Update on the Processing of Personal Data
We would like to inform you that for the “company” the protection of our customers’ personal data is of paramount importance. For this reason we take the appropriate measures to protect the personal data we process and to ensure that the processing of personal data is always carried out in accordance with the obligations set by the legal framework, both by the company itself and by third parties who process personal data on behalf of the company.
What is the GDPR?
The General Data Protection Regulation (GDPR) is the new regulatory framework of the European Union (EU) in this area. The object of the law is to establish the conditions for the processing of personal data, in order to protect the rights and freedoms of natural and legal persons and in particular the right to protection of personal data.
The “company” based in Argostoli Kefalonia, email: email@example.com, tel .: 2671026530, website: www.madshoesbyertsos.gr as legally represented, informs that, for the purposes of conducting its business activities, it processes personal data of its customers in accordance with the applicable national legislation and the European Regulation 2016/679 for the protection of natural and legal persons against the processing of personal data and for the free circulation of this data (General Regulation for Data Protection, hereinafter “Regulation “) as applicable.
What categories of personal data do we process?
The personal data that you provide us, ie name, email, mobile / landline phone, home address, occupation, we process only when we have a legal reason to do so.
What are the legal reasons for processing your personal data?
Legitimate reasons for processing your personal data are:
(a) the purchase of products and consequently the fulfillment of our contractual obligations in this context.
(b) the safeguarding and protection of the legitimate interests, both yours and ours. Thus, we use closed circuit television (CCTV) and security cameras in order to be able to protect the security of individuals & legal entities, materials, facilities.
(c) compliance with an obligation imposed by law, such as regulatory compliance for tax purposes
(d) the consent you provide under the specific conditions set by the legal framework, in order to receive updates on products, services, offers from the “company”.
By giving your consent you responsibly declare that you are over 16 years old. If you are under 16 years old, you may use our website only with the participation and approval of a parent or guardian.
Sending information and promotional material / company news
During your visit to our website, www.krontsisfashion.gr, you have the opportunity to fill in your email address in order to subscribe to our Newsletter.
The data collected from our sites may be used to contact you for promotional and advertising purposes, to inform you of products and offers that may be of interest to you, via email, SMS, instant messaging or telephone, if you have provided the your consent, subject to the specific conditions set by the legal framework.
Customer Satisfaction Survey
The data we collect from our websites is used for your participation in a Customer Satisfaction Survey, provided that you have given your consent, under the specific conditions set by the legal framework. The Customer Satisfaction Survey is currently conducted via electronic communication.
Safeguarding our legal interests and protecting persons and property
When we use closed circuit television (CCTV) and security cameras in order to be able to protect the security of individuals & legal entities, materials, facilities.
Personalized information (profiling)
In order to provide you with the best possible experience, the personal data collected from our websites may be used to send personalized updates, provided that you have given your consent, subject to the specific conditions set by the legal framework.
Personalization based on your needs and preferences (profiling) results from the data we draw from your personal data,
such as occupation, area of residence, etc., based on the results of the Customer Satisfaction Survey,
based on the purchases you make, as well as the personalized data we receive from the Newsletters (now Acymailing) shipping automation platform.
Where is your data communicated?
The “company” transmits the personal data provided by individuals & legal entities to a company, which offers automation services for the purpose of mass sending of electronic messages (today Acymailing).
In addition, in the context of completing an order in our e-store, some of this data is transferred to partner companies.
Therefore, they are transported to transport companies for the transportation and delivery of your goods.
Transport companies may contact you to request clarifications and to inform you about the delivery of your products.
Finally, the data is transferred during the payment execution to payment providers (Banks). We, for our part, use high security systems to prevent data leakage from malicious systems.
The data storage period is decided based on the following specific criteria depending on the case:
a) When processing is required as an obligation by provisions of the applicable legal framework, your personal data will be stored for as long as the relevant provisions require.
b) When processing under contract, your personal data is stored for as long as necessary for the performance of the contract and for the establishment, exercise, and / or support of legal claims under the contract.
c) For the purposes of promoting products and services (marketing activities), your personal data is kept until the withdrawal of your consent.
This can be done by you at any time.
Withdrawal of consent shall not affect the lawfulness of the proceedings based on consent in the period prior to its withdrawal.
d) To revoke your consent you can contact the following contact details: email: firstname.lastname@example.org or phone 2671026530.
e) You can also use the unsubscribe options by following (clicking) on the corresponding link, which exists in our electronic communications.
What are your rights in relation to your personal data?
Every natural or legal person whose data is processed by the “company” enjoys the following rights:
Right of access:
Under current law, you have the right of access, ie at your request on the one hand to be informed whether or not your personal data is being processed and on the other to receive further information about the processing, in particular about the processing carried out, the appropriate guarantees under which any transfers to a third country or international organization take place.
Right of correction:
You have the right to request the correction of your inaccurate personal data.
Right to delete:
You have the right to request the deletion of your personal data when we process it with your consent or in order to protect our legal interests. In all other cases (such as when there is a contract, obligation to process personal data imposed by law, public interest), this right is subject to certain restrictions or does not exist as the case may be.
Right to restrict processing:
You have the right to request a restriction on the processing of your personal data in the following cases:
(a) when the accuracy of the personal data is disputed and pending verification;
(b) when you oppose the deletion of personal data and request instead of deletion the restriction of their use;
(c) when personal data is not needed for processing purposes, it is nevertheless necessary for you to establish, exercise, support legal claims, and
(d) when you object to the processing and until it is verified that there are legitimate reasons that concern us and take precedence over the reasons why you oppose the processing.
Right to object to processing:
You have the right to object at any time to the processing of your personal data in cases where, as described above, it is necessary for the purposes of the legitimate interests we pursue as controllers, as well as to the processing for the purposes of direct marketing and consumer profiling.
Right to withdraw consent:
Finally, the “company” informs you that where the processing is based on your consent, you have the right to revoke it freely, without prejudice to the legality of the processing based on your consent, before revoking it. To revoke your consent you can use the unsubscribe options by following (clicking) on the corresponding link, which exists in our electronic communications or contact the email address email@example.com.
To exercise any of the above rights you can contact the Department of Personal Data Protection of the “company” at the following email contact details: firstname.lastname@example.org or by phone 2671026530.
Personal Data Security
The “company” implements appropriate technical and organizational measures aimed at the secure processing of personal data and the prevention of accidental loss or destruction and unauthorized and / or illegal access to them, their use, modification or disclosure. In any case, the way the internet works and the fact that it is free does not allow anyone to be guaranteed that unauthorized third parties will never be able to violate the applicable technical and organizational measures by gaining access to and possibly using personal data for unauthorized and / or illegal purposes.
In case of modification, we post the revised version here and we will change the date of the last update in the Policy.
You should check this regularly to stay up to date with the latest policy updates.