This Privacy Policy explains how we handle the personal information you provide us and also describes the collection of certain technical and other navigational information through cookies and similar technologies. This Privacy Policy explains how we handle the personal information you provide us and also describes the collection of certain technical and other navigational information through cookies and similar technologies.
Please read this Privacy Policy before using the Site or submitting personal information to us.
Contents
Types of information collected
How does this Privacy Policy define “personal information”? What types of information are collected electronically?
Collection of personal information
How does Theodorou Group use the personal information I provide?
What choices do I have regarding the way Theodorou Group collects and uses my personal information?
Does Theodorou Group share personal information with third parties?
Which persons within Theodoros Group will have access to my personal information?
How does Theodorou Group guarantee the security of personal information?
Does Theodorou Group transfer personal information to different jurisdictions?
How does Theodorou Group protect the privacy of children’s information?
How can I correct my personal information or delete it from current Theodoros Group customer records?
How will I know if Theodorou Group has updated/updated this privacy policy?
How does this Privacy Policy define “personal information”?
Personal Information is the information that identifies you or that could reasonably be used to identify you and that is submitted to or collected by the website, and is maintained by Theodorou Group in an accessible form. Examples of personal information are your name, postal address, email address and telephone number.
What types of information are collected electronically?
- Personal Information You Submit: The information collected by the group for communicating with the group is:
-
- Full name
- Company
- Mobile phone
- Address
For the collection of customer data in the barcode 24 e-shop for customer orders, data such as:
-
- Customer Information
- Password
- Full name
- Mobile phone
- TIN/DOU
- Credit card
- Address
-
UPDATE ON COOKIES:
Although cookies are not directly regulated by the GDPR, their illegal use may expose the organization to legal risks. After all, the Personal Data Protection Authority is responsible for organizations’ compliance with cookie legislation. In any case, it does not mean illegal use of the famous “functional” cookies, i.e. those that are necessary for the operation of the website. Where in this notice we use the term cookies, we mean non-functional ones. It goes without saying that, with the term cookies, we also refer to any cookies installed by third parties on the website (usually, advertising companies).
The first step we ensure by introducing cookies on our website is the appropriate information and consent of the user. Specifically:
a. the installation of cookies takes place only after the consent of the user. Therefore, it is illegal to insert the cookie first and inform the user afterwards that he can disable it (OBTAINING CONSENT PRECEDES INSTALLATION).
b. obtaining consent requires prior and appropriate information, an affirmative answer to vague questions (e.g. we use cookies, do you accept them?) does not constitute adequate information, therefore, an affirmative answer (“I accept”) is not considered as giving consent
c. the user is informed in a way that ensures that he is sufficiently informed. The inclusion of the cookie policy in the Terms and Conditions and the Privacy Statement do not constitute sufficient information. That is why we address the user with a readable, comprehensible and short text.
d. consent is only provided through an opt-in system, not through an opt-out. “By using our website you accept the use of cookies” style updates are not legitimate.
e. withdrawing consent is as easy as providing it and a procedure is provided for removing the installation of cookies, even if the user had given his consent for their installation, in an easy and accessible way for the user (WITH REVOCATION IS POSSIBLE CONSENT)
- Passive Collection of Certain Other Technical and Navigation Information: The Site may collect information about your visits to it without you actively submitting such information. This information may include, for example, the type and language of the browser you use, your operating system, your IP address, the URLs of the websites you visited before and after you visited the website, the search brought you to the site, and the pages and advertisements you see and the links you click on within our site.
- Also, passive collection of customer data is done by our company and through Google Analytics for our sites.
Collection of personal information
How does Theodorou Group use the personal information I have provided?
Theodorou Group will use the personal information you provide to respond to your inquiries and to provide you with effective customer service.
What choices do I have regarding how Theodorou Group collects and uses my personal information?
You can always limit the scope and type of personal information Theodorou Group receives about you by choosing not to enter any personal information in forms or data fields on its website. Some of our online services can only be provided to you if you provide the necessary personal information. At other points you will be asked whether or not you wish to be included in our contact lists for offers, promotions and additional services that may be of interest to you, so that you can express your express objection in case you do not wish to continue these actions.
Does Theodorou Group share personal information with third parties?
The Theodorou Group uses a platform for sending mass mails and Newsletters, Mailchimp, in which it maintains a base with the targets of its customers. Mailchimp does not have access to the data of these subjects, since there is a protective password from the company to safeguard this data. The platform in question is the largest automated marketing platform in the world, helping millions of its customers – from small e-commerce shops to large online retailers – identify their audience, “close” their customers and build a brand name. In addition, Theodorou Group is obliged to provide your personal information in response to official relevant requests from government authorities, to deal with national security situations or as otherwise required by law.
Which persons within Theodoros Group will have access to my personal information?
Personal information is accessible to a limited number of Theodoros Group employees, who are competent and suitable for the processing of said data. We educate our employees about the importance of maintaining privacy and how your data is properly and securely handled and managed.
How does Theodorou Group guarantee the security of personal information?
It is Theodorou Group’s practice to secure any website that collects personal information. To this end, it has collaborated with specialized consultants and has trained staff. However, the privacy of personal information transmitted over the Internet cannot be guaranteed. We urge you to be careful when transmitting personal information over the Internet, especially personal information related to your health. Theodorou Group cannot guarantee that unauthorized third parties will not gain access to your personal information. Therefore, you should weigh both the benefits and the risks when submitting personal information to Theodore Group websites.
Does Theodorou Group transfer personal information to different jurisdictions?
Theodorou Group does not keep the data on servers outside the Greek Territory.
How does Theodorou Group protect the privacy of children’s information?
Theodorou Group does not knowingly collect or use any personal data of children (we define “children” as minors under the age of 18) on the Theodorou Group websites We do not, to our knowledge, allow children to order our products, contact us or to use any of our online services. If you are a parent and become aware that your child has provided us with information, please contact us via one of the following methods (phone, email), leaving your information and we will work with you to address the issue.
Does Theodorou Group collect personal data of special categories?
Theodorou Group does NOT collect sensitive personal data such as race, national origin, religion, health, sexual orientation or genetic biometric data etc. they are categorized as “special categories of data” and receive additional protection according to European data protection legislation.
How do I correct my personal information or delete it from my current customer records?
In accordance with the law, you can request access to your personal information, object at any time to the processing of data concerning you, correct your personal information or remove it from our current customer records. Please let us know by contacting us in one of the ways below. For our record keeping purposes, we will retain the personal information you submit in the course of commercial transactions.
How do we protect your personal data?
We have taken appropriate organizational and technical measures to protect your personal data from misuse, interference, loss, unauthorized access, modification or disclosure.
The measures we use include implementing appropriate access control measures, technical information security and ensuring that personal data is encrypted, pseudonymised and anonymized where necessary and feasible.
Access to your personal data is permitted only to our employees and partners and only insofar as it is necessary to operate our website and support our related activity and is subject to strict contractual obligations of confidentiality when processed by third parties.
How can I contact the THEODOROU group?
You can contact us at Agiou Athanasiou 17, 19002, Peania Attica, at the email address marketing@theodorougroup.com or submit a request through the Contact form on our website.
Update of this Privacy Statement
This statement will be revised as necessary to adapt to legislative changes, to respond to customer feedback and needs, and to changes in our products and services. Any changes will be posted with a simultaneous revision of the last updated date at the top of this statement.