Notice of processing of Personal Data pursuant to Article 13 of Regulation (EU) 2016/679 (“GDPR”) and Law 4624/2019
Dear User, “MAVRI THALASSA” welcomes you to its website (hereinafter the “Website“) and invites you to pay attention to the following notice (the “Notice”), which is issued pursuant to Article 13 of Regulation (EU) 2016/679 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (“GDPR”).
This document contains a record of the processing carried out by the Data Controller, as defined below, through the Website, and it is clarified that the information relates only to the Website, therefore excluding any website to which you may be redirected from the Website.
The Data Controller is the limited liability company ‘ALEXANDROS TOKIDIS AND CO.’ with the registered office ‘MAVRI THALASSA’, VAT number 997568718, D.O.Y. Kalamarias, CEMI number: 122144406000, located in Thessaloniki, 3, Nikolaou Plastira Street, P.C. 55132, with e-mail address: http://mavri-thalassa.gr/, email: [email protected] and telephone number: +30 2310932542 (hereinafter referred to as the “Company”). This means that the Company manages the Website and determines the purposes and manner of processing your personal data in accordance with the Regulation and the generally applicable legislation.
The Company has also appointed as its representative for personal data protection issues Mr. Georgios Tokidis, whom you can contact directly to exercise your rights, as well as to obtain any information regarding the processing of your personal data and/or this Notice, at the following e-mail address: [email protected] and at the following telephone number: +30 2310932542.
The Company collects personal data directly from you and not from third party sources. Your personal data is provided in the context of your visit to the website and in particular the search for contact with the Company, ordering, sending a CV, filling in the offer form, submitting an evaluation – comments on the level of our services, subscribing to the newsletter, making purchases through our online store after clicking on the relevant links on the home page. In order to serve the above purposes and to fulfill the service that you, as a user, have requested, it is necessary for us to process your personal data below, otherwise it will be impossible to provide the service.
The table below sets out the purposes for which the Company processes personal data, the categories of such personal data, and the legal basis for the processing.
Purpose of processing Categories of Personal Data Legal basis for processing (provision of the Regulation).
Personal identifiers, contact details and data provided by the user for this purpose. Article 6, par. 1, paragraph f – the processing is necessary for the purposes of the legitimate interests pursued by the Company and, in particular, to serve the user’s request.
3.1 Use of Online Store Information. When filling out any order form on our website, you will be asked for your full name, address, zip code of your area, email address, phone number, credit card information, payment method for the order. In addition, you may also be asked for more specific information, such as shipping – delivery details of an order, billing details or details about an offer you have requested. The company makes use of the information you provide during the online submission of the form in order to contact you regarding (i) delivery of the order to your place, (ii) for confirmation and identification of the customer in any necessary case, (iii) for new or alternative products offered by the online store, (iv) special offers – contest, (v) receipt of gifts after a contest draw. You may choose whether or not you wish to receive such communications from the online store by sending your request by e-mail to [email protected].
The Company processes your personal data in a manner that ensures their protection, taking all appropriate organizational and technical measures to ensure data security and protect them from accidental or unlawful destruction, accidental loss, alteration, unauthorized disclosure or access and any other form of unlawful processing. Access to your personal data is granted only to personnel or direct associates with the Company who are required to have such information to process orders. In the event of a data breach involving personal data, the Company will comply with applicable law regarding notification of the breach.
In order to achieve the purpose described in paragraph 3 above, your personal data may be brought to the attention of external service providers who have contracted with the Company for this purpose or, where applicable, to other public authorities to satisfy your requests.
The Company does not transfer your personal data to a third country or international organisation.
The website may collect and process geolocation data for the provision of services requested by the user, only with the specific consent of the person concerned, which can always be revoked. In this case, consent will be requested through a pop-up window known as a pop-up.
This section presents your rights in relation to your personal data. These rights are subject to certain exceptions, reservations or limitations. Please submit your requests responsibly. The Company will respond to you as soon as possible and in any event within one (1) month of receipt of the request. If the processing of your request is going to require more time, you will be informed accordingly. To exercise your rights, you can contact us by email:
The Company will ensure the smooth exercise of your rights below:
7.2. You have the right to access your personal data free of charge, in accordance with the Company’s respective policies and procedures, except in the following circumstances where there may be a reasonable charge to cover the Company’s administrative costs:
– manifestly unfounded or excessive/repeated requests; or
– additional copies of the same information.
7.3 The right of rectification
You have the right to request the correction of your personal data if it is inaccurate or incomplete, in accordance with the Company’s policies and procedures from time to time.
7.4. You have the right to request the deletion or removal of your personal data when it is no longer necessary for the purposes for which it was collected or there is no legitimate reason for its continued processing, in accordance with the Company’s policies and procedures from time to time. The right to erasure is not absolute, to the extent that there is a specific legal obligation or other legitimate reason for the Company to retain your personal data.
7.5. The right to restriction of processing
In certain circumstances, you have the right, in accordance with the Company’s policies and procedures from time to time, to restrict or withdraw further processing of your personal data. In cases where processing has been restricted, your personal data will remain stored without further processing.
7.6 The right to data portability
You have the right to request the personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format, and to have us transfer such data to another data controller, in accordance with the Company’s policies and procedures from time to time.
7.7. You have the right to object, at any time and on grounds relating to your particular situation, to the processing of your personal data based on Article 6 para. 1(f) of the Regulation (processing for reasons of legitimate interest of the Company), on the basis of this provision. In such a case, the Company as controller shall no longer process the personal data unless it demonstrates compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject or for the establishment, exercise or defence of legal claims.
7.8 Rights relating to automated individual decision-making and profiling
The Company does not engage in automated individual decision-making, including profiling.
7.9 How to exercise your rights
The exercise of the aforementioned rights requires the submission of a written request to the Company, in accordance with its policies and procedures from time to time. The Company reserves the right to respond no later than one month after receipt of the request, in accordance with the terms of the Rules and its policies and procedures.
For each category of personal data, the Company shall determine the retention period of personal data in accordance with the provisions of the law for each category of personal data and its internal policies and procedures.
Our website uses cookies. A cookie is a file containing an identifier (a string of letters and numbers) that is sent through a server and stored in the browser. The identifier is then sent back to the server each time the browser requests a page from the server. Cookies can be either “persistent” or “session” cookies: a persistent cookie is stored in a browser and remains valid until its expiry date, unless deleted earlier by the user; a session cookie, on the other hand, will expire at the end of the user’s session when the browser is closed. Cookies usually do not contain information that can identify the user but your personal data that we keep may be linked to data stored or retrieved by cookies. On our website we use login cookies as well as persistent cookies.
On our website we may use Google Analytics and Adwords to identify a computer when a user visits the website, to track users when they are browsing the website, to allow the use of a shopping cart on the website, to improve the functionality of the website, to analyze the use of the website, to administer the website, to protect against fraud and to improve the protection of the website, to personalize the website for each user, to target advertising, to improve the website, to improve the security of the website, to improve the quality of the website, to improve the quality of the website and to improve the security of the website.
Most browsers allow you to opt-out of cookies; for illustrative purposes:
– in Internet Explorer (version 10) you can block cookies using the cookie settings found by clicking “Tools”, “Internet Options”, “Privacy” and “Advanced”
– In Firefox (version 24) you can block all cookies by clicking on “Tools,” “Options,” “Privacy,” selecting “Use custom settings for history” from the menu and unchecking “Accept cookies from websites” and
– in Chrome (version 29), you can block all cookies by going to the “Customize and Control” menu and clicking “Settings,” “View Advanced Settings,” and “Content Settings” and selecting “Block websites from data” under the “Cookies” heading.
– Blocking all cookies will have a negative effect on the functionality of many websites. If you block cookies, you will not be able to use all of your website’s functionality.
You can delete cookies already stored on your computer – for example:
– in Internet Explorer (version 10), you will have to manually delete the cookie files (you can find instructions at http://support.microsoft.com/kb/278835)
– In Firefox (version 24), you can delete cookies by clicking “Tools,” “Options,” and “Privacy,” then selecting “Use custom settings for history,” clicking “View Cookies,” and “Remove All Cookies” and
– in Chrome (version 29), you can delete all cookies by going to the “Customize and Control” menu, and tapping “Settings,” “View Custom Settings,” and “Clear Browsing Data,” then selecting “Delete cookies and other website data” before tapping “Clear Browsing Data.”
– Deleting all cookies will have a negative effect on the functionality of many websites.
We take the necessary precautions at a technical and organizational level to prevent the loss, misuse or alteration of your personal data.
We store all personal data you provide on secure (password- and firewall-protected) servers.
All potential electronic monetary transactions conducted on our site are protected by our encryption technology.
You acknowledge that the transmission of information over the internet is inherently insecure and we cannot guarantee the security of data transmitted over the internet.
You are responsible for keeping the password you use confidential, we will not ask you for your password (except when you log in to our site).
We aim to continually review and update this Notice in order to comply with personal data legislation and new developments. Any updates to this Notice will be communicated to you immediately.
Our website includes hyperlinks to, and information from, third party websites. We cannot control and are not responsible for the privacy policies and practices of third parties.
For further information and advice about your rights or to make a complaint, you can contact the Data Protection Authority:
Postal address: Address: 1-3 Kifissia Avenue, P.O. Box 115 23, Athens.
Telephone Centre: +30 210 6475600
Fax: +30 210 6475628
E-mail: [email protected]