The Municipality of Patras offers its website https://catalog.data.patras.gr/
and the webpages related to it for use under the following terms of use, which visitors/users are asked to read carefully and to visit/use the webpages/applications only if they fully accept them. Visiting and using this website implies the unconditional and explicit acceptance of these terms.
Except for the stated exceptions (third-party, partners’ and organizations’ copyrights), all content of the website—including, indicatively but not limited to, texts, news, graphics, photos, designs and services provided—is the intellectual property of the Municipality of Patras and is governed by national, European, and international provisions on Intellectual Property. Consequently, none of the above may be, in whole or in part, modified, sold, or exploited in any way. An exception is the case of saving a single copy of part of the content on a simple personal computer, for personal and not public use, always under the condition that the source is cited and that the relevant intellectual property rights are in no way affected. Visitors/users understand and accept that they are not granted the right to modify, sell, resell, and/or exploit in any way all or part of the content of the web portal.
All informational material contained on this website is provided “as is” and “as available.” Although every effort is made to ensure that the information provided on “e-patras.gr” and the webpages related to it is as accurate, complete, true, up-to-date, and available as possible, the Municipality of Patras does not guarantee the correctness and accuracy of this information, which the visitor uses exclusively at their own responsibility. The Municipality of Patras bears no liability, direct or indirect, for any claims of a legal, civil, or criminal nature, nor for any (positive, special, or consequential) damage suffered by the user/visitor of this website or the webpages related to it.
The Municipality of Patras makes every possible effort to ensure the proper operation of its website and the webpages related to it, although it does not guarantee that the functions of its servers will be uninterrupted or error-free, or free of viruses or other similar elements. Therefore, it is not responsible for any interruption of the operation of the website and the services provided or for any type of damage caused to the user by such interruption.
The Municipality of Patras does not manage third-party websites to which it refers via hyperlinks or advertising banners and bears no responsibility for their content.
Links to other websites are provided for the convenience of users of the Municipality of Patras website, without implying: (a) that it endorses or accepts the content or services of external websites; (b) that it accepts any relationship with the owners of those external websites; (c) that it provides any guarantee regarding personal data protection, availability, quality, completeness, or correctness of the information and services contained on third-party websites, or regarding security from virus transmission; (d) the assumption of responsibility for any misuse of the information contained on external websites. Consequently, for any problem that arises during the visit/use of external websites, the user must contact those websites and their owners directly, who bear the relevant responsibility. The Municipality of Patras is not liable for any damage that may be caused by the use of links to other websites, as well as for information that may be included on the linked pages.
The Municipality of Patras reserves the right and exclusive discretion to: (a) make additions, improvements, and/or modifications to any information and/or service and/or software provided on this website and the webpages related to it without notice; (b) cease providing any service and/or software and refrain from publishing on its website and delete from it any information or material provided or posted by the user at any time without notice, primarily but not exclusively for reasons of functionality, security, or other necessary reasons; (c) use suggestions or information provided by users in any manner it deems appropriate within lawful use (such as in cases of personal data protection).
The Municipality of Patras is the sole owner of the information collected on this website. Any personal data and any other information collected from “e-patras.gr” and the webpages related to it are used exclusively for the processing of electronic services and are in no case sold, rented, or otherwise transmitted and/or disclosed to third parties. An exception is the case where the disclosure of data is required by an explicit provision of law and exclusively to the competent authorities. “e-patras.gr” and the webpages related to it collect information from their visitors/users at various points on the website.
The collection, processing, and management of personal data by “e-patras.gr” and the webpages related to it are subject to the terms of this privacy statement as well as to the relevant provisions of Greek legislation and European law on the protection of the individual and of personal data, as applicable. The visitor/user of “e-patras.gr” and the webpages related to it retains all rights arising from Greek and European provisions, including the rights of access, rectification, supplementation, and deletion of their personal data.
Minors may access the website and the services provided only with the consent of their parents/guardians and are not required to disclose their personal details.
Also, “e-patras.gr” and the webpages related to it are not responsible for cases of personal data collection by linked websites that are not managed by the Municipality of Patras. This privacy statement applies only to the personal data collected, processed, and managed by “e-patras.gr” and the webpages related to it.
The Municipality of Patras’ website may provide the visitor/user of its services with the opportunity to participate in various polls on current issues, which it sets out in the form of questions. “e-patras.gr” and the webpages related to it determine the specific terms for participation in each poll and also reserve the right to discontinue it. The responses to the above are recorded, analyzed, and commented on by the Municipality of Patras in order to draw conclusions regarding public opinion on a specific topic put to a vote. The Municipality of Patras has the exclusive right to collect and exploit the above data, and any conclusions derived therefrom constitute its intellectual property.
The end user and visitor of the “e-patras.gr” website and the webpages related to it expressly and unreservedly agrees, covenants, and accepts, by using the above websites, the following operating rules: (a) messages about illegal software, protection-bypassing software, or references to illegal acquisition of protected content are prohibited; (b) abusive messages, hate messages, racist messages, or any other messages or content that may offend the personality, dignity, or reputation of users of “e-patras.gr” and the webpages related to it or of any other natural or legal person are prohibited; (c) any objections to interventions by the Administrators of the “e-patras.gr” website and the webpages related to it must be submitted by message to the Administrator—via the email address pliroforiki[at]patras.gr—and not publicly.
The visitor/user of “e-patras.gr” and the webpages related to it is obliged to comply with the applicable provisions of Greek, European, and international law and the relevant legislation governing telecommunications. They must also refrain from any unlawful and abusive use of the content and services of this website and the webpages related to it. Any damage caused to the “e-patras.gr” website and the webpages related to it by the visitor/user due to improper and unfair use of the relevant services falls exclusively within their sphere of responsibility. In the event that any action, claim, administrative or judicial, arising from any form of violation by the user is brought against this website, the user undertakes the obligation both to intervene in the relevant judicial process and to indemnify the website in the event it is obliged to pay compensation or other expenses.
The Municipality of Patras reserves the right to modify, add to, or alter the content or services of its website, as well as these terms of use, whenever it deems necessary, without prior notice.
This user agreement is governed by the provisions of Greek and International Law, as well as the directives and Regulations of European Law. It is interpreted based on the rules of good faith, commercial ethics, and the economic and social purpose of the right. Should any provision be deemed contrary to the law and therefore invalid or voidable, it shall automatically cease to apply, without in any way affecting the validity of the remaining terms. The competent courts for any disputes arising from this agreement are the Courts of Patras.
If you have identified any problems in the content of the websites managed by the Municipality of Patras that relate to legal or moral issues, please notify us at protodp [at] patras.gr so they can be addressed.
PERSONAL DATA PROTECTION POLICY
The Municipality of Patras, wishing to safeguard your personal and sensitive personal data, has implemented all necessary technical and organizational measures as defined by the General Data Protection Regulation (EU) 2016/679. Protecting your privacy and safeguarding the confidentiality of your information and data is a fundamental priority for us.
This policy sets out the legal framework under which your data is collected and processed; the types of data we collect and process; the process and purpose of their collection; the period for which they are retained; and the reasons for which they may be disclosed to third-party partners if required. It also discloses and analyzes all your rights and the steps you can take to exercise them.
This notice provides any person who receives or is interested in receiving services from the Municipality with concise, accurate, and transparent information regarding the practices followed for the management and protection of personal data.
The Municipality reserves the right to amend and adjust this Policy whenever it deems necessary, with changes taking effect upon their public appearance on the website https://catalog.data.patras.gr/
and at the reception points of our facilities.
A Data Protection Officer (DPO) has been appointed at the Municipality, with whom you may get in direct contact for any related matter at tel.: 2111133583 and email: dpo@patras.gr
.
Introduction
Personal Data
Personal data is any information relating to an identified or identifiable natural person (“Data Subject”) (e.g., name, ID number, address, etc.). Data concerning racial or ethnic origin, political opinions, religious or philosophical beliefs, membership in a trade union, genetic data, health data, sex life, sexual orientation, etc., for the purposes of this document are included in the general term “personal data,” but constitute a special category of data, hereinafter called “sensitive personal data.”
Processing
Processing is any operation or set of operations performed on personal data or on sets of personal data, with or without automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, information search, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Controller
The Controller is the natural or legal person, public authority, agency, or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data. Where the purposes and means of such processing are determined by Union or Member-State law, the controller or the specific criteria for its nomination may be provided for by Union or Member-State law.
Processor
The Processor is the natural or legal person, public authority, agency, or other body which processes personal data on behalf of the controller.
Data Protection Officer (DPO)
The DPO independently oversees the strategy and compliance of the controller and the processor with GDPR (EU) 2016/679 and mediates among various stakeholders (e.g., supervisory authorities, data subjects). The role is advisory (not decision-making) and the DPO bears no personal liability for non-compliance with the Regulation.
Legal framework for personal data protection
At the Municipality we collect and process your personal data in accordance with this privacy notice and:
in compliance with EU Regulation 2016/679,
the applicable Greek data protection legislation,
the applicable legal framework for the provision of services offered by the Municipality, and
the consents we obtain (in cases where there is no other lawful basis for processing).
This notice provides you with the necessary information regarding your rights and obligations and explains how, why, and when we collect and process your personal data.
Personal Data we collect
During your visit and for the provision of services by the Municipality, a variety of personal and sensitive personal data is collected:
In electronic form.
In paper form.
In a combination of the above,
in order to provide our services to you. This information will henceforth form part of the Municipality’s records and will be retained for as long as defined by the applicable legislation depending on the category of data/documents to which they belong.
Our staff will have access to your personal data to the extent necessary for the performance of their duties; however, such access will be limited in scope according to their responsibilities. All staff are bound by employment-contract clauses of secrecy, confidentiality, and non-disclosure regarding information they become aware of, while all employees follow the Public Servants’ Code of Conduct, which aims to protect the confidentiality of information. Given the importance of confidentiality and protecting your privacy, we carry out strict regular audits to protect your data and periodic staff training to ensure proper adherence to procedures as defined by applicable law.
The Municipality processes only the personal information required to meet legal, regulatory, and contractual obligations and to provide its services to you. We will never collect unnecessary personal data from you, and we will not process your data in any way other than as described in this notice. We take every possible and appropriate measure so that data collection and processing include only what is strictly necessary. We acquire, maintain, and process only the data necessary for performing our services to you and meeting our legal obligations, and we retain it only for as long as necessary.
Our systems, employees, procedures, and activities aim to limit the collection of personal information to the extent necessary for the specified purpose. Minimizing the processing of personal data allows us to control and reduce risks and data-protection breaches and to support compliance processes with the applicable personal data protection laws and regulations.
Categories of Personal Data collected
Personal and sensitive data of children/minors
Personal and sensitive data of employees
Personal and sensitive data of partners/suppliers/contractors
Personal and sensitive data of Residents/Citizens
Indicatively:
Contact details: first/last name, marital status, home address, personal email, home phone, mobile phone, etc.
Demographic and identification details: date of birth, ID card number, passport number, Tax ID (AFM), Social Security Number (AMKA), etc.
Special-category personal data: racial/ethnic origin, medical information, religious beliefs, trade-union membership, genetic data, nationality, income data, etc.
Photographic and video material (upon obtaining relevant consent).
Video-surveillance material for public safety reasons.
How Personal Data is obtained
Personal data processed and stored by the Municipality may be obtained:
Orally, upon your arrival at the Municipality’s reception and service points.
By completing the documents and applications necessary for handling your matters.
Through the dedicated form on the Municipality’s website (e-patras.gr) which is received as an email message.
From persons accompanying you or who have the legal right to act on your behalf (your personal representative) if you are under 16 or unable to provide the information yourself.
Through the capture of photographic and video material.
Through the CCTV system.
Lawful basis for Processing
Within its operations and to fulfill its objective (providing services for the benefit of residents and the public interest), the Municipality receives and processes a multitude of personal and sensitive personal data based on the following legal bases:
Article 6(1)(b) GDPR: processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the data subject’s request prior to entering into a contract.
Article 6(1)(c) GDPR: processing is necessary for compliance with a legal obligation to which the controller is subject.
Article 6(1)(e) GDPR: processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller.
The need to perform obligations and exercise specific rights of the controller or the data subject in the field of labor law and social security and social protection law.
Article 9(2)(f) GDPR: processing is necessary for the establishment, exercise, or defense of legal claims or whenever courts are acting in their judicial capacity.
Article 9(2)(c) GDPR: processing is necessary to protect the vital interests of the data subject or of another natural person where the data subject is physically or legally incapable of giving consent.
The need to fulfill purposes of archiving in the public interest, scientific or historical research, or statistical purposes pursuant to Article 89(1) GDPR under Union or Member-State law, which are proportionate to the aim pursued, respect the essence of the right to data protection, and provide suitable and specific measures to safeguard the fundamental rights and interests of the data subject.
Consent, in cases where it is explicitly required for the processing of sensitive personal data not covered by the aforementioned legal bases. Note that such consent is obtained in writing. Please note that you may withdraw your consent by submitting a relevant request either at the registry office or to dpo@patras.gr
.
Purposes and reasons for processing your personal data
We collect and store your personal data, including special-category data, to provide services to you based on the legal bases listed above, specifically for:
Contractual agreement with you
Retaining data for historical reasons and future needs to document the cooperation
Our legitimate interest in providing services
Retaining data to enable the Municipality to respond to audits by authorities regarding the legality of procedures and payments
The exercise of rights and obligations arising from social security law
Maintaining and processing employee records in accordance with labor law
Your interest in receiving these services
The performance of a task carried out in the public interest
The establishment, exercise, or defense of legal claims or when courts act in their judicial capacity
Compliance with a legal obligation
Additionally:
We retain your special-category data for as long as required by law.
We may share your information with third (non-Municipality) entities only where required and:
When an official court decision has been issued.
When sharing information with the police may prevent a serious crime.
When you give us explicit instruction and authorization to do so.
When we must safeguard the legitimate interests of the Municipality or third parties, such as the collection of our claims through third-party agents (e.g., Tax Office, appointed attorneys) or a named complaint, etc.
When it is our legal obligation (e.g., tax authorities, social insurance funds) after you have been informed.
When a specific legitimate interest exists and is documented, after relevant prior notification to you and after you are given a reasonable period to submit any objections to the transfer.
When the transfer is necessary to protect the vital interests of the data subject or other persons, provided the data subject lacks the physical or legal capacity to provide consent.
Sharing and Disclosure of your Personal Data
We do not share or disclose your personal data without your consent for any purpose other than those set out in this notice or where required by law. The Municipality uses selected partners (acting as “processors” under the GDPR) to provide the services and business functions below; however, all processors acting on our behalf process your personal data in accordance with our instructions and fully comply with this privacy notice, the principles of the GDPR (EU) 2016/679, and any other appropriate confidentiality and security measure. Specifically, all selected partners have fully accepted the secrecy and confidentiality clauses set by the Municipality regarding data processing. Indicative categories of processors with whom we may share your data include:
External partners providing accounting support
Providers of IT systems and applications
External partners providing IT support
External audit partners (Internal Auditors, Certified Auditors, etc.)
External Legal Counsel
Occupational Physician
Safety Technician
Public Bodies (DIAVGEIA, KIMDIS, e-government platforms, etc.)
Protective measures
At the Municipality we take every reasonable technical and organizational measure and precaution to protect and safeguard your personal data. We work to protect you and your data from unauthorized access, alteration, disclosure, destruction, or any other processing, and we have implemented the necessary levels of security measures such as: specific policies and procedures; role-based access management; strong password controls; network security controls; perimeter security equipment and logical access software (firewall); business continuity measures; incident management; encryption; and continuous staff training in technical and organizational security measures.
How long we retain your data
At the Municipality we retain personal data only for as long as necessary, and we have implemented strict policies and procedures for reviewing and retaining your data to meet our obligations. Under Greek law, the records of Local Government Organizations (O.T.A.) are considered public records. Therefore, their retention is determined by Presidential Decree 480/1985 (“Disposition of the archives of Local Government Organizations and of their institutions, legal entities under public law, and their associations”). Under this Decree, records are kept from two (2) years to in perpetuity, depending on their usefulness and necessity. They are subsequently reviewed by the General State Archives and either destroyed or transferred to the G.S.A. storage facilities if characterized as historical.
If you have consented to our using your data for promotional actions and updates regarding the Municipality’s events and activities, we will retain this data until you notify us otherwise and/or withdraw your consent by sending a relevant request to dpo@patras.gr
.
Tax records are retained in accordance with tax legislation.
Cookies
Our website https://catalog.data.patras.gr/
, as is the case with almost all websites, operates using cookie technology.
Exercising your rights
Regarding personal data concerning you, you may exercise the following rights by submitting a relevant written request in person or through a lawfully authorized representative to the Municipality, or by sending your request by post with certified signature authenticity.
a) Right to information and access to all personal data that the Municipality holds and processes about you, the type of processing, the purposes of processing, the recipients or categories of recipients of your personal data, and the retention period.
b) Right to rectification. If you believe we hold incomplete or inaccurate data about you, you have the right to ask us to correct and/or complete that information.
c) Right to erasure of your personal data only in the following cases:
when your personal data is no longer necessary in relation to the purposes for which it was collected or otherwise processed;
when you withdraw the consent on which the processing of your personal data was based and there is no other legal basis for processing;
when the law provides for the obligation to erase your personal data or it was processed without the necessary legal basis.
d) Right to restriction of processing in the following cases:
when you contest the accuracy of your personal data and until the Municipality verifies its accuracy;
when, instead of erasure, you request the restriction of processing of your personal data;
when the Municipality no longer needs your personal data for processing purposes, but such data is required by you for the establishment, exercise, or defense of legal claims.
e) Right to data portability, i.e., the right to request the transfer of your data to another Organization either in Greece or abroad, or their delivery to you in a standardized electronic format on a portable storage medium (e.g., CD, DVD).
f) Right to object to the processing of your personal data, unless there are compelling and legitimate grounds for the processing which override your interests, rights, and freedoms, or for the establishment, exercise, or defense of the Municipality’s legal claims.
g) Right to object to direct or indirect marketing actions by us and/or to any automated decision-making process we may use.
The right to erasure does not apply if processing or retention of the data by the Municipality is mandatory and/or necessary under the law, as well as for the establishment, exercise, or defense of legal claims and rights or the fulfillment of its obligations.
To process any of the above rights, identification (via an official identification document or a duly signed authorization) is required to confirm that your personal data is protected and kept secure.
The Municipality will respond to your request free of charge, without delay and in any case within one month from receipt of the request, except in exceptional cases, in which the above deadline may be extended by two more months, if required, taking into account the complexity of the request, the volume of material to be processed, and/or the number of requests. The Municipality will inform you of any extension within one month from receipt of the request, as well as the reasons for the delay.
If it is not possible to satisfy your request, the Municipality will inform you without delay and at the latest within one month from receipt of the request of the relevant reasons and of the possibility to lodge a complaint with the Hellenic Data Protection Authority (HDPA), as well as your right to seek judicial remedy before the competent courts.
Submitting a Complaint
The Municipality processes your personal data only in accordance with this privacy statement and the relevant data protection laws. If, however, you wish to lodge a complaint about the processing of your personal data or are dissatisfied with how we have handled your personal data, you have the right to submit a complaint either to the Municipality’s Data Protection Officer at dpo@patras.gr
or in writing via the Municipality’s Secretariat. You also have the right to complain to the Hellenic Data Protection Authority (HDPA) [1-3 Kifisias Ave., 115 23 Athens, tel.: +30 2106475600, email: contact@dpa.gr
] if you believe your rights to the protection of your personal data are being infringed. You also have the right to seek remedy before the competent judicial authorities for the protection of your personal data.
GDPR Consent Form
Consent to receive communications from the Municipality regarding events and activities
Please note that the General Data Protection Regulation has been in force since Friday, 25 May 2018. Based on the new EU Regulation 2016/679 on the Protection of Personal Data (GDPR), our Municipality has aligned its Data Protection Policy with the applicable framework. Within this context, we safeguard your personal data and protect it both during collection and processing. You may check and update your contact details at any time by sending us an email at dpo@patras.gr
with the subject “Update of Personal Details.”
The Data Protection Officer of our Municipality is Mr. Apostolos Vlachos, representing the company EMERAV, with contact address in Athens, 20 Spyrou Foka St., 13562 Agioi Anargyroi, and telephone 211 11 33 583.
A. Information prior to consent:
Our database contains your contact details, which we use exclusively to manage your requests and carry out tasks defined by law and, upon your consent, to invite you to the Municipality’s actions and events. Your details are stored in electronic and physical files which, as appropriate, may be made available to other competent services within or outside the organization involved in processing your request. The data collected is used exclusively for the aforementioned purpose and will remain in our database for the period required by law. You may freely withdraw all or any of the consents below at any time. Withdrawal of consent does not affect the lawfulness of processing already carried out. At any time, by submitting a written request to our Municipality, you may exercise the following rights:
Right of access: You may be informed of the collection and processing of your personal data by the Municipality and have the right to receive a copy thereof.
Right to rectification: You have the right to update and correct any errors regarding your personal data.
Right to erasure: You may request the deletion of your data. By exception, we may refuse deletion according to applicable law.
Right to restriction of processing: You have the right to request restriction of the processing of your personal data.
Right to portability: You have the right to receive, in a structured, commonly used, and machine-readable format, the personal data you have provided to us about yourself.
Right to object: You have the right to object to the processing of your data for specific purposes (e.g., statistical).
Right to information/Transparency: You have the right to receive clear information about the processing of your personal data, in plain language.
Right to human intervention: You have the right to object when a decision concerning you is based solely on automated processing, including profiling, and that decision produces legal effects or significantly affects you.
Please note that where data transfer is necessary for the establishment, exercise, or defense of legal claims, whether judicially or extrajudicially, the Municipality’s legitimate interest prevails and it is not possible to satisfy any objection right you may exercise. Also, if you believe that your personal data is infringed in any way, you may at any time file a complaint with the Hellenic Data Protection Authority (www.dpa.gr
).
