The Mountain Stone | Πολιτική απορρήτου της

PHPWord

Last updated: 02.01.2024

This Privacy Policy governs the use of the products, services, content, functions, technologies, etc., provided by DOUZA PANAGIOTIS, with UIN 060740403000, based and address Greece, Tralleon 89 Galatsi 11146

When this policy mentions "we", "us" or "our", it refers to DOUZAS PANAGIOTIS, the Data Controller of your personal data.

By clicking a button or checking a box, followed by the expression 'I agree' or 'Accept', which you adopt as your electronic signature in accordance with Article 3(10) of Regulation (EU) No .../... 910/2014, you consent to be bound by this Privacy Policy.

By accepting this Privacy Policy, you expressly agree to the use and disclosure of your personal information and instruct us to perform these actions in the manner described in this Privacy Policy.

1. General provisions

1.1. This Privacy Policy is an integral part of the General Terms and Conditions of DOUZA PANAGIOTIS.

We, who refer to DOUZA PANAGIOTIS, with 060740403000 UIN, based and address Greece, Tralleon 89 Galatsi 11146 attach great importance to the protection of our customers' data. In this Privacy Policy we inform Customers about the collection, use and processing of their personal data when they register or use our services and anything related to them.

All customers' personal data is collected, processed and stored in accordance with the principles set out in applicable legislation and the General Data Protection Regulation.

1.2. You should read this Privacy Policy carefully in order to be informed about the policies and practices that will apply to the Customer's personal data, how the data will be used and how we will handle it. If you do not agree with this Privacy Policy, you should stop using our Services (as set out in the Agreement with you). By providing us with your personal data and maintaining a contractual relationship with us, once you have read this Privacy Policy, we will assume that you have agreed to the collection, use and disclosure of your personal data in accordance with the terms set out in this Privacy Policy, unless you notify us otherwise.

2. Personal information we collect.

We collect three general categories of personal data, depending on the legal basis for their processing

2.1. Information we collect for the adequate performance of our contract with you.

We request and collect from you the following information when you wish to use our services. This information is necessary for the adequate and proper performance of our contractual obligations. Without the collection of such personal data, we will not be able to provide you with our services.

Names of the person ordering the product/service

Names of the person who will receive the products/services

Telephone

Email address

Delivery address

2.2. Information we collect with your consent or the consent of a third party.

You may choose to provide us with additional personal information about yourself or about third parties. In case you provide us with personal data of third parties, you declare that you have obtained their consent to disclose such personal data. This personal data will be processed on the basis of your consent or the consent of the third party about whom you have provided us with data. Such information could be:

Any other information disclosed by you in connection with ongoing communication between us for the purpose of providing customer service.

Any additional personal data, such as contact details or other delivery addresses, for the purpose of providing additional services that you may ask us to perform.

Data related to your complaints - we are obliged to keep a register of complaints and collect data about such complaints

2.3. Information we collect based on our legal obligations and legitimate interests

If you use our services and websites, you agree that we will collect, including automatically, information that can be considered personal data. This information is necessary to fulfill our legal obligations, as well as to satisfy our legitimate interests in improving the operations of our services:

Data from official documents for the purposes of issuing invoices, in accordance with legal procedure, as well as for the purposes of enabling refunds of VAT, customs duties and other similar taxes and fees.

Information about your use of our services - we store information about your use of our services, such as orders you have placed

Access information: we automatically collect data about accesses to our websites, this information includes but is not limited to: IP addresses, date and exact time of access, information about the browser through which access is made, other unique identifiers.

Cookies: we use cookies and other similar technologies that could be implemented in the future, which allow us to provide our services in a way convenient for you. For more information about the Cookies we use, please read our Cookies Policy.

Payment card usage data (for the purposes of executing a payment transaction, if applicable). We cannot see the payment card data you have entered, but this data is processed automatically and securely by the Virtual POS placed on our websites and the relevant information is used by the financial institution for the purposes of initiating and processing the card transaction.

3. How we use the personal information we collect

We use, store and process information, including personal data, for the purpose of providing our products to end customers. We do not use your personal information for profiling, marketing or other similar purposes.

In the future, we may implement systems that process the information we receive in order to improve the functionality of our websites, to support our customers, as well as to introduce easier means of communication and to improve the security of our online services.

4. Disclosure of personal data

4.1. With your consent

Where you have given us explicit instructions, we may disclose personal information about you to any third party in accordance with your instructions, for example for the purpose of providing "after-sales service" (warranty provided by third parties.

4.2. With other members of our corporate group.

We may share your Personal Data with members of our group of companies or within our corporate family of companies related to joint ownership or control so that we can adequately comply with our obligations to you or applicable law or manage risk or help detect and prevent potentially illegal and fraudulent acts and other violations of our policies and agreements and to assist us manage legitimate needs.

4.3. With third-party service providers

We may share personal information with third-party service providers for the purposes of fulfilling our contractual obligations to provide you with products and services, as follows:

4.3.1. For the purposes of providing subcontractor warranty services: We may share your names and contact details with our subcontractors to whom we scale certain service activities.

4.3.2. For the purpose of fulfilling our obligations under applicable law, for accounting and tax purposes, for the purposes of issuing invoices: We may share data about your identity with the accounting firms whose services we use.

4.3.3. For the purpose of delivering goods and services: We may share your names, contact details and addresses, including the delivery address you have provided, with the courier companies whose services we use to ship goods.

4.3.4. For the purpose of providing online content: Hosting service providers and other online service providers automatically record information about you, such as IP addresses, access and other data about your behavior on our websites.

4.3.5. For the purposes of accepting card payments on our websites: Our acquiring financial institution (acquirer) automatically processes your payment data, such as PAN, CVC, embossed name, expiration date and other similar information, in case you use the feature to pay for goods or services with a payment card.

5. Data retention period

We will store your personal data in accordance with the legal requirements to store the respective category of personal data.

In the event that there is no applicable legal storage requirement for the relevant categories of personal data, your personal data will be stored by us for a period no longer than is required to expire the limitation period for any legal relationship that may arise between us.

6. Fulfillment of our legal obligations

We may share your information, including personal information, with courts, investigative authorities, public authorities or other third parties authorized by law, to the extent permitted by law, for the purposes of: (i) fulfilling our legal obligations; (ii) compliance with procedural requirements and protection from legal claims; (iii) responding to investigations by authorities investigating crimes or other illegal activities or investigating other conduct that may expose us, you or any of our clients to legal risk. (iv) implement and administer our General Terms and Conditions, (v) protect the rights, property or privacy of ourselves, our employees, our corporate family companies or the public.

7. Exchange of information outside the European Economic Area (EEA).

We use a variety of third-party service providers when we provide our products to you.

To facilitate our global operations, we may transfer, store and process your information within our group of companies or with service providers based in Europe. The laws in these countries may differ from the laws in your country of residence. We do not transfer personal data outside the EEA unless our hosting service providers and other online service providers provide our online content to you from such places. When we transfer, store and process your personal information outside the EEA, we have ensured that appropriate safeguards are in place to ensure an adequate level of data protection, for example compliance with applicable adequacy decisions. We will provide further information on the means to ensure an adequate level of data protection upon request.

8. Your rights

You can exercise any of the rights described in this section by sending an email to the.mountain.stone.2018@gmail.com. Please note that we may ask you to verify your identity before taking further action on your request.

8.1. Access to data and portability

You have the right to access and receive and/or transfer the personal data we process about you upon your request. You will receive a reply within one month at the latest, unless it is not possible to do so due to the nature of your request and/or its complexity, in which case we will notify you of the need to extend this deadline.

In particular, you have the right to:

receive a copy of your personal data in a structured, commonly used, machine-readable format that supports re-use;

transfer your personal data from one controller to another;

store your personal data for further personal use on a private device; and

transmit your personal data directly between controllers without hindrance;

Applicable law may give you the right to request copies of your personal information we hold.

We reserve the right to refuse you the exercise of this right if we can prove that the nature of your request is manifestly unfounded or excessive.

8.2. Correction of inaccurate or incomplete information

You have the right to ask us to correct inaccurate or incomplete personal information about you (which you cannot correct yourself through our online service). You will receive a reply within one month at the latest, unless it is not possible to do so due to the nature of your request and/or its complexity, in which case we will notify you of the need to extend this deadline.

We reserve the right to refuse you the exercise of this right if we can prove that the nature of your request is manifestly unfounded or excessive.

8.3. Deletion ("Right to be forgotten")

You have the right to request to delete the personal information we process about you. You will receive a reply within one month at the latest, unless it is not possible to do so due to the nature of your request and/or its complexity, in which case we will notify you of the need to extend this deadline. We reserve the right to refuse you the exercise of this right in case we can prove that the nature of your request is manifestly unfounded or excessive or that we do not have the right to delete your personal data due to an existing legal obligation.

8.4. Right to restriction of processing

You have the right to ask us to restrict the processing of your personal data. We reserve the right to refuse you the exercise of this right in case we can prove that the nature of your request is manifestly unfounded or excessive or that we do not have the right to restrict the processing of your personal data due to an existing legal obligation.

8.5. Objection to processing.

You have the right to object to the automatic processing of your personal data and to request their processing through human intervention. You will receive a reply within one month at the latest, unless it is not possible to do so due to the nature of your request and/or its complexity, in which case we will notify you of the need to extend this deadline.

We reserve the right to refuse you the exercise of this right if we can prove that the nature of your request is manifestly unfounded or excessive

8.6. Withdrawal of consent

Where you have given your consent to our processing of your personal information, you can withdraw your consent at any time and, in the event that there is no other reason for lawfully processing your personal data, we will be obliged to stop processing the relevant personal data.

8.7. Submission of complaints

You have the right to lodge a complaint with the relevant data protection authorities in case you believe that we have violated any of your rights when processing your personal data. The competent authority is the Personal Data Protection Authority with address 1-3 Kifissias Avenue, 11523 Ampelokipoi Athens and communication contact@dpa.gr, +302 106 475 600.

9. Security

We implement and continuously update our administrative, technical and physical safeguards to improve the security of your information against unauthorized access, loss, destruction or alteration. Some of the measures we implement are encryption, pseudonymization, firewall and access control to personal data. If you know or suspect that unauthorized access to your personal data has occurred; Contact us via the contact details on our website themountainstone.shop.

10. Changes to the Privacy Policy

We reserve the right to modify this Privacy Policy at any time in accordance with this provision. If we make changes to this Privacy Policy, we will make the revised Privacy Policy available on our website and by doing so we will assume that all customers have been duly informed. In case you do not object to the changes made, you will be bound by the provisions of the new Privacy Policy without having to request further confirmation from you.

Closure