Privacy Policy

Privacy Policy

This Privacy Policy (hereinafter the “Policy”) sets out how the Nikos Kazantzakis Museum (hereinafter the “Museum”) uses and protects the information provided by visitors/users of the website letters.kazantzaki.gr (hereinafter the “Platform”). The Museum respects the privacy of visitors/users of the Platform and is committed to protecting their personal information. This Policy explains how the Museum collects, transfers, processes, uses, and discloses visitors’/users’ data and defines the Museum’s practices regarding security, as well as information on the actions a user/visitor must take if they do not wish their personal information to be collected or further processed during their visit to the Platform.

By providing personal information, visitors/users agree and consent to the collection, transfer, processing, use and disclosure of such information as described in this Policy, in accordance with the Law.

The Museum may revise and update these personal data protection terms at any time and without prior notice. Visitors/users are advised to review these terms periodically for any changes, as continued use of the Platform implies acceptance of any such modifications.

Collection, Processing and Protection of Personal Data – Data Subject Rights

A visitor/user may navigate the entire Platform and its subpages, as well as the digital applications, without revealing their identity or providing any personal information. However, submitting a contact/comment form requires completing a form that includes the visitor’s/user’s personal data for specific purposes as outlined herein. This information is limited to what is necessary for the provision of personalized service.

The required personal data for submitting a contact/comment form are name and email address.

The Museum may in the future keep a record of and process any visitor/user data (e.g., name, email address) (hereinafter “personal data”) that come to its knowledge through the Platform. The Museum will collect visitors’/users’ personal data only when they voluntarily provide them in order to access the aforementioned contact form or any services that may be available through the Platform. Under no circumstances will visitors/users be asked to provide special categories of personal data.

The submission of a message/comment form constitutes the visitor’s/user’s consent to the collection, use, and transfer of their personal data in accordance with the terms of this Policy. Specifically, the visitor/user accepts and consents that the Museum, under the General Data Protection Regulation (GDPR) 679/2016, in force since 25 May 2018, will maintain and process the personal data collected through the Platform for the purpose of providing access to electronic applications, offering support and service, executing the relationship between the visitor/user and the Museum, and for statistical or broader purposes. Personal data collected through the Platform will be securely stored for as long as necessary depending on the intended purpose and will be deleted upon termination of the relationship between the visitor/user and the Museum or when the processing purposes described herein cease to exist, taking into account any obligations of the Museum under applicable law.

The Museum fully complies with the General Data Protection Regulation (GDPR) 679/2016. In particular, personal data are processed lawfully, fairly, and transparently. Data are collected for specific, explicit, and legitimate purposes and are not processed further in a manner incompatible with those purposes; further processing may occur only for archiving purposes, Platform service improvement, or statistical purposes. The data processed are appropriate, relevant, and limited to what is necessary for the purposes for which they were originally collected. Measures are taken to ensure that personal data are accurate and are erased or corrected without delay exclusively by the visitor/user. The Museum does not retain data that users have deleted (immediate deletion even from backups). Users always retain the rights of information, access, rectification, erasure, restriction or portability, objection, and opposition, as provided by the Regulation.

If a visitor/user objects to the processing of their data by the Museum or wishes to withdraw previously granted consent, the Museum will comply with such instructions according to its legal obligations, provided the request is submitted in writing. Note that objection or withdrawal of consent implies that the Museum may be unable to fulfil the purposes outlined in this Policy. Withdrawal of consent applies only prospectively and does not affect the lawfulness of prior processing based on consent. The Museum may continue processing data after withdrawal only to the extent permitted by law to fulfil its legal obligations or protect its rights.

In the event of exercising any of the aforementioned rights, the Museum will take all necessary measures to satisfy the request within the time limits prescribed by law, informing the visitor/user in writing of the outcome or the reasons preventing the exercise or fulfilment of the right.

To exercise their rights, users may contact the Museum at: info@kazantzaki.gr.

Additionally, each visitor/user has the right to contact the competent supervisory authority (the Hellenic Data Protection Authority), which examines written complaints according to the instructions provided on its website (www.dpa.gr), should they object to the Museum’s processing of their data.

Except where explicitly required by Law or competent Authorities, the Museum will not disclose, transmit, disseminate, or otherwise make available any information provided by a visitor/user without their consent or explicit instruction.

Statistical Browsing Information

In certain cases, non-personally identifiable technical information may be collected automatically (i.e., not through registration) when a visitor/user accesses or uses the Platform. Examples include the type of internet browser used, the type of operating system of the device used to access the Platform, and the domain name of the website used to connect to the Platform.

Use of Cookies

Cookies are data files transferred from a web server to a visitor’s device for statistical purposes. They are an industry standard, used by most websites, and facilitate users’ repeated access to a specific website and its use. Cookies are not harmful to users’ devices or files, and only the website from which a cookie originates may read, modify, or delete it. If a user does not wish cookies to be collected, they may use their browser’s settings to delete existing cookies and choose either to automatically reject future cookies or decide individually whether to accept or reject each cookie from the Platform. However, rejecting cookies may make certain parts of the Platform more difficult or impossible to use, as continuous login may be required.

Scope

This Policy applies solely to the Platform. It does not apply to information collected through any other website or to practices of companies not controlled by the Museum. Visitors/users should note that the Platform may contain links to third-party websites. If visitors/users navigate to such websites via links (links, hyperlinks, banners), the Museum bears no responsibility for the personal data protection terms applied by those websites and recommends that visitors/users read the privacy policies of each website they visit.