Privacy Policy

This Privacy Policy applies to the online store www.millimetre.gr (hereinafter the "Electronic Store" or "E-shop"), which is managed and maintained by the Greek sole proprietorship with the name STAMATIA PATOUNA and distinctive title "MILLIMETRE", the which is based in Rhodes, on Kennedy Street no. 18, TK 85133, with VAT number 162354216 of the State of Rhodes and GEMI number 163270120000 with e-mail contact@millimetre.gr (hereinafter the "Company"), which, in compliance with the current European Legislation (General Data Protection Regulation 2016/ 679) and Greek Legislation (indicatively, Law 4624/2019, as applicable), acts as Data Controller and informs about the collection, processing and storage of the Customer's personal data.

The Privacy Policy explains what Customer information is collected, how that information is used and to whom it is provided. It also sets out the Customer's rights in relation to their information and who they can contact for further clarifications or queries.

The Company may at any time carry out the appropriate updates of this policy in order to optimally adapt to the new regulatory framework and amendments or interpretative circulars.

 

For the purposes of this Privacy Policy, they are understood as:

"personal data" : any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one whose identity can be ascertained, directly or indirectly, in particular by reference to an identifier such as name, identity number, location data, online identifier or one or more factors that characterize the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person;

"processing" : any operation or series of operations carried out with or without the use of automated means, on personal data or sets of personal data, such as collection, registration, organization, structuring, storage, adaptation or alteration, retrieval, retrieval of information, use, disclosure by transmission, dissemination or any other form of disposal, association or combination, restriction, deletion or destruction;

"controller": the natural or legal person, public authority, agency or other entity which, alone or jointly with others, determines the purposes and manner of processing personal data; when the purposes and manner of such processing are determined by Union law or the law of a Member State, the controller or the specific criteria for his appointment may be provided for by Union law or the law of a Member State;

"processor": the natural or legal person, public authority, agency or other entity that processes personal data on behalf of the controller,

"consent" of the data subject: any indication of will, free, specific, explicit and fully informed, by which the data subject manifests that he agrees, by statement or by a clear positive action, to be the subject of processing of the personal data that it concerns

"third party": any natural or legal person, public authority, agency or body, with the exception of the data subject, the controller, the processor and the persons who, under the direct supervision of the controller or the processor , are authorized to process personal data.

CATEGORIES OF PERSONAL DATA – PROCESSING

The Customer accepts and agrees, that for the purpose of concluding a sales contract with the Company through the Online Store, he is required to create a Customer profile, i.e. a tab where he is asked to enter all necessary information for the purposes of concluding and executing sales contracts with the Company .

The Customer undertakes the obligation to register personal data that is complete and true, while acknowledging that any false statement renders the execution of any sales contract impossible, while the Company reserves the right to any compensation from the Customer for any positive damage suffered as a result of this culpable behavior of.

During registration, the Customer is requested to submit the following data: a) Name of Natural Person/ Name of Legal Entity, b) Address/ Headquarters, c) Postal Code, d) Telephone Number, e) E-mail.

In the event that the Customer requests the issuance of an invoice, or in the case of a Legal Entity, he should submit an A.F.M.

The Company reserves the right to delete the Customer's account if it is found that the information he has declared is untrue, or he uses his account abusively or seeks to alter the Online Store and its appearance.

The Customer is solely responsible for keeping the login code in the profile he will create and acknowledges that the Company cannot intervene in the online store login identification process, nor can he know the user code he has chosen.

The Company takes the appropriate technical and organizational measures in order to ensure and be able to prove that the processing is carried out in accordance with the applicable Legislation and to protect all personal data from loss, misuse and unauthorized access, disclosure, alteration or destruction. These measures are reviewed and updated when deemed necessary. Only authorized personnel, who have been properly informed about the obligations of the Privacy Policy, are granted access to personal data.

PURPOSE OF PROCESSING AND LEGALITY

The Company processes the Customer's personal data for the purposes of the products provided and in particular for:

a) the conclusion of the sales contract and the management of the sale of the products, e.g. issuing and sending the tax documents in electronic form, executing the order, sending the products, making returns.

b) compliance with the obligations imposed by the current legislation, e.g. tax legislation, e-commerce directive,

c) the sending, by electronic means, of commercial information about the Company's products.

According to the current legislation, the processing is lawful for various reasons, including the following:

a) the Customer – data subject has consented to the processing of his personal data,

b) the processing is necessary for the execution of a contract to which the Customer – data subject is a contracting party (such as the sales contract with the Company),

c) the processing is necessary to comply with a legal obligation of the controller (eg tax legislation).

CUSTOMER RIGHTS – PERSONAL DATA SUBJECT

The Customer – Subject of the personal data, may, at any time, exercise the rights provided for in the current Legislation (Articles 12 to 22 of the General Data Protection Regulation) and in particular:

  1. the right to information and access to his personal data processed by the Company,
  2. the right to restrict the processing of personal data,
  3. the right to correct and delete part or all of the personal data, and
  4. the right to object, i.e. to raise objections to the processing of his personal data and
  5. the right to portability of personal data.

The Customer may modify/correct/delete his information at any time through his profile maintained in the Online Store. To exercise his remaining rights, he may contact the Company directly (see below "Communication"). It should be pointed out that the exercise of some of the above rights may not allow the conclusion or completion of the execution of the contract with the Company.

The Company processes the personal data for the longer of the following periods: a) as long as it is necessary for the relevant purpose of collection and the execution of the sales contract, b) any retention period required by law, c) until the end of the period by which may result in product litigation or investigations.

SENDING INFORMATIONAL MATERIAL

Especially with regard to the sending of information material by the Company to the Customer with the aim of informing the latter about the products that the Company has through the Online Store, the Company is entitled to send to the Customer's e-mail address informative - advertising bulletins, provided that he has given express electronic consent to this (opt-in). Also, the Customer is provided in a clear and distinct manner with the possibility to object to the sending at any time (opt-out/unsubscribe), in an easy way and without any charge through each relevant message.

TRANSFER OF PERSONAL DATA TO THIRD PARTIES

The Company, for the execution of the sales contract and the delivery of the Customer's order, obligatorily transmits to a third party the minimum necessary personal data for the execution of the shipment of the order.

These data that are transmitted to a third party are the name, surname, address (City - Region, number / street) and contact telephone number of the Customer, exclusively for the purpose of carrying out the transport and delivery of the order.

As the Company cooperates with external third-party courier service providers (indicatively, General Post, ACS), this transmission of the above data is necessary for the execution of the order and cannot be excluded.

In addition, the Company transmits personal data to third party service providers who process personal data on behalf of the Company, such as, but not limited to, the processing of credit cards and payments, the electronic issuance and sending of your tax documents, email distribution, etc.

CONTACT

The Customer may contact the Company via e-mail at E-mail: contact@millimetre.gr in order to exercise any of his rights. In the event that he considers that the processing of his personal data is not lawful or wishes to submit questions and complaints in relation to the processing of his personal data, he may contact the Personal Data Protection Authority (Offices: Kifisias 1-3 , PO Box 115 23, Athens, Telephone Center: +30-210 6475600, Fax: +30-210 6475628, Email: contact@dpa.gr, www.dpa.gr ).


THIRD PARTY WEBSITES

www.millimetre.gr bears no responsibility for the content of the external links that exist on it and lead to other websites as well as for the measures of other companies that use their own terms and privacy policy.

About this website's server

All online traffic such as information exchange, purchases between this website and your browser is encrypted and transferred over HTTPS protocol using SSL.

The SSL (Secure Sockets Layer) protocol is today the global standard on the internet for certifying websites to web users and for encrypting data between web users and web servers. An encrypted SSL communication requires that all information sent between a client and a server be encrypted by the sending software and decrypted by the receiving software, thus protecting personal information in transit. In addition, all information sent with the SSL protocol is protected by a mechanism that automatically checks if the data has been changed in transit. The online store www.millimetre.gr accepts VISA, Mastercard and Maestro debit/credit cards. For your transactions in our online store, you are redirected to a secure banking environment and no data is recorded in our database.