, you have the right to lodge a complaint with the supervisory authority (address: Hellenic Data Protection Authority, Kifissias 1-3, 115 23, Athens, Greece, , https://www.dpa.gr/, telephone number: 210 6475600 ,email address: contact@dpa.gr).

13. Change of our Policy

We will update this Policy whenever necessary. If significant changes to the Policy or changes in the way we use your Personal Data occur, we will notify you either by publishing a notice in a prominent spot before such changes are put into place or by any other appropriate means r. We encourage you to read this Policy on a regular basis in order to be aware on how your Data are protected.

Last review:07/10/2022