Established in 2010 by Fameline Holding Group of companies (FHG) founder and managing partner, Adamos Seraphides, Heri me Heri – Greek for ‘hand in hand’ – aspires to support families with children who are experiencing financial difficulties and/or suffering from health issues. Indeed, in partnership with the FHG family, the foundation has succeeded in assisting more than 100 families in terms of medical support and first aid supplies.
We are committed to make a positive difference in the lives of children who need it most. Our program is designed to address children’s urgent needs & to ensure that children’s well-being is sustained for the long term. Our goals are accomplished through fundraising initiatives, community partnerships & public awareness campaigns. We take pride in knowing we have already made a difference but the challenges & hardships children face, motivates us to make an even bigger impact in their lives.
The operation of the Heri me Heri Foundation is overseen on behalf of FHG by Thoosa Events. FHG is a multifarious conglomerate of some 50 subsidiaries, active worldwide within the marine, satellite communication, and oil and gas industries, as well as healthcare, and ICT. Thoosa Events is a company member of the FHG that undertakes the Group’s Corporate Events.
Your access to and use of the Service is conditioned on your acceptance of and compliance with these Terms. These Terms apply to all visitors, users and others who access or use the Service. By accessing or using the Service you agree to be bound by these Terms. If you disagree with any part of the terms then you may not access the Service.
We may terminate or suspend access to our Service immediately, without prior notice or liability, for any reason whatsoever, including without limitation if you breach the Terms. All provisions of the Terms which by their nature should survive termination shall survive termination, including, without limitation, ownership provisions, warranty disclaimers, indemnity and limitations of liability.
Our Service allows you to post, link, store, share and otherwise make available certain information, text, graphics, videos, or other material ("Content"). You are responsible for the proper use of our data.
Links to other web sites
Our Service may contain links to third-party web sites or services that are not owned or controlled by ‘‘Heri me Heri’’ Charity Foundation. ‘‘Heri me Heri’’ Charity Foundation has no control over, and assumes no responsibility for, the content, privacy policies, or practices of any third party web sites or services. You further acknowledge and agree that ‘‘Heri me Heri’’ Charity Foundation shall not be responsible or liable, directly or indirectly, for any damage or loss caused or alleged to be caused by or in connection with use of or reliance on any such content, goods or services available on or through any such web sites or services.
We reserve the right, at our sole discretion, to modify or replace these Terms at any time. If a revision is material we will try to provide a notice prior to any new terms taking effect. What constitutes a material change will be determined at our sole discretion.
If you have any questions about these Terms, please contact us.
Our company observes and abide to laws and regulations to be in Compliance with the existing legal framework on a permanent basis. Compliance is a vital component of our corporate culture. We consider that there is infringement of compliance when committed by or against our partners, in the exercise of their work duties, in Cyprus or abroad, violations of current laws or internal guidelines. Such infringements may be: criminal corruption offenses, infringements of competition law and cartel law, offenses relating to data protection law as well as accounting and financial offenses, and breach of human rights.
In order for us to detect and prevent violations of compliance, we depend substantially on the support of our employees, our customers and our business partners. Any notification of non-compliance brought up to our attention by our customers, collaborators or business partners shall be taken in consideration and soundly investigated.
To report such incidents, please use the area “contact us”. Whether you report a concern or seek advice: the matter will be treated strictly confidential.
Who we are
‘‘Heri me Heri’’ Charity Foundation is a non-profitable organisation, established by the FHG, with headquarters in Limassol Cyprus and we operate under the registration number HE273332. We developed throughout the years’ long standing relations with our customers, suppliers, employees and collaborators, who have been of utmost importance to us by helping our ‘‘Heri me Heri’’ Charity Foundation to build a successful presence in our territory. We do not knowingly attempt to solicit or receive information from children nor personal details and sensitive data of individuals that are not related to commercial matters.
Data subject rights
You may also request information about: the purpose of the processing; the categories of personal data concerned; who else outside the ‘‘Heri me Heri’’ Charity Foundation might have received the data from the ‘‘Heri me Heri’’ Charity Foundation; what was the source of the information (if you didn’t provide it directly to the ‘‘Heri me Heri’’ Charity Foundation; and how long it will be stored.
You have a right to: (i) access and confirm your information, (ii) you have the right to correct (rectify) the record of your personal data maintained by the ‘‘Heri me Heri’’ Charity Foundation if it is inaccurate or not up to date, (iii) You may request that the ‘‘Heri me Heri’’ Charity Foundation erase your data (right to be forgotten) however this right may be subject to certain exceptions according applicable laws; (iv) you can also ask us to stop processing (using) your data (right to withdraw consent) if you do not agree with our collecting/processing mechanisms or (v) you may also request that the ‘‘Heri me Heri’’ Charity Foundation cease using your data for direct marketing purposes (right to restrict use of data); (vi)at your written request— we shall provide your personal data to you or transmit it directly to another controller (portability); and (vii) whenever you find necessary you have the right to lodge a complaint with the appropriate data protection authority (DPA) if you have concerns about how the ‘‘Heri me Heri’’ Charity Foundation processes your personal data.
In Cyprus, the Supervisory Authority for personal data protection is the Office of the Commissioner for Personal Data Protection. You can contact the Commissioner's Office at:
Iasonos str., 1082 Nicosia
P.O.Box 23378, 1682 Nicosia
Tel: +357 22818456
Fax: +357 22304565
Email: commissioner dataprotection.gov.cy
Practical access to your personal data will be provided at no cost to you upon request made to the ‘‘Heri me Heri’’ Charity Foundation at firstname.lastname@example.org, unless excessive requests are made in which case the ‘‘Heri me Heri’’ Charity Foundation may at its discretion charge a reasonable administrative fee. If the request made by you cannot be provided within the legal time frame, the ‘‘Heri me Heri’’ Charity Foundation will promptly provide you with a date when the information will be delivered. If for some reason access is denied, the ‘‘Heri me Heri’’ Charity Foundation will without delay provide an explanation as to why access has been denied i.e. technical contingencies, non-availability of the GDPR designated person, etc.
How to exercise your rights
You can exercise your rights at any time by contacting our GDPR Designated Person see detail below. In order to process your request effectively, efficiently and securely, please include in your email: (i) A clear statement on which rights you are seeking to enforce; (ii) Full description of the information or type of information that you are writing about; and (iii) Details which will confirm your identity, such as a scan of your passport or ID card sent to us marked as Confidential, this ID confirmation will be encrypted together with your request and subject to the retention period described herein.
GDPR Designated Person
‘‘Heri me Heri’’ Charity Foundation appointed a designated person to be contact if you have any questions or concerns about the ‘‘Heri me Heri’’ Charity Foundation personal data policies or practices. The ‘‘Heri me Heri’’ Charity Foundation GDPR designated person is:
1-3 Spatharikou Street
4004 Mesa Geitonia Limassol, Cyprus
Why and how we collect and process (use) your personal data
We may collect your data electronically, visually or in hard copies depending on how we are interacting with you at the time of collection, however we do not sell personal information to anyone and only share it if/when necessary to the development of the business as mentioned below:
If you are our business collaborator: To ensure that we meet certain legal requirements such as KYC (know your customer) and AML (anti-money-laundering), we need to have certain details of our customers or details of individual contacts at customer’s organisation (such as their names, telephone numbers and e-mail addresses, the same type of information is collected from suppliers and website users; apart of the legal requirements, the information is also used to provide our suppliers, customers and website users with products and services, including the promotion of products, to facilitate contact between suppliers and customers, newsletter, direct mail offering the products and services of our companies and our principals (in case you opt to receive it), as well as informing about our events and business activities.
If you are our employee: The ‘‘Heri me Heri’’ Charity Foundation only collect details required as part of your application process or employment. We may collect information such as your name, age, contact details, education details, employment history, emergency contacts, next of kin, immigration status, passport details (for traveling use only), bank account details, utility bills and other relevant information required by local laws for the purposes of your employment. Where appropriate, and in the limits accepted by local laws, we may also collect information of a more sensitive nature related to your health as part of our “Health & Safety at Work” measures. To enable employees to conduct our business, the ‘‘Heri me Heri’’ Charity Foundation provides access to one another’s commercial contact information including name, position, telephone number, work address, work e-mail address, and photograph (in case you chose to provide one).
CCTV: When entering our premises, we collect the necessary personal data required for security and notification purposes. For security purposes, we also operate a Closed Circuit Television system (CCTV). The CCTV cameras only operate in common areas of our premises and are positioned so as not to intrude on privacy. The footage is kept for no longer than a month and access is strictly regulated.
The ‘‘Heri me Heri’’ Charity Foundation hosts many events throughout the year. These include in-person conferences. If you register for one of our events and you are a customer or supplier, we will access the information you provided to offer you with information and services associated with the event. If you are not yet a customer or supplier and you register for one of our events, we will collect your name and contact information (if you consented), which we will store in our secured database and use to provide you with information and services associated with the event and to inform you about upcoming events of our ‘‘Heri me Heri’’ Charity Foundation.
If you are a presenter, panellist, exhibitor or a like at one of our events, we will collect information about you including your name, employer and contact information, and photograph. We may also make and store a recording of your voice and may in certain cases use it i.e. to include into our website. You may require at any time to have the recordings, removed from the website by simply e-mailing our GDPR designated person at email@example.com
If you do not wish to have your information included in an attendee list or to receive information from sponsors, co-sponsors and/or exhibitors, you can express your preferences when you register for events or you may contact the ‘‘Heri me Heri’’ Charity Foundation directly at firstname.lastname@example.org
‘‘Heri me Heri’’ Charity Foundation
In all our events be it private involving our staff, or open involving our guests, presenters, customers, principals, etc, we INFORM that we shall take photos and may film it, the images will be used only to illustrate and promote our events in our website, social medial and publications, if you do not want to have your picture/film taken you will be provided at entrance with a “sticker” informing to NOT PHOTOGRAPH you. Our media professionals will be instructed on the process.
To receive the ‘‘Heri me Heri’’ Charity Foundation newsletters by email, if you are still not in our mailing list, you will need to create a “profile” with us which involves providing the ‘‘Heri me Heri’’ Charity Foundation with at least your first name and last name, an email address, and the country in which you live. The ‘‘Heri me Heri’’ Charity Foundation does not share this information with any third party other than to store the information in our secured databases.
You may manage your profile by subscribing or unsubscribing at any time. Please note that if you have set your browser to block cookies, this may have an impact on your ability to unsubscribe. If you have any difficulties managing your email or other communication preferences with the ‘‘Heri me Heri’’ Charity Foundation, please contact us at email@example.com
Your correspondence with the ‘‘Heri me Heri’’ Charity Foundation
If you correspond with us by email, postal service, or other form of communication, we may retain such correspondence and the information contained in it and use it to respond to your inquiry; to notify you of ‘‘Heri me Heri’’ Charity Foundation conferences, publications, or other services; or to keep a record of your complaint, accommodation request, and the like. As always, if you wish to have the ‘‘Heri me Heri’’ Charity Foundation to “erase” your personal information or otherwise refrain from communicating with you, please contact us at firstname.lastname@example.org
Note: if you ask the ‘‘Heri me Heri’’ Charity Foundation not to contact you by email at a certain email address, the ‘‘Heri me Heri’’ Charity Foundation will permanently delete that address from its mailing list in order to comply with your no-contact request.
Legal basis for processing your data
Our purposes and legal basis for processing your personal data may vary depending on our relation with you, however we will never process your personal data, if our interests are suppressing your interests or fundamental rights. As explained above, In order to conduct business and fulfil our legal, regulatory, and contractual obligations, we need to perform legitimate and fundamental processing activities related to: (i) Establishing/maintaining commercial and employment contracts and the provisions of the contractual obligations, including contract review; (ii) invoicing, remittance and collection; (iii) non-promotional communication; (iv) Responding to enquiries, requests, and complaints (v) performance measurement related to the business; (vi) Business Continuity and Contingency Planning; (vii) Legal and regulatory obligations; (viii) Employment processing; (ix) Workforce planning (x)Training and certifications; (xi) Emergency communications; (xii) Interacting with other organisations, industry groups, and professional associations; (xiii) Internal ethics reporting and security.
The ‘‘Heri me Heri’’ Charity Foundation also processes your data to provide you with news, products or services from our ‘‘Heri me Heri’’ Charity Foundation that you have shown interest and consented to receive from us and in case of job seekers to have them on our database to be able to offer a job position when we may have availability (for more detail see job seekers). We use this information solely to refine our communication and relation with you and to better tailor our efforts to meet your needs and to communicate with you about news, products or services that the ‘‘Heri me Heri’’ Charity Foundation offers that may assist you in your professional duties. It is of essence for our business to have an open communication channel with our collaborators.
Personal information we may receive from third parties
From time to time, the ‘‘Heri me Heri’’ Charity Foundation may receive personal information about individuals from third parties. This may happen if your employer signs you up for our events, visits etc. Our third-party partners may also share your personal information with the ‘‘Heri me Heri’’ Charity Foundation such events, news, visits etc. But this information shall not be disclosed or distributed to persons not committed with the ‘‘Heri me Heri’’ Charity Foundation.
What happens if you don’t give us your data
You can consult our website without giving us your personal data. The information on our website is available for those who did not provide personal information. You can even enter only the minimal amount of information (name and contact information) to your “profile” if you wish, and you can edit your profile at any time. Some personal information is necessary so that the ‘‘Heri me Heri’’ Charity Foundation (Φιλανθρωπικό Ίδρυμα ‘‘Χέρι με Χέρι’’) can supply you with the products and/or services you have purchased or requested, and to authenticate you, so that we know it is you and not someone else making requests on your behalf. You may manage your ‘‘Heri me Heri’’ Charity Foundation subscriptions and you may opt-out of receiving marketing or other sort of communication at any time by simply sending a message to the GDPR.
Your personal data provided to us by you will be shared internally for the purposes of the recruitment exercise. This means that ‘‘Heri me Heri’’ Charity Foundation Management personnel will have access to your data.
We will not share your data with third parties, unless you have given your explicit consent.
The organisation will not transfer your data outside of the EU unless you have given your explicit consent. At your discretion you may include your photo but this is not required by the ‘‘Heri me Heri’’ Charity Foundation.
If your application for employment is unsuccessful, the organisation will hold your data on file for six months after the end of the relevant recruitment process. You can renew your application if you find useful by simply contacting us via our website “work with us” field. If your application for employment is successful, personal data gathered during the recruitment process will be transferred to your personal file and retained during your employment and for long it may be necessary depending on legal basis. When providing us a hard copy of your CV our HR department will send you a standard notice informing you how your CV will be processed.
Use of ‘‘Heri me Heri’’ Charity Foundation website
When and how we share information with others
The personal information the ‘‘Heri me Heri’’ Charity Foundation collects from you is stored in one or more databases or clouds hosted by third parties located in the European Union or other countries where these service providers operate. These third parties do not use or have access to your personal information for any purpose other than cloud storage and retrieval.
We do not reveal your personal data to third-parties for their independent use unless: (i) you request or authorize it; (ii) the information is provided to comply with applicable laws (for example, to comply with a search warrant, subpoena or court order, KYC, anti-money laundry regulations or tax and employment duties), enforce an agreement we have with you, or to protect our rights, property or safety, or the rights, property or safety of our employees or others; (iii) the information is provided to our agents, vendors, service providers, companies of the ‘‘Heri me Heri’’ Charity Foundation, that perform functions on our behalf; (iv) to address emergencies or acts of God; or (v) to address disputes, claims, or to persons demonstrating legal authority to act on your behalf. We may also gather aggregated data about our customers, suppliers and website users and disclose the results of such aggregated (but NOT PERSONALLY IDENTIFIABLE) information to our partners, service providers, principals, advertisers and/or other third parties for marketing or promotional purposes.
Transferring personal data from the EU to other countries
Security of your personal data
To help protect the privacy of data and personally identifiable information you transmit through use of this website, we maintain physical, technical and administrative safeguards. We update and test our security technology on an ongoing basis. We restrict access to your personal data only to those employees or third parties (processors, government, banks, auditors, etc) who need to know that information in order to provide benefits or services to you. In addition, we train our employees about the importance of confidentiality and maintaining the privacy and security of your information. We commit to taking appropriate disciplinary measures to enforce our employees' privacy responsibilities, and we conduct internal audits to check our methods and procedures. The ‘‘Heri me Heri’’ Charity Foundation also lessens the risk to your rights and freedoms by minimizing to the strictly necessary the collection and storage of sensitive information about you.
Data storage and retention
Your personal data is stored by the ‘‘Heri me Heri’’ Charity Foundation on its servers, and on the servers of the cloud-based database management services the ‘‘Heri me Heri’’ Charity Foundation engages, located in the European Union or any other place these service providers operate. The ‘‘Heri me Heri’’ Charity Foundation retains data for the duration of the employees’, customers’, suppliers’, visitors’ business relationship with the ‘‘Heri me Heri’’ Charity Foundation and in some cases the retention period will be subject to applicable laws and regulations. For Job Seekers please see related section. For more information on where and how long your personal data is stored, as well as on your rights of erasure and portability, please contact the ‘‘Heri me Heri’’ Charity Foundation GDPR designated person at email@example.com
Questions, concerns, requests or complaints
Please contact the ‘‘Heri me Heri’’ Charity Foundation GDPR designated person at addresses provided above.
COVID-19 DATA PROTECTION GUIDELINES
Our Company via the Emergency Response Team - ERT is using all available resources and planning to continue our activities in a safe and workable manner. Therefore, a number of considerations should be taken into account to guarantee the lawful processing of personal data and in all cases it should be recalled that any measure taken in this context must respect the general principles of law and must not be irreversible. Emergency is a legal condition which may legitimise restrictions of freedoms provided these restrictions are proportionate and limited to the emergency period.
Currently we are operating in shifts which exponentially increased the levels of remote working, these are challenging times and as we are taking all measures to protect our people we must also be vigilant to protect our data and the relevant data subjects.
By processing data we need to consider some important issues:
The COVID-19 Data will include information about individuals from our group or those visiting for whatever reason our premises, this information may be about travel movement specially for the team of engineers, symptoms related to COVID 19, body temperature and any action taken on this respect, i.e. sending people back home, or prohibiting their entry into our offices, or informing about health vulnerability etc. This data is considered sensitive data under GDPR as it refers to the physical health of a natural person and as so, requires special protection.
The GDPR foresees derogations to the prohibition of processing of certain special categories of personal data, such as health data, where collection is necessary for reasons of substantial public interest in the area of public health, where there is the need to protect the vital interests of the data subject as control of an epidemic or pandemic as the current case.
We must keep at all times our employees, staff, collaborators, visitors etc, informed about the purposes of processing (health and safety), the legal basis (public interest and protection of life), the retention period (to be destroyed as soon as feasible); who has access (access is restricted to the ERT). The data subject must also know who to contact in case of retrieving, requesting to delete (when possible), to amend or to stop processing such data. All other general information on processing of personal data is provided at our privacy notice herein.
The information collected shall be minimum and proportionate
The information shall only be used for necessary purposes such as managing the immediate health risk and making decisions as to actions required. The ERT provided guidance on protocol for recommended actions on risk scenarios – including, who will be notified in the event that someone tests positive. In general, only the minimum amount of information shall be collected to comply with the principle of minimization and this information should be available only for those who need to know.
Any subsequent processing for related purposes, such as lessons learnt about planning, management and business continuity matters, shall be carried out with genuinely anonymized data to the extent possible and any unnecessary information shall be deleted and will not be used for any other purpose specially not for any sort of assessment that may be in detriment to the data subject.
We shall not forget that individuals’ privacy is a matter of great importance, but it is not an unlimited right and needs to be balanced against other duties, rights and interests, such as the employer's health and safety obligations, duty of care and responsibility to ensure business resilience and continuity. Good practices, genuine intentions, careful thinking, documentation of the decision-making process and implementation are a must to our Group.
Deletion of data
Test results, health status data shall only be used for the related purposes and retained for the period necessary to identify risk scenarios and to take immediate action. The ERT may retain the data to follow up with those who have tested positive or suffered symptoms to ensure they have appropriate support and know when they should self-isolate and when it is safe to return to the office, retention may also be necessary to comply with legal obligations. If some of this information is generated in hard copy (i.e. visitors' confirmation/forms that they have not been exposed to the virus), these records shall be destroyed, as well as all other related data once the purposes are fulfilled.
Do not compromise security
This information (as with all personal data) shall be processed and retained securely in line with good practice. This also means that guidance and protocols on what should be collected and who gets to see it will be very important and data controller/processors shall not deviate from the protocol.
The processing of such sensitive data is based on the necessity to perform the employment contract (on the assumption that ensuring health and safety is either an express or implied term of the employment agreement), that the processing is necessary to comply with legal obligations (again relating to health and safety) or, in extreme cases, that the processing (e.g. sharing information with a healthcare professional) is necessary for the individual's vital interests. Vital interests are, however, only relevant in cases of an emergency.
Update records of processing
Records shall be kept updated and data subject must have easy access to their own information at all times by a simple request to the ERT at firstname.lastname@example.org.
Any sharing of COVID-19 data must be avoided and will only occur: (i) with authorization or recorded acknowledgement of the data subject, or (ii) if needed to be disclosed for the safety and interest of the data subject in cases of emergency or (iii) if requested by law. If data sharing is necessary on a controller-to-controller basis (for example, with medical services, healthcare providers or public authorities (such as public health organizations), our group with the assistance of our DPO will carry out proportionate due diligence.
The European Data Protection Authorities (DPA) are taking different approach on the restrictive ways to deal with issues related to the COVID-19 data, in general it is important to know that our group will pursue: (i) to keep people informed of our processing protocols, including any need or legal request for sharing data (ii) collect the minimum necessary data, (iii) expose such data to the minimum number of people, (iv) make sure the data is well protected by technical and organizational measures, (v) delete all data as soon as possible, (vi) not to use the collected data for any other purpose (vii) follow good practices at all times, (viii) to provide easy access to the data subject’s records; and (ix) always to keep records of any required actions involving the data processing and data subjects.
In case there is any question regarding the processing of COVID-19 Data, please do not hesitate in contacting us at the Legal Department email@example.com