PRIVACY POLICY EFTYCHIA APICULTURE
Our Company “KOINSEP MELISMATA” prioritizes the respect of your personal data and implements appropriate measures to comply with the applicable legislation, regarding the protection of your personal data, including the General Data Protection Regulation 2016/679 (hereinafter referred to as the “GDPR” or the “Regulation”).
The following is a detailed informative policy pertaining to the collection and processing of the website users’ and e-shop clients’ personal data by the Company. The following terms of personal data processing by the Company refer to both the customers of our e-shop, as well as the users of our website https://eftychiabio.gr
This present Privacy Policy provides you with general information regarding how we use your personal data, which you provide to us when you browse this website, you communicate with us and you purchase products through our e-shop. Since we cannot predict how exactly we are going to use such data in the future, we provide you with further information when we interact with you, for example when you place an order to our e-shop or through notifications in our newsletters etc.
This present Privacy Policy forms an inseparable part of the Terms and Conditions that govern the use of our website and e-shop and by accessing or using the website and the e-shop you acknowledge that you have read, understood kai agree that, without limitations or amendments, you accept and are bound by this Privacy Policy.
1. Who is the Data Controller?
1.1. The Data Controller of your personal data is the Company under the name “KOINSEP MELISMATA” with its registered seat in Patras, Rio, 26504, with Tax Registration Number 997067101, Tax Authority of DOY A PATRON, telephone number +30 6944 660 222, e-mail address info@eftychiabio.gr lawfully represented by Mr. Giorgos Iliopoulos, hereinafter referred to as the “Company”. You may contact us to the contact details provided herein for any request pertaining to your personal data, as well as the exercise of your legal rights.
1.2. Contact person for your personal data: Mr. Giorgos Mitrakopoulos
1.3. Contact details:
For any matter relating to this present Privacy Policy and the processing of your personal data you may contact us in one of the following ways:
(a) Telephone number: +30 +30 6944 660 222, Monday to Friday, 10:00-17:00 (EET)
(b) E-mail address: info@eftychiabio.gr
2. What personal data does the Company process?
We collect personal data only if you wish to provide them to us and only when it is necessary, for you to use our website and purchase products through our e-shop.
For example:
• When you open a user account to our website, we collect your email address. When you log-in using your social media profile (e.g. Facebook, Google etc.), you provide us with access to your social media profile’s username and email address.
• When you place an order to our e-shop, we process your full name, delivery address and a telephone number which you provide to us, in order to contact you, if necessary, for the delivery of the products.
• When you contact us to request information about our products, or about your order, we may need to process your full name and contact details which you provide to us, to be able to answer to your questions.
• When you participate to contests, we will process – subject to your prior consent – your full name and contact details you provide to us upon participating to the contest. It must be noted that your participation to each of the Company’s contests shall be subject to the specific terms and conditions and privacy policy of that contest, which you must accept each time before participating.
• In case you accept our website’s cookies, pursuant to our Company’s Cookie Policy, we collect information pertaining to your browsing activity in the e-shop, your preferences and purchases. Such information is collected and kept anonymously, in the form of statistical data.
3. What are the purposes and the lawful bases under which the Company processes my personal data?
3.1. Registration, Creation and Management of your Account to the e-shop
When you open a user account to the e-shop, we process for such purposes the information you provide to us for registration, creation and management of your account to the e-shop: email address. In order to complete your registration, you will be asked to insert a password, which you create according to the security standards for password creation, as each time applicable. The Company does not know your password and you must keep such password secret and safe and completely avoid providing it to third parties, in order to prevent any unauthorized access and use.
Upon opening your account to the e-shop, you may log-in using your social media profile (e.g. Facebook, Google etc.). In that case, you provide us with access to your social media profile’s username and email address.
You may place an order to our e-shop as a guest (guest check-out) and it is not mandatory to open a user account.
The lawful basis for the processing of the personal data you provide to us, as per the above, is (as each time applicable) your prior consent for the registration and creation of the account to the e-shop, the performance of a contract for the operation, availability and management of your account to the e-shop, as well as our Company’s legitimate interest for the security of your account and your identification, when necessary to prevent fraud or any unauthorized access and use of your account.
3.2. Execution of your order to the e-shop
In order for us to execute the order you submitted through our website, we process the personal data you provide to us upon completing your order: full name, email address, delivery details and relevant information, telephone number (mobile).
If you wish us to issue an invoice we process additionally: profession, Tax Registration Number, Tax Authority.
The lawful basis of the processing, as per the above, is the performance of the contract of sale that our Company undertakes, after you place your order at the e-shop, as well as our Company’s legal obligation to comply with legal provisions and regulations.
The Company will retain any documentation pertaining to the performance of the contract of sale (e.g. invoice, receipt) for as long as it is necessary, pursuant to the applicable legislation, to ensure our Company’s compliance with its legal obligations (particularly our Company’s legal obligation to comply with tax provisions and regulations).
3.3. Operation of the e-shop
The Company processes, in an anonymous, statistical form, a combination of the information that you provide to us, together with data that we collect automatically through the cookies that we install, subject to the provision of your prior, explicit consent (pursuant to our Cookie Policy). The lawful basis for the processing is our Company’s legitimate interest for the secure and unencumbered operation of our e-shop and website, as well as for the development of our commercial activities and the optimization of our systems.
3.4. Pre-sale and after-sale customer services
The processing of personal data for this purpose includes information that you provide to us, as well as information that we collect automatically.
The lawful basis of processing is (as each time applicable): (a) our Company’s compliance with our obligation to implement customer care tools and processes, pre-sale and after-sale, (b) your consent when you ask the Company to communicate with you for customer service purposes or the management of a request and (c) our Company’s legitimate interest to contact its customers after the sale, to evaluate the products purchased.
3.5. Commercial communication
3.5.1. General commercial communication
When you subscribe to our newsletter or grant your consent to receive direct commercial communication at any point, our Company shall process the communication data which you provide to us for marketing purposes, to send you commercial communication. The lawful basis for this processing operation is your prior consent.
3.5.2. Commercial communication to the e-shop’s customers
Our Company may process the communication data that you have submitted at the point of sale of products or services to you or any other transaction with us, to send you commercial communication, in order to inform you of similar products or services offered by the Company or for similar purposes.
The lawful basis for this processing operation is our Company’s legitimate interest to process its customer data for the purposes of direct marketing.
3.5.3. Personalized commercial communication
The Company may process your data for the purposes of sending you personalized commercial communication, based on your preferences according to your purchases at the e-shop. The said data consist of a combination of information you provide to us (for example your name and contact details, the information you provide to us when you contact us etc.), information we collect automatically (for example by using cookies – pursuant to our Cookie Policy – subject to your prior consent), your visits, preferences and purchases in the e-shop etc.
The lawful basis for this processing operation is your prior consent.
3.6. Statistical analysis for the optimization of the e-shop
For the purposes of statistical analysis for the optimization of the e-shop, the Company processes all data it collects within the purposes analysed above, only in the form of aggregated and statistical data, implementing all appropriate safeguards to ensure that the data subjects are no longer identifiable.
The lawful basis for the above processing is the Company’s legitimate interest for the improvement of its products and services.
3.7. Participation to contests
For this purpose, our Company processes your name, email address, telephone number and any other information that is absolutely necessary for each of the contests to take place and which you provide to us upon participating to a contest organized by our Company. It must be noted that your participation to each of the Company’s contests shall be subject to the specific terms and conditions and privacy policy of that contest, which you must accept each time before participating.
The lawful basis for the above processing is your prior consent.
3.8. Where the lawful basis for commercial communication is your prior consent, we will use the contact details you provided to us upon registration. You may ask us not to send you any commercial communication to any of the contact information you have provided us.
3.9. In cases when you grant us your consent for any of the above purposes, you may withdraw such consent at any time, for the future, by contacting our Company at the contact details provided herein (see point 1.1 above), or by clicking on the unsubscribe link on the e-mail.
4. For how long does the company keep my data?
We will retain your personal data for as long as it is necessary for the processing purposes described above (under article 3), or until you request deletion of your personal data, pursuant to applicable legislation. Where the processing of your personal data is based on consent, the data shall be retained until withdrawal of such consent and the submission of a request to delete your data from our database. Some data (e.g. order data) may be kept anonymously or pseudonymized for the purposes of statistical analysis.
Furthermore, the Company shall retain your personal data for as long as it is necessary as per the statute of limitation for any claims, and/or until any claims are resolved before the competent courts, as well as for the period prescribed by applicable legislation, in order for the Company to comply with its legal obligations (indicatively but not exclusively, compliance with tax legislation).
5. What are my rights with regards to the processing of my personal data and how can I exercise them?
Our Company fully respects your rights with regard to the processing of your personal data. You may exercise your rights, as per the provisions of the GDPR, to one of the Company’s following contact points:
(a) By telephone at +30 6944 660 222, Monday to Friday 10:00-17:00 (EET)
(b) By email, at info@eftychiabio.gr
Contact person for your personal data: Mr. Giorgos Mitrakopoulos
Your rights, pursuant to the Regulation 2016/679 for the protection of personal data, are the following (as each time applicable, pursuant to the Regulation):
• Right of information (Articles 13 and 14 of the Regulation)
• Right of access (Article 15 of the Regulation)
• Right to rectification (Article 16 of the Regulation)
• Right of erasure (Article 17 of the Regulation)
• Right to restriction of processing (Article 18 of the Regulation)
• Right to data portability (Article 20 of the Regulation)
• Right to object (Article 21 of the Regulation)
• Right not to be subject to a decision based solely on automated processing, including profiling, which produces legal effects concerning him or her or similarly significantly affects him or her (Article 22 of the Regulation)
• Right to withdraw consent (opt-out): You have the right to withdraw your consent at any time, where the lawful basis of processing is consent. The consent can be withdrawn for the future.
Supervisory authority:
You have the right to lodge a complaint with the supervisory authority in your country, with regard to the processing of your personal data. In Greece, the supervisory authority for the protection of personal data is the Hellenic Data Protection Authority – HDPA (www.dpa.gr).
Our intention is to reply to all valid requests within, the latest, one (1) month from their receipt, unless your request is very complicated or in case you have submitted multiple requests, in which case we will try to reply within three (3) months from the receipt of your request (or requests). In case we need more time to respond to you, for the above reasons, we will inform you within one (1) month from the receipt of your request (or requests).
After you have submitted a request, we might contact you to ask for more information or clarifications regarding your request. Furthermore, our Company reserves the right to reject any unfounded or abusive requests or requests submitted in bad faith, within the provisions of the applicable legal framework and the Regulation.
6. Recipients of your personal data and relation with third parties – Transfer of data to third countries
6.1. Within the course of the website’s and the e-shop’s operation and the fulfillment of its contractual obligations towards you, our Company cooperates with third companies that obtain access only to the data which are absolutely necessary for the fulfilment of the purposes described in article 3 of this Privacy Policy, such as (indicatively and not exclusively) your registration to the e-shop and the management of your account, the execution of our contract of sale and, in general, the provision of services to you, the operational and technical organization of our website and the optimization of our products and services. Upon transferring your data to such third-party companies with which we cooperate, we ensure at all times the highest level of security. As such, your personal data are transferred only to service providers and cooperating companies which have been diligently selected and which are already contractually bound.
More specifically, in order for the website to operate and to process and complete your orders, we cooperate with various companies for (indicatively and not exclusively) the customer support via phone or email, the development, support, maintenance and hosting of systems, including the website hosting, the execution of the order and delivery to our clients and the execution of payments via credit or debit card.
Some of the above companies work with us as external associates that process personal data and, as such, they only process the data provided under our explicit instructions. We have, therefore, signed agreements with such companies, where we refer to the implementation and regular monitoring of security measures.
6.2. Our Company stores the personal data mainly within the EEA. In case of a transfer of data to third countries outside the EEA, for which there is no adequacy decision, or to International Organizations, the Company implements all appropriate safeguards as provided by the applicable legal framework for the protection of personal data and the GDPR with regard to the transfer to third countries and all necessary information shall be made available at the Company’s website.
6.3. Through the e-shop you may obtain access to websites and/or applications of third parties, which may or may not be our associates. In such cases, our Company has no responsibility and/or involvement to any collection and processing of personal data which may be conducted by the providers of the third-party websites and/or applications which you access. In view of the above, in order to ensure that you are fully informed about the processing of your personal data from such third-party providers, you are advised to consult the respective privacy policy uploaded on the third-party website and/or application that you visit.
7. How is my personal data secured?
The Company implements all necessary security measures for the protection and safeguard of your privacy and personal data such as encryption (SSL-Security Sockets Layer encryption software). The information you provide to the Company is processed exclusively by specifically authorized personnel under the Company’s control and instructions, as well as the recipients of the personal data when necessary (see article 6 above). For the processing, the Company appoints persons with the respective professional skills who provide appropriate safeguards in terms of technical knowledge and personal integrity to ensure privacy and protection of personal data. The Company, through the respective contractual commitments and its associates, implements all necessary security measures for protecting and ensuring privacy and confidentiality, as well as the integrity of personal data. In any case, the security of personal data in the website environment is subject to factors beyond the Company’s sphere of control, as well as factors relating to technical, functional or other problems of the network or reasons of force majeure or events of chance.
You are responsible not to disclose the data/passwords you have set for the access to your account and, more specifically to safeguard the use/access to your account from third parties. Your account to the e-shop is personal and non-transferable.
8. Cookie Policy
8.1 We use cookies on our Website to be operational or more efficient in its operation, to improve your navigation, to provide you with the full potential of the Website and to ensure the correct display of the content.
8.2 Cookies are small text files stored on your computer when you visit a digital platform, which are used as a means of identifying your computer. The cookies placed by the owner of the digital platform are called “first party cookies”. Cookies placed by others are called “third party cookies”. Third-party cookies allow third-party features (such as analytics, ads, and videos) to be provided on or through the e-shop. Parties installing third party cookies can recognize your device both when visiting our e-shop and when visiting some other websites.
8.3 With the exception of the absolutely necessary and functionality cookies, the cookies shall be installed only if you accept them upon visiting the Website. By accepting the cookies when entering the Website, you explicitly declare that you have read and understood the specific terms and conditions regarding the installation, function and purposes served by the cookies and you grant your consent for their use. Alternatively, you may not accept the cookies. In that case, we will only install the cookies that are from a technical and functional perspective absolutely necessary for the operation of the e-shop.
8.4 You may choose which of the cookie categories you wish to accept (or to ask us not to install any cookies which are not absolutely necessary from a technical perspective).
8.5 We’ve put our cookies in to the following categories, to make it easier for you to understand why we need them:
• Strictly Necessary Cookies: These are required for the operation of our website. They include, for example, cookies that enable you to log into secure areas of our website. Without these cookies, we cannot offer efficient operation of our website.
• Analytical/Performance Cookies: These allow us to recognise and count the number of users of our website and see how such users navigate through our website. This helps to improve how our website works, for example, by ensuring that users can find what they are looking for easily.
• Functionality Cookies: These improve the functional performance of our website and make it easier for you to use. These cookies allow the website to remember our visitors’ options such as user name, region to provide improved and personalized features.
• Targeting Cookies: These record your visit to our website, the pages you have visited and the links you have followed. These cookies are used to serve personalised content based on the users’ interests. We will then use this information to make advertising displayed on it more relevant to your interests.
You have the ability to accept or decline cookies by modifying the settings in your browser. Check the links below for instructions
Chrome
Safari
Firefox
Internet Explorer
Please bear in mind however, that you may not be able to use all the features of our website if cookies are disabled.
8.6 Changes to this Cookie Policy
Our policies and procedures are under continual review. We may, from time to time, update our cookie policy. Any such changes will be posted on this page.
9. Amendments to this Privacy Policy
We reserve the right to amend this present Privacy Policy, for example when this is necessary to comply with new requirements imposed by applicable laws, guidelines or technical requirements, or in the course of a revision of our processes and practices. We will notify you of any amendment to our Privacy Policy through the website, as well as with any appropriate means, when necessary, for substantial and critical changes (e.g. via a pop-up window upon entering to the website).
In any case, we advise you to visit this Privacy Policy regularly, in order to be informed about any changes, as per the above.