PROTECTION OF PERSONAL DATA

The protection of your personal data is very important to us. In that direction, we attach great importance on harmonizing our Company's practices with the legislation in force. This General Data Protection Policy (hereinafter referred to as the "Policy" or the "Data Protection Policy" or the "GDPR Policy") concerns the conditions for collecting, storing, retaining, processing and using of your personal information by the enterprise under the name PANTELIS_VITALIOTIS_MAGNETO, located in Athens, Attica, Greece, 21 Sporadon str., P.O 11361, with VAT No 039271976 and its electronic store MAGNETOSCARVES.COM (hereinafter referred to as the "Enteprise").


DEFINITIONS
The basic definitions of the terms and names to be used in this document, as referred to in Article 4 of the General Regulation on Personal Data Protection 2016/679 / EU (EU GDPR), are the following:
Personal Data: Any information or data relating to an identified or identifiable natural person ("data subject"). As intentifiable natural person is considered to be the natural person whose identity can be acertained, directly or indirectly, in particular by reference to an identifying element such as its’ name, identity card and/or passport number, tax information, location data, summarized identity, or one or more factors specific to physical, physiological, genetic, physical, economic, cultural or social identity of that natural person.
Personal data of special categories (sensitive): Personal data which are by nature very sensitive in relation to fundamental human rights and freedoms are considered sensitive and therefore require special protection as the context of their processing could pose significant risks to the fundamental human rights and freedoms. This personal data include data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union memberships, as well as the processing of genetic data, biometric data used for undisputed identification of a persons’ health status or data relating to its’ sexual life or its’ sexual orientation.
It is clarified that all personal data of minors -under the age of 16 - are by definition considered as sensitive and treated as such.
Controller: a natural person or legal entity, a public authority, a service or other entity that alone by itself or acting jointly with others determine the purposes and the manner in which personal data are processed.
Processor: a natural person or legal entity, a public authority, a service or other entity processing personal data on behalf of the controller.
Each educational organization, regardless of its type, legal form and size, maintains and processes personal data and is referred to as a controller.
Any natural person or legal entity of the public or private domain that processes data on behalf of a controller is referred to as the processor. (Example, an accounting office in which the training organization assigns the payroll of its employees).
Processing: any action or set of actions carried out with or without the use of automated means of collecting personal data or clusters of personal data (sensitive and non-sensitive) such as collection, registration, organization, structure, storage, adaptation or alteration, retrieval, search of information, use, disclosure by transmission, dissemination or any other form of disposal, association or combination, restriction, erasure or destruction.
Authority: The Personal Data Protection Authority (PDPA)


The Enterprise is designated as a controller and strictly complies to the Data Protection Principles set out in Article 5 of the General Data Protection Regulation.The Enterprise as the controller of the data contained on this website, informs its visitors that the processing of the visitors' hereafter referred to as "data") shall be made in writing, by electronic or telecommunication means, in order to be provided to them by the service requested by them and in order to trade with the Enterprise.

In order to process your transactions at our online store and also to have direct contact with you, you will be asked for specific personal information such as your name, email address, etc. If you wish to purchase products from our online store via credit card, you will be asked for further details such as the holder's name, card number, expiration date and CVV number.

The personal data of the users/visitors to our website sent electronically to the website remain confidential and are not transmitted or disclosed to third parties. They may be communicated to employees/partners of the Enterprise for the legitimate operation of the online store. Website users are not required to provide their personal data. However, if they do not, it may be impeded to provide the requested service.

At any time the users of our website retain the rights granted to them by the General Regulation EU 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data of these data, namely the rights provided for in Articles 12, 13, 14, 15, 16, 17, 18, 19, 20, 21 and 22 of the General Regulation.

You have the right to access your personal data.

This means that you have the right to be informed by us whether we process your Data. If we process your Data, you can ask to be informed about the purpose of the processing, the kind of Data we process, who we give it, for how long we store it, whether we use automated collecting tools, but also about your other rights, such as correcting, deleting data, limiting the extend of processing and submitting a complaint to the Data Protection Authority.

You have the right to correct inaccurate personal data.

If you find that there is an error in your Data, you can apply for us to correct it (for example, a name correction or an update of an address change).

You have the right to delete / the right to oblivion.

You may ask us to delete your data if they are no longer necessary for the aforementioned processing purposes.

You have the right to transfer your Data.

You may ask us to receive the Data you have provided in a readable form or ask us to forward it to another controller.

You have the right to restrict your processing.

You may ask us to restrict the processing of your Data for as long as your filed objection on procession is pending.

You have a right to object to the process of your Data.

You may oppose to the process of your Data or withdraw your consent and we will seaze processing your Data, unless of course there are other compelling and legitimate reasons that prevail over your right.

In order for you to exercise your rights you can send us a request (Form 1), describing the right you wish to exercise via e-mail to the address info@magnetoscarves.com under the tittle/subject " Exercise of the right of access/rectification /deletion/restriction/opposition ", describing your request, We will review it and revert as soon as possible.

We assure you that our Enterprise will not make any unlawful use of your data and that it has taken all appropriate technical and organizational measures to ensure that your data processing takes place in accordance with the General Regulations.

The data may be communicated to the appropriate judicial, police and other administrative authorities [such as AADE] at their legal request and in accordance with the relevant applicable law.