The integrity and privacy of our website’s visitors are of crucial importance to us and we strive to maintain a high level of protection of your personal data, in accordance with the applicable law.
This Policy includes information on how Grow Agency processes and protects personal data which are collected on its website (“Website”) and for what purposes we use such personal data. Grow Agencyis the controller of the processing of personal data that takes place while visiting or using the available services or functionality of the Website.
When you visit the Website, register, request information or provision of products or services, order publications or subscriptions, submit an enquiry or complaint, you may provide basic identification personal data and contact information, such as your first and last name, telephone number and e-mail address or other information intentionally submitted by you. We do not request and our intention is not to process any special categories of personal data, such as data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, data concerning health, data concerning sex life or sexual orientation and data relating to criminal convictions and offences or related security measures (“Special categories of data”). Therefore, you are kindly requested to abstain from providing such types of information about you. However, if you choose to provide us with such information, we will assume that you want us to process these data based on your consent, in accordance with this Policy and no. 679/2016 European General Data Protection Regulation (hereinafter the “GDPR”) and the applicable Greek and European legislation for the protection of personal data (hereinafter the «Applicable Legislation»).
When you apply for a vacant job, we mainly process the following personal information about you: first and last name, e-mail address, telephone number and any information relating to your educational and professional background, as submitted by you in any documents attached, such as CV and cover letter. Kindly note that no Special categories of data are required by you for the purposes of submitting a job application at Grow Agency. Therefore, you are kindly requested to abstain from providing such types of information about you. However, if you choose to provide us with such information, or further information we do not request, we will assume that you want us to process these data based on your consent, in accordance with this Policy and the Applicable Legislation.
As part of the evaluation of your candidacy, depending on the vacant job you are applying for, you may be subject to skill tests either physically or online, provided that you have been previously notified of said procedure.
URL and IP address
When you visit, navigate or leave the Website, we receive your Internet Protocol (IP) address and your most recently visited URL addresses.
How do we use your personal data?
Grow Agency solely requests and processes the personal data that are necessary for the fulfillment of the specified herein, explicit and legitimate purposes, in accordance with the applicable legal basis. In case you do not wish to provide personal data falling under the required fields of the Website, we cannot guarantee you that the respective purpose shall be met.
The applicable legal basis per purpose is one of the following:
Grow Agency’s legitimate interests include the following purposes:
How long are your data stored?
Grow Agency takes reasonable measures to store your personal data only for as long as is necessary to fulfil each of the above purposes for which the data were collected, in accordance with any legal, regulatory or internal policy requirements. In case of contractual relationships, your personal data shall be stored until termination of said contract, unless further storage is provided by law.
In case of unsuccessful job application, your personal data shall be stored until completion of the recruitment process and, up to two more years.
Personal data processed on the basis of our legitimate interests shall be stored until you request us to stop using your personal data for said purposes. You can submit such a request (opt-out), in accordance with the provisions of the Applicable Legislation, via firstname.lastname@example.org.
Personal data that we process for sending newsletters, subscriptions or notifications about other updates are stored until you terminate the subscription or you notify us that you do not wish to receive them anymore, which can be made at any time via email@example.com.
In the above cases, your data will be immediately erased unless further retention is required by law or other legal ground.
Are your data secured?
We abide by the Applicable Legislation and our privacy policies and we apply reasonable and appropriate technical and organizational security measures to protect your personal data against accidental destruction, loss, unauthorized alteration, disclosure or access, misuse, and any other unlawful form of processing, covering any technology infrastructure point. We always secure that solely authorized users have access to your personal data, abiding by confidentiality clauses, on a need to know basis and to the extent necessary in order to fulfil the respective purposes.
We use firewall and other secured systems, advanced electronic identification tools, and where appropriate we apply pseudonymization and encryption of personal data. We abide by internal routines, training and policies covering careful handling of personal data, as well as data minimization, purpose limitation, accuracy, storage limitation and incident management. For your safety, login to the client portal is encrypted through a secure channel.
Login details may not be shared or used by more than one user. In any case, you are personally responsible for not making the login procedure available to unauthorized persons. Each user is responsible for confidentiality and the correctness of login details and other account information. You must inform Grow Agency immediately in the event of unauthorized access to login details. You are also responsible for using appropriate technologies to prevent your device not being affected by viruses or similar malware.
To whom might we disclose your personal data?
In order to meet your requests or our business needs or in order to adequately provide our services, we may transfer your personal data to third parties solely if it is required by law or contract and only where it is legitimate to do so. In any case, we transfer only the personal data that are necessary for the fulfillment of the respective purposes and we secure the confidentiality of your personal data. Indicatively, we may transfer your personal data to the following categories of recipients:
Within the course of our business operations, we may be required to share your personal data with third parties located outside EEA, such as Grow Agency member firms outside EEA or other third parties outside EEA. Indicatively, your personal data may be transferred to service providers for hosting of servers or IT applications support, to our global network in compliance with Grow Agency global policies, to non-EEA regulatory bodies or agencies, etc.
We will proceed with said transfers provided that we are confident that the level of protection applied to your data will be similar as within EEA. Transfers of personal data within Grow Agency network will be based on interfirm agreements. Transfers outside of the network, will be based on standard clause transfer agreements or other adequate safeguards, in compliance with applicable law.
What are your privacy rights?
You are entitled to exercise the following rights, in accordance with the provisions of the Applicable Legislation:
Address: Kolokotrwni 64a, Agios Dimitrios
Telephone: +30-210 9713335
You can submit a request or exercise the rights 1 to 6 above by contacting firstname.lastname@example.org and we will make all reasonable efforts to reply to you / comply with your request as soon as possible, and in any case within the time frames provided by applicable law and professional standards.
What else should you know?
Grow Agency uses reasonable endeavors to ensure that your personal data are always accurate and up to date. This means that from time to time, we will ask you to tell us if there are any changes to your personal data. If you find out that the personal data we hold about you are incorrect or incomplete, please contact us immediately and we will correct them.
This Policy may be modified periodically in order to reflect amendments in our privacy practices or legal requirements. In such cases, you will be able to check the most updated version at the Website. Thus, you are encouraged to visit the Website on a regular basis.
Grow Agency shall not collect or store personal data of children less than 16 years old. If Grow Agency finds out that such data have been collected, it shall erase them immediately, unless such data have been provided following the consent of the holder of parental responsibility over the child.
If you have any questions or concerns about this Policy or in case you need more information about your rights and how to exercise them, please contact us at email@example.com or at the following postal address: 64a, Kolokotrwni., 17343, Agios Dimitrios, Athens.