PERSONAL DATA PRIVACY – REGULATION EU 2016/679 (GDPR)

D.C. CHRISTOPOULOS Law Firm, is a law partnership registered in Greece, before the Athens Bar Association (Number: 80820) at 5 Aggelou Pirri Str., Athens. 

D.C. Christopoulos Law Firm is committed to preserving the privacy and to protecting any personal data that you may provide to us.

We provide this Privacy Policy to help you to understand what we may do with any personal data that we obtain from you. Personal data is information about an identified or identifiable individual, as defined by applicable law, such as name, email address and telephone number etc. Please read the following carefully to understand our views and practices regarding your personal data and how we will treat it. We also encourage you to regularly check this page to review any changes we might make to this Privacy Policy

For the purposes of applicable data protection law (in particular, the General Data Protection Regulation (EU) 2016/679 (the “GDPR”), your data will be controlled by D.C.Christopoulos Law Firm

PERSONAL DATA WE MAY COLLECT

We collect and process the following personal data:

  • Personal details, such as your name, the company you work for, your title or position and other contact information;
  • Contact information, such as your postal address, your email address and phone number (s);
  • Financial data, such as bank account information, and other invoicing and payment related information;
  • Identification and background information provided by you or collected as part of our business acceptance processes;
  • Access and Attending Data, including information you provide to us for the purposes of attending meetings and events;
  • Personal data provided to us by or on behalf of our clients or generated by us in the course or providing services to them, which may include special categories of data;
  • Personal data related to the video security system of surveillance in the premises of our Firm. 
  • Any other personal information you choose to give us when you interact with us;

We may collect information about you when you interact with us through social media. 

Personal data of other people: If you provide information to us about any person other than yourself, your employees, counterparties, your advisers or your suppliers, you must ensure that they have been made aware of how their personal data will be used by us, and that they have given their consent for you to disclose it to us and for you to allow us to use it.

HOW WE COLLECT PERSONAL DATA

The ways we collect personal data include the following:

  • Directly from you or your organisation: in the course of acceptance processes and of the provision of legal services and advice to you or organisation; when you or organisation provide services to us; when you communicate with us by phone, mail, email or otherwise;
  • By third parties: for instance where you are the subject of, or your data is otherwise included in, legal advice we are asked to provide to that third party client;
  • Using publically available sources such as business registries.

HOW WE USE YOUR PERSONAL DATA

We use the personal data we collect about for the performance of contractual obligations, to conduct our business and to pursue our legitimate interests, in the following ways:

  • To register you as our client, prior to the undertaking of a contractual agreement;
  • To provide and administer legal services to you or your organisation;
  • To process invoicing, payments and other monetary transactions;
  • To administer and monitor our relationship, including for business acceptance, conflict checks, accounting, auditing purposes, as well as for confirming legal representation of our counter parties;
  • To process employment applications and for recruitment purposes. When your personal data is shared with us for recruitment purposes, we will only use this personal data in order to contact you about recruitment and other opportunities which may you have requested. If you apply for any role within D.C.Christopoulos Law firm, your personal data will be processed in accordance to the above procedure. 
  • To communicate with you; to send you legal updates, announcements, publications and newsletters and other information about our services and events or initiatives organised, sponsored or otherwise affiliated to us;
  • To comply to the purposes required by law, including maintaining records, compliance checks or screening (e.g. anti-money laundering).

WHO WE SHARE YOUR PERSONAL DATA WITH

We may disclose your personal data to:

  • Third parties, including service providers that we retain in the course of the legal services we provide, such as foreign legal advisors, for obtaining foreign legal advice, translators, court bailiffs, couriers, mediators, financial & technical experts, insurance companies and other necessary servicers. 
  • Courts, law enforcement and other public authorities, government officials or attorneys or other parties, where it is reasonably necessary for the establishment, exercise or defence of a legal claim, or for the provision of our legal services, or for the purposes of alternative dispute resolution process or upon request;
  • With third parties for the purposes of collecting your feedback on our services and practice, with a view to being ranked in legal directories and other publications as well as to help us measure our performance and to improve and promote our services
  • third parties who provide services to us, such as providing information technology services, services of carrying out research and analysis. We do not allow these third parties to use this information or to share it for any purpose other than to provide services on our behalf.   

WHERE WE STORE YOUR PERSONAL DATA

The data that we collect from you shall not be transferred to and stored at a destination outside the European Economic Area (“EEA”). All information you provide to us is stored on our secure servers within the European Union (EU).

RETENTION OF PERSONAL DATA

We retain personal data for the period of time necessary to fulfill the purposes, that it was collected for as outlined in this Privacy Policy, including for the purposes of satisfying any legal, accounting, or reporting requirements and, where required for Us to assert or defend against legal claims, until the end of the relevant retention period or until the claims in question have been settled. 

YOUR RIGHTS

Under the applicable legislation you have the following rights:

  • The right to access: You have the right to request a copy of the personal data We hold on you as well as information about how it is used.
  • The right to rectification: You have the right to request to correct personal data We hold on you where it is incorrect or incomplete.
  • The right to erasure: This right entitles you to require the erasure of your personal data from Our systems and records. However, this right applies only in certain circumstances (e.g. where the organisation no longer needs the personal data for the purpose for which we collected it or where you withdraw consent to our use of your personal data and where there is no other legal basis for continuing to use it).
  • The right to restrict processing: This right entitles you to restrict the processing of your personal data by us. Where this right is exercised, We are still permitted to store your personal data but other use of the data is prohibited, save in certain limited circumstances.
  • The right to object to processing: You have the right to object to our use of your personal data in certain circumstances. However, We may continue to use your personal data, despite your objection, where there are compelling legitimate grounds to do so or We need to use your personal data in connection with any legal claims. 
  • The right to data portability: This right allows you to obtain your personal data in a format that enables you to transfer that personal data to another organisation where the organisation is processing your personal data on the basis of consent or on the fulfilment of a contract and if processing is carried out by automated means. You may have the right to have your personal data transferred by us directly to the other organisation, if this is technically feasible.
  • The right to withdraw consent: To the extent that processing requires your consent, you may withdraw that consent at any time. However, the withdrawal of your consent will not affect the lawfulness of processing based on consent before its withdrawal.

If such a request places us in breach of our obligations under applicable laws, regulations or our codes of practice, then We may not be able to comply with your request but you may still be able to request that we block the use of your personal data for further processing.

If you would like to exercise your rights above or if you have any questions or concerns about our Privacy Policy please contact us at the following email: info@chrislaw.org. Our Data Protection Officer shall help you accordingly. 

If you believe that the processing of your personal data described above, is unlawful, you may also file a complaint with the Greek Data Protection Authority (www.dpa.gr ).