STATEMENT OF CONFIDENTIALITY AND PROTECTION OF PERSONAL DATA

Ι. GENERAL INFORMATION

1.1 In the course of its activities, our Company keeps and processes Personal Data that we collect from you or for you when you visit our physical or electronic or contact us in writing or orally or through our website https:www.steiakakisjewellery.gr or from other sources for the purpose of supporting, promoting and executing our contractual relationship, protecting transactions and informing you about the services provided.

1.2 In our Company we understand the importance of protecting the privacy of our customers and we make every possible effort to store and process the information you share with us with care and in accordance with current legislation. For this reason, we have drafted this Confidential and Protection Statement in order to inform you in accordance with Regulation (EU) 2016/679 and the provisions of the relevant Greek legislation on the protection of personal data (l. 4624/2019) on the manner of collection, use and disclosure of your personal data.

1.3 For the purposes of the Privacy and Protection Statement, as personal data is considered any information concerning you with which your identity is verified or can be verified. In this information are included, for example, your full name, your address, etc.

1.4 ThiscurrentStatement:

(a) provides an overview of the categories of personal data that our Company collects, the data processing purposes, the duration of their retention, their sources and their recipients,
(b) offers a summary of the practices by which we collect, use, disclose, transfer and store your personal data,
(c) confirms the technical security measures of the data, the internal management procedures as well as the physical measures we take to protect them
(d) informs you about the type and manner of exercising your rights,
(e) is addressed to individuals whether they are subordinates or potential customers and partners of ours.

1.5 This current Privacy and Protection Statement applies :

(a) to our physical store located in Heraklion, Crete of Greece, on Dikaiosynis avenue no.27.
(b) to the website www.steiakakisjewellery.gr
(c) to any website or online application
(d) to any online and offline promotional action of our Company as well as
(e) to each Service or function provided by us and mentioned in the Statement.

1.6 Before disclosing to us any personal data concerning you, we encourage you to take the necessary time and carefully read this text, which describes the privacy and security policy of the personal data, in order to learn more about the way we collect, store, use, transmit and protect the information / personal data we receive.

ΙΙ. WHO WE ARE

2.1 Our Company is the legal entity with the brand name and the that is based in Heraklion of Crete on Dikaiosynis avenue no.27, holder of the Tax Registration Number 801496142, Public Financial Service of Heraklion, and General Commercial Registration Number 157983327000 and is active in the field of wholesale and retail trade of jewelry, watches, valuables, gift items and other related items, and in the exclusive or non-exclusive representation of domestic and foreign businesses that produce and trade or only trade.

2.2 For the purposes of the current Confidentiality and Protection Policy Statement our Company is defined as the Processor – Process Manager, that is the legal entity that alone or together with others determines the objectives, the conditions and the way of processing the personal data. Our Company acts, primarily, as the Project Manager or as a joint Process Manager and in some cases as the Executor of the processing, in accordance with the General Regulation (EU) 2016/679 and the l.4624/2019.

ΙΙΙ. SOURCES OF PERSONAL DATA

In the provision of our services and the exercise of our business activity, we collect and process various types of personal data, which we receive from our customers in person or through registration, telephone or electronic communication through the website we manage (www.steiakakisjewellery.gr). We may also collect personal data that we legally obtain from other natural or legal individuals, who have the legal right to share such data with us as well as from public and commercially available sources (in accordance with what is permitted by law) and third party social networking services, when you choose to connect to these services.

ΙV. CATEGORIES OF PERSONAL DATA

4.1 We collect and process various categories of personal data. These categories are as follows :

  1. i) Identity data : full name
  2. ii) Communication data : postal and electronic address, landline and mobile telephone etc, billing address (city, postal code), shipping address (city, postal code).

iii) Billing data : number and type of credit / debit card and Tax Registration Number (where required), method of payment (deposit, cash on delivery, etc.), invoicing details, registered office, profession etc (in case of issuance of service invoice).

  1. iv) Device and web browsing data : device identifiers, MAC address, IP, operating system version, time and duration of stay on site.
  2. v) Information and history of orders : order no. , order registration date, product, product code, product quantity, order status, delivery date, delivery method, withdrawal data from distance selling contract.

vi) Special categories of data that are collected in accordance with the legal requirements directly from you : health data (e.g. allergies to avoid buying an unsuitable product, etc.).

4.2 The processing of your data, for the purposes set out below, is fully governed by the principles of legality, objectivity, transparency, purpose limitation, data minimization, accuracy, limitation of storage period, integrity, confidentiality and accountability, as defined in article 5 of the General Regulation (EU) 2016/679 and the l.4624/2019.

  1. V. WAY OF COLLECTING PERSONAL DATA

We collect personal data in various cases such as :

  1. i) During your visit to our physical or electronic store.
  2. ii) During your participation in marketing programs or events (subscription to newsletters in order to receive offers and other promotional material via email).
  3. iii) When transmitting information from third parties.
  4. iv) During the operation of electronic devices.

VΙ. OBJECTIVES OF PROCESSING – LEGAL PROCESSING

6.1 The Regulation allows us to process personal data, provided that the processing is legal, meaning that it meets one of the conditions of article 6 of the General Regulation (EU) 2016/679 and the l.4624/2019. When we process your personal data, we rely on one of the following legal processing bases :

  1. i) In the execution of the contract of sale of goods between us.

The processing in this case is done to achieve the following purposes :

  • Your identification and communication with you during the processing stage of your order through our website and until your order is delivered, for reasons of transaction security and your updates regarding the order.
  • The general management of your order (delivery to a courier company etc).
  • The proper preparation and timely satisfaction of your special requests related to your order.
  • The management of various requests / complaints / grievances and your possible withdrawal from the distance selling contract.
  1. ii) In the compliance of the Company with its legal obligations imposed by the respective legal, regulatory and supervisory framework at national and European level and decisions of any Authority (public, supervisory, etc.) or Courts.

The processing in this case is done for the service of the following purposes:

  • Issuance and maintenance of legal – tax documents (eg receipts, invoices, etc.) in accordance with current legislation.
  • Drafting, issuance and maintenance of legal documents, in accordance with current legislation.

iii) In the service of the legal interests of the Company or a third party.

This processing is always carried out after balancing the interests of our Company with your fundamental rights and freedoms that impose the protection of your data.

The processing in this case is done for the service of the following purposes:

  • The defense of our legal interests from the contract of sale of goods.
  • The defense of the legal rights and interests of the Company in case of legal disputes.
  • The improvement of our services to adapt our products and services provided to your requirements in order for you to remain completely satisfied.
  • Conducting market research and analyzing customer questionnaires and comments.
  • The evaluation of our services and the creation of statistical data based on it.
  • Informing customers and satisfying their requests after their departure or sending and receiving the order.
  1. iv) In your consent

When you register on our website www.steiakakisjewellery.gr we may ask you to provide your explicit consent to the processing of your specific data for a certain purpose.

In particula:

  1. i) of the identity and communication data for sending updates in the form of emails / sms / newsletter / letters, for your update about programs / offers / discounts and / or other promotional actions of the Company.
  2. ii) of your health data for the provision of improved benefits and specialized services where required (eg notification of allergies to avoid buying an unsuitable product, etc.)

iii) In case the data we are processing concern individuals (children) under the age of sixteen, the consent or approval of the processing is required from the person who exercises the parental care of the minor. The Company is not liable if the statement of the person that exercises parental care of the child is false or inaccurate.

We make it clear that you always reserve the right to revoke consent to the above processing purposes at any time without, however, affecting the legality of the processing based on your consent prior to its revocation. You do not need to justify your decision and you will not suffer any negative consequences or penalties from it (except for the cessation of the benefits that may have resulted from your consent, e.g. cessation by us of sending information – promotional material). For this purpose you can send a relevant request to the email address : nsteiakakis@gmail.com.

VII. DATA PRESERVATION AND STORAGE PERIOD

7.1 The Company will maintain (in printed and / or electronic form) and will process your data for as long as is required to fulfill the purpose for which they have been collected or under current legislation or until the limitation period of any relevant claims has elapsed.

7.2 To determine the appropriate period of retention of personal data, we examine the quantity, nature and sensitivity of the personal data, the potential risk of damage by unauthorized use or the disclosure of your personal data, the purposes for which we are processing the personal data, if we are able to meet these purposes by other means, the statute of period limitations for any legally enforceable claims and our current legal or contractual obligations.

VII.  DISCLOSURE OF PERSONAL DATA  /  RECIPIENTS OF THE DATA

During the fulfillment of the contractual and legal / regulatory obligations of the Company, the service of its legal interests as well as in the cases in which the Company has received your consent, the recipients of your data may be the following:

  1. i) Affiliates – partner companies

Your information may be used and shared with affiliates of <STEIAKAKIS JEWELLERY O.E.>. We may also use and share your personal data with our business partners. These parties may use your information to provide you with services you requested and / or, if you give your consent, to provide you with promotional and advertising material.

  1. ii) Authorized employees of the Company

In order to provide you with the best possible service, we provide access to your personal data or to certain specific categories of your personal data, to our authorized personnel. Our authorized, for this purpose, employees are responsible for the evaluation of your requests, the management of the contract of sale of goods, for the fulfillment of the obligations arising from it as well as the relevant obligations imposed by law, by public Authorities or Courts.

iii) Service providers or individuals / entities to whom our Company entrusts the execution of specific tasks on its behalf (performers of the processing).

The above individuals include, but are not limited to, lawyers, law firms, notaries and bailiffs, accountants, service providers and / or IT services and / or support for all types of computer and electronic systems and software, including online systems and platforms, computerization companies,, companies for storage, archiving, management and destruction of files and data, telephone service companies, postal service companies and couriers.

The legal and / or natural individuals will process your personal data, exclusively for the purpose of providing services to our Company and not for their own benefit, acting as performers of the processing and committed in writing to the maintenance of the confidentiality and protection of your personal data and taking the necessary organizational and technical measures for their safety.

  1. iv) Δημόσιες Αρχές.

Ενδέχεται να κοινοποιήσουμε προσωπικά σας δεδομένα σε δημόσιες αρχές βάσει ειδικών νομοθετικών προβλέψεων για να συμμορφωθούμε με τη νομοθεσία ή για να ανταποκριθούμε σε μια υποχρεωτική νομική διαδικασία (όπως ένταλμα έρευνας ή άλλη δικαστική εντολή ή απόφαση). Στις αρχές αυτές περιλαμβάνονται ενδεικτικά τα Δικαστήρια, δικαστικές αρχές, αρχές επιβολής του νόμου ή ρυθμιστικές, κυβερνητικές αρχές.

  1. iv) Public Authorities.

We may disclose your personal information to public authorities under specific legal provisions in order to comply with legislation or to comply with a mandatory legal procedure (such as a search warrant or other court order or decision). These authorities include the Courts, judicial authorities, law enforcement authorities or regulatory, governmental authorities.

  1. v) Other third parties.

When required by law or when we have a duty to protect our services in order to confirm or enforce our compliance with the policies governing our services and to protect the rights, property or security of <STEIAKAKIS JEWELLERY O.E> or any possible affiliated Company, business partner or our client. We may also disclose personal data when required to conduct audits concerning the protection of personal data and security and / or to investigate or respond to a complaint or security threat.

  1. vi) Other third parties in relation to corporate transactions.

We may disclose your information to third parties in the context of a merger or transfer or in the event of bankruptcy or in the event that we cease to have the management or administration of our store / company.

VIIΙ. DATA TRANSFER

Our servers, where your data is stored and protected, are located within the European Economic Area (ΕΕΑ). However, our external partners and / or service providers to our Company may be located or use servers in other countries. Every time we transfer your personal data outside the European Economic Area, we make every possible effort to ensure an equal degree of protection for them, following a specific policy. In particular :

i) If required, we transfer personal data only to countries for which the European Union considers that they provide an adequate level of protection for personal data.

ii) In the case we use specific service providers, we reserve the right to use special contracts approved by the European Union, which provide the personal data with the same protection as that provided in Europe.

iii) Όπου χρησιμοποιούμε παρόχους με έδρα τις Ηνωμένες Πολιτείες Αμερικής, διατηρούμε το δικαίωμα να διαβιβάζουμε δεδομένα σε αυτούς αν μετέχουν στην Ασπίδα Προστασίας η οποία απαιτεί από αυτούς να παρέχουν παρόμοια προστασία για δεδομένα προσωπικού χαρακτήρα που μοιράζονται μεταξύ Ευρώπης και ΗΠΑ.

iii) In the case where we use US-based providers, we reserve the right to transfer data to them if they participate in the Protection Shield which requires them to provide similar protection for personal data shared between Europe and the USA.

Contact us at the e- address www.steiakakisjewellery.gr for any clarification on the specific mechanism used by us when transferring your personal data outside the European Economic Area.

ΙΧ. YOUR RIGHTS

9.1 According to the General Regulation (EU) 2016/679 you have the following rights

  1. i) Right to information and access : to be aware of the categories of your personal data that we hold and process, their origin, the purposes of processing them, the categories of their recipients, their retention period, your relevant rights, the right to file a complaint to the competent supervisory Authority, the existence of automated decision-making, including profiling and receiving a copy of the data.
  2. ii) Right of correction : to request the correction of any deficiencies or inaccuracies of your data and / or their completion, so that it is complete and accurate.

iii) Right to restrict processing : torequest under certain conditions the restriction of the processing of your data.

  1. iv) Right of objection : to object at any time under certain conditions to any further processing of your personal information data we keep.
  2. v) Right to delete (<<right of oblivion>> ) : to request under certain conditions the deletion of your personal data from the files we keep.
  3. vi) Right to data portability : to request under certain conditions from the Company your data in a structured and commonly used format, in cases where this is technically possible, in order to transfer it to another process manager.

viii) Right to revoke your consent, in cases where the processing of your data is based on it.

9.2 Please note the following in relation to your above rights:

  1. Your rights under iii), iv), v) may not be satisfied, in part or in whole, if they relate to data that is necessary to protect the Company’s legal interests or the fulfillment of its obligation arising from the legislation or from a decision of public Authorities or Courts.
  2. The Company has every right to decline your request for restriction of the processing or deletion of your personal data, if the processing or keeping of the data is necessary for the establishment, exercise or support of its legal rights or the fulfillment of its obligations.
  3. The exercise of the above rights is valid for the future time and does not relate to data processing already performed.

Χ. WAY OF EXERCISING RIGHTS / SUBMITTING COMPLAINT – DENUNCIATION

10.1 For the exercise of your rights, you can send an attached letter to the contact address of our Company: Dikaiosynis avenue no.27 – Heraklion of Crete – Greece or via email in the address : nsteiakakis@gmail.com.

10.2 In addition, you always reserve the right to contact the Personal Data Protection Authority, which can accept the submission of relevant complaints / denunciations either in writing in its protocol (Kifisias Avenue 1 – 3, Postal Code 115 23, Athens, call center 210-6475600 / fax 210-6475628)  or electronically at the email address complaints@dpa.gr. For more information visit the website www.dpa.gr.

10.3 The Company will make every possible effort to respond to your request within thirty (30) days of submission. This deadline period may be extended for sixty (60) additional days, if this is deemed necessary, taking into account the complexity of the request and the number of requests. The Company will inform you in any case of extension of the deadline within thirty (30)  days.

10.4 The above service is provided by the Company <<STEIAKAKIS JEWELLERY O.E.>>  free of charge. In the case that you request us to send the reply by post, you may incur shipping costs. Prior to shipment, our Company will inform you of its exact cost.

10.5 The Company may refuse to respond to a request which is manifestly unfounded, excessive or repetitive.

10.6 For the correct, efficient and secure processing of your request, it is required that the data – information of the person submitting  is identified. For this reason the Company may ask you for additional information for your identification as well as the sending of evidential documentation for this purpose.

10.7 In order to facilitate the exercise of your rights in accordance with  Articles 15 – 22 of the Regulation (EU) 2016/679, you can complete the relevant application and send it to us by registered letter to the above address or electronically to the address nsteiakakis@gmail.com with the documents attached to it. Please fill in all the information mentioned in the application so that your request can be successfully processed by our Company.

ΧΙ. SECURITY MEASURES

11.1 The security of your personal data is a high priority for us. Therefore, we protect your data, which is stored by us through technical and organizational measures to effectively prevent loss or misuse by third parties.

11.2 In the event that the Personal Data has not been provided by you but in another way, we inform you that the Company adheres to a strict Personal Data Protection Policy for the processing of your personal data, which has been notified to the Company’s  staff and associates and its application is regularly checked.

11.3 In principle, we collect only as much information as is necessary for the intended purpose. Then we check whether the purpose of processing  is legal and if the way of data collection is compatible with the principles of data processing (article 5 of Regulation and l. 4624/2019). Especially if the processing of the data is necessary for the purposes of the legal interests of our Company or a third party, we proceed with a weighting of interests according to the requirements of the Regulation.

11.4 The Company makes every possible effort to ensure that your data is secure. The Company implements appropriate organizational and technical measures for the security of your data, the ensuring of its confidentiality, the processing and protection from accidental or unauthorized destruction, accidental loss, alteration, prohibited disclosure or unauthorized access and any other form of illicit processing. Our IT department follows international standards and practices to ensure network security and data encryption. In order to ensure the long-term protection of your data, the technical security measures are regularly monitored and, if necessary, adapted to the respective prevailing technology standards.

11.5 The Company, taking into consideration the importance of the security of your personal data and fully respecting your fundamental rights and freedoms, makes every possible effort to comply with the requirements of the Regulation (EU) 2016/679 and the relevant Greek legislation (l.4624/2019).

11.6 In any case, you should not ignore the fact that despite all the reasonable measures we take to protect your personal data, not one single informational system and network and no transmission via the Internet, is completely secure. Despite the efforts made by our Company, security cannot be absolutely guaranteed against all threats.

11.7 In case of the loss or breach of personal data we have a specialized team which follows a clearly defined and specific procedure of dealing with incidents, in order to rectify the breach as soon as possible, to limit the possible consequences and to comply with our obligations under the law.

11.8 In addition, we restrict access to your personal data to those employees, agents, sponsors and other third parties who need to know them in order to fulfill their professional duties. They will process your personal data exclusively in accordance with our direct instructions and they are bound by the relevant terms of confidentiality.

ΧΙΙ. AMENDMENTS TO THIS STATEMENT

12.1 This Statement of Confidentiality and Protection of Personal Data may be amended periodically so that our current privacy practices are included. For this reason, please check from time to time and especially before placing any product orders, to ensure that you are aware of any changes.

12.2 The most recent version of the Statement will always be available at the address www.steiakakisjewellery.gr.  When we do make any changes, we will record the date of modification or revision at the beginning of the current Statement.

12.3 You can check the «effective date» at the beginning of the text, to confirm when the Privacy Statement was last updated. We reserve the right to change this current statement and to make any changes to the information previously collected, in accordance with the provisions of the law. If there are significant changes to this statement or our information practices change in the future, we will notify you by posting the changes on our website.

ΧΙΙΙ. COMMUNICATION

For any questions regarding the Privacy Policy or in general the protection and security of data in our Company and our affiliated companies, contact us at the following contact details:

«STEIAKAKIS JEWELLERY O.E.»

Dikaiosynis avenue no.27 – Heraklion of Crete – Greece

Telephone Number : +30 2810 222232

email address : nsteiakakis@gmail.com

WAYS – COST OF SHIPPING PRODUCTS

In distance purchases, shipments within Greece will be made through couriers with which the company cooperates and have the ability to deliver to the destination and to the exact address indicated by the customer, on all working days.

Shipments destined to a country of the European Union are made after prior notification of the customer, regarding the courier company and the cost of transport.

Shipments destined to a country that does not belong to the European Union are made after prior notification of the customer, regarding the courier company, the cost of transport, the issue of customs clearance costs charged to the customer depending on the country of destination, etc.

As soon as the order is delivered to the courier, the company sends you a relevant email so that you are aware of the estimated time and be on hold for its arrival, which will take place after one (1)  to three (3) days with the exception of special cases which, due to place of destination and means of transport, will require more time.

If there is a reason for force majeure or other special circumstances, the time required for the delivery may be longer.

As soon as you receive the product, check and make sure that the packaging is intact.

The Company’s effort for the accurate display of the product during its photoshoot and promotion is a given, but it is possible for some reason, such as due to the system used by the customer, a discrepancy upon arrival to be observed.

Each shipment will be accompanied by the legal voucher, in the case that the company has been informed that it is a gift, it will be accompanied only by a consignment note.

Prices include Value Added Tax of 24%.

SHIPPING COST

Every shipment within Greece is free, as long as the amount of the order is equal to or greater than one hundred (100) euros.

In the case that the amount of the order is less than one hundred (100)  euros, the shipping cost within Greece is four (4) euros, the shipping cost within the European Union is fifteen (15) euros.

PAYMENT METHODS

Payment can be made in the following ways:

  • With credit card (VISA, MASTERCARD, MAESTRO, CHINA UNION PAY, AMERICAN EXPRESS …. )
  • PAYPAL
  • Deposit in a bank account.

All payments made using the card are processed through the electronic payment platform of “Alpha e-Commerce” of Alpha Bank and uses TLS 1.2 encryption protocol encryption with 128-bit (Secure Sockets Layer – SSL).  Encryption is a way of coding the nformation until it reaches its recipient, who will be able to decode it using the appropriate key.

The deposit of the total amount for your purchase must be made in the following Bank within the mandatory period time of three days from the day of your order and during the deposit must be indicated :

  • The name, surname and father’s name.
  • The number that will be notified to you via email by our company and will be in relation to your order.

BANK : ALPHA BANK

ACCOUNT NUMBER :

IBAN : GR810140661002330002046

SWIFT : CRBAGRAA

BENEFICIARY : STEIAKAKIS JEWELLERY O.E.

RETURN POLICY

The consumer has the right within an exclusive period of fourteen (14) calendar days from the day of their delivery, to return the products he bought and to request their replacement with other products after consultation with the company or the return of the net amount paid for his purchase. After the expiration of this deadline, the right of the consumer to withdraw ceases to exist.

The return of the product is done by the customer who ship it  to the address of the company’s headquarters,  Dikaiosynis avenue no.27,  Heraklion of Crete,  but in order for the request for return or that of its replacement to be accepted, it is imperative that the product must not have been used at all by the customer, must not have suffered the slightest damage, to be in its own packaging in excellent condition and to contain all the documents and vouchers that accompanied the product when it was shipped by the company.

If the above conditions are not cumulatively met, the return request is rejected.

If the customer chooses the return of the delivery package, with the courier cooperating with the Company, he does not diposit the amount, but if he chooses another courier, the customer’s charge will rise to the amount that will be agreed with the courier and he will prepay it upon delivery by him.

Returns of products are not accepted if they were purchased either by offer deals, or as seasonal items (such as good luck charms, Easter, etc.), or if it concerns products after a special placed order, while in gift purchases there is no refund but only replacement by another product.

If the request for replacement of the product is submitted and satisfied and the value of the product concerning the second order is less than that of the first order, the amount resulting from the difference in value is not returned to the customer but remains in the name of the customer and is offset in a purchase to be made in the future.

In case of the return of an order concerning a gift to a third party, only its replacement with another product is allowed and not a refund of the amount of money paid to the company.

In any case, the return and the replacement of the product is allowed only once.

The procedure and the refund of the net amount paid by the customer to the company for the purchase of the product, will be done within fourteen (14) days from the day after the obtaining of the product by the company, and this occurs only after it has been established that the product has not been used at all by the customer, it has not suffered the slightest damage, it is in  its own packaging in excellent condition and containing all the documents and vouchers that accompanied the product when it was shipped by the company.

COOKIES POLICY

Our online store has the ability to use cookies, that is a small set of data, the use of which you can configure through the browser, not to accept them at all or to delete them after you have accepted them.

Cookies are used for various functions, such as to measure the traffic of the specific website and the options and preferences of its visitor, to provide the Company with better services to its customers and to serve orders for distance purchases.

List of Cookies used:

Προέλευση Όνομα Περιγραφή Διάρκεια
Polylang pll_language Multilingual Plugin 1 χρόνος
WordPress wp-settings-ID WordPress Customization 1 χρόνος
Wordfence wfwaf-authcookie-ID Security Plugin 1 μέρα
Cookie Consent moove_gdpr_popup Cookie Consent Preferences Cookie 1 χρόνος

 

AUTHORITY – TERRITORIAL JURISDICTION

For any dispute that may arise between the parties, that is www.steiakakisjewellery.grand the user, the Greek Law is applied and the Courts of the city of Heraklion, Crete are competent.