During your visit to the Espressoshop.gr pages and in order to order products, but also to ensure that you can communicate with us to inform you about new products, you may be asked to provide information regarding you (name, profession, email address, date of birth, etc.). Any personal data that you represent anywhere on the pages and services of the www.espressoshop.gr website is intended solely for the purposes of ensuring the operation of the relevant service and may not be used by any third party without complying with the provisions of N. 2472/97 on the protection against the processing of personal data, as is the case every time.
The www.espressohop.gr operates in accordance with applicable Greek and Community law and securely maintains your personal data for as long as you are registered with an www.espressohop.gr service which is deleted after the transaction has ceased in any way. Personal data you provide at www.espressohop.gr is used exclusively by or by affiliated enterprises to support, promote and execute the transactional relationship. The records kept may be communicated to the competent judicial, police and other administrative authorities at their request and in accordance with the applicable legal provisions. Within the framework of the laws on telecommunications secrecy, Customer shall have the information and objection rights provided for in Articles 11 to 13 of Chapter V. 2472/1997.
In case we issue an invoice, we need the company’s name, VAT. and address of her seat.
In summary, we only ask as much information as we need to give you a separate buying experience: consistent delivery of the products you ordered, secure payment of your order and personalized service based on your needs and preferences.
In order to be able to offer personalized service, most large companies use alphanumeric identification files, the so-called cookies. Session cookies are used only to recognize that you’re entering the site, so you don’t have to ask for password on all pages that include a component transaction. These are wiped out immediately after you leave the site. espressoshop uses session cookies: so we don’t constantly ask you for a password when you visit our different pages, we should recognize you when you enter our online store.
The information and information you have given us is managed as follows:
We use the data you’ve trusted to provide you with a separate buying experience in the following ways:
– To join www.espressoshop.gr (As a member you have access to your old and current orders. You can still keep a list of the products you want to purchase in your cart. Also get product updates in product categories of your interest.
– To place orders purchased online.
– To allow you to confirm your orders.
– So we can answer any possible questions and surveys you may have with your customer service department.
– To send you special offers and product updates.
Under no circumstances do we transfer your personal information to third parties (Article 11 n. 2472/1997)
Under no circumstances do we sell or rent your personal data to third parties. These data are used exclusively by espressoshop.gr to constantly improve your service. If we see in the future that sharing some of your information with a third party can be of great benefit to your markets, it will only be after your approval.
The exception to this commitment is the case where this information is requested by judicial decision by law enforcement bodies.
Clarifications for the processing of personal data
(as Controller and Processor, in accordance with the EU General Data Regulation. 2016/679)
Why will the Company process the Personal Data (BOI) and Customer’s Special Category Personal Data (SSP)?
By purchasing Customer services/products through the Company’s website, it indicates that it wants the Company to undertake on its behalf the completion of a task or the proxy between Customer and a third party to complete a task in its capacity as the Company’s internet service provider. Based on the information/data indicated by the Customer on its website/order form, the Company should integrate it into a homogeneous category and calculate, based on its statements, the appropriate and proportionate Customer/Service.
To do so, it is necessary that Customer declare the specific BOI and/or BOIs listed in the relevant fields in the order form. These elements are objectively essential for the fulfillment of the purpose and operation of the service provided. Correct and complete information on the information requested by the Company constitutes a Customer’s statutory obligation. Inaccurate or incomplete information is likely on the information requested by the Company to establish a right for the Company to request even the cancellation or termination of the service at any time.
For as long as the service contract remains in force, the Company will process the Customer data necessary for its operation under this contract that Customer enters into if it initiates a service/product order from the Company.
What kind of data will the Company process?
Once the Customer has placed the product/service order completed in all fields, the Company will proceed, for the reasons stated above, to any transaction or series of processing operations with Customer data and by automated means such as: collect, register, organize, fix, store, adjust, change, retrieve, search for information.
The Company uses automated media to complete the order and provide the service. Through these automated means, the Company can take decisions more quickly, more accurately, transparently and consistently. In such cases, however, regular checks are carried out by the competent officials of the Company.
Η Εταιρία στα πλαίσια προστασίας των εννόμων συμφερόντων, πραγματοποιεί συχνά ελέγχους, μέσο πιστοποιημένων αυτοματοποιημένων μέσων, για λόγους αποτροπής απάτης σε βάρος της.
In particular, the following sub-processes are carried out for the purpose of complying with provisions of European and Greek legislation:
controls (and automated) to prevent the use of products for money laundering and/or terrorist financing purposes.
checks are carried out and data and data are sent for the purpose of compliance by the Company with the administrative cooperation of the Member States of the European Union in the tax field.
checks are carried out and data and data are sent for the purpose of compliance by the Company with the Competent Authorities multilateral agreement on the automatic exchange of financial account information.
How long will the Company keep the Customer’s data on file?
The Company will retain Customer data for as long as a contractual relationship between them is maintained, both in paper and in electronic form. If, for any reason, the Company is interrupted, it will keep them for as long as it is still required until the time of cancelation of any such claims. However, in any event, the Company will keep the data for up to one (1) year after the end of the co-operation between them.
What rights does the Customer have in relation to processing their data?
Customer may, where appropriate, exercise the following rights: right of access (to know what data we are processing, why and to whom they are addressed), rectification (to correct any data deficiencies or inaccuracies), erasure (right to oblige) (deletion from the Company’s records, but if processing is no longer necessary), restriction of processing (in case data is contested, etc.), portability (to receive the data In the case of a structured and commonly used format).
These rights are exercised at no cost to the Customer by sending a related letter or email to the Data Protection Officer, unless they are frequently repeated and due to volume they are administrative costs to the Company, in which case the Customer will bear the associated costs.
If Customer exercises any of these rights, the Company will take all possible steps to satisfy the Customer’s request within thirty (30) days of receipt of the request, after informing the Company of its satisfaction or of the objective reasons preventing Customer satisfaction.
In addition, Customer may object to the processing of its IFRSs and RTGS systems for the purposes of the service contract by withdrawing Customer’s consent at any time. However, this will result in termination of Customer’s contract and non-provision of services by the Company, because (as noted above) no service operates without processing of Customer’s BOI and/or MIPs (data subject).
How is Customer data secure?
Data security is a complete commitment to the Company. In order to achieve this, all technical (but not limited to, encryption, anonymization) and technical and organizational measures, the Company’s response to which is checked at regular intervals, are applied.
Where will the data be transmitted?
Customer data will be transmitted to departments of the Company responsible for completing the service provided and for its proper and uninterrupted operation. For example, the Technical Support Department, the Legal Service, the Accounting Office, etc.
Customer data may also be transmitted and made accessible by legal and/or natural persons with whom, from time to time, the Company maintains contracts for the proper provision of the services offered. In addition, data may be transmitted to various services, public authorities, etc. in connection with the operation of the Customer’s insurance contract. However, in that case, such legal and/or natural persons shall process the personal data of the Customer solely for the purpose of providing services to the Company and not for their own benefit, acting as processors.
In each transmission the Company always takes all steps to ensure that the data transmitted are always the minimum necessary and that the conditions for lawful and fair processing are always met.
Will the Company process the Customer’s data for commercial purposes as well?
For the duration of the processing mentioned above, the Company may process only your BOIs (but not those of IFRSs).
Customer may object to this processing of their data (for commercial purposes) at any time by sending a request to the Data Protection Officer. In this case, Customer data will no longer be processed for commercial purposes.
Any matter relating to the processing of your data may be referred to the Company’s Data Protection Officer (DPO) office: tel. 0030 2810.376.651, e-mail: firstname.lastname@example.org
In addition, Customer always reserves the right to address the competent authorities where Customer may lodge complaints. For Greece Personal Data Protection Authority (Kifissia 1-3, т.к. 115 23, Athens), or online (www.dpa.gr).
Additional Cookie Clarifications
What are cookies and why does the Company use them?
These are small text files sent to the browser Customer uses and stored on Customer’s computer while the Customer is located within the Company’s website. In no case shall cookies contain personal information or information which will allow anyone to contact the site visitor by telephone, e-mail, etc. Additionally, using cookies does not allow access to computer documents or files.
In addition, cookies help the Company to see the performance and the accessibility of its website, improving its presentation and content, in accordance with the preferences of its visitors.
Which cookies are used?
Some or all of the cookies described below may be saved in the browser. The Customer can view and manage cookies in the browser (but mobile browsers may not offer this visibility).
Of the different types of cookies that exist, the Company uses the following:
Technically necessary cookies are essential for the proper functioning of the website, enabling the Customer to browse and use the Customer’s functions. These cookies do not recognize the individual identity of the Customer. Without these cookies, the Company cannot provide an effective operation of its website.
Additionally, these cookies allow the website to recall Customer options such as font size, or if it has responded to a Company survey to provide enhanced and personalized functionality.
Customer can enable, disable or erase cookies completely within the setting options in their browser. However, after that some parts of the website may not function sufficiently.
The Company shall ensure the safety, reliability and respect of the Customer. Protecting the privacy of Customers’ personal data is especially important. Therefore, the Company is aware of the following to its guests and/or Customers:
The Company’s website is a public communication system that provides information and services online. Visitors to the Company’s website may be informed of the new products and services it offers, important announcements, new jobs and use any service without providing any information.
Should it be necessary to carry out a transaction through the Web page to collect the Customer’s personal information in each case the following shall apply:
The Company shall keep a record and process any personal data of its Customer solely for the purpose of supporting, promoting and executing the transactional relationship with the Customer and providing high-level services.
Customer data shall be kept confidential and shall be transmitted to third parties only if necessary to process the order or service of the customer.
The Software site is designed to ensure the highest level of security and confidence. All information contained in requests submitted through the Web page that is related to the payment of any service Customer chooses is secure and confidential. Only authorized employees with appropriate training in handling Customer information will have access to such information and only when necessary to satisfy Customer’s requests.