Hrpsychology.gr uses alphanumeric identification files (cookies) to improve user’s experience based on the legislation of the European Union which is limited. Cookies are necessary files to facilitate specific functions of our page, as they ensure its regular and corresponding operation.
Cookies are small harmless files (text files), which are sent and stored temporarily on the user's computer, enabling online pages such as www.hrpsychology.gr to communicate with and recognize the user after frequent use and facilitating access in it and its transactions. This is achieved by collecting data, which also optimizes the content of our website.
Hrpsychology.gr (as provided by the legislation and following all the prescribed procedures) must inform the visitors of this website about the acceptance or not of cookies when they enter the site www.hrpsychology.gr.
A few words
In order for the website to function properly, we sometimes place small files on your computer, so-called "cookies". This specific action begins following an order from the European Union (see below in detail).
What are cookies?
Cookies are small text files that a website stores on your computer or mobile device when you visit that website. In this way, the website remembers your actions and preferences (such as login code, language, font size and other display preferences) for a period of time, so you do not have to enter these preferences every time you visit the website or browse its pages.
How to control cookies?
You can control and/or delete cookies according to your wishes. You can delete all cookies that already exist on your computer, as well as change browsers’ settings to prevent the installation of cookies. However, in this case, you may need to adjust some preferences yourself each time you visit a website, and some services may also not work.
European Union’s Direction
“Storing information or obtaining access to already stored information in the terminal equipment of a subscriber or user is only permitted if the specific subscriber or user has given his consent after clear and extensive information in accordance with paragraph 1 of article 11 of Law 2472/ 1997, as applicable. Subscriber or user consent may be given through appropriate settings in the web browser or through another application. The above do not prevent storage or access of any technical nature, the sole purpose of which is to carry out the transmission of a communication via an electronic communications network or which is necessary for the provision of a service to the information society, which has been explicitly requested by the user or the subscriber. With the act of the Personal Data Protection Authority (P.D.P.X.) the methods of providing information and declarations of consent are defined in particular”.
European Directive 2009/136/EK concerning the amendment of Directive 2002/58/EK regarding the processing of personal data and the protection of privacy in the field of electronic communications was recently incorporated into Greek Law. The integration was carried out through Law 4070/2012 (Regulations of Electronic Communications, Transport, Public Works and other provisions), which in turn amends the current Law 3471/2006 (on protection of personal data and private life in the sector of electronic communications).
According to the amendment, the currently valid par. 5 of no. 4 on "privacy":
"It is prohibited to use electronic communications networks to store information or obtain access to information stored in subscriber or user terminal equipment, in particular by installing spyware, hidden identifiers and other similar devices. Exceptionally, any storage or access of a technical nature is permitted, the sole purpose of which is to carry out or facilitate the transmission of a communication via an electronic communications network, or which is only necessary for the provision of a service to the information society, which has been explicitly requested the user or subscriber. In the latter case, the use of such provisions is only permitted if the specific subscriber or user is provided with clear and extensive information, in accordance with article 11 of Law 2472/1997, as applicable, and the data controller provides the subscriber or user with the right to refuse this processing. By an act of the Personal Data Protection Authority, the methods of providing information, providing the right to refuse or requesting consent are defined in particular.
Amended, in accordance with no. 5, par. 3 of Directive 2009/136/EK as follows:
"Storing information or obtaining access to already stored information in the terminal equipment of a subscriber or user is only permitted if the specific subscriber or user has given consent after clear and extensive information in accordance with paragraph 1 of article 11 of Law 2472/ 1997, as applicable. Subscriber or user consent may be given through appropriate settings in the web browser or through another application. The above does not prevent storage or access of any technical nature, the sole purpose of which is to carry out the transmission of a communication via an electronic communications network or which is necessary for the provision of a service to the information society, which has been explicitly requested by the user or the subscriber. By an act of the Personal Data Protection Authority (P.D.P.X.) the methods of providing information and declaring consent are defined in particular”.
Field of application
Both the up to now applicable wording and the new one, find field of application for all kinds of cookies, and directly affect the entire spectrum of digital marketing and online advertising.
The new wording continues to require the user to be clearly and extensively informed about the cookies that are to be installed on his device, but also introduces the parameter of the mandatory obtaining of his consent before installation (opt-in), in compliance with the European Law. At the same time, it provides for the use of the relevant privacy settings in the user's browser as a legal way of obtaining consent.
The amendment exempts from the need to obtain consent (while maintaining the need to inform the user) all types of cookies which are necessary for the proper operation of each website, in order to provide the respective service (functional cookies).
The position of the Personal Data Protection Authority
- The subscriber's or user's consent may initially be given through the internet service provider's website using appropriate mechanisms (e.g. pop-ups). Acceptance of cookies can be done once for all cookies installed by the same service provider of the information society.
- Alternatively, as stated in Law 3471/2006, "consent can also be given through appropriate settings in the web browser or through another application". Caution! This setting is only valid if the consent of the subscriber or user is requested for each "cookie", while the prior acceptance of receiving "cookies" through default settings of the browser is not understood as consent.
- For example, web browsers or other applications, which by default reject third-party cookies and require an active choice by the users in order for them to accept both the placement and the continued transmission of information contained in cookies from specific websites , can provide valid and effective consent.
- Conversely, if the browser's default settings allow all cookies to be accepted and an action is required by the user to disable them, the requirements for consent set forth in this article are not met.
- The requirements of the article are also not satisfied by browser settings that allow the prior rejection of "cookies" from specific service providers of information society (e.g. through "black" lists predefined by the subscriber or user) or similar mechanisms that, although they provide the subscriber or user with more options, do not support their prior consent to receive "cookies" from providers that they have not blocked.
- The subscriber or user must have the possibility to withdraw his consent in the same way in which he declared it. In the text of the position, a clear separation is also made, and correspondingly with a relevant opinion issued by the Article 29 Working Group on 7/6, of cookies that are installed for the purpose of advertising and statistical analysis (web analytics - google analytics - adwords remarketing). According to the text, both of these categories of cookies do not fall under the exception of obtaining consent provided by law.
GDPR (General Data Protection Regulation)
The GDPR comes into force on 25 May 2018 "General Data Protection Regulation" [Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016. (see here the original document).
The General Data Protection Regulation (GDPR) of the European Union defines measures that should be followed in order to ensure the confidentiality, integrity and availability of personal data. It defines the way in which organizations will manage the data of their employees, customers and partners and concerns all persons residing in the European Economic Area (EEA).
Personal data is considered any type of information that can, directly or indirectly, identify a person regardless of whether it is related to his personal, professional or public life. It can be a name, a photo, an email address, bank details, work performance details, purchases, VAT number, education, username or computer IP address and many more.
- gr keeps its customers' data encrypted (SSL) throughout their browsing on the pages-footers of Hrpsychology.gr.
- The customer using the services of Hrpsychology.gr consents and automatically authorizes Hrpsychology.gr through the systems it has (order form, newsletter forms, etc.) to collect the personal information required (e-mail, name, etc.) for the completion of the energy desired by the customer. Consent and authorization is automatically given by the relevant "check box" in the various forms - applications available at www.hrpsychology.gr or in fields where the customer will voluntarily enter his details (eg. entering the e-mail in the newsletters form).
- gr maintains and stores the customer's personal data as long as the customer remains an "active customer" and maintains services or products at Hrpsychology.gr.
- gr DOES NOT share the data it holds with third parties except with the highest prosecutorial or police authorities if and when requested in an official and legal manner.
- The customer reserves the right to change or delete the data stored on Hrpsychology.gr sending an e-mail to
- The customer's data may be used (re-marketing) by Hrpsychology.gr and ONLY to inform the customer at times, about product or service offers or for security information regarding the service the customer has purchased from Hrpsychology.gr (e.g. malicious action against the customer’s site from a third party).
- In case personal data is leaked (or there is a suspicion of leakage) due to a security gap in the Hrpsychology.gr system or from unauthorized use (hacking), then hrpsychology.gr is obliged to inform the Personal Data Protection Authority within 72 hours.
- The customer enters the site of Hrpsychology.gr and in order to activate or renew or buy or communicate about a product or service the customer must fill in the relevant forms - applications that exist. The information is dynamically stored in the Hrpsychology.gr system and is used by Hrpsychology.gr to complete the action requested by the customer through these forms (e.g. call me back, service renewal, etc.).
- When the customer enters the Hrpsychology.gr site, customer’s IP is dynamically and automatically recorded in the server logs, which is used internally by Hrpsychology.gr ONLY for statistical reasons (monthly customer visits, country of origin, etc.).
- In case of malicious action (or even suspicion) of IP abuse by third-party unauthorized users (spam, hacking, etc.), hrpsychology.gr reserves the right to temporarily or permanently block the IP address(es) or the entire range of addresses (mask).
- Navigation from category to category or to subpages on the site www.hrpsychology.gr is done with internal hyperlinks. In the event (if and when necessary) that the visitor is transferred to an external third-party site with problematic or altered content, the responsibility lies with the owner or administrator of the terminal site and not with hrpsychology.gr.