PRIVACY POLICY – PERSONAL DATA PROTECTION
In accordance with Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR) and respecting your privacy, we would like to inform you about the Personal Data Protection Policy applied by the Non-Governmental Organisation “AristoTales”.
1. General Information
The purpose of this Privacy Policy is to provide you with information regarding the processing of your personal data in the context of your interaction with our Organisation, whether as a programme participant, applicant, employee (former, current or prospective), volunteer, or in any other form of communication with us.
1.2 Data Controller
The Data Controller, in accordance with Article 4(7) of the GDPR, is:
AristoTales, Non-Governmental Organisation
Address: Stratoni, Chalkidiki, Greece
1.3 Data Subject Rights
As a data subject, you have the following rights under Articles 15 et seq. of the GDPR:
Right of access
Right to rectification and erasure
Right to restriction of processing
Right to data portability
Right to object
You also have the right to lodge a complaint with a supervisory authority regarding the processing of your personal data.
1.4 Disclosure to Authorities
Where required by law, we reserve the right to disclose your information to competent authorities or law enforcement bodies.
2. What Information We Collect
In the context of your communication with our Organisation, we may collect personal data such as:
Full name
Telephone or fax number
Postal address
Tax Identification Number (TIN)
Tax Office
IP address
In cases of participation or application, we may also collect special category data (e.g. health data), where necessary for the proper implementation of programmes.
Data is collected directly from you via telephone, email, contact forms, or interaction with our staff. Some data may also be collected automatically through technologies such as cookies.
If you are under 16 years old, parental consent is required before using our services.
2.1 Cookies
Our website uses cookies, which are small text files stored on your device to enhance user experience.
Types of cookies used:
Strictly necessary cookies (Type A)
Functionality and performance cookies (Type B)
Consent-based cookies (e.g. marketing) (Type C)
Strictly Necessary Cookies (Type A)
These are essential for the operation of the website and do not require consent.
Legal basis: Article 6(1)(b) GDPR.
Functionality & Performance Cookies (Type B)
These improve user experience and collect anonymised data regarding website usage.
Legal basis: Article 6(1)(f) GDPR.
Consent-Based Cookies (Type C)
These include marketing cookies and are used only with your explicit consent.
3. Purpose of Data Collection
Your data is used solely for purposes related to your contractual, voluntary, or employment relationship with our Organisation.
3.1 Participants / Volunteers
We process contact and identification data to:
register participation
implement programmes
communicate regarding activities
3.2 Employees / Trainers
Data processing occurs for:
recruitment procedures
payroll and legal obligations
participation in programme delivery
3.3 Recipients
Your data is processed by authorised staff responsible for programme implementation.
4. Data Transfers
Your data may be shared with:
external accountant
website service provider
European funding bodies
partner organisations (including outside the EU where applicable)
We do not sell, rent, or commercially exploit your personal data.
5. Data Retention Period
Your data will be retained for up to 15 years, where necessary for operational, legal, or legitimate interest purposes.
No promotional communication will be sent without your prior consent.
6. External Links
Our website may contain links to third-party websites. This policy does not cover those sites, and we bear no responsibility for their content or practices.
7. Your Rights
Under GDPR, you may exercise:
Right to be informed
Right of access
Right to rectification
Right to erasure (“right to be forgotten”)
Right to restriction
Right to object
Right to data portability
These rights may be limited where legal obligations apply.
8. Data Security
We implement appropriate technical and organisational measures to protect your data. However, we cannot guarantee absolute security despite taking all reasonable precautions.
9. Contact
For any questions or requests regarding this policy:
Tel: +30 6974378332
Email: info@aristotales.gr
This Privacy Policy was last updated on 31/08/2025.
CHILD PROTECTION POLICY
Legal Framework
Our organisation operates in accordance with national legislation and the UN Convention on the Rights of the Child (Article 19).
Operational Framework
We implement child protection policies through:
Safe programme design and risk management
Prevention of harm by staff, volunteers, and partners
Codes of conduct and safeguarding procedures
Safe delivery of activities and events
All staff are required to be fully aware of child protection responsibilities.
Zero Tolerance Policy
AristoTales adopts a zero-tolerance approach to child abuse, ensuring:
children feel safe, protected, and supported
all staff and stakeholders understand and follow safeguarding policies
full compliance with legal and organisational frameworks
Prevention of Abuse
Our approach prioritises prevention through:
training for children, staff, and volunteers
education on rights and personal safety
encouragement and support for reporting incidents
Reporting Incidents
All suspected or confirmed incidents must be handled:
immediately
confidentially
with priority given to the best interests of the child
