Privacy Policy

In accordance with Regulation of the European Parliament and of the Council (EU) 2016/679 (GDPR), this Privacy Policy (or Personal Data Processing Policy) provides all relevant information on the processing of personal data pertaining to you, the data subject, in connection with the HellasPath application and related services, including the web platform (jointly referred to as "Application").

Who is responsible for processing your personal data?

The controller of personal data is the app developer Sotiris Malassiotis (malasiot@gmail.com)

For what purposes do we process your personal data?

Your personal data are necessary for creating your user account through which you will be able to use certain functions of the Application (namely location sharing and broadcasting). In addition, the Application allows, either publicly or privately, sharing your geographic position in real time with an unspecified number of other persons as well as storing a record of your previous itinerary recorded in the Application.

What personal data do we process?

When you use the Application, we collect and process some or all of the following data, which you provide during registration, which are generated while you use the Application, or which you enter into the Application. The mandatory data needed for the registration of your account in the Application include user name, and e-mail address. Since the Application has a nature of map and navigation software, it uses location data from your mobile device to determine your position. The Application uses Firebase Analytics, analytical software provided by Google that analyses certain data on devices and ways in which the Application is used by the user. Such data are used exclusively for analytical purposes.

How long do we keep personal data?

For the purposes of the "Live Tracking" function that allows sharing your current location, we process your current location data only until the time of exiting the Application; data are deleted without unnecessary delay afterward. Any and all personal data processed for analytical purposes are processed only until the compilation of statistical data; afterward, data are automatically deleted. The Controller subsequently analyzes only anonymized summary data. Other data that are not listed above are processed no longer than until the time at which your user account will be deleted.

To whom do we provide your personal data?

Your name and location data are shared in the framework of the Live Tracking function only after the activation of the Live Tracking in the Application, and such sharing lasts until you deactivate this function or exit from the Application on your device. The fact that you activate the Live Tracking function and the fact that your name and current position at a given time are actively being shared is indicated in the Application.

What are your rights?

You have the following rights under the GDPR: the right to request the Controller to provide access to personal data in accordance with Article 15 GDPR the right to request correction of personal data in accordance with Article 16 GDPR the right to request the erasure of unlawfully processed personal data in accordance with Article 17 GDPR the right to request restriction of personal data processing subject to the conditions laid down in Article 18 GDPR the right to portability of personal data in accordance with Article 20 GDPR the right to object the unlawful processing of personal data in accordance with Article 21 GDPR The Controller hereby informs you that no automated decisions will be made based on the aforestated personal data within the meaning of the GDPR. You also have the right to object the processing of personal data at any time, including, where applicable, profiling, due to reasons pertaining to your specific situation. You can exercise the right to raise objection at any time due to reasons pertaining to your specific situation in case that your personal data are processed for direct marketing purposes, including, where applicable, thereto related profiling. If the processing of your personal data violates any provision of the GDPR, you can contact the Controller to rectify the violation. The Controller may update this Personal Data Processing Policy from time to time as necessary.

How to request to delete personal data?

You can request to delete all your personal data including your account and your library of tracks and user waypoints by sending such request to malasiot@gmail.com. After you make a deletion request, we permanently and irreversibly delete your personal data from our systems. Data stored on your device will be deleted either by uninstalling the application or deleting HellasPath application working directory. Once deleted, your data, including your account, track or waypoints stored under the account cannot be reinstated.