Privacy policy

Data Protection Information (Privacy Notice)

When you visit our online store cavabakirtzoglou.gr, personal data is collected, processed, and used. With this data protection information, we aim to emphasize our commitment to handling your data in a secure and reliable manner and to clarify how we use our customers’ personal data.

cavabakirtzoglou.gr has been designed to comply, in terms of the protection of users’ personal data, with the following laws/regulations:

  • Regulation (EU) 2016/679 (GDPR)
  • Directive 2002/58/EC
  • Relevant Greek legislation implementing the above in Greece

What is personal data?

Personal data is information that can be attributed to you as an individual. This includes, for example, information such as your name, address, email address, and telephone number.

In addition, during each visit to our website, further data may be collected automatically for technical reasons, such as your IP address (assigned by your internet access provider to your computer for connecting to the internet), information about the website from which you visited our website, and information regarding the internet browser you use (technical information). In individual cases, this technical information may constitute personal data.

As a general rule, we use technical data only to the extent necessary for technical purposes, for the operation and protection of our website against attacks and misuse, and in pseudonymized or anonymized form for statistical purposes.

How we use your personal data

We collect, process, and use your personal data when you visit our online store, when you register, when you log in to an existing customer account, or when you order products through our online store. We use your data only in accordance with applicable legal provisions and this Privacy Policy and, where applicable, with your consent. In many cases, data is also used only in pseudonymized or anonymized form.

We use the information we collect to respond to your questions and fulfill your requests, such as sending documents you requested or email notifications. We also use it to send you important information regarding our relationship or the online store, changes to our Terms of Use, terms and policies, and/or other administrative information, as well as for our business purposes, such as data analysis, audits, improving our online store and services, identifying usage trends, personalizing your experience by presenting products and offers tailored to you, and determining the effectiveness of our advertising campaigns.

Data retention period

We retain your personal information for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law or otherwise necessary to comply with a legal obligation.

Email newsletter (Newsletter subscription)

If you choose to subscribe to our email newsletter, the email address you submit will be forwarded to Mailchimp, which provides us with mass email delivery services. Mailchimp is established in the United States and, according to its own policy statements, follows EU–US personal data protection safeguards.

The email address you submit will not be stored in this website’s database or in any of our internal IT systems.

Your email address will remain in Mailchimp’s database for as long as we continue to use Mailchimp’s services for mass email delivery, or until you explicitly request removal from the mailing list. You can do this by using the unsubscribe links included in any newsletter emails we send you.

To whom we disclose your personal data

In addition to using your personal data to serve you, there are cases where we may disclose your data to third parties. We may share information collected through our online store with providers who deliver services such as website hosting and setup, payment processing, order fulfillment, infrastructure provision, IT services, customer service, email and postal delivery services, and credit card processing.

When transferring your personal data, we consistently ensure the highest possible level of security. Therefore, your data will be shared only with carefully selected service providers and partner companies. Furthermore, your data is shared only with entities located within the European Economic Area (and therefore subject to EU data protection law), or with entities that have committed to compliance based on equivalent security standards.

Transfers to service providers (delivery & payments)

  • For the delivery of goods to courier/shipping companies and postal service providers, as determined when placing your order.
  • For payment of goods to the payment service providers you select when placing your order.
  • In the case of payment via PayPal, the payment is carried out and processed by PayPal (Europe) S.à r.l.
  • In the case of payment via online banking/bank transfer, payment is carried out and processed by Alpha Bank, National Bank of Greece, Eurobank, or Piraeus Bank.

During the payment process, we do not record or store payment information for that transaction. You provide such information directly to the respective payment service provider.

Traffic monitoring / Analytics

Like most websites, this website uses Google Analytics (GA) to track user interaction. We use this data to determine how many people use our website, to better understand how they find and use our web pages, and to view their journey through the site.

Although GA records data such as geographic location, device, browser, and operating system, none of this information identifies you personally. GA also records your device’s IP address, which could be used for identification, but Google does not provide us access to it. We consider Google to act as a data processor.

GA uses cookies. Our website uses GA’s analytics.js implementation.

Cookies are small text files stored on your computer by websites. They do not harm your computer and do not contain viruses. They are used to provide a better browsing experience. Disabling cookies in your internet browser will prevent GA from tracking any part of your visit to pages on this website.

Disclosure to third parties / authorities

Finally, we may transmit your data to third parties or competent authorities within the scope of applicable data protection laws if we are legally obliged to do so due to an official request or court order, or if we are entitled to do so—for example, because it is necessary for the prosecution of criminal offenses or for the protection and enforcement of our rights and claims.

Data security

The security of your personal data is a high priority for us. Therefore, we protect the data stored with us through technical and organizational measures to effectively prevent loss or misuse by third parties. In particular, our employees who process personal data are bound by confidentiality obligations.

To protect your personal data, data is transmitted in encrypted form. We use, for example, TLS (Transport Layer Security) to protect communication via your internet browser. This is recognizable by the padlock icon shown by your browser when a TLS connection is in place. To ensure long-term protection of your data, technical security measures are monitored regularly and, if necessary, adapted to current technological standards.

Your rights

You have a legal right to be informed about the personal data stored about you and to request correction or deletion. The fastest, simplest, and most convenient way to exercise these rights is to log in to your customer account and directly edit the data stored there or delete your customer account entirely.

Data that we must retain due to legal, regulatory, or contractual obligations to keep commercial records will be blocked rather than deleted, in order to prevent its use for other purposes.

Consent and right to object

To the extent that we use data for a purpose that, under legal provisions, requires your consent, we will always ask for your explicit permission, and your consent will be handled in accordance with data protection rules.

Consent given once may be withdrawn at any time with effect for the future, and/or you may object to future uses of your data for advertising, market research, and opinion research purposes.

Please understand that implementing your objection/withdrawal of consent may require some time for technical reasons, and you may continue to receive notifications from us in the meantime.

Links to websites of other companies

Our online store may contain links to other companies’ websites. We are not responsible for the data protection measures of external websites you may access through these links. Please inform yourself about data protection practices on those external websites.

Security notice

We use reasonable organizational, technical, and administrative measures to protect personal information under our control. Unfortunately, no data transmission over the Internet or data storage system can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of any account you have with us has been compromised), please notify us immediately by contacting us through the contact form of our online store.