The Inter-Municipal Agency of the Western Countryside of Thessaloniki K.E.K. 'NEFELI' is a certified by the National Organization for the Certification of Qualifications and Vocational Guidance (EOPPEP) Center for Lifelong Learning 2. Established in 1995 by Municipalities and Communities of the Western Countryside of the Prefecture of Thessaloniki (' Kallikratiki 'Municipalities of Delta, Chalkidona and Oreokastro) with the aim of involving the local government in issues of training and promotion in the labor market. In 2019 it decided to design and install an Information Security Management System – Protection of Privacy in accordance with the requirements of the International Standard ISO 27001: 2013 & ISO 27701: 2019.


The Information Security Management System - Protection of Privacy of KEK covers:

▪Performing actions, programs and activities of adult training and support and in general lifelong learning

▪Vocational Training

▪Providing support, social inclusion, awareness and information services to vulnerable groups of the population as well as services aimed at promoting them in employment.

▪Development of research and studies related to social issues, labor market, entrepreneurship and lifelong learning.

▪Organization of communication and publicity actions in the context of the implementation of the programs implemented by the company as well as to the local bodies and the local community.

▪Management and implementation of actions from funded European and national programs

▪Management of co-financed projects such as public procurement and services projects as well as public projects implemented with own means.

and was designed in accordance with the needs and aspirations of KEK and the Legal and Regulatory Requirements of the current Greek and Community Legislation.


The main objectives, as they are expressed in the procedures of the Information Security Management System - Protection of Privacy of KEK, are:

▪the creation of a basis for the continuous improvement of the efficiency of its processes, having in mind the continuous satisfaction of the needs and the expectations of its customers as much as possible.

▪minimizing the number of incidents that may affect the continuity of business processes, as well as minimizing their impact.

▪management's view that the information held and circulated in any way, through its electronic and non-electronic systems, are elements of exceptional importance for its operation and position in the market and undertakes to handle this information in a way that protects security (confidentiality) and their integrity and availability, while at the same time complying with the laws and regulations to which it is subject.

The SDAT and the Information Security Policy - Protection of Privacy are reviewed at regular intervals by the Management, in order to adapt to new needs and market developments, legal requirements, but also to achieve the goal of information security - protection of Privacy .

The Management is committed to the disposal of the infrastructure and equipment that is deemed necessary for the implementation and availability of the work of KEK. Each employee is responsible to respond, assimilate and implement the procedures required by the Management System through its daily activities. For this reason, all employees, depending on their responsibilities, are informed about the System and act in accordance with the established rules of security and confidentiality.

The Policy is communicated, understood and applicable by all human resources.

Procedures, flows and actions, which do not guarantee the fulfillment of the set goals, are immediately stopped by those responsible, cause analyzes are carried out and the necessary improvement measures are defined.


The CEO                                                                                                            

Sarafidis Constantinos

Gefyra, 01.09.2020

(Version: 2)


To see the certificate click here