Privacy Policy

By browsing hre.gr ,from now on "the company" and by using its services, you adhere to the Privacy and Personal Data Policy as a guest or/and user. Therefore you must carefully read our policies content before continuing using our services such as they are provided by the company. If you do not agree, you must not use ANY of our services and/or our website's content.

This privacy and data policy can be altered on par with the changes of the law. We are not obliged to inform you for every such change. Instead, we urge you to check periodically this page for any changes in our privacy and data policy. By continuing to use our website even after changes in this policy, means you agree and adhere to it.

Personal data protection and general data protection

We collect and process you personal data only when we absolutely have to. We will never sell, rent, distribute or publicize by any means your personal data. If you are under the age of 16 years old, you MUST have your parents approval before using our services.

To request the personal data we have collected on you, you have to login in hre.gr and visit this link. In your account's page there are the necessary tools to make requests in compliance with General Data Protection Regulation (GDPR).

Laws

As with the internal information systems, this website is designed to be in compliance, regarding the protection of its users and guests personal data, with the following directives/regulations

- EU directives of EE for the protection of data (1995 DPD)
- Cookie consent Law
- Regulation of 2018 for the general protection of data (GDPR)

Personal information we collect and why

This website collects and uses personal information for the following reasons:

- Visitor statistics tracking

As most websites do, so we use Google Analytics (GA) to monitor our users/guests activities. We use these data to see the number of persons using our website, to better understand the way they find and use our website and to see how they interact with it. Although the GA records data such as geographic location, device type, browser type and operating system, none of these information can make identify you to us. GA also records the IP address of you PC or device which theoretically could be used to identify you, but Google does not give us access to such information. We consider Google a third-party data processor who is compliant with EU regulations and laws.

- Contact forms and emails

In case you choose to contact us by using the contact form or by sending us an email, none of the data you submit to us will be stored by this website or will be sent or submitted to any third-party data processor, as they are mentioned in the following section «Third-party Data Processors». These data will be sent to as by email using SMTP (Simple Mail Transfer Protocol). Our SMTP severs are protected by TLS security, which means that the contents of your emails are encrypted before being sent through the Internet. This content is finally decrypted in the destination computers or devices.

- Electronic Newsletter

If you choose to subscribe to our newsletter, your email address will be stored in the database of our website or the newsletter application we may use. The email address will remain in our database for the duration of your subscription, which means for the time we will continue to promote our services (marketing) or until you opt-out by unsubscribing or you ask us to delete it from our systems. You can do that by going to the unsubscribe link you will find in every newsletter we send. As long as your email address is in our database, you will periodically receive newsletters from us.


Regarding this website's server

All Internet traffic from and to this website and your browser is encrypted and transfered through HTTPS protocol by using SSL (Secure Sockets Layer)

Third-party Data Processors

We may use a number of third-party Data Processors for the processing of your personal data. These Data Processors are carefully selected to be compliant with the laws and regulations mentioned in this policy. These Data Processors are mentioned in this policy.

Data breaches

For any personal information stored in our database, we take all the necessary precautions for their integrity and security. We will report any breach of our database and any third-party data collector or data processor to all affected persons and legal entities as the authorities in 72 hours time, from when it is obvious that any personal data in not encrypted or anonymized form are stolen.

Data Protection Officer

hre.gr has appointed a Data Protection Officer (DPO) as the GDPR dictates. For any requests to our DPO, please use dpo [at] hre.gr