Greece

Summary

Law: Law 4624/2019 on the Personal Data Protection Authority, Implementing the General Data Protection Regulation (Regulation (EU) 2016/679) and Transposing into National Law Data Protection Directive with Respect to Law Enforcement (Directive (EU) 2016/680) and Other Provisions (the Law), and the General Data Protection Regulation (Regulation (EU) 2016/679) (GDPR)

Regulator: The Hellenic Data Protection Authority (HDPA)

Summary: Greece implemented the GDPR in 2019 through Law 4624/2019 on the Personal Data Protection Authority, Implementing the General Data Protection Regulation (Regulation (EU) 2016/679) and Transposing into National Law Data Protection Directive with Respect to Law Enforcement (Directive (EU) 2016/680) and Other Provisions (the Law).

In addition, Law 3471/2006 on the Protection of Personal Data and Privacy in the Electronic Telecommunications Sector and Amendment of Law 2472/1997 (the Electronic Telecommunications Law) governs cookies and other trackers.

The Law derogates from the GDPR with respect to the processing of special categories of data for processing for scientific and historic research purposes. Additionally, the Law sets out some requirements for processing of employee data.

The Hellenic Data Protection Authority (HDPA) is the supervisory authority under the Law. The HDPA has been particularly active in releasing guidelines on GDPR compliance, and has covered topics such as cookies and other trackers, breach notifications, accountability, and processing records. The HDPA has also issued a list of the kind of processing operations which are subject to the requirement for a Data Protection Impact Assessment. In addition, the HDPA has conducted several enforcement actions and issued fines ranging from €5,000 to €20 million for unlawful processing of employee data, transparency violations, non-compliance with access requests, and inadequate security measures. On January 27, 2020, the HDPA issued an opinion (only available in Greek here) which discusses the incompatibility of certain provisions of the Law with the GDPR.

Browse more content in Greece

All Guidance Notes

All News

All Insights

News

15 November 2024

Greece: HDPA fines NIS €10,000 for the transmission of employee redeployment data

13 November 2024

Greece: Ministry of Digital Governance publishes list of enforcement bodies relating to AI Act

05 November 2024

Greece: HDPA delegates responsibilities of one-person body to HDPA members

27 September 2024

Greece: HDPA fines Ministry of Citizen Protection €150,000 for GDPR violations

24 September 2024

Greece: HDPA fines EKAB €30,000 for right of access and transparency violations

05 September 2024

Greece: HDPA postpones decision after fining MEP and Ministry of Interior €440,000

13 August 2024

Greece: NOYB files complaint against Alfa Vita with HDPA for non-compliance with GDPR

05 August 2024

Greece: HDPA fines METRO €50,000 for data subject rights and breach notification obligation failures

05 August 2024

Greece: HDPA announces EDPB's guide for small businesses available in Greek

05 August 2024

Greece: HDPA fines Municipality and Test IT Systems General Partnership €20,000 for failure to secure personal data processing

17 July 2024

Greece: HDPA publishes 2022 annual report

29 May 2024

Greece: HDPA fines MEP and Ministry of Interior €440,000 for personal data leaks

Insights

November 2022

Greece: Bill on emerging technology - a unified framework

Greek Law 4961/2022 on 'Emerging information and communications technologies, strengthening digital governance and other provisions' ('the Law') creates one of the first unified frameworks on emerging technologies within the EU. The Law attempts to address the possible impact that emerging technologies may have in everyday life and especially with fundamental human rights. Spiros Tassis, Founder at Tassis & Associates Law Office, provides a look into the Law and its purpose.

Greece

Summary

Browse more content in Greece

News

Insights

Get the Latest News

Thanks for signing up!

Company

Our Policies

Your Rights

Follow us