Scope

This Policy provides information on how the non-profit association titled "Greek Association of Business for the Management of International GS1  Standards" (GS1 Association-Greece) processes your personal data in accordance with applicable Greek and European data protection legislation, specifically the General Data Protection Regulation (GDPR) 2016/679.

If you are under 15 years of age, you must obtain parental or guardian consent before providing any personal information to us.

Who We Are

GS1 Association-Greece is the exclusive representative in Greece of GS1 AISBL, an international, neutral, non-profit organization responsible for the development and promotion of coding standards (e.g., barcodes with prefixes 520 and 521) that enhance efficiency and transparency across supply chains.

We are authorized to issue and manage GS1 barcodes for products and services, enabling businesses that become members to use these standards in their supply chain operations across various sectors.

GS1 Association-Greece is committed to respecting and protecting your personal data and privacy in compliance with the GDPR and applicable Greek data protection laws.

 Lawful Collection and Processing of Your Personal Data

When you visit the GS1 Association-Greece website as a guest, you are not required to provide any personal data.

We collect and process personal data such as your name, address, phone number, email, legal identification documents, contact details, bank account information, financial details, and other related data, which you voluntarily provide for the purposes of:

• Submitting a membership application as an individual or on behalf of a legal entity.

• Using our services or participating in working groups.

• Registering for training, conferences, or informational events.

• Receiving newsletters, correspondence, directories, or participating in market research or statistical surveys.

• Submitting inquiries to the GS1 Association-Greece support office or sending CVs in response to job opportunities.

Our processing of your personal data is always carried out lawfully and transparently, adhering to GDPR requirements.

 

Terms of Use, Data Sharing, and Protection

Your personal data will only be processed by GS1 Association-Greece for:

• Providing the requested service.

• Complying with legal obligations under association law, such as managing memberships, handling subscriptions, maintaining member registries, or conducting elections.

Where necessary, and strictly in line with GDPR provisions, your personal data may be transferred:

• Within the European Economic Area (EEA): For operational purposes, data may be shared with GS1 offices in the EEA (EU Member States, Norway, Liechtenstein, and Iceland).

• Outside the EEA: In exceptional cases, data transfers to non-EEA countries may occur, subject to GDPR safeguards such as adequacy decisions, binding corporate rules, standard contractual clauses, or approved codes of conduct.

All personal data is protected using appropriate technical and organizational measures to ensure its security and prevent unauthorized access, loss, or misuse. GS1 Association-Greece will never sell or share your personal data with third parties.

 Purposes of Processing

GS1 Association-Greece processes your personal data for the following purposes:

1. Verifying your identity during registration.
2. Managing your membership, processing payments, and fulfilling obligations under our Articles of Association and applicable laws.
3. Providing information about products, standards, or services, and facilitating participation in informational events, databases, or registries.

No personal data collected will be used for automated decision-making processes.

 

Legal Basis for Processing

GS1 Association-Greece collects and processes your personal data based on the following lawful bases:

1. Performance of a Contract: To fulfill our contractual obligations to you as a member, trainee, or interested party, as per our statutory objectives.
2. Consent: Based on your written or electronic consent for specific processing activities.
3. Legal Obligation: To comply with our legal obligations as a data controller under Greek and EU laws.
4. Vital Interests: To protect your vital interests where necessary.

 

Cookies

Cookies are small text files stored on your computer when you visit our website. These files help ensure smooth navigation, remember your preferences, and improve your overall experience.

GS1 Association-Greece uses the following types of cookies:

• Persistent Cookies: Improve the website’s functionality and enhance your browsing experience over time.
• Session Cookies: Facilitate navigation during your current browsing session.

You can manage or disable cookies through your browser settings. τροποποιώντας τις ρυθμίσεις στο πρόγραμμα περιήγησής σας.

 

Links to Other Websites

Our website contains links to external websites. GS1 Association-Greece is not responsible for the privacy practices or content of those websites.

By participating in social networks (e.g., Facebook, Twitter, LinkedIn) through our website, GS1 Association-Greece may access personal data on your social media account, based on your settings. These interactions may also involve the transfer of data to the United States under the EU-US Privacy Shield framework.

 

Data Retention Period

We retain your personal data for as long as necessary to fulfill the purposes for which it was collected, in compliance with legal, tax, and regulatory requirements. Specifically:

1. Membership records, as required by Greek law and tax authorities.
2. Financial data relating to outstanding subscription payments.
3. Data related to surveys, access requests, disputes, disciplinary, or legal matters, retained only for the duration necessary for these purposes.

 

Your Rights

As a data subject under GDPR and Greek law, you have the following rights:

Right of Access: Request access to your personal data.

Right to Rectification/Erasure: Request correction or deletion of inaccurate data, unless legal obligations require its retention.

Right to Restrict Processing: Request restricted processing under certain conditions.

Right to Data Portability: Receive a copy of your data in a portable format for transfer to another controller.

Right to Object: Object to data processing based on legitimate interests, including direct marketing.

Right to Withdraw Consent: Withdraw your consent at any time, where processing is based on consent.

Right to Lodge a Complaint: File a complaint with the Hellenic Data Protection Authority if you believe your data rights have been violated.

Right to Opt-Out of Marketing: Unsubscribe from promotional communications at any time using the provided opt-out options.

 

Changes to this Policy

Any updates to this Policy will be published on our website. Where required, we will also notify you directly.

For inquiries regarding your personal data or to exercise your rights, contact us at:
• Email: g.sarantavgas@gs1greece.org
• Phone: +30 210 9904260
• Contact Person: Dr. George Sarantavgas

 

Last Revised: 10/02/2023 

Effective Date: 13/03/2023