The protection of our customers’ privacy and individual rights when visiting our online store (www.avramisoptics.gr) plays a decisive role in enabling the safe use of our services. When you visit our online store, personal data is collected, processed and used. With this information on data protection, we wish to underline our commitment to handling your data in a secure and reliable way and to clarify how we use our customers’ personal data. We comply with the provisions of data protection legislation.
The processing of personal data is carried out in accordance with the provisions of the General Data Protection Regulation (GDPR 2016/679), any more specific national and European legislation for certain sectors, the applicable Greek legislation on the protection of personal data, as well as the legislation on the protection of personal data and privacy in the field of electronic communications (Law 3471/2006, as in force) and the decisions of the Hellenic Data Protection Authority.
What is personal data
Personal data is information that can be attributed to you as a person. This includes, for example, information such as your name, address, email address and telephone number. In addition, during each visit to our website, further data is automatically collected for technical reasons, such as the IP address assigned by your internet service provider to your computer for connection to the Internet, or information about the website from which you visited our site, or about the browser you used (technical information). In individual cases, such technical information may constitute personal data. As a rule, however, we use technical information only to the extent necessary for technical reasons for the operation and protection of our website against attacks and misuse, and in pseudonymous or anonymous form for statistical purposes.
Use of our online store by minors
Our online store is not directed to individuals under the age of 18, and we ask such individuals not to provide personal information through our online store.
How we use your personal data
We collect, process and use your personal data when you visit our online store, when you register, when you log into an existing customer account, or when you order products through our online store. We use your data only in accordance with the applicable legal provisions and this Privacy Policy, as well as with your consent, where required. In many cases, data is also used only in pseudonymous or anonymous form.
We use the information we collect to respond to your queries and fulfill your requests, such as sending documents you request or email notifications. We also use it to send you important information regarding our relationship or our online store, changes to our terms of use, conditions and policies and/or other administrative information, and for our business purposes, such as data analysis, audits, improving our online store and services, identifying trends in the use of our online store, personalizing your experience by presenting products and offers tailored to you, and determining the effectiveness of our advertising campaigns.
Data retention period
We retain your personal information for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law or in order to comply with a legal obligation.
To whom we disclose your personal data
Beyond using your personal information to serve you as our customer, there are cases where we may disclose your data to third parties. We may disclose information collected through our online store to providers who offer services such as website hosting and configuration, payment processing, order fulfillment, infrastructure provision, IT services, customer service, email and mail delivery and credit card processing. When transmitting your personal data, we continuously ensure the highest possible level of security. Therefore, your data is transmitted only to service providers and partner companies that have been carefully selected. In addition, your data is transmitted only to entities located within the European Economic Area and thus subject to the EU’s strict data protection legislation, or to those who have committed to comply with equivalent security standards.
Transfer to service providers
For the delivery of goods, to courier and postal service companies as specified when placing the order. For the payment of goods, to the payment service providers you choose when placing the order. In case of payment by credit card, this is carried out via Piraeus Bank. In case of payment via PayPal, this is carried out and processed by PayPal (Europe) S.àr.l. In case of payment via electronic bank transfer, this is carried out and processed by the banking institution you choose, namely: Citibank, National Bank of Greece, Alpha Bank, Eurobank Ergasias, Piraeus Bank. During the payment process, we do not record or store payment information related to this transaction, such as credit card numbers or other banking or financial details. You provide this information directly and exclusively to the respective payment service provider.
Transfer to third parties
Finally, we transmit your data within the framework of the applicable data protection laws to third parties or official authorities if we are legally obliged to do so due to an official directive or court order, or if we have the right to do so, for example because this is necessary for the prosecution of criminal offenses or for the protection and enforcement of our rights and claims.
Data security
The security of your personal data is a high priority for us. Therefore, we protect your data stored with us through technical and organizational measures to effectively prevent loss or misuse by third parties. In particular, our employees who process personal data are bound by confidentiality obligations. To protect your personal data, the data is transmitted in encrypted form. We use, for example, TLS (Transport Layer Security) to protect communication via your browser. This is recognizable by the padlock icon displayed in your browser in the case of a TLS connection. To ensure the long-term protection of your data, our technical security measures are regularly monitored and, where necessary, adapted to prevailing technological standards.
Your rights
At any time, during the storage or processing of your data, you retain the following rights and may submit the corresponding requests:
Right of access – you have the right to access the personal data we hold about you.
Right to rectification – you have the right to correct inaccurate or incomplete data we hold about you.
Right to erasure – you can request that the data we hold about you be deleted from our records and we are obliged to satisfy your request in certain cases.
Right to restriction of processing – you have the right to request that the processing of your personal data be restricted and we are obliged to satisfy this request when specific conditions apply.
Right to data portability – you have the right to request that the data we hold about you be transferred to another organization.
Right to object – you have the right to object to the processing of your personal data under certain conditions.
Right to withdraw consent – where the legal basis for processing your data is “Consent”, you have the right to withdraw your consent at any time.
All your requests relating to the above rights may be submitted via the special contact form or through your account management pages.
The procedure for handling any request concerning the above rights is as follows. We will assess your request and respond regarding its progress (request approval, partial approval, request rejection) as soon as possible and in any case within one month of submission. If our company rejects your request regarding the aforementioned Data Protection Rights, we will inform you of the reasons for the rejection. You have the right to lodge a complaint directly with the supervisory authority and with our company’s Data Protection Officer.
We reserve the right to reject requests that are unreasonably repetitive, require disproportionate technical effort or have disproportionate technical consequences, jeopardize the privacy of others or are practically impossible to implement.
Consent, right to object
To the extent that we use data for a purpose which, under legal provisions, requires your consent, we will always request your explicit permission and link the consent you give to the data protection provisions. Consent granted once may be withdrawn at any time with effect for the future and/or you may object to future use of your data for advertising, market research and opinion research purposes. Please understand that implementing your objection/withdrawal of consent may require some time for technical reasons and that in the meantime you may continue to receive communications from us.
Links to other companies’ websites
Our online store may contain links to the websites of other companies. We are not responsible for the data protection measures of external websites that you may access via such links. Please inform yourself about data protection on those external websites.
Security
We use reasonable organizational, technical and administrative measures to protect the personal information under our control. Unfortunately, no data transmission over the Internet or data storage system can be guaranteed to be 100% secure. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of any account you have with us has been compromised), please notify us immediately of the problem by contacting us through the contact form of our online store.
Contact person for data-related issues
This website belongs to AG VISION S.A. If at any time you believe that we are not complying with the provisions set out in this Statement or with any other matter relating to data protection, please contact us by email at [email protected]. The Data Protection Officer is Mr. Georgios Avramis.