Our Company “KOINSEP MELISMATA” prioritizes the respect of your personal data and implements appropriate measures to comply with the applicable legislation, regarding the protection of your personal data, including the General Data Protection Regulation 2016/679 (hereinafter referred to as the “GDPR” or the “Regulation”).
The following is a detailed informative policy pertaining to the collection and processing of the website users’ and e-shop clients’ personal data by the Company. The following terms of personal data processing by the Company refer to both the customers of our e-shop, as well as the users of our website https://eftychiabio.gr
1. Who is the Data Controller?
1.1. The Data Controller of your personal data is the Company under the name “KOINSEP MELISMATA” with its registered seat in Patras, Rio, 26504, with Tax Registration Number 997067101, Tax Authority of DOY A PATRON, telephone number +30 6944 660 222, e-mail address firstname.lastname@example.org lawfully represented by Mr. Giorgos Iliopoulos, hereinafter referred to as the “Company”. You may contact us to the contact details provided herein for any request pertaining to your personal data, as well as the exercise of your legal rights.
1.2. Contact person for your personal data: Mr. Giorgos Mitrakopoulos
1.3. Contact details:
(a) Telephone number: +30 +30 6944 660 222, Monday to Friday, 10:00-17:00 (EET)
(b) E-mail address: email@example.com
2. What personal data does the Company process?
We collect personal data only if you wish to provide them to us and only when it is necessary, for you to use our website and purchase products through our e-shop.
• When you open a user account to our website, we collect your email address. When you log-in using your social media profile (e.g. Facebook, Google etc.), you provide us with access to your social media profile’s username and email address.
• When you place an order to our e-shop, we process your full name, delivery address and a telephone number which you provide to us, in order to contact you, if necessary, for the delivery of the products.
• When you contact us to request information about our products, or about your order, we may need to process your full name and contact details which you provide to us, to be able to answer to your questions.
3. What are the purposes and the lawful bases under which the Company processes my personal data?
3.1. Registration, Creation and Management of your Account to the e-shop
When you open a user account to the e-shop, we process for such purposes the information you provide to us for registration, creation and management of your account to the e-shop: email address. In order to complete your registration, you will be asked to insert a password, which you create according to the security standards for password creation, as each time applicable. The Company does not know your password and you must keep such password secret and safe and completely avoid providing it to third parties, in order to prevent any unauthorized access and use.
Upon opening your account to the e-shop, you may log-in using your social media profile (e.g. Facebook, Google etc.). In that case, you provide us with access to your social media profile’s username and email address.
You may place an order to our e-shop as a guest (guest check-out) and it is not mandatory to open a user account.
The lawful basis for the processing of the personal data you provide to us, as per the above, is (as each time applicable) your prior consent for the registration and creation of the account to the e-shop, the performance of a contract for the operation, availability and management of your account to the e-shop, as well as our Company’s legitimate interest for the security of your account and your identification, when necessary to prevent fraud or any unauthorized access and use of your account.
3.2. Execution of your order to the e-shop
In order for us to execute the order you submitted through our website, we process the personal data you provide to us upon completing your order: full name, email address, delivery details and relevant information, telephone number (mobile).
If you wish us to issue an invoice we process additionally: profession, Tax Registration Number, Tax Authority.
The lawful basis of the processing, as per the above, is the performance of the contract of sale that our Company undertakes, after you place your order at the e-shop, as well as our Company’s legal obligation to comply with legal provisions and regulations.
The Company will retain any documentation pertaining to the performance of the contract of sale (e.g. invoice, receipt) for as long as it is necessary, pursuant to the applicable legislation, to ensure our Company’s compliance with its legal obligations (particularly our Company’s legal obligation to comply with tax provisions and regulations).
3.3. Operation of the e-shop
3.4. Pre-sale and after-sale customer services
The processing of personal data for this purpose includes information that you provide to us, as well as information that we collect automatically.
The lawful basis of processing is (as each time applicable): (a) our Company’s compliance with our obligation to implement customer care tools and processes, pre-sale and after-sale, (b) your consent when you ask the Company to communicate with you for customer service purposes or the management of a request and (c) our Company’s legitimate interest to contact its customers after the sale, to evaluate the products purchased.
3.5. Commercial communication
3.5.1. General commercial communication
When you subscribe to our newsletter or grant your consent to receive direct commercial communication at any point, our Company shall process the communication data which you provide to us for marketing purposes, to send you commercial communication. The lawful basis for this processing operation is your prior consent.
3.5.2. Commercial communication to the e-shop’s customers
Our Company may process the communication data that you have submitted at the point of sale of products or services to you or any other transaction with us, to send you commercial communication, in order to inform you of similar products or services offered by the Company or for similar purposes.
The lawful basis for this processing operation is our Company’s legitimate interest to process its customer data for the purposes of direct marketing.
3.5.3. Personalized commercial communication
The lawful basis for this processing operation is your prior consent.
3.6. Statistical analysis for the optimization of the e-shop
For the purposes of statistical analysis for the optimization of the e-shop, the Company processes all data it collects within the purposes analysed above, only in the form of aggregated and statistical data, implementing all appropriate safeguards to ensure that the data subjects are no longer identifiable.
The lawful basis for the above processing is the Company’s legitimate interest for the improvement of its products and services.
3.7. Participation to contests
The lawful basis for the above processing is your prior consent.
3.8. Where the lawful basis for commercial communication is your prior consent, we will use the contact details you provided to us upon registration. You may ask us not to send you any commercial communication to any of the contact information you have provided us.
3.9. In cases when you grant us your consent for any of the above purposes, you may withdraw such consent at any time, for the future, by contacting our Company at the contact details provided herein (see point 1.1 above), or by clicking on the unsubscribe link on the e-mail.
4. For how long does the company keep my data?
We will retain your personal data for as long as it is necessary for the processing purposes described above (under article 3), or until you request deletion of your personal data, pursuant to applicable legislation. Where the processing of your personal data is based on consent, the data shall be retained until withdrawal of such consent and the submission of a request to delete your data from our database. Some data (e.g. order data) may be kept anonymously or pseudonymized for the purposes of statistical analysis.
Furthermore, the Company shall retain your personal data for as long as it is necessary as per the statute of limitation for any claims, and/or until any claims are resolved before the competent courts, as well as for the period prescribed by applicable legislation, in order for the Company to comply with its legal obligations (indicatively but not exclusively, compliance with tax legislation).
5. What are my rights with regards to the processing of my personal data and how can I exercise them?
Our Company fully respects your rights with regard to the processing of your personal data. You may exercise your rights, as per the provisions of the GDPR, to one of the Company’s following contact points:
(a) By telephone at +30 6944 660 222, Monday to Friday 10:00-17:00 (EET)
(b) By email, at firstname.lastname@example.org
Contact person for your personal data: Mr. Giorgos Mitrakopoulos
Your rights, pursuant to the Regulation 2016/679 for the protection of personal data, are the following (as each time applicable, pursuant to the Regulation):
• Right of information (Articles 13 and 14 of the Regulation)
• Right of access (Article 15 of the Regulation)
• Right to rectification (Article 16 of the Regulation)
• Right of erasure (Article 17 of the Regulation)
• Right to restriction of processing (Article 18 of the Regulation)
• Right to data portability (Article 20 of the Regulation)
• Right to object (Article 21 of the Regulation)
• Right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her (Article 22 of the Regulation)
• Right to withdraw consent (opt-out): You have the right to withdraw your consent at any time, where the lawful basis of processing is consent. The consent can be withdrawn for the future.
You have the right to lodge a complaint with the supervisory authority in your country, with regard to the processing of your personal data. In Greece, the supervisory authority for the protection of personal data is the Hellenic Data Protection Authority – HDPA (www.dpa.gr).
Our intention is to reply to all valid requests within, the latest, one (1) month from their receipt, unless your request is very complicated or in case you have submitted multiple requests, in which case we will try to reply within three (3) months from the receipt of your request (or requests). In case we need more time to respond to you, for the above reasons, we will inform you within one (1) month from the receipt of your request (or requests).
After you have submitted a request, we might contact you to ask for more information or clarifications regarding your request. Furthermore, our Company reserves the right to reject any unfounded or abusive requests or requests submitted in bad faith, within the provisions of the applicable legal framework and the Regulation.
6. Recipients of your personal data and relation with third parties – Transfer of data to third countries
More specifically, in order for the website to operate and to process and complete your orders, we cooperate with various companies for (indicatively and not exclusively) the customer support via phone or email, the development, support, maintenance and hosting of systems, including the website hosting, the execution of the order and delivery to our clients and the execution of payments via credit or debit card.
Some of the above companies work with us as external associates that process personal data and, as such, they only process the data provided under our explicit instructions. We have, therefore, signed agreements with such companies, where we refer to the implementation and regular monitoring of security measures.
6.2. Our Company stores the personal data mainly within the EEA. In case of a transfer of data to third countries outside the EEA, for which there is no adequacy decision, or to International Organizations, the Company implements all appropriate safeguards as provided by the applicable legal framework for the protection of personal data and the GDPR with regard to the transfer to third countries and all necessary information shall be made available at the Company’s website.
7. How is my personal data secured?
The Company implements all necessary security measures for the protection and safeguard of your privacy and personal data such as encryption (SSL-Security Sockets Layer encryption software). The information you provide to the Company is processed exclusively by specifically authorized personnel under the Company’s control and instructions, as well as the recipients of the personal data when necessary (see article 6 above). For the processing, the Company appoints persons with the respective professional skills who provide appropriate safeguards in terms of technical knowledge and personal integrity to ensure privacy and protection of personal data. The Company, through the respective contractual commitments and its associates, implements all necessary security measures for protecting and ensuring privacy and confidentiality, as well as the integrity of personal data. In any case, the security of personal data in the website environment is subject to factors beyond the Company’s sphere of control, as well as factors relating to technical, functional or other problems of the network or reasons of force majeure or events of chance.
You are responsible not to disclose the data/passwords you have set for the access to your account and, more specifically to safeguard the use/access to your account from third parties. Your account to the e-shop is personal and non-transferable.
8.2 Cookies are small text files stored on your computer when you visit a digital platform, which are used as a means of identifying your computer. The cookies placed by the owner of the digital platform are called “first party cookies”. Cookies placed by others are called “third party cookies”. Third-party cookies allow third-party features (such as analytics, ads, and videos) to be provided on or through the e-shop. Parties installing third party cookies can recognize your device both when visiting our e-shop and when visiting some other websites.
8.3 With the exception of the absolutely necessary and functionality cookies, the cookies shall be installed only if you accept them upon visiting the Website. By accepting the cookies when entering the Website, you explicitly declare that you have read and understood the specific terms and conditions regarding the installation, function and purposes served by the cookies and you grant your consent for their use. Alternatively, you may not accept the cookies. In that case, we will only install the cookies that are from a technical and functional perspective absolutely necessary for the operation of the e-shop.
8.4 You may choose which of the cookie categories you wish to accept (or to ask us not to install any cookies which are not absolutely necessary from a technical perspective).
8.5 We’ve put our cookies in to the following categories, to make it easier for you to understand why we need them:
• Strictly Necessary Cookies: These are required for the operation of our website. They include, for example, cookies that enable you to log into secure areas of our website. Without these cookies, we cannot offer efficient operation of our website.
• Analytical/Performance Cookies: These allow us to recognise and count the number of users of our website and see how such users navigate through our website. This helps to improve how our website works, for example, by ensuring that users can find what they are looking for easily.
• Functionality Cookies: These improve the functional performance of our website and make it easier for you to use. These cookies allow the website to remember our visitors’ options such as user name, region to provide improved and personalized features.
• Targeting Cookies: These record your visit to our website, the pages you have visited and the links you have followed. These cookies are used to serve personalised content based on the users’ interests. We will then use this information to make advertising displayed on it more relevant to your interests.
You have the ability to accept or decline cookies by modifying the settings in your browser. Check the links below for instructions
Please bear in mind however, that you may not be able to use all the features of our website if cookies are disabled.