logo-aigis
search
logo-aigis
search

Privacy Policy

Privacy Policy and Website Personal Data Protection Policy

The Ministry of Climate Crisis and Civil Protection (hereinafter the “MCCCP”) attaches great importance to the lawful collection, processing, use, security, and protection of your personal data. This applies regardless of the capacity in which you communicate or cooperate with us, for example as citizens, website visitors, employees, traders, suppliers, professionals, civil protection volunteers, private individuals, or collaborating third parties.

The MCCCP acts as the Data Controller of the data processed when you browse its website through the link https://aspida.civilprotection.gov.gr and remains at your disposal for any clarification.

The processing of your personal data is carried out in compliance with the fundamental principles of personal data protection as imposed by the General Data Protection Regulation (EU) 2016/679 (GDPR) and the provisions of Law 4624/2019 “Hellenic Data Protection Authority; measures for the implementation of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data; and for the incorporation into national law of Directive (EU) 2016/680 of the European Parliament and of the Council of 27 April 2016; and other provisions” (Government Gazette A’ 137), namely: lawfulness, fairness and transparency; data minimisation and accuracy; purpose limitation; storage limitation; integrity and confidentiality; and, finally, the principle of accountability.

Please take a moment to read carefully this Privacy Policy and Personal Data Protection Policy of this website.

The Website

The website https://aspida.civilprotection.gov.gr/ provides informational content and hosts a wide range of information offered to citizens.

At the same time, it provides the option of online registration for the notifications service of the single European emergency number “112” regarding an impending or ongoing catastrophic event or dangerous situation constituting an immediate threat to your life, health, or safety, in order for you to receive instructions on self-protection measures.

It also provides the option of online registration in the MCCCP Suppliers Registry. You may provide us with your business details and inform us about products you trade or services you provide that are used in emergency situations or are related to the MCCCP’s day-to-day operations.

Finally, the website offers civil protection volunteers the possibility to register/log in—following their identification and authentication—to an online application of the Civil Protection Academy (A.PO.P.), for the purpose of their synchronous/asynchronous training in civil protection matters and the assessment of that training. Registration/login to the application is available exclusively to civil protection volunteers and prospective civil protection volunteers whose details have been submitted—through the civil protection volunteer organisations to which they belong—to the Autonomous Directorate for Volunteering and Training of the General Secretariat for Civil Protection.

What types of personal data do we process?

When you browse the website, we process the data you provide to us by completing the relevant online form. Also, when you browse the website, we process the data you provide to us by completing the relevant online form.

Through the website, we may collect non-personal identification information through the use of cookies. Cookies are small text files stored on your hard drive and do not access any document or file from your computer, nor do they lead to the identification of your computer with any person. When visiting the website, you may configure your browser in such a way as to either warn you about the use of cookies in specific services or to refuse the acceptance of cookies in all cases. In such case, where you do not wish the use of cookies for your identification in certain services and pages, you may have limited access to some of the services, uses, or functions provided by this website.

You can obtain detailed information on the terms of use and the website’s cookie policy by reading them at the link Cookie Policy and Terms of Use.

Purpose of Personal Data Processing

The MCCCP, as Data Controller, as well as third parties who may process personal data on its behalf as processors, process your personal data exclusively either for your registration in the relevant Registry of the 112 Service, or for your inclusion in the Suppliers Registry, or for your registration/login to an online application (e.g., of the Civil Protection Academy).

The purpose of the above processing of personal data for registration in the 112 service is to notify citizens of an impending or ongoing catastrophic event or dangerous situation that constitutes an immediate threat to their life, health, or safety, and to provide instructions to citizens generally on the adoption of self-protection measures, as well as to citizens who do not have access to or are not familiar with the use of smartphones and, therefore, cannot receive the corresponding notifications via smartphone and must or wish to be informed through alternative communication methods.

The purpose of processing personal data for online registration in the Suppliers Registry is to enable us to know your business details and the products you trade or the services you provide for use in emergency situations or to cover needs relating to the MCCCP’s daily operations.

Finally, the purpose of the above processing of personal data for your registration/login to the online application of the Civil Protection Academy (A.PO.P.) is your synchronous/asynchronous training in civil protection matters and your assessment in relation to that training.

Your data are processed exclusively for the above purposes or, as applicable, for the purposes of the MCCCP’s legislative/regulatory compliance or the support of its legal claims.

Legal basis for processing

You expressly and unreservedly consent to providing the above personal data to the website where this is required or requested. To the extent that the processing of your personal data is based on consent, you may withdraw it at any time by informing the Data Controller. Withdrawal of consent does not affect the lawfulness of processing carried out prior to the withdrawal.

The legal basis for the processing of your personal data for the above purposes lies in the fact that processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the MCCCP (Law 4412/2016, Law 4662/2020, Law 4727/2020, Law 4989/2022, and Decision No. 16287/16.11.2022 of the Secretary General for Civil Protection).

Who has access to your personal data?

Access to your personal data is granted to the necessary, in each case, MCCCP staff, who have received appropriate training/information for the secure processing of your personal data.

In addition, access may be granted to companies cooperating with the MCCCP, contractors and partners acting on its behalf (processors), following the relevant assignment of processing to them by the MCCCP. The processing of personal data by processors is carried out under the MCCCP’s express instructions and under the assurance that all appropriate technical and organisational measures have been taken to protect your data.

We do not transfer or disclose your personal data obtained through the website to third parties, unless required by law or where this constitutes a contractual obligation necessary for the proper operation of the website and the performance of its functions.

Third parties to whom your data may be transmitted, provided that the requirements of Regulation (EU) 2016/679 and Law 4624/2019 (Government Gazette A’ 137) are met, include other official state and supervisory authorities.

Transfer of personal data

We do not send your data outside Greece. Your personal data are stored and processed exclusively within Greece.

Use of automated individual decision-making / including profiling in the processing of your Data

We do not carry out profiling based on automated processing of your data (Article 22 GDPR).

Retention period of your personal data

Your personal data are retained for five years. Specifically, for your registration via the online form in the 112 notification service, the retention period of your data is five years.

Links to third-party websites

Any linking of this Website with another third-party website via special links, hyperlinks (links, hyperlinks, banners, etc.) does not imply that the MCCCP assumes any liability for the content of such other website, the quality and completeness of any products or services presented thereon, or the policy followed thereon regarding the protection and processing of personal data. The natural person should ensure that they inform themselves about the protection and processing of their data by the above websites and read the relevant personal data protection/privacy policies in force on those websites.

Security of your data

We are committed to having taken appropriate organisational and technical measures for the security and protection of your data against any form of accidental or unlawful processing. It should be noted that our specially authorised staff who process your personal data have received appropriate guidance and information. The measures we take are reviewed and amended where deemed necessary.

Your rights as data subjects

As a Data Subject you have the following rights:

A. Right to information and transparency
You have the right to know who processes your data, what data are processed, and for what reason.

B. Right of access to personal data
You have the right to request free access to your personal data that we hold. This means you have the right to request confirmation from us as to whether we process your data.

C. Right to rectification of inaccurate personal data
You have the right to request the correction of inaccurate personal data and the completion of incomplete data (e.g., correction of name or update of a changed telephone number).

D. Right to erasure (“right to be forgotten”)
You have the right to request the erasure of your personal data under certain conditions, such as where the data are no longer necessary, you have withdrawn your consent, the data have been processed unlawfully, etc.

E. Right to restriction of processing
You have the right to request the restriction of processing of your personal data where their accuracy is contested, processing is unlawful, the data are no longer needed by the controller, or you object to automated processing.

F. Right to object to the processing of your data
You may object to the processing of your data and we will stop processing your data, unless such processing is carried out on the legal basis of our legitimate interest or the public interest, or where there are other compelling and lawful grounds that override your right.

How can you exercise your rights?

If you wish to receive further information regarding the processing of your personal data or to exercise any of the above rights, you may contact the organisation’s Data Protection Officer (DPO) at the email address info@civilprotection.gov.gr or send a letter describing your Request to the postal address: Ministry of Climate Crisis and Civil Protection, 37–39 Kifisias Avenue, P.C. 15123, Marousi, marking on the envelope “For the attention of the Data Protection Officer”. We will ensure that it is examined and that you receive a response as soon as possible, within the statutory time limits as follows:

Our response to your request will be provided within one (1) month of its receipt and shall entail no cost to you. The above period may be extended by two (2) additional months due to the complexity or the number of requests, in which case you will be informed of the extension and the reasons for it as soon as possible and at the latest within one month of receipt of the request.

Changes to the Policy

We will update this Policy whenever deemed necessary, incorporating amendments on the website https://aspida.civilprotection.gov.gr/. If there are significant changes to the Policy or to the way we use your Personal Data, we will notify you either by posting a notice in a prominent place as soon as the changes take effect, or by any other appropriate means. We encourage you to review this Policy periodically to be informed about how your data are protected.

Last revision: 28-1-2026.