The company ” ILIOS MPACHARIKA V.S.DIAMANTOPOULOS ANONYMOS VIOTECHNIKI ETAIREIA ”  (“Company”, “we”, “us”, “our”) recognizes that the protection, security  and management of your personal data is extremely important and is committed to operate with a view to protecting them.   

This present Privacy Policy for the Protection of Personal Data  (“Statement”) presents how the company uses your personal data collected through the website https://iliosmpaxarika.gr/ as well as the measures it has taken to protect and safely maintain and generally process such data. The Statement applies to you if, you receive services from us or interact in any way with us, including by using our corporate website or contacting us through social media in order to be informed about the type of data  it collects or produces about you, the purpose and manner of collecting and processing your data,  their recipients and the purpose of processing on their behalf,  as well as  your rights and choices regarding your personal data.

Questions and Comments

You can contact us at the contact details mentioned above and submit to us your comments, questions, remarks or any complaints regarding this Policy and the general collection and processing of your personal data. You have the right to submit any complaint regarding your personal data protection issues that may arise from our processing to the Hellenic Data Protection Authority, which is the supervising Authority in our country. Details can be found at the following link www.dpa.gr .

Amendments

This Data Protection Policy is governed by both the relevant provisions of Greek and EU law on the protection of individuals with regard to the processing of personal data. Any possible future change of the above regulatory framework will be the subject of the present. Therefore, we reserve our right to change this statement and apply any change to your data and our practices regarding their collection and processing, in accordance with the law, and / or to modify or replace all and / or part of this Policy at our sole discretion. 

If there are essential changes to this Policy or our practices regarding your data change in the future, we will notify you by posting the changes on our Website. However, if you wish any clarification or information regarding the changes, or you have any disagreement, reservation or question regarding them (changes), you can contact us at the details mentioned in the Section below. Please note that any information / clarification provided to you in accordance with the above, regarding any changes to this Policy, does not constitute a replacement, substitution or any modification of this Policy.

The continuation of our navigation on our Website, or the use of our Services, implies the automatic and unconditional acceptance of the modified terms of this policy by you. In case you do not agree with the modifications, you must not take any action or use the website. Even more so in the provision of personal data, and you are entitled to terminate the contracts between us and request deletion of your data. In any case, for any information or clarification, you can contact us, while maintaining your rights regarding your personal data, as detailed and described in Section 6 below.

1. Who we are

The purpose of this Statement is to inform you about the type of personal data collected by the company, the purpose and manner of their processing (collection, storage, use, transmission), the adopted protection and security measures we have taken, as well as the rights that the subjects of personal data have against this processing, which in any case is carried out in a reliable and transparent manner. Given the collection and processing personal data,  the company maintains a strong commitment to processing them in accordance with the General Data Protection Regulation (GDPR), the Greek data protection laws and any other relevant data protection law and code of conduct (hereinafter collectively referred to as the “Personal Data Protection Laws – PD”).

The company ” ILIOS MPACHARIKA V.S.DIAMANTOPOULOS ANONYMOS VIOTECHNIKI ETAIREIA  ” is supervised by the Hellenic Data Protection Authority (HDPA) for the collection and processing of the data it conducts.

1. The Data we collect

2.1. Information collected automatically during your visit and interaction with our Website

Our Website has informative content about the products sold by our company. Browsing it alone (without sending a request) does not require the visitor to provide/enter personal data. However,  by visiting and browsing the website alone, certain information may be automatically collected, which can identify you  directly or indirectly, such as:

• the Internet Protocol (IP) address of your computer,
• browser type and operating system,
• the web pages you visited immediately before and after your visit to the page,
• the speed of the connection and information about the software programs installed on the computer,
• basic server connection information, and
• information collected through HTML cookies, Flash cookies, web beacons and other similar technologies (see Cookies section below).

Regarding the information collected automatically from your browsing on our Website, please refrain from visiting it, if you do not wish to collect and process this information.

2.2. Information you provide to us directly:

-Communication

In case you wish to contact our Company through the communication platform, you are invited to fill in and submit the corresponding contact form, during the submission of which the Website collects and processes, with your consent, the following personal data:

• Name
• email

Legal bases for processing

We collect and process the personal data you provide to us under the following legal bases:

• Legitimate business interest as required for the performance of the services provided
• Legal Obligation for us to comply with the applicable laws and regulations
• Your consent, which you can revoke as part of your rights

We do not process personal data without your consent or without you having provided the Company with  your data.

We do not collect or process personal data of individuals under the age of 18. Our services are exclusively for people who are at least 18 years old or older. In case you are under 18 years old, do not use or provide any information to us, do not register in our contact form and do not give any information about yourself to us, including your name, address, or contact details (telephone, email, etc.). If we find that we have collected or received personal data from a person under the age of 18, we will delete it immediately unless parent or guardian consent has been given. If you believe we may have information from or about a person under the age of 18, please contact us.

We collect only the personal data necessary for the proper and complete provision of our services, such as name, e-mail,  etc.  in order for you to contact us. At this point, please note that you are responsible for the accuracy of the data you provide to us.  

Purposes of Processing

The purposes of processing personal data are statistical scientific market research and public relations and other ancillary functions. To achieve the above purposes, we collect and process non-sensitive personal data, especially those who submit  contact requests, complaints or complaints, our principals and agents, our partners and consultants, our suppliers. The non-sensitive personal data we collect and we process data relating to identification data (personal data) and data relating to the goods and services offered by the individual. The above personal data are published by the subjects themselves, either in order to enable their service and/or updating by  our Company.

We collect, process and store your data in the context of legitimate interest for the purpose of analyzing our business performance as well as for other purposes for which we will notify you, or determine on a case-by-case basis, at the point where the information about you is originally collected.

We collect, process and store your data to handle any complaints you may have as  well as to prevent and deal with fraud and other illegal activities in order to protect the public and the safety of staff. In addition, the purposes of collecting, processing and storing your data are carried out in order to measure the effectiveness of the Company’s presentation and promotion of third party websites and the use of data analysis tools in order to improve the website and our relations with the public.

1. Transfer and disclosure of your personal data

We do not market or transfer your personal data to third parties except within the scope of what is set out in this Privacy Statement and within the scope of the law. In particular, in order to provide our services, we may share your personal data with certain Third Companies, which act on our behalf (as processors) in order to provide an optimal service to you (such as transport companies, companies providing communication and marketing services, companies providing accounting, consulting and/or auditing services, etc.). The company ensures the processing of your personal data  by third-party partners with contractual clauses limiting the purpose of processing and complying with the technical and organizational measures according to the GDPR for the proper and safe processing of your personal data.

We do not transfer your personal data to third countries and/or outside the European Union.

Our website (https://iliosmpaxarika.gr/) collects but does not transmit to third parties, information that describes your previous surfing on the internet such as  cookies  (cookies are files stored in  your web browser and contain information about your previous activity on the internet). More specifically, we use Cookies for  many different reasons, with the sole purpose of creating a safer and more usable environment for our visitors, as well as providing advertising content tailored to their interests and needs. We also use “cookies” to understand how our visitors navigate the website in order to improve its structure and content. More information about cookies can be found here.

1. Protection measures

In the Company  “ ILIOS MPACHARIKA V.S.DIAMANTOPOULOS ANONYMOS VIOTECHNIKI ETAIREIA “  we take all necessary measures for the protection and security of information. More specifically, we have developed and implemented optimal technical and organizational mechanisms for security and protection of information in order to protect their integrity, availability and confidentiality.

1. Duration of data retention

We collect and maintain your personal data for as long as required by law in the context of the contractual relationship we have with you.

1.  Your rights

We recognize and safeguard your following rights:

• Right to transparent information about the exercise of your rights. (Art. 12, 13, 14 of GDPR).
• Right of access (Article 15 GDPR) to the personal data we have collected from you – You can ask us to confirm whether we are processing your personal data, to give you access to any data you do not have at your disposal as well as to provide you with other information about your personal data, such as what data we have, why we use it, To whom we disclose them, whether we transfer them abroad and how we protect them, for how long we keep them, what rights you have, how you can file a complaint, where we got your data from to the extent that information has not already been provided in this Policy.
• Right to rectification (Article 16 GDPR) of inaccurate personal information we have about you.
• Right to erasure (“right to be forgotten”) (Article 17 GDPR) of the information we have collected about you  after submitting your personal information in the contact form with us. It should be noted that exercising the right to erasure entails the inability to continue providing the services you have requested from us. Therefore, you can ask us to delete your personal data at any time when it is no longer needed for the purposes for which it was collected or when it has been unlawfully processed. However, it is emphasized that we are not required to comply with your request to delete your personal data if the processing of your personal data is necessary either to comply with a legal obligation or to fulfill another legitimate purpose or other legal basis, or to establish, exercise or defend legal claims.
• Right to restrict the processing of your personal data ( Article 18 GDPR) where possible – You may ask us to restrict (i.e. retain but not use) your personal data when their accuracy is disputed (see Correction) so that we can verify their accuracy or in case the processing is unlawful; but you do not want them deleted or when they are no longer necessary for the purposes for which they were collected, but we still need them to establish, exercise or defend legal claims or there is another legitimate processing purpose or other legal basis
• Right to object (Article 21 GDPR) to the processing of your personal data – You may object at any time to any processing of your personal data, which is based on the legitimate interest of the company or the fulfillment of a duty performed in the public interest.
• Right to withdraw your already given consent (Article 7 GDPR), i.e. to withdraw your consent at any time for processing based on consent. The lawfulness of the processing of your data is not affected by the withdrawal of consent until the time you requested the withdrawal as the withdrawal of consent is for the future.

You have every right to exercise your rights by sending an email to info@sunspices.gr or  by letter to the address at Ag.I.Renti & Aitoloakarnanias 157, Peiraios  18541. We kindly ask that your relevant requests be accompanied by the appropriate evidence of identification of your person, with the express reservation of the Company to request the provision of additional information in order to identify and confirm your details.

7. Supervisory Authority

You have the right to lodge a complaint with your local supervisory authority regarding the processing of your personal data. In Greece, the supervisory authority for data protection is the Hellenic Data Protection Authority (www.dpa.gr).  

Postal Address: 1-3 Kifissias Avenue, P.C. 115 23, Athens

Call Center: +30 210 6475600

Fax: +30 210 6475628

E-mail: contact@dpa.gr

8. Identity

We take the confidentiality of all records containing personal data seriously and reserve the right to ask you for proof of your identity if you make a request regarding such records.

9. Costs

We will not charge you any costs for exercising your rights in relation to your personal data unless, as required by law, your request for access to information is unfounded or excessive, in which case we may charge a reasonable fee under the circumstances. We will inform you of any charges before completing your request.

10. Schedules

We aim to respond to any valid requests no later than one (1) month after receiving them, unless it is highly complex or you have made several requests, in which case we aim to respond within three months. We will let you know if we are going to need more than one (1) month for the reasons set out above. We may ask you if you can tell us exactly what you want to receive or what exactly concerns you. This will help us act on your request faster.

In any case, you must provide specific and true facts and / or facts in order to be able to answer and / or accurately satisfy your request, otherwise we reserve any errors that are beyond our control. Also , our company may reject requests that are unfounded or excessive or abusive or in bad faith or generally illegal, within the framework of the provisions of the law.