- ‘Personal data’ means any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
- ‘Special categories of personal data’ personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation.
- ‘Processing’ means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
- ‘Anonymisation’means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject.
- ‘Pseudonymisation’ means the processing of personal data in such a manner that the personal data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separately and is subject to technical and organisational measures to ensure that the personal data are not attributed to an identified or identifiable natural person.
- ‘Controller’ means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data; where the purposes and means of such processing are determined by Union or Member State law, the controller or the specific criteria for its nomination may be provided for by Union or Member State law.
- ‘Processor’ means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
- ‘Consent’ of the data subject means any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
- ‘Personal data breach’ means a breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data transmitted, stored or otherwise processed.
- ‘Existing legislation’ means the provisions of any existing Greek, Union or other legislation in which we subject to and which set out issues of personal data protection, in particular the General Data Protection Regulation (GDPR) 2016/679 EU and L. 4624/2019 (Government Gazette A’ 137/29.8.2019)
For any processing of personal data conducted in the context of the use of the Website, solely for the purposes and in the manner set out in this Policy, the Controller shall be deemed to be the Company.
- Identification details: Name and Surname, date of birth
- Contact details: landline and mobile number, email address
- Billing address
- Delivery address (in case it is different from billing address); Please note that in case of requesting delivery of products or services to a third party, other than a visitor or registered user, the latter acknowledges that will have full responsibility for the information and full consent of the person, who he/she designates as the recipient, for the disclosure of his/her personal data to the Company for the sole purpose of delivery to him/her of the relevant products, and assumes full responsibility for any claims of this person against the Company.
- Invoicing details (in case an invoice is requested): Company name, registered office, VAT number, Tax office.
- Order history
- Frequency of visits to the Website
- The content in the “Shopping Cart” or/and “Wishlist”
- Participation in promotions
- Name and Surname
- Address of residence/headquarters/establishment
- Email address
- Telephone
- Message (free text of the interested party)
- The Internet Protocol (IP) address of the visitor / user’s computer
- Browser type and operating system
- The websites visited by users / visitors immediately before and after their visit to the Company’s Website
- Connection speed and information about software programs installed on the computer
- Basic server connection information
- Information collected through HTML cookies, Flash cookies, web beacons and other similar technologies (see section Cookies).
- The consent.
- The necessity to process data in the context of performing a contractual obligation or at the pre-contractual stage.
- The necessity to process data in the context of safeguarding Company’s legal interests.
- The necessity to process data in compliance with the Company’s legal obligation.
- The necessity to process data in order to perform the obligations and exercise specific rights of the Company’s or of the subjects or to fulfill a duty carried out in the public interest.
- The necessity to process data to protect the vital interests of the subjects.
- The necessity to process data for the foundation, exercise or support of rights and legal claims.
- The necessity for the export of statistical data.
- To identify users in the context of creating an account (user account) and when providing them with access to the Website as registered users.
- For the execution of the sales contract from a distance, i.e. for the completion of the order, the communication and the sending of information regarding the stages of processing the order, the provision of clarifications regarding the order, the delivery of the order to the customer’s place of choice.
- For the communication with the visitors / users of the Website and the management of their requests / queries, whether they are related to issues of personal data protection or to the quality of their service or to the products offered by the Company.
- For the regular infomation of the visitor and / or the registered user via e-mail, whose contact details were legally obtained by the Company, in the context of the transaction with the visitor and / or registered user, according to article 11 par. 3 of Law 3471/2006 and if the visitor and / or the registered user does not oppose this communication. This information may include information about its products and / or offers and / or contests, communication for conducting research and other promotional activities of the Company.
- For the compliance of the Company with legal obligations, e.g. indicative of the tax legislation or for the possible cooperation of the Company with Judicial, Administrative and Regulatory authorities.
- To improve and develop the features and functions of the Website, including the conduct of research and studies, as well as tests to address website malfunctions or to personalize its content and functions, so that they are tailored to the interests and preferences of the users.
- To export statistical data, after anonymizing the data.
- To protect visitors / users from malicious actions and maintain the security and integrity of the Website.
- The consent.
- The necessity to process data in the context of performing a contractual obligation or at the pre-contractual stage.
- The necessity to process data in the context of safeguarding Company’s legal interests.
- The necessity to process data in compliance with the Company’s legal obligation.
- The necessity to process data in order to perform the obligations and exercise specific rights of the Company’s or of the subjects or to fulfill a duty carried out in the public interest.
- The necessity to process data to protect the vital interests of the subjects.
- The necessity to process data for the foundation, exercise or support of rights and legal claims.
- The necessity for the export of statistical data.
- To identify users in the context of creating an account (user account) and when providing them with access to the Website as registered users.
- For the execution of the sales contract from a distance, i.e. for the completion of the order, the communication and the sending of information regarding the stages of processing the order, the provision of clarifications regarding the order, the delivery of the order to the customer’s place of choice.
- For the communication with the visitors / users of the Website and the management of their requests / queries, whether they are related to issues of personal data protection or to the quality of their service or to the products offered by the Company.
- For the regular infomation of the visitor and / or the registered user via e-mail, whose contact details were legally obtained by the Company, in the context of the transaction with the visitor and / or registered user, according to article 11 par. 3 of Law 3471/2006 and if the visitor and / or the registered user does not oppose this communication. This information may include information about its products and / or offers and / or contests, communication for conducting research and other promotional activities of the Company.
- For the compliance of the Company with legal obligations, e.g. indicative of the tax legislation or for the possible cooperation of the Company with Judicial, Administrative and Regulatory authorities.
- To improve and develop the features and functions of the Website, including the conduct of research and studies, as well as tests to address website malfunctions or to personalize its content and functions, so that they are tailored to the interests and preferences of the users.
- To export statistical data, after anonymizing the data.
- To protect visitors / users from malicious actions and maintain the security and integrity of the Website.
Protecting the safety and privacy of minors is very important to the Company. By accepting the Terms of Use of the Website, the User declares that he/she is an adult over 18 years of age or, if he/she is under 18 years of age, that he/she has obtained the necessary consent from the person/persons having parental responsibility and that he/she will provide the information of him/her if so requested. In any case that the Company finds that it has unknowingly collected any personal information directly from a minor under the age of 15, without verifiable parental consent, it will delete the information from its database as soon as possible, with reservation about the exceptions provided in the Law.
- To third-party companies, which undertake to perform a certain processing for the Company. In this case the Company performs specific processing activities, ensuring that the processing is carried out in accordance with the applicable legal framework and that the personal data of the subjects are processed safely, and that the subjects can freely and unhindered exercise their rights.
- To Judicial and Prosecution authorities in the exercise of their duties ex officio or at the request of a third party claiming a legitimate interest and in accordance with the legal procedures.
- To other institutions of the Greek State, which, according to their statutes, have such a right and authority.
The personal data of the visitors/users may be transmitted to non-EU recipients, only if the appropriate safeguards are complied with, in accordance with existing legislation, so as not to undermine the level of protection of natural persons ensured in the European Union from the GDPR.
All personal data that Company processes are kept for a predetermined and limited period, depending on the purpose of processing, at the end of which such personal data is deleted from the Company’s databases. Under no circumstances will the data be deleted as long as there is a connection with the natural persons (e.g. through an active user account) and for the period during which any legal claims may arise (e.g. 5-year limitation period of claims on tort action).
- Access in the personal data that the Company keeps.
- Rectification of the personal data.
- Erasure (‘right to be forgotten’) of the personal data provided to the Company.
- Restriction of processing personal data.
- Personal data portability.
- Objection to the processing of the personal data.
- Withdrawal of their consent (in cases where the processing is based on consent).
- Strictly necessary cookies Strictly necessary cookies are essential for the proper function of our website, allowing users to browse and use its features. These cookies do not recognize the individual identity of users. Without these cookies, we cannot offer effective operation of our website. In addition, these cookies allow our website to remember users’ choices in order to provide improved and personalized features.
- Functionality cookies (Preferences cookies) These cookies allow websites to remember user’s choices such as username, language or region, in order to provide enhanced and personalized features. The information collected by these cookies can be made anonymous and it is not possible to track browsing activity on other websites. If visitors do not accept these cookies, the performance and functionality of the websites may be affected and their access to its content may be limited.
- Performance cookies (Statistics cookies) These cookies collect information about how visitors use our website. For example, which pages they visit most often and whether they receive error messages from websites. These cookies collect aggregate, anonymous information that does not identify a visitor. They are used solely to improve the performance of a website.
- Marketing cookies These cookies are used to provide content that best suits visitors and their interests. They may be used to send targeted advertising/offers, limit advertising impressions or measure the effectiveness of an advertising campaign. These cookies may be used to remember the websites that users have visited in order to determine which online marketing channels are most effective.
- Unclassified cookies Unclassified cookies are cookies that are in the process of being classified, together with the providers of individual cookies.