1. General
The COMPANY, in compliance with the European General Data Protection Regulation and relevant Greek legislation (as amended and in force), handles personal data disclosed to it with the utmost care, ensuring their protection and privacy in all cases.
The USER may browse the website without being asked to provide any personal information, unless explicitly notified in advance by the COMPANY. The COMPANY collects personal data when the USER registers for its services, or when placing an order as a guest. In all cases, this information is necessary for the execution of the online sale and for keeping the USER informed about it.
2. When Information is Collected
The COMPANY collects five types of user information: (1) details provided during registration as a REGISTERED USER, (2) details provided to fulfill an order, (3) details provided when participating in competitions held from time to time, (4) details provided for the activation of telephony and internet services, (5) details provided when logging in via another platform (iOS, Android, Facebook, Google).
When completing any order form on the website, the USER will be asked to provide their full name, address, postal code, email address, phone number, and payment details. Additionally, more specific information may be requested, such as delivery details, invoicing information (company name, address, profession, VAT number, tax office), or details related to a requested quote.
The COMPANY uses the information provided during the electronic submission of the form to communicate with the USER regarding: (i) delivery of the order, (ii) customer verification and identification where necessary, (iii) new or alternative products offered by the COMPANY, (iv) special offers from the COMPANY, and (v) prize collection following a competition draw.
Users may choose whether or not to receive such communications by sending a request via email to [email protected].
Every order requires the collection of personal details for delivery or reservation purposes. Credit card usage is secured in all cases through the electronic environment of the respective bank — the COMPANY does not have access to the USER’s credit card details. Any other document used to verify the customer’s identity remains strictly confidential and is reviewed only by the relevant department of the COMPANY.
By providing personal data, the USER consents to its use by COMPANY employees for the purposes stated above. The COMPANY requires its employees and website administrators to provide users with the level of security described in this Privacy Policy. Under no circumstances will the COMPANY share the USER’s personal data with third parties without their prior consent, unless required by law.
3. Use of Data
The COMPANY will use the USER’s personal data exclusively for the purposes described above. It will not collect or process more or different types of personal data than is necessary for the intended purpose. Personal data will only be used in accordance with this privacy policy, unless the USER has specifically consented to another use. In the exceptional case that the COMPANY intends to use the USER’s personal data for purposes other than those stated in the original consent, it will notify the USER in advance, and will only proceed after obtaining the appropriate permission.
4. Use of Data for Advertising Purposes
For the continuous improvement of its services, the COMPANY may send the USER marketing emails related to the COMPANY that may be of interest. The USER may choose which types of communications they wish to receive at any time by updating their email preferences. SMS messages sent to the mobile number provided during an order are intended solely to update the USER on the status of their order.
The COMPANY will not use the USER’s data for advertising purposes without prior, explicit, and freely given consent. For existing customers, the COMPANY may use the email address obtained during the course of the existing customer relationship to provide marketing materials related to similar products or services previously requested, used, or likely of interest.
The USER may unsubscribe at any time, or through their account settings choose whether to receive promotional material via email or SMS. They may also object to such use at the time of collection or at any later time. To stop receiving marketing emails, the USER should follow the instructions within the email received.
5. Legal Obligations
The COMPANY may need to use and retain personal data for legal and compliance reasons, such as the prevention, detection, or investigation of a crime, or the prevention of loss, fraud, or any other misuse of its services and IT systems. It may also use personal data for internal and external audit requirements, information security purposes, or for the protection or exercise of its rights, privacy, security, or property.
6. Cookies
The COMPANY may collect USER identification data using technologies such as cookies. Cookies are small text files sent to and stored on the USER’s hard drive, enabling the website to operate smoothly, store multiple user preferences, recognize frequent visitors, facilitate access, and collect data to improve website content. Cookies do not harm users’ computers or stored files.
The COMPANY uses cookies to provide information to the USER, process orders, and display advertising and informational content relevant to their interests and needs. They are essential for the proper functioning of the website and do not access any documents or files on the USER’s computer.
The USER may decline cookies through their browser settings. Some website functions will not be available if cookies are disabled.
Types of Cookies:
- a. Necessary Cookies — Essential for the proper functioning of the website and its core features. Without these, the COMPANY cannot ensure correct website operation.
- b. Functionality Cookies — Remember the USER’s preferences while browsing, allowing the COMPANY to suggest appropriate products based on their needs.
- c. Performance Cookies — Collect information on how visitors use the website (most visited pages, navigation issues, etc.). This data is aggregated and anonymous, used solely to improve website performance.
- d. Advertising Cookies — Used to display relevant advertisements based on the USER’s interests and to send more targeted offers, while helping the COMPANY measure the effectiveness of its advertising campaigns.
- e. Analytics Cookies — A subset of functionality cookies that allow the COMPANY to evaluate the effectiveness of various website features, continuously improving the user experience.
Third-party providers, including Google, may display the COMPANY’s ads on websites across the internet and use cookies for informational, optimization, and advertising purposes based on previous visits to this website. The website may also use cookies from previous visits for remarketing purposes.
Users may opt out of Google’s use of cookies by clicking the relevant link. They may also configure their browser (Chrome, Firefox, Edge, etc.) to be notified before a cookie is downloaded, allowing them to accept or reject it.
The website may use Google Analytics features for display advertising (e.g., remarketing, Google Display Network impression reporting). Through Ad Settings, users may opt out of Google Analytics for display advertising and customize Google Display Network ads.
The COMPANY reserves the right to change this cookie policy at any time. Any changes will take effect as soon as the revised policy is available on the website.
Third-party advertisers and other businesses the COMPANY works with may use their own cookies to collect information about USER activity on this website. These cookies are not controlled by the COMPANY.
This website may include links to websites not owned by the COMPANY. Those websites may have their own privacy terms for which the COMPANY bears no responsibility.
7. Processing of Children’s Personal Data
The COMPANY will not collect or process personal data of children under the age of 16, unless parental consent has been given in accordance with applicable local law. If it becomes aware that a child’s personal data was collected in error, it will delete such data without undue delay.
8. Processing of Sensitive Data
In certain cases, the COMPANY may process special categories of personal data (“sensitive data”), including data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data for identification purposes, health data, or data concerning sexual life or orientation.
Such data may be processed if made public by the USER, for the establishment, exercise, or defense of legal claims, or if the USER has freely given prior, explicit, and separate consent for a specific purpose.
9. Correction, Modification, or Deletion of Information
The website allows and encourages users to correct, modify, update, or delete their data and information. If the USER chooses to delete information, the website will act to remove it from the COMPANY’s records promptly. To protect the USER’s security, the website will verify the identity of the person making changes.
To access, modify, or delete personal data, report website issues, or make any inquiries, please contact us:
- Phone: 210 9625000
- Email: [email protected]
Please note that while the COMPANY will do everything possible to protect users’ personal data, the protection of their account password is also their own responsibility.
10. User Rights
As a data subject, the USER has specific legal rights regarding their personal data. The COMPANY will respect these rights and address related concerns accordingly.
- Right to Withdraw Consent: Where processing is based on consent, the USER may withdraw it at any time.
- Right to Rectification: The USER may request correction of their personal data. They may also review and update data directly through their personal account.
- Right to Restriction: The USER may request restriction of processing in the following cases: (i) if accuracy of the data is disputed, pending verification; (ii) if processing is unlawful and the USER requests restriction rather than deletion; (iii) if the COMPANY no longer needs the data but the USER requires it for legal claims; (iv) if the USER has objected to processing, pending verification of legitimate grounds.
- Right of Access: The USER may request information about the personal data held by the COMPANY, including categories, purposes, sources, and recipients. One copy of the data is provided free of charge; additional copies may incur a reasonable fee.
- Right to Data Portability: Upon request, the COMPANY will transfer the USER’s data to another controller where technically feasible, provided processing is based on consent or contractual necessity.
- Right to Erasure: The USER may request deletion of their data when: (i) data is no longer necessary for its original purpose; (ii) the USER objects to further processing and exercises this right; (iii) processing was based on consent, which has been withdrawn and no other legal basis exists; (iv) data has been unlawfully processed; (v) deletion is required for legal compliance; (vi) for fulfillment of a legal duty; or (vii) for the establishment, exercise, or defense of legal claims.
- Right to Object: The USER may object at any time to processing of their personal data based on legitimate interests (rather than consent). The COMPANY will cease processing unless it can demonstrate compelling legitimate grounds that override the USER’s interests, or for legal claims. The USER is asked to clarify whether they wish for their data to be deleted or processing to be restricted.
- Right to Lodge a Complaint: In the event of an alleged breach of applicable privacy law, the USER may lodge a complaint with the data protection supervisory authority in their country of residence or where the alleged breach occurred.
11. Special Notes
- Time Period: The COMPANY will endeavor to respond to any relevant request within 30 days. This period may be extended for specific reasons related to the legal right in question or the complexity of the request.
- Restriction of Access: In certain cases, the COMPANY may be unable to provide access to some or all personal data based on legal provisions. If a request is denied, the USER will be informed of the reason.
- Non-Identification: If the COMPANY is unable to identify the USER as a data subject based on the information provided in a request, it will be unable to fulfill that request unless additional identifying information is provided.
- Exercising Legal Rights: To exercise their legal rights, the USER is asked to contact the COMPANY in writing via email. They may also contact the Data Protection Officer directly at [email protected].
12. Retention of Personal Data
In general, the COMPANY will delete personal data collected from the USER when it is no longer necessary to achieve the purposes for which it was originally collected. However, data may be retained for longer periods as required by law.
For any questions regarding data protection or to submit a request to exercise your legal rights, please contact the data controller at: [email protected]