This Privacy Notice informs you about our policies regarding the collection, use and disclosure of personal information/data we receive from the users of our Website.
By using this Website, you agree to our collection and use of information in line with this policy and the requirements of the Greek Law, the European Directive on Personal Data (“GDPR”) and the relevant decisions and acts of the competent supervisory authority.
For the purposes of the GDPR, we are the “Data Controller” as regards any personal information you provide to use or we have obtained from you in any other way.
Personal Data we collect from you
We collect personal data when you are using our services or you communicate with us.
- We retain the information you provide to us when you sign up, either in the mandatory registration fields, such as contact details (name, surname, email address, mail address and mobile phone number), or in the optional registration fields, if any (e.g. date of birth, sex).
- By using cookies, we record and analyse website traffic, details about your purchases, if you are eligible for our offers and any entries in our competitions.
- We record your feedback and, if you have reported an issue with us, we may need to record personal details regarding the issue, provided you have given us your consent to do so.
- If you contact us directly (by post, e-mail or telephone) and submit a complaint or reply to us, or enter a competition, we will record your details and all pertinent information, such as emails, letters and phone calls.
Data from third parties
We may receive your personal data from third parties. Could happen when you take part in various market research or to protect yourself from fraud (such as a transaction with your stolen credit card).
Collection and usage of information
Your decision to disclose your personal data is entirely up to you. You give us your specific consent to use your personal data only for the purposes for which you have disclosed it to us. The personally identifiable information you provide to us could reasonably be used by us as permitted by, and in accordance with, applicable privacy laws, to (i) identify you and allow you to use our services (for the purposes of order processing and delivery) or to assist our store in delivering an order or answering any questions you may have; (ii) send promotional and advertising newsletters to you about us and our products and services; (iii) exchange data with our affiliated companies, our business partners and market research companies to conduct market research and analysis of our services on our behalf; (iv) further any other purpose that may be specified at the time of collecting your information, without prejudice to any preferences you may have expressed; (v) to prevent fraudulent transactions and theft; and (vi) to comply with all applicable laws, government requests, court orders or otherwise protect rights, property or security or otherwise.
By participating in our Services you acknowledge and agree to use your information as specified above and for the purposes described.
The GDPR defines a set of categories of personal data that are considered “sensitive” and which require the special attention of data controllers. This Website and any services available from this Website do not collect or process sensitive personal data.
How we share your personal information
In certain circumstances, we may transfer your personal information to carefully chosen third parties. We will never transfer your personal information for such purposes, unless you have permitted us to do so or we have a legal right to do so.
We use third party providers for the following services:
- Sending of promotional offers.
- Customer satisfaction surveys.
- Customer service via telephone and e-mail.
- Development, support, maintenance and hosting of information systems, including web hosting.
- Ordering and delivery through aluminati.gr
- Payment processing with credit or debit card.
If, after giving us permission to transfer your personal data to third parties, you change your mind, you can opt out by contacting us as described below.
By submitting your personal information to us, you acknowledge that these third parties may receive and process your personal information. We ask all third parties to treat your personal information safely and to maintain all appropriate organisational and technical measures for the protection of your personal data. To ensure that they keep that obligation above, we have signed agreements with them, without prejudice to our right to take reasonable steps to enforce such obligation. We shall never sell your personal data.
Cookies are small data files which can include an anonymous unique identifier.
Cookies are sent to your web browser from a website and stored in your computer’s hard disk.
Like many websites, we use ‘cookies’ to collect information. You can ask your browser to dismiss all cookies or indicate when a cookie is sent. However, if you don’t accept cookies, you may not be able to use certain parts of our Website. For more information, please read our Cookies Policy.
Where we collect sensitive information (such as credit card data), such information is encrypted and transmitted to us securely. You can confirm this by looking for the lock icon in the address bar and for “https” at the beginning of the web page address.
Apart from protecting sensitive information transmitted electronically using encryption technology, we also protect your offline information. Only employees “who need to know” to perform a particular task (for example, billing or customer service) have access to personally identifiable information. Computers/servers on which we store personally identifiable information are located in a secure environment.
The technology we use and the policies we have implemented are intended to protect your privacy from unauthorised access and improper use.
Where appropriate, we strive to ensure secure information transmission, such as credit card information, from your computer to our server using SSL (Secure Sockets Layer) encryption software. However, due to the inherently open nature of the Internet, we cannot guarantee that all transmitted data will be secure, as no Internet transmission method or electronic storage method is 100% secure. By using this Website you accept this risk.
Consumers and citizens’ rights
In line with data protection laws, using this Website entitles you to several rights associated with the provision of your personal data at aluminati.gr. These include your rights to request the following from aluminati.gr:
- To confirm what personal data it may hold about you and for what purposes;
- To withdraw the consent you have given in relation to your personal data;
- To correct any inaccurate or incomplete personal data;
- To provide you with a complete copy of your personal data to transfer it elsewhere;
- To cease processing of your personal data;
- To remove completely all of your personal data and confirm that it has done so (however, there may be reasons that impede us from doing so);
- To transfer your personal data to another Organisation.
If you need to contact us, please use our communication details below.
If we do not respond to your request or provide you with a valid reason why we are unable to comply with your request, you have the right to contact the Personal Data Protection Authority and file a complaint. You may contact them by mail (Personal Data Protection Authority, Registered office: 1-3 Kifissias Ave., GR115 23, Athens) by email (firstname.lastname@example.org) or by phone (+30-210 6475600).
How long we keep your personal information
Transferring personal data outside the EEA
Legal basis for file processing
Article 6(1)a GDPR serves as the legal basis for the processing for which we obtain the consent for a specific purpose. If the processing of personal data is necessary for the execution of a contract in which the data subject participates, such as in case the processing is necessary for the supply of goods or for the provision of any other service, the processing takes place according to article 6(1)b of the GDPR. The same applies to the processing operations required for the implementation of pre-contractual measures, i.e. for surveys concerning our products or services. If our company is bound by a legal obligation to process personal data, such as to comply with tax obligations, such processing is based on article 6(1)c of the GDPR.
The provision of personal data as a mandatory or contractual requirement. Mandatory requirement for contract conclusion. Obligation of the data subject to provide personal data. Possible consequences of not providing such data.
Please note that the provision of personal data is required in part by law (e.g. tax law) or may also arise from contractual provisions (e.g. counterparty information). Failure to provide personal data would result in the contract being terminated.
As a responsible company, we do not use automated decision making or profiling processes.
Contact us – Opt out process