GDPR

SHMS is committed to protecting your personal data. We fully comply with the General Data Protection Regulation (GDPR) (EU) 2016/679. This Privacy Policy is issued aiming to inform you as to how, what and why we collect and use your personal data.

It is important you read this policy together with our terms and conditions. We confirm that we do not collect unnecessary data.

Any changes to this policy in the future will be posted on this page.

1. Categories of personal data that we process 

We collect, use and store different kinds of personal data about you or your clients which we describe herebelow

Identity Data may include first name, maiden name, last name, marital status,

date of birth, copies of identification documents and address documents

Contact Data may include telephone numbers, postal address and email address

Employment Data may include job title; company name and area of expertise

Financial Data may include bank account details, transaction records and details

about payments to and from you or your clients

Technical Data includes internet (IP) protocol and your login data to our

database

Other Data includes for instance copies of professional licenses, witness

statements, copy of insurance Cover Notes, correspondence, court or legal

authority’s transactions and documents, criminal records or data that does not

directly or indirectly reveal your identity and general data necessary for the

provisions of our services to you including information contained in the files that

we are handling and that relate to you

2. Why we process your personal data

We collect and process your personal data for the purpose of providing our services to you and for ensuring that we comply with our obligations arising from the law and your instructions. We may, also, use your personal data for sending updates from our firm, however exclusively dedicated to business or various shipping matters.  

The basis for the processing of your personal data is the provision of our services pursuant to our engagement and our compliance with legal obligations.

3. How we use your personal data

We only use your personal data under the following circumstances:

Financial Data / necessary for our legitimate interest for receiving a payment or

making payments on your behalf and for commenting or approving accounts related to claims

Service, identity, contracts, other data / To provide advice and services and handle matters on behalf of our clients or in matters relating to legal proceedings or advice in establishing, exercising or defending legal rights and to protect our business, employees and premises and to prevent fraud

4. To whom we disclose your personal data 

We will not disclose your personal data to any third party. As an exception, we may disclose your personal data to competent public authorities and courts under their formal request and to defend our legal rights. We may also disclose your personal data to service providers engaged by us and/or under your instructions such as our IT company, lawyers with whom we cooperate, and only to the extent necessary for the provision of their services to us and/or to you. When such service providers offer their services to us, they act as data processors and are processing personal data exclusively on our behalf and under our written instructions and do not have the right to further use this data for their own benefit

5. How long we retain your personal data

As a general rule we retain your personal data for a maximum period of seven (7) years as from the end of our engagement. Shorter or longer data retention periods may apply in exceptional cases

Upon lapse of the retention period, our firm destroys and/or deletes the data without any prior notice to you in accordance with all the relevant confidentiality rules and procedures

6. Security of your personal data 

We have in place security measures to prevent unauthorised access, misuse, disclosure, unlawful destruction or loss. In addition, we limit access to your personal data to those employees, contractors and other third parties who need to know. They will only process your personal data upon our instructions and they are subject to confidentiality. The security of our clients’ personal data is of the utmost importance to us.

7. Your rights

As per the General Data Protection Regulation and the applicable data protection laws, you have the following rights:

– Request access to your personal data

– Request corrections

– Request that your data is not processed

– Request erasure

– Request restriction or objection of processing your data

– Request the transfer of your personal data to you or to a third party

In case you wish to exercise any of the above rights please contact us at shms@shms.gr.

No fee is usually payable to access your personal data however we may charge a reasonable fee if your request is excessive. We will need specific information in order to identify and ensure your right to access your personal data to avoid unauthorised disclosure.

All requests will be responded to within 15 working days.

Please give us the chance to deal with your concerns should you feel you have the right to make a complaint at any time to the relevant Supervisory Authority