The Centre for Training and Lifelong Learning of the University of Crete  was established by the decision of the Minister of Education, Research and Religious Affairs (B΄ 604), No. 26065/Z1/2018, as an independent academic unit based on the national and European institutional framework.

In accordance with its founding provisions and the provisions of the Operating Regulations, the main lines of action of the Centre are the following:

  • Development of education, training and lifelong learning programmes in general as well as training seminars.
  • Development of distance education and training programmes.
  • Development of training and education courses and training courses for continuing education.
  • Development of training courses for the development of training and education programmes.
  • Participation in professional training and staff training activities in various professional areas.
  • Support actions for the development of the social economy (consultancy, studies and vocational training).
  • Qualification certification (exploiting the potential of the development of a qualification system for the outputs of non-formal and informal education and training), etc.

For your participation in all of the above actions and projects and programmes of KEDIVIM UoC and/or your cooperation with KEDIVIM UoC, the University of Crete collects and processes personal data, both simple and special categories, as a Data Controller, in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and the abolition of the obligation to process personal data. 4624/2019 (A137), as amended, and in particular Articles 5, 26 and 29-33 thereof.

Please read carefully the terms of this Policy, as it governs all the actions and programmes of KEDIVIM UoC and your participation in them constitutes your knowledge and unconditional acceptance of the practices described in this Policy, whose terms govern any contractual relationship between us from now on.

This Policy is regularly amended in accordance with the respective legislative amendments and the instructions and decisions of the Data Protection Authority. We encourage you to review the Policy periodically in order to be aware of the updated provisions and terms governing our contractual relationship.

1. Personal data we collect and process:

The personal data we process are obtained from you when you communicate or contribute with us in any way (in particular, due to requests for participation/interest in/for actions, projects and programmes as a trainer or trainee, participation in KEDIVIM projects and programmes, registration in KEDIVIM registers, requests of any kind by paper, electronic or other protocol, participation in events, conferences, and other activities within the scope of KEDIVIM's purposes). In particular, the following personal data are collected and processed:

  • Personal data (first name, surname, patronymic, maiden name, gender, ID number, AMKA, VAT number, registration number at an institution of higher education)
  • Residence and contact details (full address, contact telephone number, e-mail address)
  • Job and CV information (position, title, field of expertise)
  • Education information (degrees, institutions, post-graduate studies, qualifications, specialisations, foreign languages and other skills)
  • Invoicing information (name of personal company, purpose - object, country, address-number, municipality, postal code, VAT number, bank account number, etc.).
  • Photographs, facial image and voice audio via video recordings of any kind or tape recordings of any kind.
  • In special cases only, data of special categories, namely data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs or trade-union membership, as well as the processing of genetic data, biometric data for the purpose of positive identification, data concerning health or data concerning the sex life of a natural person or sexual orientation.

2.Principles Governing the processing of data.

The University of Crete processes your data lawfully, with transparency, accuracy, integrity, confidentiality, in accordance with the principle of minimization, by taking all appropriate organizational and technical security and protection measures and in accordance with the Compliance Guide to the General Data Protection Regulation, which is posted on the website of the Foundation ( ) and which also governs this policy.

3. Legal basis for data processing:

First of all, the processing of data is based on the provision of subparagraph (e) of paragraph 1 of Article 6(1) (for simple data) and subparagraph (e) of Article 6(1) (for simple data). (g) of paragraph (1) of Article 6(1) (data protection) of Article 6(1) (data protection of personal data), and (g) of paragraph (1) of Article 6(1) (data protection of personal data). 2 of Article 9 (for special categories of data) of the GDPR in conjunction with Article 5 of Law No. 4624/2019.

In the cases of the conclusion, execution and performance of a contract, the processing of data is based on the provision of para. (b) of para. 1 of Article 6 (for simple data) and para. (b) of para. 2 of Article 9 (for special categories of data) of the GDPR in conjunction with Article 27 of Law No. 4624/2019.

Exceptionally and when expressly declared by KEDIVIM, the processing of your data is based on the provision of para. (a) of paragraph (a). 1 article 6 (for simple data) and para. (a) of Art. 2 of Article 9 (for special categories of data) of the GDPR for obtaining written consent, which may be revoked by personal request, without this revocation preventing the processing carried out until then.

4. Duration of data retention and deletion:

Data is retained for as long as you contract with the Foundation and KEDIVIM and, thereafter, for as long as the law requires it to be retained for the achievement of the purposes of KEDIVIM and the establishment, exercise or support of legal claims. In such cases, your data will be stored with the adoption of protection and security measures.

5. Data recipients and data transfers:

For the personal data collected in this context, there is no need to transfer. The recipients of the data may be the Council of the KEDIVIM, the Secretariat of the KEDIVIM, the MOHIP of the University of Crete, the Council of the Foundation, the Senate of the Foundation, the ELKE of the Foundation. It should be noted that public authorities, services of the University of Crete and other services in the context of research are not recipients within the meaning of the GDPR.

6. Rights of data subjects :

Any data subject may exercise, upon written request, the rights of access, rectification, erasure, restriction of processing, opposition and objection to automated individual decision-making, subject to the terms, conditions and limitations set out in the GDPR and Law No. 4624/2019, in view of the nature of our legal person and the purpose of fulfilling a duty in the public interest.

7. Right to report: in Greece, the competent supervisory authority for the submission of requests and reports on personal data processing issues is the Hellenic Data Protection Authority (

8. Contact of KEDIVIM UoC: This email address is being protected from spambots. You need JavaScript enabled to view it.

9. Data Protection Officer : This email address is being protected from spambots. You need JavaScript enabled to view it.