Privacy Policy

1. Purpose and Scope

EOS Personnel Solutions (hereinafter referred to as the “Company”) is committed to protecting personal data and preventing its misuse.

This policy applies to all employees, agents, contractors, and external collaborators of the Company, and sets minimum standards for personal data processing, as well as related responsibilities.2. Content2.1 Legal Basis

This policy complies with the EU General Data Protection Regulation (GDPR – Regulation (EU) 2016/679), Greek Law 4624/2019, and any applicable decisions or guidelines from the Hellenic Data Protection Authority (HDPA).2.2 Definitions

Standard GDPR terms apply, including:

  • Personal Data: Any information relating to an identified or identifiable natural person.
  • Special Categories of Data: Sensitive data such as health, religious, political, or biometric data.
  • Data Subject: The natural person to whom the data refers.
  • Processing: Any operation performed on personal data.
  • Controller: The entity that determines the purpose and means of processing.
  • Processor: A third party processing data on behalf of the controller.
  • DPIA: Data Protection Impact Assessment.

2.3 General Obligations2.3.1 Principles of Processing

  • Lawfulness & Transparency: Personal data must be processed fairly and lawfully.
  • Purpose Limitation: Data collected for specific purposes only.
  • Data Minimisation: Only the necessary data is collected.
  • Accuracy: Data must be kept up to date.
  • Storage Limitation: Data retained only as long as necessary.
  • Integrity & Confidentiality: Appropriate security must be ensured.

2.3.2 Data Subject Rights

Each individual has the right to:

  • Be informed
  • Access their data
  • Correct inaccurate data
  • Request erasure
  • Restrict processing
  • Data portability
  • Object to processing
  • Not be subject to automated decisions

2.3.3 Data Breaches

All data breaches must be reported immediately to the DPO. The Company must notify the supervisory authority within 72 hours and inform affected individuals if high risk is involved.2.3.4 Data Transfers

Data may only be shared with third parties or transferred abroad under lawful and secure conditions, including adequacy decisions or explicit consent.2.3.5 Storage and Retention

Data is retained only for as long as necessary. Detailed retention periods are set in the Company’s Data Retention Policy.3. Training and Awareness

All staff and partners of EOS Personnel Solutions receive regular training on data protection during onboarding and periodically.4. Roles and Responsibilities

  • Controller: EOS Personnel Solutions is the controller of the data it processes.
  • Processor: Third-party service providers act strictly under contract and controller instructions.
  • DPO: The DPO oversees compliance, manages DPIAs, and communicates with authorities and data subjects.

5. System and Process Design

New technologies and high-risk processing activities require a DPIA before launch. All systems must respect:

  • Privacy by Design: Data protection integrated into systems from the start.
  • Privacy by Default: The strictest privacy settings enabled by default.

6. Violations and Penalties

Any violation of this policy may result in disciplinary actions, up to and including termination. Legal actions may also apply depending on the case.

Last Updated: June 18 2025

©2025. EOS Workforce. All Rights Reserved.

Powered by: HT - Digital Solutions