www.sportwhistle.eu whistleblowing of harmful irregularities in SPORT - doping - matchfixing - match fixing sport events manipulation - abuse - violence - bulling - sexual harassment - fraud - bribery - corruption - scandals in sport bidding
1. k e a
Nikolaos Constantin Theodorou M.Sc / M.B.A
www.sportwhistle.eu
2. CO-ORDINATION OF PROTECTED REPORTING SYSTEMS
4 GREEK CASE
STUDIES
1 UEFA – HELLENIC FOOTBALL FEDERATION – INTEGRITY OFFICER TRAGEDY
2 GREEK FOOTBALLERS DILLEMA
3 GREEK CITIZEN IN TRANSPARENCY INTERNATIONAL WHISTLEBLOWING
TRAP
4 UNPROTECTED GREEK STATE HOTLINES AND WHISTLEBLOWING
PLATFORMS
5 RISKS FOR THE SPORT ORG THAT WANTS TO START-UP A WB PLATFORM
6 RISKS AND DILLEMAS FOR THE WHISTLEBLOWER
7 THE PROACTIVITY AS THE CORE MISSION OF SPORT WHISTLE PROJECT
3. FOOTBALL WHISTLEBLOWERS DILEMMA
FIFA & UEFA CODES - ethics – disciplinary – conduct
ask - demand obligatory
from UEFA PRO COACH
to immediately report match-fixing
stating his name & his personal data
[whistleblowing ]
Otherwise
the UEFA PRO COACH will phase disciplinary measures
BUT how ?
UEFA – FIFA
PROTECTS its WHISTLEBLOWERS ….?
4. HOPELESS WHISTLEBLOWER –
GREEK UEFA PRO COACH IN DANGER
Mr. Kalaitzidis [ UEFA PRO SPORT COACH ] gives details to the Greek state
justice sport prosecutor of his two encounters with the match - fixer
and owner of Aeginiakos FC - Giannis Niopas.
He states to the Greek State - justice prosecutor of Salonika:
<< October 28, 2017, Aris FC -V -Aeginakos FC
football match was held, for which Yiannis
Niopas received 20,000 euros for his team
Aeginiakos in order to manipulate more than 4
goals.
The match ended 5-0
[in favor of the match fixer & sport betting
gamblers] >>
5. HOPELESS WHISTLEBLOWER –
GREEK UEFA PRO COACH IN DANGER
<<When I announced my intention to testify all these.....,
......................................to the Greek state of prosecutor in
THESSALONIKI..........................
I received visits of many people with motorcycles
without ID number plates and covered ID signs
outside my house !
&
three days later, after 2 - o'clock AFTER MIDNIGHT,
strangers struck the door phone of my family home
entrance!
I'm asking from the GREEK STATE an official
witness protection program.! " >>
6. THE RISKS FOR THE WHISTLEBLOWER
To
whistle
or not to
whistle ?
This is the
question
Risks of:
• Safety, Stigmatization
Retaliation, betrayal
• Blackmailed, fired,
sued,blacklisted,
arrested, threatened,
• assaulted.
7. MATCH FIXING – CONFUSED FOOTBALL WHISTLEBLOWERS
GREEK PRO FOOTBALLER DILEMMA ?
EUROPOL?
INTERPOL…???? IPCD
Athens?
NATIONAL
SPORT
INTEGRITY
Tell me
where?
Recycl
e
BIN
8. Recycl
e
BIN
archive
? Greek Mafia “omerta”
archive
Government
al sport
PRO
SPORTS
COMMISSIO
N
Greek
Justice
prosecutors
HFF ethics &
disciplinary
committee
UEFA EWS FDS REPORTS - GREEK CASE G.D.P.A. LEAKS
• A violation of UEFA – HFF
autonomy by the Greek state
sport law 2016
• A fragmented Greek policy &
procedure?
• Leaks of ….Personal Data ?
H.F.F.
INTEGRIT
Y
OFFICER
….Just….
UEFA sends
EWS FDS
Match-fixing
reports
to HFF
9. THE RISKS FOR THE SPORT FEDERATION - LEAGUE - ORG
How TO?
Does it WORK ?
What’s NEXT ?
Risks of:
• Trust – faith – credibility -
loyalty
• Leaks of anonymity &
personal data
• Breach of laws & GDPA
regulations
10. GREEK CASE TRANSPARENCY INTERNATIONAL GREECE
EXPERIMENTAL 2-YEARS EU PROJECT “TRANSPARENCY NOW”–
PUNISHMENT & PENALTY FOR WHISTLEBLOWER [ PUBLIC SERVANT]
FROM HER MUNICIPALITY
NON I.T.
ARCHITECTURE
Personal data security
NOT AN ISO 27001
NOT asymmetrical
encryption
Low -security data
processing center
Non Technical insurance
SOMETHING illegal
serious and true TO
REPORT
NON Certified
personal data controller
https NOT ENCRYPTED
CONNECTION
https NOT ENCRYPTED
CONNECTION
Whistleblower
PUBLIC SERVANT
REPORT AGAINST HIS
EMPLOYER – PUBLIC
ATHORITY
MUNICIPALITY OF A
GREEK CYCLADES
NOT System
data athorised
User
NON
NATIONAL
PERSONAL
DATA
11. Recycle
BIN
STEP WHY TO REACH THE PUBLIC ATHORITIES ?
Non ISO 27001
asymmetrical
encryption
Non high-security data
processing center
Whisteblower PAUSED
sallary and job as public servant
Non https ENCRYPTED
CONNECTION
nonSystem data authorized user
12. GREEK CASE GREEK PUBLIC STATE CULTURE
UNPROTECTED WHISTLEBLOWING PLATFORMS & HOTLINES
Not
SAF
E
G. Secretariat Combat Corruption
Ministry of Justice
G.Secretariat Force Inspectors against
Financial Crime SDOE
Ministry Of Finance
G.Secretariat Consumer Rights
Protection
Ministry Of Development
G.Secretariat Force Inspectors
against Public Sector Corruption
Ministry of Internal Affairs
13.
14. GDPA - PROTECTED PROCEDURE
PERSONAL DATA
PROTECTION
ISO 27001
asymmetrical
encryption
Class 3+ high-security
data processing center
TECNICAL SECURITY
SYSTEM
SPEAK UP
REPORT
NDPA
CERTIFIED
RECEIVER of REPORT
https ENCRYPTED
CONNECTION
https ENCRYPTED
CONNECTION
WHISTLEBLOWER DATA CONTROLLER
15. GDPA PROTECTED PROCEDURE
DATA PROTECTION
SECYRITY
ISO 27001
asymmetrical
encryption
Class 3+ high-security
data processing center
TECHNICAL IT
PROTECTION
REPORT TO EXTERNAL ATHORITES
ONLY AFTER WRITTEN APPROVAL
FROM THE WHISTLEBLOWER
https ENCRYPTED
CONNECTION
17. CRYPTOGRAPHIC
• SAFE TRANSFER OF PROTECTED DATA via https connection & high-
grade asymmetrical encryption processes]
ΗΟSTING
• high-security data center ISO 27001 norm
• Security - safe Server & data transfer
• Closed locked sealed servers inside at a high security certified and
accredited center - clear SSL connection
• Safe anonymous secret entrance to the platform without
without Logging , IP address data, chronical stamps, metadata
DESIGN OF DATA PROTECTION
18. • ZERO cookie [Neccesary for tech needs & reasons]
• server will not be able to clearly recognize the user of a PC or laptop or
tablet [user's computer].
• Transmits ZERO cookie to the user – whitleblower’s PC or laptop or
tablet.
• ZERO cookie uses only the one an only certain connection has only one
recognition number only for this session that is in action
• Since user closes his browser this cookie automatically deleted instantly
& forever when in private browsing [ for example DUCKDUCKgo or TOR]
• The number of this session has not neither holds a relation with the user
- whistleblower neither the attached data documents or photos
DESIGN OF DATA PROTECTION
19. File attachments
Can not be opened or
inspected from the IT architecture
Can be oppened ONLY by ..
CERTIFIED ND.P.A. operational officer – data controller
DESIGN OF DATA PROTECTION
20. THE SPORT WHISTLE PROJECT
Thank you & Keep in touch….
www.sportwhistle.eu
keafairplaycodehellas@outlook.com.gr