Maptheya - Privacy Policy
For the purposes of the General Data Protection Regulation (EU) 2016/679 of the European Parliament and of the Council on the Protection of Personal Data ("GDPR") and the relevant Greek legislation Law 4624/2019, the Data Controller is the company “CONSORTIS GEOSPATIAL LP”
CONSORTIS GEOSPATIAL LP ("CONSORTIS GEOSPATIAL", "we", "us", "our", "Company") is committed to protecting and respecting your personal data when you use the Company's online platforms and mobile applications ("Applications"). This Privacy Policy, together with the other GDPR documents (Terms of Use, Website Privacy Policy, Cookies Policy) posted at http://consortis-geo.consortis.gr/en/, set out the basis for the processing of personal data collected from you and processed as part of the provision of our services.
Please read the following carefully to understand our practices regarding the processing and management of your personal data through our Application, "Maptheya".
To better manage our water and sewerage networks, we have created and use Maptheya, a web-based platform to manage our water and sewerage networks. Maptheya processes your personal data for the sole purpose of providing you with the best possible service. The purpose of the application is to make it easier to manage water and sewerage networks by displaying them on a digital map and collecting all available information in a database. Maptheya provides multiple possibilities for the management of water supply and sewerage networks and in particular enables the creation, search, editing and/or deletion of all components of water supply and sewerage networks, displays and allows the editing of their descriptive characteristics.
As part of our services, we collect all the required information concerning you and prepare the project file for each project. All the information we collect in this context is stored electronically and securely in our SQL database. For the best possible management of water and sewerage networks, we use Maptheya. In Maptheya, an account is created for each customer with a username and password and all personal details are entered, including, but not limited to, full name, telephone number and e-mail. This account is kept in our possession until the project is completed. Once the project is completed and the database is delivered to the client, the client may change their passwords and/or create/modify classified user access and continue to use the application for their own personal purposes and at their own risk.
The personal data of natural persons that are processed when using the Maptheya application are the following:
- Username and password to log in to the application.
- Name, phone number, e-mail address of the customer.
- Data necessary for the basic functions of the application, such as navigation and access to secure areas of the application (necessary cookies) and, upon explicit consent, browsing data for analytical purposes (e.g. traffic monitoring), and for statistical purposes (Browser Type, Operating System, Internet Protocol Addresses (IP)).
The processing of your data through Maptheya is necessary for the implementation of your contract with Consortis Geospatial, in accordance with article 6 par. 1b of GDPR. We collect and process personal data solely for the aforementioned purposes and only to the extent strictly necessary to effectively serve these purposes. This data is in each case relevant, appropriate and no more than is required in view of the aforementioned purposes, and is accurate and, if necessary, subject to updating. The personal data collected shall be kept only for the time necessary to achieve these purposes, without prejudice to the more specific provisions laid down by the legislation in force. After the expiry of the aforementioned periods, the data shall be deleted-destroyed in a secure manner, unless the continuation of their retention is provided for by the applicable legislation, such as in the case of a civil case or investigation of a criminal offence, a tax audit, etc.
In accordance with the specific provisions of Article 8 par. 1a of GDPR in conjunction with Article 21 of the Law 4624/2019, minors under the age of fifteen (15) years are prohibited from disclosing their personal data through the application without the prior consent of their guardian.
The processing of your personal data is carried out in a way that ensures its confidentiality. We take all appropriate organizational and technical measures to ensure the security of the data and to protect it from accidental or unlawful destruction, accidental loss, alteration, unauthorized disclosure or access and any other form of unlawful processing. We undertake that in the event of a breach of our database we will inform the Data Subjects as well as the Data Protection Authority within 72 hours of the breach.
The recipient of your personal data is us as well as those who process it on our behalf (accountant, web hosting provider and lawyer). Where we use an external company or partner, we use contractual obligations and other appropriate means to ensure that the Data Subject's personal data is used in a manner consistent with applicable law and this Policy. We guarantee that we will not transfer, disclose or make your personal data available to third parties for any other purpose or use. However, we reserve the right to disclose information relating to you if the law introduces a corresponding obligation to do so or if such disclosure is required by a court order, prosecutor's order or writ or decision of another person or administrative body with statutory authority to compel disclosure of such information.
According to the GDPR (Articles 15-18, 20-21 GDPR) you, as a Data Subject, have the right of access to data, rectification, erasure, restriction of processing, data portability and opposition. If you wish to exercise any of these rights, please:
- contact us using the contact details of the Company's Data Protection Officer (DPO): Evi Diakou, tel: +30 2310 889336, dpo@consortis.gr
- provide us with sufficient information to identify you; and
- provide us with details of your request.
All questions, comments and requests regarding this Privacy Policy should be directed to our DPO's email address: dpo@consortis.gr
If you believe that the protection of your personal data is in any way affected, you can also appeal to the Personal Data Protection Authority at the following details:
Personal Data Protection Authority
www.dpa.gr
1-3 Kifissias Street, 115 23, Athens, Greece.
Phone 210 6475628
E-mail: complaints@dpa.gr
This Policy and the personal data protection terms contained herein may be subject to change, you should therefore regularly review the contents of this Policy and check for any changes.
Last update: 08.12.2024