Privacy Policy
The management and protection of the personal data of the visitor/user of the Website is subject to the terms of the present as well as to the provisions of national, community and international law regarding the protection of the individual from the management of personal data, as applicable from time to time.
The Website deals responsibly with issues related to the protection of your personal data. As part of its operation, the Website collects certain information about its visitors/members that may lead to their direct or indirect identification.
For any information regarding the management of your data or the exercise of your rights, please contact us at [email protected]
We understand and take seriously the fact that you are aware and concerned about your personal data.
This Privacy Policy describes the information we collect and explains how the Company under the name “Theodoridou Eleni” processes this information as well as how you can manage and control the use of your information, in accordance with provisions of Greek law and European legislation on the protection of personal data including the General Regulation on the Protection of Personal Data (2016/679/EU), commonly known as “GDPR”.
Processing Manager
The website eway-menu.gr belongs to the company with the name “A GEORGAKOUDIS MONOPROSSOPI EPE” Responsible for Processing Personal Data is appointed
“Georgakoudis Agapitos”
A: 72 Ανατολικισ Thrakis & Santas K. Toumba, Thessaloniki 54453
VAT number: 095527968 IRA: 4 THESSALONIKI
T: 2310 989 770
E. [email protected]
contact person: Georgakoudis Agapitos
Policy changes and updates
Any possible future regulation in this respect will be the subject of this document. In any case, the Website reserves the right to change the terms of protection of personal data, in accordance with the relevant legal framework in force.
Accordingly, these privacy terms may be revised and updated at any time and without notice. Website users are requested to periodically check these terms for any changes, as continued use of the Website implies that they accept all possible modifications thereof.
This policy for the protection of Personal Data may be modified at any time and without prior notice. Guided by the principle of transparency, we are committed to informing you of any significant change in our policy. In any case, however, you should periodically check our policy, as the use of our services implies your acceptance of it.
Data Security
In the context of the protection of the data it processes, the Website implements a series of appropriate technical and organizational measures, adopts internal security policies, properly trains its staff, who are committed to maintaining confidentiality and privacy, while utilizing a series of technologies that ensure the security of your data (e.g. SSL certificate, encryption, certified hosting providers). As mandated by information security and data protection principles, technical and organizational security measures are regularly monitored and, if deemed necessary, updated and adapted to new best practices.
What data do we process about you?
The Website collects personal information of its visitors/users, only when they voluntarily provide it. Personal information is the information that can be used to identify or communicate with a person as well as other information concerning that person and information that is necessary for any execution of orders, purchase or sale of services, etc. The personal data collected are the following:
Registration Data:
NAME
UPDATE
COMPANY NAME
VAT NUMBER
TAX OFFICE
COMPANY ACTIVITY
COUNTRY/AREA
ADDRESS
CITY
POSTAL CODE
TELEPHONE NUMBER
EMAIL ADDRESS (EMAIL)
Payment & Order Data:
The website maintains a history of payments made by each user. Also, the website maintains a history of orders made by each user which remains in the website’s archive for a period of five (6) years.
Non-Personal Data:
The Website may collect non-personal identification information of its users using corresponding technologies, such as cookies and/or Internet Protocol (IP) address tracking. Cookies are small text files that are stored on the hard drive of each visitor/user and do not take notice of any document or file from their computer. They are used to facilitate the access of the visitor/user regarding the use of specific services and/or pages of the Website, for statistical reasons and in order to determine the areas which are useful, popular or for marketing reasons.
Non-personal information may also include the type of browser used by the visitor/user, the type of computer, its operating system, internet service providers and other such information. In addition, the Website’s system automatically collects information about the locations visited by its visitor/user and about the links to third-party websites/websites that may be selected through the use of the Website.
The visitor/user of the Website can set his program for navigating the Internet (web browser) in such a way that it either warns him about the use of cookies in specific services or does not allow the acceptance of the use of cookies in any case. In the event that the visitor/user of the specific services and pages does not wish to use cookies for his identification, he cannot have further access to these services.
The Website includes links to other websites which are under the responsibility of third parties (natural or legal persons). In no case is the Website responsible for the terms of protection of personal data which these websites follow.
Purposes of Processing
With reference to the data that the Users themselves provide on the Website, the Company processes this data, following the User’s request to register on the Website in order for the Company to take the appropriate measures before entering into a contract with the User, as well as to fulfill its contractual obligations (Article 6 para. 1B GDPR). Finally, these data are necessary to ensure the rights and financial requirements of the Company, as well as to establish, exercise or support legal claims. The company is obliged by the relevant legislation to keep records and issue documents for its transactions (legal obligation – article 6 par. 1c GDPR).
The Website may also use these data for informational purposes or to propose new subscription services to the user, unless the latter does not wish to do so. The Website will not make available for sale or otherwise transfer or publicize personal information of visitors/users of the Website to third parties, not related to it (the Website), without the consent of the visitor/user, with the exception of the application of relevant legal dictates and to the competent authorities only.
The Website may process part or all of the data sent by visitors/users for statistical purposes and to improve the services provided – information.
For example, we may use your data in order to:
To respond to your requests for information about the services and/or products we provide.
To facilitate the distribution/delivery process of our services and/or products.
To send you newsletters, information or material that may be of interest to you.
To collect statistics about page traffic.
To detect, prevent and deal with fraud or other illegal activities.
To evaluate the effectiveness of our events and other promotional actions.
To maintain (through updates) our contact list
The visitor/user can contact the Website in order to verify the existence of the personal file, its correction, its change or its deletion.
Who are the recipients of your data?
In order to be able to provide its services, the Website transfers some of your data to partner companies. These companies (processors) process your data only for the purposes mentioned above and only on behalf and at the instruction of the Store, with the exception of any legal obligations. When transmitting your data, the Website takes all the necessary technical and organizational measures to ensure the best possible level of security.
These companies are all based within the European Union and have been selected based on, among other things, the ability to securely process your data. These companies are committed through a contract concluded with the Website to provide necessary guarantees for the protection of Personal Data and to take the appropriate technical and organizational measures so that the processing is lawful and to ensure the protection of your data and rights.
These companies provide us with (a) services for the provision of web hosting (web hosting) for the Store, (b) services for transporting the products to you, (c) marketing services for our services to you.
Where and for how long we store your data
Your data is stored in the company’s system, while any backup copies are kept in databases within the European Union. In any case, appropriate organizational and technical measures are always applied that are required to avoid any violation thereof.
The data is stored exclusively and only for a period of time, which is necessary for the respective processing purpose.
For example, if you have purchased products from the Store, we are required to keep the relevant documents for at least five (5) years. If your account on the Website remains inactive for a period of more than two (2) years, the Website will proceed to update you and if there is no response, it will proceed to delete it and all data concerning you, except for those deemed necessary for compliance under legal obligation or for the exercise of claims.
What are your rights in relation to your data and how can you exercise them
Based on the relevant legal framework, you have a number of rights in relation to the processing of your data by the Website.
Specifically, among other things, you have the right to:
Request their rectification (right to rectification),
To request, under certain conditions, their deletion (right to deletion),
To request, under conditions, the restriction of their processing (right to restriction of processing),
Object, under certain conditions, to their processing on our behalf (right to object),
Request the data you have provided to us in a structured, commonly used and machine-readable format (right to data portability), if this is deemed technically feasible.
In the event of a data breach, which may put your rights and freedoms at high risk and if it does not fall under one of the exceptions provided for in the GDPR, the Website undertakes the obligation to inform you of the breach without unjustified delay.
Compliance with the legal framework for data processing and, in this context, the exercise of your rights, is a priority for the Website. For this reason, we have the right to request the provision of additional information, which is necessary to confirm your identity, before exercising your rights.
In principle, the Website is obliged to respond to your request immediately and within one month at the latest. If deemed necessary, taking into account the complexity of the request and the number of requests, this deadline may be extended by another two months. In any case, the Website will inform you as soon as possible and, in any case within one month of the submission of your request, about its progress and the reason for any delay in satisfying it.
In the event that your requests are manifestly unfounded or excessive, in particular due to their repetitive nature, the Website may either impose a reasonable fee, taking into account the administrative costs of providing the information or communication or carrying out the requested action, or refuse to proceed with your request.