Privacy Policy

Last Updated: May 2, 2025

At Code.Hub, we are committed to protecting your personal data. This Privacy Policy aims to inform you about the collection, use, sharing, and safeguarding of your personal data. It also outlines your rights regarding your data and how you can contact us.

This Privacy Policy (the “Policy”) describes the practices of the company CODE.HUB PRIVATE COMPANY, with the distinctive title “Code.Hub,” headquartered at 6 Andreas Gkini St., Chalandri, Attica, 15233, Greece, VAT No. 801067600, Tax Office: Chalandri, phone: +30 6972293332 (hereinafter “we,” “us,” “our,” or the “Company”) regarding the collection, use, storage, and disclosure of Personal Data (as defined below) that you provide to us through the website codehub.gr (the “Website”).

This Policy is an integral part of our Terms of Use, which are incorporated herein by reference. Any capitalized terms used but not defined in this Policy shall have the meaning assigned to them in the Terms of Use. Please refer to the date of the last update indicated at the beginning of this document. We encourage you to periodically review this Policy, as it may be updated from time to time. By using our Website or providing us with information, you accept the practices described in the Policy as applicable at that time.

Introduction

We respect and uphold your individual rights to privacy and the protection of your personal data. We understand the importance of protecting your personal information and are committed to making every user experience on our Website secure and trustworthy. This Policy explains our practices regarding the collection, use, and disclosure of your personal information.

The Company’s Responsibility

As the data controller of your personal data, the Company is committed to maintaining the confidentiality of your information and safeguarding your rights as provided by applicable national and European legislation governing the collection, use, and disclosure of personal data (hereinafter the “Applicable Data Protection Law”), including Law 4624/2019 and the General Data Protection Regulation (EU) 2016/679 (“GDPR”).

For the purposes of this Policy

Personal Data” means information and data relating to an identified or identifiable individual, such as, for example, date of birth, first and last name, home address, phone number, gender, nationality, educational background, professional experience, marital status, IP address, etc. We will collect, use, or disclose your Personal Data in accordance with this Policy and the applicable Data Protection Laws.

Special Note for Minors: Pursuant to Article 8 of the General Data Protection Regulation (GDPR), minors under the age of sixteen (16) are prohibited from disclosing their Personal Data to Us via the Website without the prior consent of their parent or legal guardian. We kindly request that such individuals do not submit any information to Us. If users of the Website fall within the above category and still provide Us with their Personal Data, it will be deemed by the Company that they have obtained prior consent from their parent or legal guardian.

Information We Collect About Personal Data

During the registration process on the Website, you will be asked to provide certain personal information, such as your full name, phone number, email address, portfolio links (indicatively LinkedIn profile, GitHub, Stack Overflow), and information about whether you have programming knowledge. You may also be asked to provide other data that can be used to personally identify you.

We do not collect or process any special categories of personal data. According to Article 18 of Law 3471/2006, “special categories” of data are considered to include information concerning racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, health, social welfare, sexual life, criminal charges or convictions, and participation in related associations.

Information About the Disclosure and Transfer of Your Personal Data

We may disclose or transfer your Personal Data collected through your use of our Website:

a) To our subsidiaries and affiliated companies (group entities). By registering on the Website and providing information through it, you expressly authorize us to disclose and/or transfer such information to our subsidiaries and affiliates.

b) To third-party companies and our partners/clients, including data collection centers, technology service providers, or other third-party service providers who assist with our business operations (e.g., corporate programs, professional training programs, customer support, etc.). By providing us with information on this Website or otherwise, you expressly authorize us to disclose and process your data for the purpose of managing your application to participate in any of the educational programs available on the Website, registering you in such programs, and sending you informational emails.

We may include links on the Website to third-party websites operated by other parties with whom we currently collaborate or may collaborate in the future. When you click on these links, or otherwise visit, engage with, or use the services of such third-party websites — regardless of whether they display our brand name, trademarks, or other intellectual property alongside those of the third party — please be aware that we do not control the business practices of such third parties, and this Privacy Policy does not apply to them or their websites.

We also allow third-party companies to display advertisements and/or collect certain anonymous information when you visit the Website. These companies may use non-personally identifiable information during your visits to this Website and other websites in order to provide advertisements about goods and services that may be of interest to you. These companies typically use a third-party cookie or web beacon to collect this information.

Scope of This Privacy Statement

This Privacy Statement applies to and describes the handling of personal data in relation to:
(1) job applicants and recipients of our recruitment services,
(2) our associates engaged by third-party employers or placed on client projects, or individuals to whom we provide outplacement or career transition services,
(3) users who wish to participate in training programs, and
(4) representatives of our business partners, clients, and suppliers.

This Privacy Statement applies to personnel working at our central offices and does not cover individuals operating at client premises.This Statement describes the types of personal data or personally identifiable information we collect, how we use it, how we process and safeguard the information, how long we retain it, with whom we share it, where we may transfer it, and the rights that individuals may exercise in relation to their personal data.

It also outlines how you can contact us about our privacy practices and to exercise your data protection rights. Our privacy practices may vary depending on the countries in which we operate, in order to reflect local practices and legal requirements.

Information We Collect

We collect personal data about you in a variety of ways, including through our Website and social media channels, at our events, by telephone and fax, through job applications, in the context of direct recruitment, and through interactions with our clients and suppliers. Depending on the nature of our relationship and as permitted by applicable national law, the types of personal data we may collect include, but are not limited to:

  • Contact details (such as name, postal address, email address, and phone number)
  • Username and password when you register on our Websites
  • Information you provide about friends or other individuals you would like us to contact (we assume that you have obtained prior consent from such individuals)
  • Any additional information you may provide to us, including through surveys or via the “Contact Us” function or newsletter subscription on our Website

If you are a partner or job applicant and you apply for a position or create an account to submit an application, we may also collect the following types of personal data (to the extent permitted by applicable national law):

  • Employment and educational background
  • Language skills and other work-related qualifications
  • Social security number, national ID, or other government-issued identifiers
  • Date of birth
  • Gender
  • Nationality and work permit status
  • Information related to your employment benefits
  • References and recommendations
  • Details provided in your resume, your professional interests, and other information relevant to your qualifications for employment

Where required by law and based on your explicit consent, we may also process:

  • Information about disabilities and health conditions
  • Results from drug screening, criminal background checks, and other relevant screenings

Additionally, we may collect emergency contact information or other details you provide about third parties.

Use of Your Personal Data

We, or third parties affiliated or associated with us (including clients and partners), may use your Personal Data for various purposes, including but not limited to:

  • Providing you with job opportunities and employment
  • Delivering HR services to you, including benefits administration, payroll, performance management, and disciplinary procedures
  • Offering you additional services, such as training, career counseling, and outplacement support
  • Assessing your suitability and qualifications for employment opportunities
  • Performing data analysis, such as:
    • analysis of our candidate and partner database
    • performance and skills assessments, including scoring job-related skills
    • identifying skills gaps
    • matching individuals with potential opportunities
    • analyzing trends related to recruitment practices
  • Communicating updates on your application status or training participation
  • Enhancing and personalizing Website content and analyzing its usage
  • Sending you relevant information and content (e.g. banners) aligned with your interests
  • Informing you about new educational or IT training programs offered by our Company
  • Providing you with information about third-party programs, partnerships, or services
  • Facilitating your communication with us or with third parties affiliated or associated with us
  • Resolving disputes, addressing issues, and enforcing applicable policies and terms of use
  • Notifying you of any updates to the Website, Terms of Use, or this Privacy Policy

The Company is committed to ensuring that any individual acting under its authority and having access to personal data processes such data only under its instructions, unless otherwise required by EU or national law.

Providing your Personal Data is mandatory for the purposes of registering on the Website, creating your personal account, applying for job positions, expressing interest in training activities, and allowing the transfer of data to partner organizations related to a project, position, or training program for which you have expressed interest.

We do not sell your Personal Data to third parties. However, we may license or grant third parties permission to use your data in accordance with this Privacy Policy. In the ordinary course of our business activities, we may share some of your Personal Data with our partners and with third parties acting on our behalf, or as permitted or required by applicable data protection laws.

Safeguards and Data Retention

We maintain administrative, technical, and physical safeguards designed to protect the personal data you provide to us from accidental, unlawful, or unauthorized destruction, loss, alteration, access, disclosure, or use. To ensure appropriate security and confidentiality of personal data, we implement the following security measures:

  • Data encryption during transmission
  • Strong user authentication controls
  • Enhanced network infrastructure
  • Network monitoring applications

We store the personal data we collect in our systems in a manner that allows for the identification of the data subjects for no longer than is necessary in relation to the purposes for which the data were collected or further processed.

We determine the specific retention period by considering:

  • The need to retain the collected personal data in order to provide services requested by the user
  • The existence of a legitimate interest of the Data Controller, as described in the purposes of processing
  • The presence of legal obligations that require processing and relevant retention for a specific period of time

In particular, with regard to subscription to email newsletters, your personal data will be retained until you unsubscribe from the relevant mailing list via the dedicated link provided in every communication or by following the instructions described in this Policy under the “How to Contact Us” section.

Service Providers

We may engage third-party service providers (e.g., web hosting providers, data management providers) to manage one or more aspects of our business operations, including the processing or delivery of personal information. When we use an external company or partner, we rely on contractual commitments or other appropriate means to ensure that your Personal Data is handled in a manner consistent with this Privacy Policy.

Disclosure as Required by Law

We disclose your Personal Data as permitted or required by law. For example, we may be obligated to disclose and share your Personal Data pursuant to a court order, prosecutorial request, or directive, or a decision issued by another authority or administrative body legally empowered to require the disclosure of such information. If we have reasonable grounds to believe that your Personal Data may be useful in investigating improper or unlawful activity, we may disclose such information to law enforcement agencies or other appropriate investigative authorities.

Right to Object, Rectify, Erase, and the Right to Be Forgotten

With respect to your Personal Data, you retain—among others—the rights to information, access, objection, and erasure (“right to be forgotten”), as specifically defined in Articles 11–13 of Greek Law 2472/1997 and Articles 13–21 of the General Data Protection Regulation (GDPR). Within this context, you may at any time access the Personal Data we hold in our databases in order to modify, correct, or update such data. You may also object—at any time and on grounds relating to your particular situation—to the processing of your Personal Data, withdraw any consent you have previously provided, and request their permanent deletion from our records.

To exercise these rights, please click on the “My Account” link. Kindly note that we may need to verify your identity before processing your request.

In the Event of a Deletion Request by You

a) We will cease using and making available your Personal Data (except as otherwise provided for or required by law).

b) We will also delete all your Personal Data from our systems, except for data contained in emails, correspondence, or other documents we may retain in order to demonstrate the terms of the contractual relationship between you and us.

c) Taking into account the available technology and the cost of implementation, we will take reasonable steps, including technical measures, to inform other controllers processing your Personal Data, as specifically stated above, that you have requested the deletion of any links to, copies, or reproductions of those personal data.

Please note that we may need to verify your identity before we proceed with your request.

Summary of Your Rights Under Law 2472/1997 and the GDPR

In the context of respecting your privacy, we strive to ensure that your Personal Data is processed in accordance with Law 2472/1997 (as amended and in force), the General Data Protection Regulation (GDPR), and any other applicable legislation, as well as internationally recognized standards of good practice. In this context, we guarantee that your Personal Data will:

(a) Be processed fairly and lawfully. In particular, we will act transparently with regard to the processing of your Personal Data.

(b) Be collected only for specified and lawful purposes and not further processed in a manner incompatible with those purposes. Should we decide to further process your Personal Data, your explicit consent will be required.

(c) Be relevant, adequate, and not excessive in relation to the purposes of processing. We will collect and retain your Personal Data only as necessary to fulfill operational and administrative requirements or to comply with legal obligations.

(d) Be accurate and, where necessary, kept up to date.

(e) Be retained in a form which permits identification for no longer than is necessary for the purposes for which the data were collected or further processed.

(f) Be processed in accordance with the data subject’s rights, as established by:

Law 2472/1997 (right to be informed, right of access, right to object, right to interim judicial protection), and The GDPR (right to lodge a complaint with a supervisory authority, right to data portability and restriction of processing, right to be informed in cases of automated decision-making or profiling).

(g) Be safeguarded through appropriate technical and organizational measures against unauthorized or unlawful processing and against accidental loss, destruction, or damage.

(h) In the course of providing the Services, your Personal Data may be transferred:to countries within or outside the European Union, or to International Organizations, provided that there is an adequacy decision by the European Commission or appropriate safeguards are in place, and provided that enforceable rights and effective legal remedies are available to data subjects. Transfers may also occur in accordance with binding corporate rules or under one of the specific cases outlined in Article 49 of the GDPR.

(i) Right to Data Portability: As a data subject, you have the right to receive the Personal Data concerning you, which you have provided to us as the data controller, in a structured, commonly used, and machine-readable format, and to transmit those data to another controller without hindrance, in accordance with Article 20 of the GDPR. In such a case, we bear no responsibility for the processing of data by the new controller or the quality of the data transferred, beyond our obligations under the Regulation. As a data controller, we are required to verify your identity before acting on such requests. The right to portability does not affect your other rights under Law 2472/1997 and the GDPR.

The website of the Hellenic Data Protection Authority (www.dpa.gr) provides information and assistance concerning your rights under Greek Law 2472/1997, the GDPR, and relevant legislation. In summary, your core rights include:

  • The right to be informed about what data is held about you, in both electronic and physical records.
  • The right to access and be informed about the purposes of processing and the recipients or categories of recipients.
  • The right to be informed about any changes to the way your data is processed since our last update to you.
  • The right to be informed about the methodology used in automated data processing.
  • The right to know the security measures implemented by the Data Controller to protect your Personal Data.
  • The right to be informed about any disclosures of your information to third parties.
  • The right to take action to stop the processing of your Personal Data if it could cause you significant harm or distress and is unjustified.
  • The right to object to the processing of your Personal Data and to request that it not be used for the promotion of products, services, or ideas.
  • The right to prevent decisions made solely on the basis of automated processing.
  • The right to request the correction or deletion of inaccurate or unwanted Personal Data.
  • The right to restrict the processing of your Personal Data and the right to data portability (when processing involves identifiable personal data and is based on consent or the performance of a contract).
  • The right to object at any time to the processing of your Personal Data and to withdraw your consent at any time and request permanent deletion from our databases.
  • The right to lodge a complaint with a supervisory authority.
  • The right to claim compensation if you have suffered damage or moral harm due to a breach of Law 2472/1997.

Dispute Resolution

If you have any questions or concerns regarding this Policy or believe that we have violated or misused your Personal Data in any way, please contact us at [email protected]. We will make every effort to promptly address and resolve any issue or concern you may have.

You also have the right to object at any time to the processing of your Personal Data. Any such objection must be submitted to us in writing, either by email, post, or courier, and must include a specific request such as correction, temporary restriction of processing, blocking, non-transfer, or deletion of your data.

We are obligated to respond to your request in writing no later than one (1) month from its receipt. Our response will detail the actions we have taken or, if applicable, the reasons why your request could not be fulfilled.

If you do not receive a response within the given timeframe, or if you are not satisfied with our response, you have the right to lodge a complaint with the Hellenic Data Protection Authority (www.dpa.gr) and request a review of our response or inaction.

Cookies

To improve your browsing experience on our Website, we use cookies, which are small text files placed on your computer or device. Cookies allow the Website to recognize you as a returning visitor and provide personalized content, remember your preferences, and analyze your interaction with the Website.

You can choose to disable cookies through your browser settings; however, please note that doing so may affect the functionality of the Website and limit your access to certain features or services.

More information about deleting or managing cookies is available at www.aboutcookies.org.

We may use technologies such as web beacons or pixel tags to collect anonymous tracking information. These technologies help us understand website traffic, user demographics, and browsing behavior.

The information collected through these technologies does not directly identify individual users. In certain cases, for research purposes, we may link such data with Personal Data voluntarily provided by Website users. In those cases, all combined data will be treated as Personal Data and will be used and disclosed in accordance with this Policy.

Web beacons function like any other content request on a website, and cannot be individually disabled. However, you can render them ineffective by disabling cookies or modifying your cookie preferences in your browser settings.

Contact

For any questions or comments regarding this Privacy Policy or your personal data, you may contact us at: [email protected]