en
en
Security & Personal Data Protection Policy
The Bar Academy Lifelong Learning Center O.E., hereinafter referred to as the “CENTER,” recognizes the importance of protecting personal data of individuals and ensuring lawful and proper processing. In this context, the CENTER complies with the fundamental principles of personal data processing, respects the rights of individuals, and ensures that the personal data it holds:Are collected with the consent of the individual where required.Are collected for specific, explicit, and legitimate purposes.Are processed only for the purposes for which they were collected and/or for legal and regulatory reasons and/or for the protection of public interest.Are not further processed beyond the defined purpose.Are adequate, relevant, and limited to what is strictly necessary for the purposes of processing.Are processed lawfully according to individuals’ rights, are accurate and updated when required, especially before taking critical decisions regarding individuals.Are not retained for longer than necessary for the purpose of processing and/or compliance with the CENTER’s regulations.Are safeguarded against unauthorized access, loss, or destruction.Are transferred to third parties only under the condition that adequate protection is ensured.Please read carefully these terms and the Security & Personal Data Protection Policy of our CENTER. By using our websites and/or signing the relevant consent form, where applicable, you unconditionally accept the practices described herein. The terms govern our contractual relationship going forward and are incorporated into the terms of use of each of our services.
1. What constitutes your personal data
Your personal data include any information, in paper or electronic form, that can directly or indirectly lead to your unique identification/recognition as a natural person. This may include, depending on the case: full name, physical and electronic addresses (emails), academic and professional background, phone numbers, and any other information that allows your identification in accordance with the General Data Protection Regulation (GDPR 2016/679), applicable Greek legislation, and decisions of the Hellenic Data Protection Authority (HDPA).
2. What personal data we collect
For example, we process and protect your personal data lawfully and in accordance with the legal and regulatory framework for Higher Education institutions. Data may be collected from: your seminar applications, participation in training, implementation of seminars, promotional/marketing activities, and general communication/support/information.
3. Processing with your explicit consent
The CENTER uses your information for lawful processing purposes in the context of our contractual relationship or with your explicit consent (which you can withdraw at any time). Such purposes include:Managing data in the context of educational program implementation.Providing support regarding our services and responding to inquiries.Ensuring internal quality control of our services.Providing information on our services and educational programs.Sharing data with external partners for enrollment, training, and technical support.Internal operations and analysis (management, fraud prevention, billing, accounting, auditing).Analyzing website traffic and improving your experience.At any time, candidates may change preferences or request deletion of their personal data by emailing: dpo@baracademy.gr.
4. Principles of collection and processing
This Policy informs you about the terms of collection, processing, and transmission of your personal data we may collect as Controllers or Processors.Our CENTER and its trained staff apply all GDPR principles (lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation, integrity, confidentiality, and accountability).We also safeguard your rights (information, access, rectification, deletion, restriction of processing, portability, objection, and non-automated decision-making), as provided in GDPR and Greek law.
5. Methods of data collection
We collect your personal data with your consent and acceptance of service terms, such as:When you call us, email us, or fill out an application for information or programs.During training sessions.When you provide addresses for billing or certificate delivery.When you voluntarily subscribe to mailing lists (printed, electronic, SMS).When you visit our websites, where cookies collect necessary device/browser data.
6. Data minimization, storage, and deletion
We always request the minimum legally required personal data.We retain your data only as long as required by our internal regulations, relevant education law, tax law, or other legal framework. Afterward, data are anonymized or destroyed. You can request to review, correct, or delete your data unless retention is legally required.
7. Cookie Policy
In compliance with the European e-Privacy Directive 2009/136/EC, our website (https://www.baracademy.gr/) uses cookies. Cookies are online tools used to collect and analyze information from third-party websites or social media platforms in order to measure traffic, improve the functionality, content, and overall appearance of our website, and adapt it to the needs of our customers.By using our website, you agree (opt-in) to the processing of your personal data collected by search engines or social networks such as Google Analytics, Facebook social plug-ins, Google+, etc. These are beyond the control or influence of our Center and may be transferred within or outside the European Economic Area (28 EU Member States plus Iceland, Liechtenstein, and Norway). These third parties are solely responsible for such data.We use cookies because they allow us to manage user sessions, improve the browsing experience of our site, adapt advertising and other content to your needs and interests, and collect anonymous statistics that help us understand how you use our site and improve its structure and content. We cannot identify you personally from this information.Strictly necessary cookies are essential for the proper functioning of the website, allowing you to browse and use its features, such as accessing secure areas or completing forms. These cookies do not identify you personally. Without them, the site cannot function effectively.Performance cookies collect information about how visitors use the site, such as which pages are visited most often or if error messages appear. These cookies gather aggregated, anonymous data and are used to improve the site’s performance.Targeting and advertising cookies provide content that matches your interests. They may also be used to deliver targeted advertising on websites you visit or on social media platforms based on your browsing behavior.Functionality cookies allow the site to remember user preferences and provide improved, personalized features. The information collected may be anonymized and does not track browsing activity on other websites. These cookies may be set by us or by third-party providers. If you do not accept them, some features of the site may not function properly.Third-party cookies include Google Analytics, a service provided by Google Inc. Google Analytics uses cookies to analyze how users interact with the site. Google provides aggregated statistical data to Bar Academy about how visitors use the website. These cookies can track data such as how long you stay on the site and which pages you visit.For more information about Google Analytics and data privacy, visit http://www.google.com/analytics/learn/privacy.html. To opt out of Google Analytics tracking across all websites, visit http://tools.google.com/dlpage/gaoptout.Social media cookies are necessary to link your social media account with our site. For example, they allow you to share or repost content from our site with your friends on social networks or follow our page. These cookies are not required for browsing our website.Tracking cookies record visitor behavior on the site using third-party tracking codes such as Google Analytics and Facebook. This information does not contain personal data and is collected for reasons such as measuring site traffic, ad performance, and showing ads on third-party sites (remarketing). If you do not want third parties like Google, Facebook, or Twitter to receive information from your browser when visiting our site, you can opt out by adjusting your preferences as outlined in the usage policies of each third-party service.Although most browsers accept cookies automatically, you can change your settings to refuse cookies or to be asked before accepting them individually. However, doing so may limit your browsing options and the features available on websites.For more information about cookies, visit http://www.allaboutcookies.org/
8. Transfer of your data to third parties
Our Center does not generally transfer your personal data to third parties, except when clearly required by law or regulation, or when necessary to complete a service and fulfill requests related to the services we provide. Such third parties may include program instructors, partner organizations, platform support staff, or in cases where we must comply with legal or regulatory obligations for educational institutions, or prevent unlawful actions against us or our trainees (such as fraud, defamation, violation of personality rights, etc.). We work with reputable instructors and partners and seek to impose contractual restrictions on any third parties who may receive your personal data, to ensure, as far as possible, that they use it in accordance with this Policy and applicable European and international data protection laws.
9. Security of your personal data
We take appropriate technical and organizational measures to ensure that your personal information is transferred, stored, and processed according to proper security standards and procedures, and in line with this Policy and applicable data protection laws. Our Center has trained and responsible staff and recognizes the importance of protecting your privacy and all your personal information. For this purpose, we apply security policies and use technical and operational tools such as data encryption, firewalls, access levels, authorized staff, employee training, regular audits, and compliance with international standards of security and business continuity. Any partner with access to your information uses it exclusively to serve the above purposes. We share the information you provide only in the ways described in this Policy and according to your explicit and specific consent for each type of processing, which you may revoke freely at any time by contacting us.
10. Targeted advertising
We may use your personal data together with other information we have collected (basic contact details such as name, company, phone, address, email), following human review by our Sales Department or other staff, in order to carry out marketing activities (emails, newsletters, etc.) for your better information. However, we do not use automated tools to identify or evaluate your consumer profile or general preferences in combination with other personal information (such as your email address) to display ads or send you personalized offers. Furthermore, we do not share your personal data with third parties so they can send you advertising unless you have explicitly consented to it.
11. Links to third-party websites
Our websites may contain links leading to third-party websites, maintained entirely by those independent entities (e.g., consulting companies or related services), which we do not control. We therefore bear no responsibility for the content, actions, or policies of those websites. Please read carefully the privacy policies of the different websites you visit, as they may differ significantly from ours.
12. Unsolicited commercial communication
Our Center does not allow the use of its website or services for sending mass or unsolicited commercial email (spam). Nor do we allow the sending of messages to or from our trainees that use or contain invalid or falsified headers, invalid or non-existent domain names, origin-hiding techniques, false or misleading information, or that otherwise violate website terms of use. We do not permit or authorize any attempt to use our services in a way that could damage, disable, overburden, or interfere with our services. If we determine that any unauthorized or inappropriate use is being made of our services, we may, at our sole discretion and without notice, take measures such as blocking messages from a specific domain, mail server, or IP address. We may immediately delete any account using our services that transmits or is connected with the transmission of messages that violate this policy.
13. Contact for questions or comments
If you have questions or comments about this Privacy and Data Protection Policy, or if you believe that we have not adhered to the principles outlined here, please send us an email at dpo@baracademy.gr.
14. Validity of the Privacy and Data Protection Policy
This Policy was published by our Center on 12/05/2018 and is subject to periodic improvement and revision. Any changes will apply to information collected from the date of publication of the revised version and also to existing information we hold. Use of the website after changes are published implies your acceptance of those changes.
Subscribe to our newsletter to stay informed about industry news and Bar Academy offers.