We would like to assure you that the protection of the personal data of the users of our services is of primary importance for BCA COLLEGE SA. That is why we take the appropriate measures to protect the personal data we process and to ensure that the processing of personal data is always carried out in accordance with the obligations set by the legal framework, both by the company itself and by third parties, which may process personal data on behalf of the company.
BCA College SA (hereinafter referred to as “BCA” or Company) based in 205, Alexandras Avenue, email: info@bca.edu.gr, tel: +30 210 7253783, website: www.bca.gr , informs that, in order to provide its services, it processes the personal data of its customers and those interested in its services, in accordance with the national legislation in force, and the European Regulation 2016/679 on the protection of individuals with regard to the processing of personal data and on free circulation of such data (General Data Protection Regulation, hereinafter “Regulation”).
For any issue that may arise regarding the processing of your personal data please contact the Data Protection Officer at +30 210 7253783 or send an email at mail: dpo@bca.gr.
The personal data you provide to the Company in any way (eg name / surname / name of a sole proprietorship / personal company, father’s name, ID or passport number, status / profession, email, mobile / landline, mailing address, credit card number, CV, etc.), are processed by the Company only when it has a legal reason to do so.
Some indicative legal grounds for processing your personal data are the following:
a) the safeguarding and protection of your legitimate interests as well as those of the Company. Thus, we use closed-circuit television (CCTV) and security cameras in order to be able to ensure the smooth operation of our building and to protect the safety of individuals, goods, materials, facilities,
b) the protection of your vital interests, such as the provision of first aid and general assistance in the event of an accident,
c) the consent you provide to us in order to receive updates on the Company’s products, services, offers, which you may call off at any time by contacting the Company’s Data Protection Officer.
The Company sends personal data to third parties, to whom it has assigned the processing of personal data on its behalf. The Company cooperates with IT companies, which provide relevant services, such as IT maintenance services and security systems. In providing these services, IT companies may have access to personal data and, in certain cases, perform processing operations necessary to provide the relevant services.
In these cases, the Company remains responsible for the processing of your personal data and sets out the details of the processing. Also, it signs a specific contract with third parties, assigning them to perform the processing activities, in order to ensure that the processing is carried out in accordance with the legislation in force and that any natural person may freely and unhinderedly exercise the rights conferred on him/her by the corresponding legal framework.
Furthermore, the Company transfers personal data to the Greek or foreign state authorities, when required by the legal framework in force to fulfill their duties performed in the public interest or in the exercise of official authority assigned to them.
The data storage length time is determined based on the following specific criteria depending on the case:
When processing is required by provisions of the legal framework in force, your personal data will be stored for as long as the relevant provisions require.
When processing is performed under a contract, your personal data are stored for as long as is necessary for the execution of the contract and for the establishment, exercise, and / or support of legal claims under the contract.
For marketing and promotion purposes, your personal data are kept until your consent is revoked. This can be done by you at any time. The revocation of the consent does not affect the legality of the processing based on the consent in the period prior to its revocation.
To revoke your consent, contact the Data Protection Officer (DPO) of BCA College at the following contact details: email: dpo@bca.gr
Every natural person whose personal data are being processed by BCA College enjoys the following rights:
Right of access:
Right of correction:
Right of deletion:
Right to restrict processing:
Right to object:
You have the right at any time to object to the processing of your personal data in cases where, as described above, this is necessary for the purposes of the Company’s legitimate interests.
Right to data portability:
You have the right to receive your personal data free of charge in a form that will allow you to access, use and process them with the commonly used processing methods. You also have the right to ask the Company, if it is technically possible, to forward the data directly to a third party. This right exists for the data that you have provided to the Company and their processing is carried out by automated means based on your consent or is subject to the execution of a relevant contract.
To exercise any of the above rights and for any relevant information you can contact the Data Protection Officer (DPO).
Right to lodge a complaint to the Hellenic DPA
You are have to right to lodge a complaint with the Hellenic Data Protection Authority at www.dpa.gr. Telephone Centre: +30 210 6475600, Fax: +30 210 6475628, email address: contact@dpa.gr.
BCA College implements appropriate technical and organizational measures aimed at the safe processing of personal data and the prevention of accidental loss or destruction, unauthorized and / or illegal access to, use, modification or disclosure. In order to ensure the appropriate level of security against risks and to select the appropriate technical and organizational measures, the Company takes into account the latest technological and other developments, application costs, the nature, framework and purposes of the processing activities, as well as on the one hand, the probability of accidental loss or damage and unauthorized and / or unauthorized access to personal data, its use, modification or disclosure, and on the other hand the severity of the consequences on the rights and liberties of natural persons.