The data controller for personal data is:

Dr. Maria Gialama – Psychologist
Tel: 231 511 32 90
Mobile: 698 311 64 04
Email: maria.gialama@bath.edu

1. Basic personal data

During visits or communication via the Website, the following data may be collected:

• Full name
• Contact phone number
• Email address
• IP address
• Technical browsing data

2. Special categories of data (Mental Health Data)

In case of communication via form or email, information regarding the User’s mental health may be shared. These data are special categories under Article 9 of GDPR. Processing is performed exclusively with explicit consent and only for the evaluation and handling of the communication request or provision of psychological services.

Strict professional confidentiality is maintained, according to the Psychologists’ Code of Ethics.

The processing of your personal data is based on clear legal grounds:

• Consent: for sensitive psychological data and marketing communications.
• Performance of a request/service: for your communication, scheduling of sessions, or provision of psychological services.
• Legal obligation: when required by law, e.g., record keeping.
• Legitimate interest: for website security and prevention of malicious use.

Data are disclosed only to authorized employees of Dr. Maria Gialama when strictly necessary.

Personal data are collected through:

• Contact form
• Email
• Telephone communication
• Automatically during website visit (cookies, IP)

Personal data are used for:

• Communication with the User
• Responding to requests or questions
• Scheduling psychological sessions
• Providing general psychological information
• Security and technical operation of the Website

No automated decision-making or profiling is carried out.

1. What are cookies?

Cookies are small text files stored on your device each time you visit the Website. They are used for proper functionality, improving user experience, and anonymous statistical analysis.

2. Types of cookies used

– Necessary Cookies (website operation)
– Performance Cookies (traffic statistics)
– Functionality Cookies
– Targeting/Advertising Cookies

3. Cookies Table

4. Managing Cookies

You can control and/or delete cookies via your browser settings.

5. Third-Party Cookies

The Website may use third-party services (e.g., Google Analytics) for anonymous statistics. Providers act as data processors and comply with GDPR.

The website uses cookies to improve the user experience. Except for strictly necessary cookies, all other cookies require explicit user consent, which can be withdrawn at any time. Third-party cookies, such as Google Analytics or Facebook Pixel, may collect anonymous statistical data and transfer data outside the EU, with legal safeguards in place (Standard Contractual Clauses).

Personal data are retained as long as necessary to complete the communication or process. Resumes/requests are kept for one month after completion and then securely destroyed. Personal data is retained for specific time periods and after these periods, data is securely deleted or destroyed:

• Communications and requests: up to 2 years after the last contact.
• Analytics cookies: according to the duration specified in the cookies table.
• CVs/Applications: 1 month after completion of the process.

Technical and organizational measures are applied to protect against unauthorized access, loss, or alteration.
Internet transmission is never 100% secure.

Dr. Maria Gialama maintains records of data processing activities according to Article 30 of the GDPR (see. Article 30 – Records of Processing Activities) to ensure transparency and accountability in all processing procedures.

The Website may contain links to third-party websites.
Dr. Maria Gialama is not responsible for the privacy policies of these websites.

Personal data is shared only with authorized data processors, such as companies providing analytics or system management services. All transfers are subject to strict confidentiality and GDPR compliance rules.

The Website is not intended for persons under 18 years old.
Data from minors are not intentionally collected.
If such data are received, they are immediately deleted.

Users have the following rights, which can be exercised via email or phone:

• Access and update personal data.
• Correct inaccurate or incomplete data.
• Request deletion or restriction of processing.
• Object to certain types of processing or marketing.
• Data portability rights.
• Withdraw consent at any time without affecting the legality of previous processing.

The data controller must respond to requests within 1 month. In case of a rights violation, you can submit a complaint to the Hellenic Data Protection Authority (www.dpa.gr).

In case of violation of your rights, you can submit a complaint to the Hellenic Data Protection Authority (www.dpa.gr).

Dr. Maria Gialama reserves the right to modify the Privacy Policy whenever necessary.
The updated Policy will be published on the Website and will take effect from its publication date.