Privacy
Print pageSend page
The General Data Protection Regulation (GDPR) (EU) 2016/679 is a regulation in EU law on data protection and privacy for all individuals within the European Union. It also addresses the export of personal data outside the EU. The GDPR aims primarily to give control to citizens and residents over their personal data and to simplify the regulatory environment for international business by unifying the regulation within the EU.

Kalimbassieris Maritime respects your privacy and is committed to protecting your personal data.

The purpose of this privacy notice is to inform individuals and possible data subjects about what Kalimbassieris Maritime does to protect personal data and comply with the European “General Data Protection Regulation” (GDPR).

Definitions

“Kalimbassieris Maritime” means Kalimbassieris Maritime Group of companies with offices in Greece, Romania, Bulgaria, Cyprus, Turkey and Egypt.

“Personal data” means any information relating to an identifiable natural person who can be identified directly or indirectly by reference to an identifier. The GDPR applies to both automated personal data and to manual filing systems where personal data are accessible according to specific criteria.

Who is responsible & who you can contact

Kalimbassieris Maritime has appointed a Data Protection Officer (DPO) to advise and inform staff, monitor compliance with GDPR and be the first point of contact to relevant supervisory authorities and for individuals whose data is processed.

If you have any queries about how Kalimbassieris Maritime is using your Personal Data and/ or wish to exercise any of your aforementioned rights, you may contact our DPO:

Name: Adam Voumvas
Phone:
+30 2104294444
E-mail: dpo@kalimbassieris.com

The Purposes of which Kalimbassieris Maritime collects and process your personal data

Kalimbassieris Maritime collect and process your personal information, where such processing is reasonably necessary, for the purposes of:

  • Administering and handling claims
  • Complying with our legal and regulatory obligations under applicable law
  • Recruiting personnel and fulfilling duties as an employer
  • Marketing, arranging events

What kind of data we collect and process

Kalimbassieris Maritime may process the following categories of Personal Data:

  • Personal information: name, title, gender, date and place of birth, marital status, nationality, residence status, education level, profession, working and professional status, nationality.
  • Contact data related to Clients, Brokers, Ship Managers, Workshops, Public Services and/or other relevant connections to Kalimbassieris Maritime’s business.
  • Payment details: invoice and payment records, billing address, bank account number or credit card number, cardholder or accountholder name, SWIFT and IBAN details, payment date and payment amount, records of cheques.
  • Information about current and/or former employees, personnel representatives and temporary manpower.
  • Information about persons involved in a recruitment process

Kalimbassieris Maritime may also collect sensitive personal data (e.g. medical information) when needed to process personal injury/illness claims cases. This information will only be used for the specific purposes for which it was provided and to carry out agreed service.

Where information is obtained

Most personal data are obtained directly from you or from third parties (clients, brokers, law enforcement authorities) who provide it to us.

In addition, Kalimbassieris Maritime may collect personal data that you choose to make public, including via social media.

The legal basis for lawful processing

Most of the contact information is processed because it is necessary for the performance of the day to day business with our clients. Contact information processed for marketing purposes only, is based on consent when required.

Personal information and health information related to personal injury/illness claims are processed to fulfil the legal obligations of the Controller and such processing is necessary to process legal claims.

Employee information is processed as it is necessary for the performance of a contract. The use of employees’ photos is based on consent.

Disclosure of Personal Data to third parties

Kalimbassieris Maritime may disclose your Personal Data to:

·         You and, where appropriate, your appointed representatives.

·         Legal and regulatory authorities for the purposes either of reporting any suspected breach of applicable law or regulation or exercising/ defending our legal rights.

·         Lawyers, auditors, accountants and any other outside professional advisors to Kalimbassieris Maritime.

·         Shipping companies, insurance companies, software providers, agents and any other third-party Processor.

·         Any relevant party for the purposes of prevention, investigation, detection, or prosecution of criminal offences or the execution of criminal penalties.

Transfer of your Personal Data outside EEA

Personal Data will only be transferred to countries outside the EEA if:

·         It is required for fulfilling our contractual obligations and only in accordance to GDPR provisions.

·         You have granted Kalimbassieris Maritime your consent

·         It is required by Law

How long will personal data be retained

We take every reasonable step to ensure that your Personal Data are only retained for as long as they are needed in connection with a lawful purpose. Retention of specific personal data may be necessary for one or more of the following reasons:

  • To fulfil statutory or other regulatory requirements;
  • To evidence events/agreements in case of disputes;
  • To meet our operational needs;
  • To save data for statistical purposes.

Personal data that is collected and subsequently not used for any business purpose will be regularly reviewed and may be deleted.

On termination of our business relationship, Kalimbassieris Maritime may keep your Personal Data for up to five (5) years. We may keep your Personal Data for longer than five (5) years if we cannot delete them for legal and/or regulatory and/or technical reasons. 

The right to withdraw consent

In situations where Kalimbassieris Maritime requests and receives consent to perform processing, we are also obliged to stop such processing, if you, as data subject decide to withdraw your consent. Withdrawing consent is as straightforward as giving consent. Withdrawing consent cannot be back-dated so it has no effect on processing already performed during the period of consent.

Data subject’s rights to access, change, delete, restrict, object, request a copy

You have the following rights regarding the personal data we store on your behalf:

  • access to a copy of your personal data;
  • object to certain processing;
  • stop receiving direct marketing material;
  • have inaccurate personal data rectified;
  • request to erase your personal data;
  • transfer your personal data to another Controller;
  • file a complaint regarding the processing of your personal data with a Data Protection Authority.

Should you ever wish to exercise any of these rights, please contact the Data Protection Officer.

Data Security

Kalimbassieris Maritime is committed to ensuring that your information is secure. In order to prevent unauthorized access or disclosure we have implemented appropriate technical and organizational security measures to safeguard, secure and protect the personal and confidential information we process from destruction, loss, access, alteration and circulation of your data by unauthorized third parties.

Because the internet is an open system, the transmission of information via the internet is not completely secure. Although Kalimbassieris Maritime will implement all reasonable measures to protect your Personal Data, we cannot guarantee the security of your data transmitted to us using the internet – any such transmission is at your own risk and you are responsible for ensuring that any Personal Data that you send to us are sent securely.

Staff Training

Kalimbassieris Maritime is committed to making staff aware of the requirements under relevant privacy legislation and GDPR. Our staff are aware that personal or sensitive data can only be disclosed in limited circumstances.

Changes to our Privacy Statement

We reserve the right to amend this privacy statement from time to time.