15. PERSONAL DATA PROTECTION POLICY
Protecting the privacy, personal information and data of all those who visit our website is our priority so that you can enjoy all our services with maximum security. As part of this ongoing effort, immediately below we will explain to you the nature and way of processing the data we handle as well as your rights in this, so that you can then make use of our services. Personal data is any information that refers to you, the natural persons who use this website, and can lead to the knowledge or verification of your identity. Examples of such information are your name, address, telephone, etc. The processing of personal data is any act or series of acts carried out with or without the use of automated means on personal data or sets of personal data such as collection, registration or organization, structuring, storage, adaptation, alteration, retrieval, information retrieval, use, disclosure by transmission, dissemination or any other form of disposal, association, combination, restriction, deletion or destruction (Articles 4 par. 1&2 of the General Data Protection Regulation).
The personal data that have been collected do not under any circumstances concern special categories of data such as those specified by European and National legislation and specific data concerning racial or national origin, political opinions, religious or philosophical beliefs or membership in a trade union organization as and genetic, biometric data, data relating to the subject’s health or sexual behavior or sexual orientation. The personal data collected does not relate to criminal convictions, offenses or related security measures. Particularly:
1. When ordering.
When you are ready to order a product or service from our online store, you are invited to fill out online fields in which there are mandatory and optional information registration fields. The necessary information for the completion and delivery of the order is collected from the mandatory fields, which necessarily include your name, address for delivery and invoicing, as well as information about the payment method you have chosen.
2. In addition to the above mentioned personal data such as e.g. name, address, e-mail address and telephone number, during a visit to our website, further data is automatically collected for technical reasons, such as the IP address, which the internet access provider has on your computer for the connection with the internet, or information about the website from which you visited our website, or in relation to the internet browser used by you (technical information). This technical information may, in individual cases, constitute personal data. As a general rule, we use technical data, however we do so only to the extent that this is necessary for technical reasons, for the operation and protection of our website against attacks and abuse, and in pseudonymous or anonymous form for statistical purposes.
DATA COLLECTION SOURCES:
Your personal data is mainly collected:
a) From you
A) From visiting our website
During your visit to our website, the following data will, as a rule, be stored for technical reasons in so-called log files:
The IP address (Internet Protocol address) of the access computer
The website from which you are visiting us (recommendation)
The date and duration of the visit
Your browser type and browser settings
The operating system
PURPOSES OF PROCESSING:
The website may lawfully process your personal data for the following purposes:
a) The processing is necessary for the execution of the Company’s contractual obligations.
b) Processing is necessary for the Company’s compliance with its legal obligations.
c) The processing is necessary to serve the legitimate interests of the Company.
d) For reasons of Public Interest.
e) For the protection of the Company’s property, the defense of its security and the assertion of legal claims against third parties for damages to its property.
f) Management of the website and connected applications and activities.
g) To send products purchased through the website or connected applications.
h) To activate the possibility of using the services provided through the website.
i) For personalization for the website user.
j) For the promotion of accounts, invoices, etc. in order to collect payments from the user on the website.
k) To send you newsletters, notifications by e-mail if you have expressly given your consent.
l) To keep the website and applications secure.
m) To manage queries etc. users.
n) To verify compliance with the terms and conditions of use of the website.
Without the prior express consent of the user, the website will not make his personal information available to any third party for the purposes of commercial promotion of the same or any other third party. By subscribing to the Company’s newsletter, you will be able to receive useful information, offers and promotions depending on the categories of interest you choose. At the same time, you will be able to unsubscribe from one or more or all categories of interest or modify your preferences at any time.
CORRECTION OR DELETE OF PERSONAL DATA
The website gives users the right to delete their personal data, to correct or update their personal data or to withdraw their consent at any time, by sending a relevant document request via e-mail or by sending a fax to the Company.
TRANSFER OF PERSONAL DATA
The Company will not sell, rent or in any way publish or share the personal data of visitors/users of the website to any third party, unless:
-Had the prior express consent of the visitors/users for the transmission of their personal data.
– The transmission of personal data to legal or natural persons who cooperate with the website becomes necessary for the implementation of the wishes or orders of the users and to the extent that it is reasonably necessary for the purposes defined in this Policy.
– It is mandated due to compliance with the relevant provisions of the law and the competent authorities alone.
The Company may disclose the personal information of users:
a) To the extent required by law,
b) due to existing or potential legal proceedings and
c) for the exercise of legal claims and for the protection of its rights.
TRANSFER TO SERVICE PROVIDERS
In order to operate the website and to complete your orders, we cooperate with various companies such as e.g. central IT services, web hosting companies, banking companies, transport companies to which we transmit the necessary data for the execution of our contracts. Some of these companies work with us as external data processors, and therefore use the data provided only in accordance with our instructions. Therefore, we have entered into agreements with these companies referring to taking security measures and monitoring these measures on a regular basis. To the above companies cooperating with us, we transmit the absolutely necessary personal data of our customers in order to be able to enter into a contract for the sale of products or the provision of services between us. The transmission in question is always carried out with absolute security and within the framework of the actions provided for by European and National law. In addition, we have signed contracts with the above third-party companies to respect the protection of your personal data.
INTERNATIONAL DATA TRANSFER
The information collected by the website will not be processed or transferred or transmitted to any third country that does not apply personal data protection laws.
RETENTION OF PERSONAL DATA
The Company may keep your personal data for a period of one year for its commercial and promotional actions.
As an exception to the above, we will keep personal information and documents that include personal data for a period of time from one (1) year to twenty (20) years, depending on the following purposes and for as long as provided by law:
– For our legal obligations, our legal obligations to tax authorities, social security agencies and other other agencies.
– For the protection of the Company’s legal interest and the establishment and exercise of our legal rights.
– For the exercise of our legal procedures and claims, extrajudicial and judicial, existing and possible future.
The Company takes all organizational and technological precautions and security measures to prevent the loss, alteration or improper use of personal data and the processing of personal data by it is carried out exclusively and only by company personnel authorized for this purpose.
Security: The SSL (Secure Sockets Layer) protocol is today the global standard on the internet for certifying websites to online users and for encrypting data between online users and web servers. An encrypted SSL communication requires that all information sent between a client and a server be encrypted by the sending software and decrypted by the receiving software, thus protecting personal information in transit. In addition, all information sent with the SSL protocol is protected by a mechanism that automatically checks if the data has been changed in transit.
Finally, let us remind you that the credit card details are not stored in the Company’s storage media during the transaction. All transactions you carry out through our website are governed by International and European law, which regulates matters related to electronic commerce as well as by the Consumer Protection Law (n. 2251/1994) as amended and in force, which regulates issues related to distance selling.
The user can ask the website to provide him with any personal information concerning him, by showing the appropriate evidence of his identity.
The user can at any time ask the website not to process his data for commercial or other purposes.
We inform you that you have the right to:
1. Access, correction and deletion of your data.
You can request at any time to be informed about your personal data that the Company holds about you and to request the modification, correction, update or deletion of this information.
2.Restricting the processing of your data.
In some cases, you have the right to block or remove the further use of your personal data. That is, we can store your data but we will not be able to process it further, unless this processing is done with your consent or the processing is legal, necessary either for the establishment, exercise or defense of the Company’s legal claims , either to protect the rights of another person or for reasons of public interest, or to protect our legitimate interest.
3. Objection to the processing of your data.
This right allows you to object to the processing of your personal data, especially when the processing is carried out for purposes of legitimate interest. As long as the processing is carried out for the purpose of serving the legitimate interests of the Company, the latter will comply with your objection and cease the specific processing unless there are compelling and legitimate reasons for the processing which override your interests, rights and freedoms, or said processing is for the establishment, exercise or support of legal claims of our business.
You have the right to transfer your personal data to other controllers. That is, you have the possibility to transfer the information we hold about you to any third party. To serve your right to do so we will provide you with your data in a structured, commonly used and machine-readable format so that you can transfer your data to another controller. Alternatively, we can send the data directly on your behalf. The right to portability applies a) to data that we process automatically (ie without automatic intervention b) to data that has been provided by you c) to personal data that we process on the basis of your consent or the processing is necessary for the performance of a contract.
5. Withdrawal of consent.
Where your personal data is processed based on your prior consent, you have the right to withdraw your consent at any time and the Company will cease the specific activity for which you previously consented, unless there is an alternative legal basis to justify the continuation of the processing of your data for this purpose, in which case we will inform you.
6. Complaint to the Personal Data Protection Authority.
You have the right to file a complaint with the competent supervisory authority, which for Greece is the Personal Data Protection Authority.
Postal Address: Personal Data Protection Authority, Kifissia no. 1-3, PO Box 115 23, Athens.
Fax: +30 -210- 6475 628
Tel: +30 – 210-6475 600
The website will review and respond to your above requests within one month of their receipt, and exceptionally this deadline may be extended by two additional months if further time is required.
We inform you that you can contact us for any issue that concerns you regarding the security of your personal data concerning the Company:
VAT number 137076921, DOU D Thessaloniki
HEADQUARTERS: 10 Agia Triados, Thessaloniki, Postal Code: 54640
TEL: +30 2313 096580
16. SETTINGS AND COOKIES POLICY
General information about Cookies.
We consider it important that you know which Cookies are used on our website and for what reasons they are used. Our goal is to properly inform and protect you as well as the best experience from your visit to our website.
Cookies are small pieces of information (files), in the form of plain text, that are stored on your computer (or on other devices with internet access, such as a smartphone or tablet) when you visit various pages on the internet. Cookies do not cause any damage to your computer, nor to the files stored on it. Without them, your personal preferences would be impossible to save and every time you enter a website, it would be as if you were entering for the first time. Cookies are completely safe and do not store email addresses or phone numbers.
Which Cookies are used:
Strictly Necessary – Strictly necessary Cookies are essential for the website to function properly. These Cookies allow you to browse and use the functions of the website, such as accessing secure areas or using the shopping cart. These Cookies do not recognize your individual identity and without them, the smooth operation of the website is not possible.
Preference Cookies – Preference Cookies allow the website to remember your choices such as language, currency, location, etc. to provide enhanced and personalized features. Preference Cookies can also be used to provide services requested by the user, such as viewing videos or using social media.
Functionality Cookies – Functionality Cookies help to perform certain functions such as sharing the website content on social media platforms, collecting comments and other third party functions. These Cookies cannot track browsing activity on other websites. In the event that you reject these Cookies, the performance and functionality of our website may be affected and your access to its content may be limited. For example, every time you click on the page, it asks you again and again for your username and password.
Statistics Cookies – These are Cookies that make use of the way visitors use the website, (for example, which pages they visit most often and if they receive error messages from websites). These Cookies are used for statistical purposes and to improve the performance of a website.
Marketing Cookies – Targeting and advertising cookies collect information about your actions on the website. The purpose is to collect information such as number of visitors, number of pages viewed, etc., in order to improve the services provided to you, according to your preferences. Regarding advertisements, although our site does not host advertisements, when you visit a third-party website or social network that uses advertisements, you may see an advertisement related to our site and some type that you have seen while navigating on it .
Uncategorized Cookies – Uncategorized Cookies collect information during the user’s browsing, without however being classified in any of the above categories.
Newsletters, mail and SMS.
The personal data (e-mails) and other data collected will be used to maintain a record for the purpose of communication and promotion of the services of www.magnoliaevents.gr (newsletter and information via e-mail, informative sms exclusively about the course of your order, etc.).
The recipient has the right to unsubscribe from the newsletter at any time. If for any reason a beneficiary no longer wishes to receive informative newsletters through this website, please contact firstname.lastname@example.org.
17. INTELLECTUAL PROPERTY RIGHTS
The content, design, images, texts and graphics of the magnoliaevents.gr website are the intellectual property of the Company and are protected by Greek and international laws. Copying all or part of the website is prohibited for any reason.
Without our prior written permission, any use, exploitation, publication, republishing, reproduction, copying by mechanical or other means, with or without processing, of the content of the website and the services offered on it is prohibited.
The reproduction of any element included on the website, from websites that are not owned, not controlled by the Company or do not have a license, is prohibited, even in the form of links or other means of reference to the website.
18. APPLICABLE LAW AND OTHER TERMS.
The above terms and conditions of use of the website and any modification thereof are governed by Greek law, European Union law and the relevant International treaties and conventions and competent Courts for the resolution of any dispute are defined as the Courts of Thessaloniki.
Any modification of these terms will only be made in writing.
The Customer who uses this website is presumed to unconditionally accept these terms.
The Company may update and change these terms at its discretion, by publishing them on the website and in the same way inform the users/visitors of the website of its update and any changes.
The protection of the personal data of users/members/visitors of the website is subject to the present Terms, the Greek legislation and the EU Regulation 2016/679 (General Regulation of Personal Data) for the protection of natural persons for the processing of personal data and the free movement of such data and any applicable laws thereof.
In the event that a Customer does not agree with the terms of protection of personal data provided herein, he must not use the website and stop any transaction with it.
Given the nature and volume of the internet, under any circumstances, including negligence, the website is not responsible for any form of damage suffered by the visitor/user of its pages, services, options and contents, which it does on its own initiative and with knowledge of the terms hereof.
“General Data Protection Regulation (“GDPR”)” – European Union regulation aimed at harmonizing European legislation on the protection of personal data. It comes into force from 25 May 2018, and any reference to it should be construed to include national implementing legislation.
“Personal data”: any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one whose identity can be ascertained, directly or indirectly, in particular by reference to an identifier such as name, ID number, location data, online identifier or one or more factors that characterize the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.
“Processing”: any operation or series of operations carried out with or without the use of automated means, on personal data or sets of personal data, such as collection, registration, organization, structuring, storage, adaptation or alteration, retrieval, information retrieval, use, disclosure by transmission, dissemination or any other form of disposal, association or combination, restriction, deletion or destruction.
“Sensitive personal data”: is personal data containing information about racial or ethnic origin, political opinions, religious or philosophical beliefs or trade union membership, physical and mental health, genetic and biometric data, data concerning sex life or sexual orientation, and information about criminal convictions and offences. Due to the nature of sensitive personal data, legislation is much stricter about how this data should be processed. Any processing of sensitive personal data by the Company is done only in accordance with the definitions of the law.
“Personal Data Breach”: the breach of security resulting in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access of personal data transmitted, stored or otherwise processed.
“Restriction of processing”: the marking of stored personal data with the aim of limiting their processing in the future.
“Partners”: Natural or legal persons with whom the Company may maintain any professional relationship or contractual relationship or collaboration.
“Controller”: the natural or legal person, public authority, agency or other entity that, alone or jointly with others, determines the purposes and manner of processing personal data; when the purposes and manner of such processing are determined by Union law or the law of a Member State, the controller or the specific criteria for his appointment may be provided for by Union law or the law of a Member State.