Introduction

With this Privacy Policy, we inform you about the way in which we process your personal data when you visit, submit an application to participate in the Competition, register as members and subscribers, supporters or volunteers, communicate and use our website thymiscompetition.gr (hereinafter “Competition” or “Site”), or interact with us with comments and ratings on our social media accounts. By carefully reading the Privacy Policy you can be fully and transparently informed about: the principles that guide us in the processing of personal data the personal data that we may process the purposes of personal data processing the legal bases for the processing the duration of the processing any recipients of the personal data your rights and how to exercise them.

Data Controller

According to the definitions of the General Data Protection Regulation 2016/679/EU (hereinafter “GDPR”), the Data Controller is the Association of Friends of Thessaloniki State Symphonic Orchestra resident Tthesloniki George Konstntinidis address Platonos 33 contact number 2310 224 722 email: info@thymiscompetition .gr. 

Principles of Personal Data Processing

We respect the following fundamental principles, as provided for in the General Data Protection Regulation 2016/679/EU.

1. We process personal data in a lawful, legitimate and transparent manner (“legality, objectivity, transparency”).

2. We process personal data for specified, explicit and lawful purposes (“purpose limitation”).

3. We process personal data that is appropriate, relevant and limited to what is necessary for the purpose of processing (“data minimization”).

4. We ensure that the personal data we process is always accurate and up-to-date (“accuracy”).

5. We retain personal data only for the required period of time (“storage period limitation”).6. We process personal data in a way that guarantees its appropriate security, such as its protection against unauthorized or illegal processing and accidental loss, destruction or deterioration, taking appropriate technical and organizational measures (“integrity and confidentiality”).

 Personal Data Collected and Method of Collection

We collect Personal Data directly from you, or through automated methods. Thus, the provision of the data by you is either necessary to achieve the purposes specified in this Privacy Policy or optional, as for example when we will use it to optimize the quality of the services provided through our website. We inform you of the mandatory provision of Data with an asterisk (*) next to the personal data in the relevant forms.You may refuse to provide the information marked as mandatory on the Website, but in this case it may become impossible for us to provide the services. Specifically, the personal data that we may process are the following:   

Data when completing and submitting your application to participate in the Competition, which are marked as mandatory and are in accordance with the Competition Regulations, namely: identity (name, surname), contact details (phone number, email), date of birth, copy of passport or identity card or birth certificate (PDF format), two photographs, Curriculum Vitae, repertoire, Degrees & Diplomas (PDF format). It is pointed out that the List of Professors submitted by the candidate for his/her participation in the Competition requires the consent of these persons and will be used strictly for the evaluation of the application for the participation in the Competition and will not be shared further for any other purpose.

Financial data that you declare in the electronic transactions such as payment; credit and return data; bank account (IBAN); transaction amount;  debit or credit card data; invoicing data (VAT; tax office; profession). The registration of the card details; their confirmation; the commitment of the amount and the final charge; are done in a secure environment (SSL) of Bank Piraeus without being stored by the website.

        Data when using the contact form to submit questions and contact us with mandatory: Name and Surname*, email address*·         Contact data when you subscribe to the Newsletter (email)·

Image and audio data from the video recording, photography and filming of the Competition and related activities, such as interviews of prize winners, their participation in promotional events etc, in accordance with the relevant terms of the Regulation. Data displayed in the “basket” section, such as a financial subscription package of your choice.

Personal data that you share during your visit to social media, the thymiscompetition.gr pages on Facebook and Instagram when you follow these accounts, when you contact us and when you use the services that the above websites offer to come to contact with us, such as username, comments, messages and information.

Technical data such as channel – origin source, Internet Protocol (IP) address, time zone and location, input data, browser type and version, operating system and platform and other technology on the devices you use to connect to our Site·         This website may use Cookies, as well as related technologies. For more information on the concept – collection and use of Cookies you can refer to the Cookies Policy.

Data of minors

Our Website is not directed to minors, therefore we do not process personal data of minors to our knowledge. However, parents and guardians of minors are advised to contact us immediately if they find any unauthorized disclosure of data by minors for whom they are responsible, in order to exercise their respective rights. 

Why do we use your data : With respect to the legislation for the protection of personal data, we use your data for the following:

Providing information about the services you request through our Website, such as submitting an application to participate in the Competition, accepting or rejecting your application, registering as a supporter of the institution, volunteer etc·        

Communication: In order to respond to your requests and questions.

 Processing of the online payments

Sending a newsletter. With your consent, we will use your personal data to inform you by e-mail, telephone and/or via social media accounts about news regarding the Competition, updates on concerts and other activities of the Association of Friends of Thessaloniki State Symphonic Orchestra. You can easily and simply withdraw your consent at any time by clicking on the “unsubscribe” link included in each of our newsletters.

For the operation, development and improvement of our services, such as by sending an invitation to participate in satisfaction and evaluation surveys of our services.

For our compliance with legal obligations either arising from our contractual commitments or from legislation What is the legal basis for processing your data For the legal processing of your data we rely on the following bases, in accordance with the General Data Protection Regulation 2016/679/EU: Our legitimate interest in the organization of the competition, your identification, where required, as well as the security of data, networks and the prevention of fraud and unauthorized access to them, to optimize our services, for the purpose of immediate commercial communication, complying with the conditions of the law, with the provision of the possibility of deletion (unsubscribe) at any time.

        Your consent to submit a declaration of participation in the Contest, contact us by filling in the relevant form, sign up for the Newsletter or as a member, supporter or volunteer.       Compliance with our legal obligation, such as compliance with tax and accounting provisions, legislation on the privacy of electronic communications, etc. 

Recipients of the Data

Access to your data is granted only to persons bound by the obligation of confidentiality such as the members of the Jury of the Competition and the necessary companies cooperating with us or third party service providers, who may process your data as Processors for our account and according to our orders, such as providers of hosting, data management and maintenance, email distribution, research and analysis services, the Google search engine, the social media Facebook and Instagram, or when you yourself have previously given your consent to sharing. 

How long we keep the data Personal data is kept for a specific and limited period of time, depending on the purpose of the processing, after which it is securely deleted, unless a different retention period is provided by the applicable legislation. At the end of this retention period, your data will be completely deleted or anonymized so that it can be used in a non-identifiable way for statistical and research purposes. The data collected through the contact form “Contact us”, as well as through any other means of communication with us, is kept for a maximum period of 3 months from the completion of the communication. Data through the Contest accounts on social networks, such as Facebook and Instagram, are kept for as long as you remain connected in any way to those accounts and in accordance with the respective terms included in the data protection policy of those media.

Cookies files are kept for a period of time determined according to their nature, origin and the purpose for which they are used. For more information please see the Cookies Policy [link] ·         Also, personal data is kept for the period of time determined by the applicable legislation such as tax, accounting, privacy of electronic communications and the corresponding provisions of the law for the maximum period of their retention. As long as there are legal claims, we can keep the personal data until the expiry of the statutory limitation period of claims.  

Data Security

We are committed to protecting your personal data. Recognizing the importance of the security of your personal data, we have taken the appropriate organizational and technical measures to prevent unauthorized access, to ensure the integrity and availability of the data, using the necessary digital data security measures, the appropriate antivirus, firewall and the certificate SSL 

Find out about your rights

In accordance with what is provided for in the General Data Protection Regulation 2016/679/EU, you have the following rights: Right of access to your personal data. This means that you have the right to be informed if we are processing your Data and to request to be informed about the purpose of the processing, the type of data we hold, to whom we share it, how long we store it, whether automated decision-making takes place, but also about your other rights, such as correction, deletion of data, restriction of processing and filing a complaint with the Data Protection Authority (DPA). 

Right to correct any inaccurate personal data. If you find that there is an error in your data you can submit a request to us to correct it (e.g. correct a name or update contact details). Right to erasure in the event that your data is no longer necessary for the aforementioned processing purposes. 

Right to object to the processing of your data based on our legitimate interest (for marketing purposes) and to withdraw consent to the processing of your Data. 

Right to data portability, i.e. to request your data in a structured, commonly used and machine-readable format, where technically feasible 

Contact us to exercise your rights

To exercise your rights or for any question regarding your data or this Privacy Policy you can contact us at info@thymiscompetition.gr giving us your first name, last name, email , as well as any other information necessary to identify you and process your request.In any case, if you consider that the processing of your Personal Data violates the applicable national and Community law or that the above answers you received from us are not sufficient, you have the right to submit a complaint to the Data Protection Authority (postal address: Kifisias Av. no. 1-3, PO Box 115 23, Athens, tel. 210. 6475600, e-mail address (e-mail) contact@dpa.gr) or, based on your place of residence, to the competent national Authority, in accordance with the General Data Protection Regulation 679/2016/EU. 

Applicable Law and Dispute Resolution

We mutually agree to endeavor to amicably resolve any dispute arising out of this Policy in a spirit of mutual respect, by submitting them to out-of-court procedures, such as Mediation. In the event that an amicable settlement is not possible, any claim relating to this website shall be governed by Greek law, as formulated in accordance with General Data Protection Regulation 2016/679/EU, the implementing Law 4624/2019 and the applicable national and European legislative framework for the protection of personal data.In the event that it is not possible to resolve the disputes amicably, the Courts of Thessaloniki will be the competent courts for any arising disputes related to your data. 

Amendments to the Privacy Policy

We encourage you to read this Policy periodically to be informed of any changes and stay up-to-date on the protection of your personal data. 

Last updated: October 2022