"Public bodies are allowed to process personal data, when the processing is necessary for the fulfillment of a task performed in the public interest or in the exercise of public authority assigned to the controller.' (Article 5 Law 4624/2019)"

Based on the above provision, PANTEION UNIVERSITY, as a Legal Entity under Public Law, is authorized to collect and process personal data "for the fulfillment of the task performed in the public interest", i.e. for the fulfillment of the mission as a Higher Educational Institution.


The processing of the collected data, in accordance with Article 6 of the GDPR, is legalized only if and as long as one of the following conditions applies:

a) the data subject has consented to the processing of his personal data for one or more specific purposes,

b) the processing is necessary for the performance of a contract to which the data subject is a party or to take steps at the request of the data subject prior to the conclusion of a contract;

c) the processing is necessary to comply with a legal obligation of the controller,

d) the processing is necessary to safeguard a vital interest of the data subject or another natural person,

e) the processing is necessary for the fulfillment of a task performed in the public interest or in the exercise of a public authority delegated to the controller.



In order to fulfill the above processing purposes, the collection of personal data is carried out by the staff of PANTEIOS UNIVERSITY, who act as a data controller based on their duties. The collection takes place during the process of submitting applications or registration statements of students, as well as during the signing a contract or entering into another legal relationship.


Collection of personal data may also occur through:

The use of the website or the electronic platforms or other electronic programs and means of communication of PANTEION UNIVERSITY
Correspondence, whether paper or electronic,
Participation in a research program
Participation in events under the auspices of PANTEION UNIVERSITY



Identity data (surname, father's/mother's name, photo, ID/passport number, issuing authority, date of issue)
Demographic data (gender, nationality, nationality, date/place of birth)
Contact data (postal address, landline/mobile phone, email address)
Tax data of scholars and other categories (A.F.M., D.O.Y., individual/family income, property status)
Student grade performance
Resumes of students and graduates
Data concerning the qualifications of administrative, academic and research personnel
Marital status data (marriage, number & ages of children)
Insurance data (A.M.K.A., insurance fund register no.)
Medical data (medical history, medical opinions, medical certificates) in special cases only to facilitate and provide special privileges and/or safeguard the vital interest of data subjects or other natural persons
Data from the use of electronic services (electronic user identification data, cookies, google analytics, Internet Protocol (IP) addresses, etc.)



ΤPANTEION UNIVERSITY communicates the collected personal data of the data subjects, where this is required to fulfill its duty in the public interest, as well as to public bodies and independent authorities, when it has a legal obligation as a Processor or to serve the legal his interests.

Furthermore, in order to serve its students and new graduates through the Internship and Liaison Offices, it may share with private entities personal data of students/new graduates during the process of concluding an internship contract or finding a job (Article 27 Law 4624/2019 ).

Any further transmission of personal data to third parties, third countries and international organizations takes place in accordance with the relevant provisions of the GDPR or with the prior consent of the data subjects, where this is required (Article 44 GDPR).



PANTEION UNIVERSITY processes and stores personal data by taking the appropriate technical and organizational measures, which ensure the level of protection required by the GDPR. fulfillment of the purposes it seeks and in any case for the entire period of time provided by the current legal framework "on the liquidation of the N.P.D.D. files" (P.D. 768/1980, P.D., 87/ 1981 & Presidential Decree 480/1985 and any other amendment thereof or other relevant provision of the law).

The processing of personal data for archiving purposes in the public interest or for the purposes of scientific or historical research or for statistical purposes may entail derogations from the rights of the data subjects as long as these are in accordance with the GDPR guidelines and necessary for the fulfillment of the aforementioned purposes (Articles 29 and 30 of Law 4624/2019).



Data subjects have the following rights under the GDPR:

a) Right to information about their personal data, which are collected and processed, as well as for any further processing thereof

b) Right of access to their personal data maintained by PANTEION UNIVERSITY

c) Right to correct their inaccurate or incomplete personal data

d) Right to delete data based on GDPR and Law 4624/2019

e) Right to limit processing, when specific conditions apply

f) Right to data portability to another organization. This right does not apply when the data is processed for purposes of public interest

g) Right to object in accordance with the provisions of the GDPR if permitted by law

h) Right to submit a complaint to the Personal Data Protection Authority (, which is the competent supervisory authority for the protection of the fundamental rights and freedoms of natural persons against the processing of their personal data, if the data subjects consider that their rights are violated in any way.

i) Right to cancel their consent at any time by sending an electronic/written message to the competent unit for the processing of personal data, resulting from the specific consent. The cancellation of the consent does not affect the legality of the processing that was based on it and was carried out before its cancellation.


PANTEION UNIVERSITY as data controller is obliged to respond to the relevant requests, which entail the exercise of the above rights, as soon as possible and in any case within one month of their submission. However, in the event that the relevant requests are manifestly unfounded, excessive or repeated, PANTEION UNIVERSITY may either impose a reasonable fee, or refuse to respond to them.



PANTEION UNIVERSITY is obliged to appoint a Data Protection Officer (hereinafter DPO). Data subjects can consult the DPO on any issue related to the processing of personal data and the exercise of their rights based on the GDPR, Law 4624/2019 and other legislation on the protection of personal data. The DPO is obliged to maintain confidentiality regarding the identity of the data subjects and about the circumstances that allow conclusions to be drawn regarding the data subject, unless the identity of the subject is revealed by him.


Communication with the DPO is done via electronic mail, at e-mail: or by written correspondence to the PANTEION UNIVERSITY's Personal Data Protection Officer.



In accordance with the applicable GDPR legislative and regulatory framework, the retention policy may be revised/amended at will. In any case, the Personal Data Protection Policy is posted and available from the PANTEION UNIVERSITY website.



Instant access, with one click, to all useful online services for everyday use.

See all services

Ruth Benedict

Policy & Directions


Contact us

Contact Info

Phone: +30 210 920 1047, +30 210 920 1406
Email: santhrop'@'


136 Syggrou ave. 176 71 Kallithea

Προσωπικά δεδομένα

Αυτός ο ιστότοπος χρησιμοποιεί cookies που είναι απαραίτητα για τη λειτουργία του και απαιτούνται για την επίτευξη των σκοπών που αναφέρονται στην πολιτική απορρήτου. Αποδεχόμενοι αυτό Ή κάνοντας κύλιση σε αυτήν τη σελίδα Ή συνεχίζοντας την περιήγηση, συμφωνείτε με την πολιτική απορρήτου μας.