PERSONAL DATA PROTECTION AND PRIVACY POLICY

ONLINE STORE OF THE COMPANY “SILVER AND LIBERTY KALOU S.R.O.”.

The Company “ARGYRO AND ELEYTHERIA KALOU OE” complies with the General Data Protection Regulation (2016/679 EU GDPR) and any other European and national legislation (Law 4624/2019) concerning the protection of personal data, electronic communications, etc. and is committed to ensuring the protection of your Data at all times.

In particular, the data are collected for specific, explicit and legitimate purposes and are not further processed in a manner incompatible with those purposes.We collect the personal data necessary for each processing purpose and process them lawfully, fairly and in a transparent manner in relation to the data subjects.We ensure that they are, as far as possible, accurate and up to date and keep them only for the period of time necessary for the purposes for which they are processed.In any case, we do not process them in a way that is incompatible with the purposes for which they are processed.

The following terms of processing personal data by “ARGYRO AND ELEYTHERIA KALOU OE” apply to the customers of our online store and the users (visitors) of our website (kalos.gr), which are an integral part of the terms of use that govern the online store as a whole).

1. Processing Manager

1.1 The Data Controller of your personal data is the company “ARGYRO AND ELEPHERIA KALOU OE”, based in KiATO, 30 KLISTEISTHENOUS Street – KIATO-20200, with VAT number 999170321, Tax Office of Corinth, with registration number 114723037000, telephone number 2742028580, e-mail address https://kalos.gr/

1.2.Contact details: For any matter concerning this privacy policy and the processing of your personal data, you can contact us in the following ways:

A) By phone at 2742028580, Monday to Friday 09:00-14:00

B) By sending an e-mail to Support@kalos.gr

C) By sending a plain postal mail to :

KEISTHENES 30 – KIATO-20200

2. Collection, purpose, legal basis of processing and time of keeping your data

Data we collect automatically through our website

The https://kalos.gr website uses the SSL (Secure Sockets Layer) protocol which uses methods of encryption of data exchanged between two devices (most commonly Computers), establishing a secure connection between them via the internet, which results in the protection of your personal data.

When you visit our website, our server collects so-called server log files (logfiles), namely:

Date and time of access to the website.

Volume of data sent in bytes.

The browser and operating system you used to access the website.

Internet Protocol (IP) address, when you enter the website. The IP address is personal data along with the date and time of your visit, although we cannot track you with this data alone.

The legal basis for which we collect your IP address and keep it in special files (logs) is our legitimate interest in processing this data in order to ensure the security of networks, information and services against accidental events or illegal or malicious actions that compromise the availability, authenticity, integrity and confidentiality of stored or transmitted data (e.g. ddos “denial of service” attack control), as well as our legal obligation to provide a more The data will not be transferred or used in any other way. However, we reserve the right to review server logs (server logs) if certain indications of unauthorized use are detected.

Visitor / Customer Data

When you visit our Company, we collect personal data such as your name, e-mail, contact details, address and any other information related to the provision of services to you.

The purpose of processing your data is to provide you with the requested services and the legal basis of the processing is the performance of the contract between us (Article 6(1b) and 9(2) GDPR), as well as our compliance with legal obligations. The retention period of your data is the period required by law.

Data we collect by email

In the context of communication between us by email, we collect your name, email address and any other information you provide to us. This data is stored and used solely to respond to your request. The legal basis for the processing of your personal data is your consent (GDPR, Article 6(1a)). Your data will be deleted after our final processing of your communication. This will happen after the purpose and scope of our communication has been completed, provided that there are no legal requirements for the storage of such data.

Send newsletter

With your consent, we will collect your e-mail address in order to send you newsletters with our store news and articles you may find interesting. The legal basis for the processing is your consent (GDPR, Article 6(1a)) and you have the right to withdraw it at any time.

Pages on SocialMedia

Our Company maintains Pages on the social networking platforms “Facebook”, “Instagram” ,You can contact us through our pages in order to receive more information about our services through the option of sending a message. In order to answer your questions in this regard, we collect and process your Social Media username and other information that is publicly available through your profile. The very sending of a message for the purpose of communication between us implies your consent to the above processing of your data.

In case you choose to “connect” with our page (by clicking “add”), this implies that you give your consent to see the news and promotions that our Company carries out through its page on Social Media. If you do not wish to receive such updates, you can click on the “Unsubscribe” “Unfollow” option at any time.

We take all security measures (technical and organizational) to ensure the security of data processing through Facebook and other Social Media, such as, but not limited to, limiting the number of people who have access to the management of our Social Media account. The Company is not responsible for the way or means by which social media platforms process your data. You can find out about the processing of your data from the social networking platform Facebook , Instagram .

3. Who has access to your data. Data transfers.

Your data can be accessed by our employees and any other person authorised to process your data in the course of their duties. We may work with third parties, natural or legal persons, professionals, independent consultants, etc. which provide us with commercial, professional or technical services for the purposes set out above, and which support our Company in whole or in part, in connection with our activities. Where applicable, these natural/legal persons will act as Joint or Independent Data Controllers, Processors or persons authorised to process the personal data for the same purposes mentioned above, with the same security measures and in accordance with the applicable legal obligations.

Before the third party receives the Personal Data, it must:

A) Complete a privacy audit to assess the privacy practices and risks associated with these third parties B) Obtain assurances, by signing a contract, from these third parties that they will process Personal Data in accordance with our instructions and in accordance with this Policy and applicable law, that they will promptly notify our Company of any Privacy or Security incidents, failure to comply with the standards set forth in this Policy and existing law, and that they will promptly notify our Company of any Privacy or Security incidents.

Finally, the data may be further transmitted to public authorities and institutions, as well as to our legal representatives (legal and insurance companies) for legitimate purposes.

Apart from the above, the Data will not be disclosed to third parties, individuals or legal entities and will not be disseminated.

When transmitting your personal data, we constantly ensure the highest possible level of security. Therefore, your data will only be transmitted to service providers and partner companies that have been carefully selected and bound by contract in advance. Indicatively, such cooperating companies are the company that supports and hosts the eshop, the transport/postal company that is responsible for the delivery of the products, the payment service providers (e.g. banks, payment organizations, PayPal).

We clarify that during the payment process, we do not record or store the payment information during this transaction, e.g. credit card numbers etc. You provide this information directly to the respective payment service provider exclusively. Also, in the event that you are directed through our website to websites of third parties, whether or not they are partners of our Company, our Company has no involvement in any collection and processing of your data carried out by the administrators of the third-party websites to which you access. Therefore, you are invited to consult the respective privacy policy of the website you are visiting.

Our Company does not transfer Personal Data outside the EU, and if we need to (for example, in order to use Cloud services) this will be done on the terms and conditions set out in Articles 44 et seq. of the GDPR, such as with your consent, the application of standard contractual clauses approved by the European Commission or to countries considered safe by the European Commission

4. Minors’ data

Our website does not oblige users to register, deal with or collect personal data about children or internet users under the age of 18 without their parents’ consent.

When collecting information directly from you, we take reasonable care to determine which of the personal information collected relates to minors. In any case, if we find that we have collected any personal information from a minor under the age of 16, without verifiable parental consent in accordance with the provisions of Article 8 of the EU General Data Protection Regulation 679/2016), we will delete the information from our database as soon as possible. If you believe that we may have collected information from a minor under the age of 16, please contact us at the above e-mail address.

5. What is the legal framework of our commercial communication?

It is what is determined by the consumer protection legislation (Law 2251/1994) and the privacy legislation (GDPR 2016/679), as well as the legislation on the protection of personal data and privacy in the electronic communications sector and amendment of Law 2251/1994. 2472/1997 (Law 3471/2006), as amended.

6. How long is your data kept?

6.1. We will retain your personal data for as long as you continue to interact with us and it is necessary for the fulfilment of the processing purposes described above (for example, if you maintain an Account, if you are registered to receive commercial communications from us, if you make a purchase from our online store, if you participate in a competition, for tax purposes, etc.). The data remain in the eshop database until you request their deletion (e.g. in the case of a request to delete your account), unless their retention is required by law (e.g. for tax purposes). In any case, the data are deleted immediately after the fulfilment of the purposes for which they are kept, while some data (e.g. any order data) are kept anonymised or pseudonymised for statistical analysis purposes.

6.2. α) Your contact data as well as the data of your personal choices for commercial communication purposes with you are kept for two (5) years from your last communication with us (e.g. making a purchase, participation in a competition) or

b) until your consent is withdrawn for any of the above processing purposes, at which point the Company deletes your personal data and does not use them thereafter (with the exception of those data it is obliged to retain based on the performance of the contract and/or in fulfilment of its legal obligations, e.g. tax obligations).

7. How can you update and manage your data yourself?

7.1. By contacting us at the Company’s e-mail Support@kalos.gr

7.2. Through your e-shop Account, if you have created an Account during your registration in the e-shop.

7.2.1. You access the Account by entering your username and password, which you will create (which you must keep secret and safeguard at all times and inform the Company in case of loss or unauthorized use). The password is encrypted and cannot be recovered.

8. What are your rights and how can you exercise them?

You can exercise your rights at the Company’s contact details.

For your convenience, please find below a detailed table of your rights and an explanation of them

Α. Right of Access to Personal Data
Anyone we hold personal data can request access to it or modify/update it whenever they wish to do so. On the subject of personal data protection, anyone who wants to access their personal data will need to email us at Support@kalos.gr This means that you have the right to be informed by us if we are processing your data, to ask us to give you access to any data you do not have and to provide you with information about your personal data, such as what data we have, why we use it, who we disclose it to, whether we transfer it abroad and how we do so.

Β. Right to erasure of personal data / right to be forgotten
Anyone who holds personal data may request that it be deleted from the records we hold if it is no longer necessary for the processing purposes mentioned above, if you wish to withdraw your consent or in the case where this is the only legal basis, except in the event that a criminal offence has been committed against us or a third party and the personal data is required for criminal proceedings or in the case of a personal dispute between the company and you.

For personal data protection issues, anyone who wishes to have their personal data deleted will need to send us an e-mail at the above address.

Γ. Right to rectification of inaccurate personal data

If you find that there is an error in your Data, you can ask us to correct it (e.g. correct your name or update an address change).We may seek to verify the accuracy of the Data before correcting it.

Δ. Right to portability of your Data

Where the processing is based on your consent, or on the performance of a contract and is carried out by automated means, you can ask us to receive your personal data in a readable format or you can request that it be transferred directly to another controller. However, this right, by law, only applies to data provided by the data subject and not to data inferred by the controller on the basis of data provided by the data subject.

Ε. Right to restrict processing.

You can ask us to restrict the processing of your Data for as long as your objections to the processing are pending.

St. Right to object and withdraw consent to the processing of your Data.

You may object to the processing of your Data and we will stop the processing of your Data, unless there are other compelling and legitimate reasons that override your right, including those indicated above. If you have given your consent to the collection, processing and use of your personal data, you may withdraw your consent at any time with future effect ONLY by contacting us using the above e-mail Support@kalos.gr

Where we rely on our legitimate interest: In cases where we process your personal data based on our legitimate interest, you can ask us to stop for reasons related to your personal situation. We must then do so if we do not believe we have a legitimate compelling reason to continue to process your Personal Data.

Ζ. Answer your requests

We will respond to your Requests free of charge without delay, and in any case within (1) one (1) month of receiving your request. However, if your Request is complex or there are a large number of Requests, we will inform you within the month if we need to obtain an extension of another two (2) months within which we will respond to you.

Η. Right to restrict processing

You can ask us to restrict (i.e. retain but not use) your personal data when:

– their accuracy is disputed (see Correction) so that we can verify their accuracy, or

– the processing is unlawful but you do not want it deleted or

– is no longer necessary for the purposes for which it was collected, but we still need it for the establishment, exercise or defence of legal claims or there is another legitimate purpose of processing or other legal basis.

Θ. Right of Refusal

You may object at any time to any processing of your personal data, which has as its legal basis the legitimate interest of the Company or the performance of a task carried out in the public interest.

If you exercise the right to object, the Company has the right to prove that it has compelling and legitimate grounds for processing that override the rights and freedoms of the data subject.

Ι. Human intervention in automated individual decision-making, including profiling

You have the right to object at any time to automated individual decision-making, including profiling, to request human intervention, to express your views and to challenge the decision taken on the basis of automated processing.

IA. Right to withdraw consent:

You have the right to withdraw your consent, where the basis of processing is the receipt of consent. The removal is for the future.

9. What are the procedures for exercising your rights?

Identification We take seriously the confidentiality of all records containing personal data and we reserve the right to ask you for proof of your identity if you request to exercise your rights in relation to those records.

Costs We will not charge you any costs for exercising your rights in relation to your personal data unless, as provided by law, your request for access to information is unfounded or excessive, in which case we are entitled to charge a reasonable fee in the circumstances. In any case, we will inform you of any charges before we complete your request.

Timelines We aim to respond to any valid requests no later than one (1) month after receiving them, unless it is particularly complex or you have submitted several requests. We will let you know if we are going to need more than one (1) month for the reasons listed above. In any case, you must provide specific and true information and/or facts so that we can respond and/or accurately fulfil your request, otherwise we reserve the right to make any errors that are beyond our control. Our Merchant may also reject requests that are unfounded or excessive or abusive or in bad faith or generally unlawful, within the provisions of the law.

Complaint to Supervisory Authority: you also have the right to lodge a complaint with the Supervisory Authority about the processing of your personal data, after contacting us to find a solution to any problem you may have. In Greece, the supervisory authority for data protection is the Data Protection Authority (www.dpa.gr).

10. cookies

On our website we use cookies to make it functional or more efficient in its operation, to improve your navigation, to provide you with the full features of the website and to ensure the correct display of content.

Cookies are small files containing information in text form, which most often consists of numbers and letters. Cookies are stored on your computer when you visit a digital platform, which are then used as a means of identifying your computer. The cookies placed by the digital platform owner are called “firstpartycookies”. Cookies placed by others are called “thirdpartycookies”. Third-party cookies enable the provision of third-party features or functionality (such as analytics, ads and videos) on or through the digital platform. The places where thirdpartycookies are placed can recognize your device both when you visit our digital platform and when you visit certain other digital platforms.

Cookies are only installed if you accept their installation during your visit to our website. By accepting cookies when you enter our website, you expressly declare that you have read and understood the specific conditions and terms relating to the installation, operation and purpose of cookies and provide your consent to their use.

Alternatively, you can choose not to accept cookies. In this case, only those cookies will be installed that are technically and functionally necessary for the operation of the eshop.

You can manage the use and installation of cookies at any time, through a panel (administration panel), where you can choose which category of cookies you wish to accept and which ones you do not wish to accept (or request that cookies that are not technically necessary are not installed).

Specifically, the cookies used by the website are the following:

A. Absolutely Essential Cookies

Absolutely necessary cookies are essential for the proper functioning of the website. These cookies allow you to browse and use the site’s features, such as accessing secure areas or using the shopping cart. These cookies do not recognize your individual identity and without them, the smooth operation of the website is not possible.

– VisitorGUID. Visitor cookie. It is used to personalize the user while browsing the page.

– VisitorState. Visitorstatecookie. It is used to store user preferences such as language , country, currency etc.

– ForceClearCartLocalStorage. Used to store/delete the user’s cart and improve the user experience.

– ROUTEID.XXXX (LNB). It is used to distribute traffic from the loadballancer to improve the user experience.

– SpPlList_XXXX. It is used to record the products that are displayed to the user and whether it improves the user experience.

– __cfduid (Cloudflare CDN). Used by Cloudflare CDN to improve page speed.

– Logglytrackingsession. It is used to detect errors during the user’s browsing and report them.

– Vendd:UserAndVisitorShoppingCartJoin. It is used to restore products that the user has previously placed in the user’s cart and collect them in the user’s new cart.

– ConsentChecked. It is used to check whether the visitor has given consent for sitecookies.

– ASP.NET Session. Session cookie sent to the web browser.This cookie is deleted when you close the browser.

– CurrentWishlistModel. It is used to store the user’s favorites list in the browser and improve the user experience.

– CurrentCartModel. It is used to store the user’s cart in the browser and improve the user experience.

B. Functionality/Preference Cookies

Functionality cookies allow the website to remember your choices such as language, currency, etc., in order to provide improved and personalized features. They can also be used to provide services requested by the user, such as viewing videos or using social media. These cookies, it is not possible to track your browsing activity on other websites. In the event that you reject these cookies, the performance and functionality of our website may be affected and your access to its content may be limited. For example, each time you click on the page, you may be asked again and again for your username and password.

– PreviousCountryCode. Used to save the user’s previous choice of country selection and improve the user experience.

– LastViewedProducts. It is used to store and display the products last viewed by the user.

Γ. Statistics Cookies

These are cookies that evaluate how visitors use the website, (for example, which pages they visit most often and whether they receive error messages from websites). These cookies are used for statistical purposes and to improve the performance of a website.

– _gtm. Google tag manager cookies. It is used by Google to implement googletagmanager and googleanalytics.

– _ga. Googleanalyticscookie. It is used by Google to collect information about how users use our website and to help us improve it. It uses the information in an anonymous form, including the number of visitors to the page.

Δ. CookiesMarketing

Targeting and advertising cookies collect information about your actions on the website. The purpose is to collect information such as number of visitors, number of pages viewed, etc., in order to improve the services provided to you, depending on your preferences. Regarding advertisements, although our website does not host advertisements, when you visit a third party website or social networking site that uses advertisements, you may see advertising related to our website and some type of advertising that you had seen while browsing it.

– __atuvc. AddThiscookie. It is used to allow easy interaction with social media.

– fr. Facebookcookie. It is used by Facebook to track user activity and improve its ads.

Ε. Skroutz service usage data
In order to be able to constantly evaluate and improve the quality of the services provided to the consumer, our company uses the Skroutz Analytics service, which works with cookies. Through this service, if you have previously given your consent through Skroutz.gr, usage statistics are securely communicated by us to Skroutz. The data obtained by our company through this service is covered by the privacy policy and the cookies policy of Skroutz.gr, at the end of which you can also withdraw any consent.
In addition, we inform you that, if you have been directed to our online store through Skroutz.gr and make a purchase with us, data relating to your specific purchase are securely communicated by us to Skroutz, in the context of our commercial cooperation with Skroutz and your use of Skroutz services. Our sharing of this data is done through a cookie and is necessary for the financial settlement of this commercial partnership, which you may have used. Because of this necessity, the law allows us not to ask for your consent to share this data. More information can be found in the privacy policy and the cookies policy of Skroutz.gr

We emphasize that with Cookies there is no possibility of damage to the computers of our site visitors, nor to the files and programs they have on them. We only use the information stored by cookies for the above purposes.

Users can choose not to use Cookies from their respective browsers by selecting “chrome” from Settings- Privacy and security- Show cookies and other site data.

You can set your browser to inform you each time before a cookie is stored and decide whether you want it to be downloaded or rejected. If you choose not to receive cookies, you will not be able to take advantage and use all the features of your browser.

11.Third party websites

The Website may contain links to third party websites. These sites are not under our control and we are not responsible for the privacy practices or the content contained on any linked site. These links are provided as a convenience and the inclusion of a link on our site does not imply endorsement of that site by us.

If the user provides any personal data through any such third party website, the user’s transaction will appear on that third party website and the user’s personal data will be collected and will be subject to the privacy policy of that website. This Privacy Policy does not address the privacy policy of third parties.

12.Security

We seek to have all security measures and tools in place to help protect against the misuse and alteration of the information under our control. However, the visitor of our website should be aware that no method of data transmission on the internet and no method of electronic data storage is 100% secure precisely because of the inherent limitations of the internet. The user accepts and agrees that any information transmitted or stored through the website is at his/her own risk.

13. CONTRIBUTION

By browsing our website or registering as a member on our website or subscribing to our newsletter/newsletter list, you declare that you accept and consent to this Policy and provide us with YOUR REAL CONSENT to the collection and processing of your personal data.

14. Changes to this Policy

We reserve the right to modify this Policy, for example to comply with new requirements imposed by applicable laws, directives, or technical requirements or in the event of a revision of our procedures or practices. We will notify you of any revision to our Privacy Policy by posting it on https://kalos.gr. We also encourage you to check this page periodically.