Protecting and securing your personal data is important to us!
Please take some time to read this Privacy Policy and learn how the sole proprietorship under the trade name “Dimosthenis Papantonakis Nikolaos” with the distinctive title “El Bano.”, headquartered at Ethn. Venizelou 259 Souda p.c 73200 Chania, VAT number 120225902, Tax Office of Chania, email address info@el-bano.com, customer service hotline +30 2921 0 89630 (hereinafter referred to as the “Company”) collects, stores, uses, and processes your personal data when you visit, register, or use the Company’s websites (hereinafter the “Websites”) and its mobile applications (hereinafter the “Apps”), as well as when you transact with its physical stores.
The Company takes all appropriate organizational and technical measures designed to protect information from loss, misuse, unauthorized access, disclosure, alteration, or destruction, and ensures the fair and lawful collection and processing of personal data, as well as their secure retention. In this effort, we are in a constant process of updating and educating ourselves to fully comply with the current national, European, and international legal framework, especially the General Data Protection Regulation 679/2016 of the European Union and Law 4624/2019.
Purpose of this policy
Through this, we aim to inform you about how your personal data is collected, stored, used, and transmitted, the security measures we take to protect your personal data, the reasons and the time period for which they are stored, as well as the type of personal data collected. It encompasses any action or series of actions carried out with or without automated means, on personal data or sets of personal data, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.
This Policy is updated periodically and may be amended whenever deemed necessary, without prior notice, always within the applicable legal framework and in accordance with any changes in the current legislation on personal data protection. Therefore, we recommend checking this Policy regularly to stay informed about any changes that may have been made.
Personal data refers to any information about a specific individual, the identity of which can be verified (e.g., name, ID number, postal address, email address, contact phone number, etc.). Data concerning health (physical or mental condition, receipt of medical services, etc.) is included in the general term personal data, but constitutes a special category of data. The Company will not process your personal data without your consent. However, the Company reserves the right, in exceptional cases, to process your personal data to the extent permitted or required by law, and/or by court decisions or prosecutorial orders/mandates.
How are your personal data collected?
Your personal data is collected in the following ways:
A. You provide it to us when you fill out electronic forms or send an email to us (“e-mail”), in order to be informed about the products or to use the services available on our Company’s website www.el-bano.com. The submission of your basic information is at your choice, and their processing is done with your consent for the sole purpose of informing you about the products, services, and activities of our Company.
B. Automatically through the web browser or mobile device you use to access our website www.el-bano.com.
C. You provide it to us in order to execute the contract between us (e.g., to deliver the products you have ordered).
D. You provide it to us for the Company’s compliance with legal requirements (e.g., invoicing, accounting transactions).
In cases where your consent is required for the collection of your personal data, such as for receiving regular newsletters, it will be explicitly requested from you, and you have the right to withdraw it at any time.
Is the provision of your data mandatory?
The provision of data to the Company may be necessary to achieve the purposes specified in this Privacy Policy or it may be optional. The mandatory or optional nature of data provision is indicated with an asterisk (*) next to the personal data of mandatory nature.
If you refuse to provide the information marked as mandatory on the Websites, it will be impossible to achieve the primary purpose of collecting these specific data, and, for example, it may become impossible for the Company to fulfill the sales contract or provide other services available on the Websites.
What kind of personal data is collected?
We ensure that we only collect the absolutely necessary data, which is appropriate and clear for the intended purpose. The personal data collected and subject to further processing are as follows:
Data collected during the creation of a User Account on the Websites: Email address, login password, first name, last name, gender, date of birth, postal address, phone number.
Information from your transactions with us, either through our physical stores or through our online store. This includes your full name, address, and general contact information (including email address and phone number).
Details from your transactions with us, either through our physical stores or through our online store. For example, we collect notes from our conversations with you, details about any complaints or comments you make, details about the purchases you make, products added to or removed from your cart, wishlist, coupon redemptions, websites you visit and how and when you contact us.
In addition to the above data provided by you, technical information may be collected. This may include technical details of your device’s Internet Protocol address (e.g., computer, laptop, tablet, smartphone). Additionally, information about the visitation of our website or other websites you visited prior to us may be collected. These technical details are used for the smooth operation and performance of the website and are not permanently stored on our infrastructure. More details about the technologies used on our website are provided in the Cookie Policy.
Other data that we collect or may collect include: payment information, your comments and reviews on our products, technical information about your internet connection and browser program, as well as the country code and telephone number of your computer’s location, the websites that appear during your visit, the advertisements you click on, your social media username, if you interact with us through these channels, educational information such as studies, skills, knowledge of foreign languages, professional experience (only in cases where you apply for a job position).
The provision of additional data to the Company, beyond what is indicated as mandatory, is optional and does not have any consequences regarding the main purposes of data collection. However, providing them can enhance the quality of the services provided.
Children
The company recognizes the importance of protecting the personal data of children, especially in an online environment. The company’s policy is never to collect or retain, knowingly, data related to any person under the age of 15, without the registered consent of their legal representatives. We do not allow children under 15 to register on our websites and apps, participate in experiences, or attend events organized by the company without the prior consent of their parents or legal guardians.
Principles Governing Data Processing by the Company
The Company processes your personal data in a fair and lawful manner for clearly defined purposes outlined in this Policy. The personal data processed by the Company is limited to what is strictly necessary to achieve these purposes, is accurate and up-to-date, kept for a period determined by the purposes of the processing, protected by adequate security measures, and not transferred to countries that do not ensure an adequate level of protection.
How Do We Use Your Data?
In order to provide you with the best possible service during your purchases from our online store, it is necessary to collect certain personal data from you. For this purpose, we collect your data and provide you with our services, always in accordance with the requirements of the current legislation for the protection of your personal data. If you choose not to share your data with us or to deny certain communication rights, we may not be able to provide some of the services you have requested.
Finally, we inform you that the processing of your data is carried out either by the specially authorized personnel of the Company, or through information technology systems and electronic devices by the Company and, exceptionally, by third parties who, having contractually committed to confidentiality and the protection of your Data, carry out tasks that are necessary to achieve the purposes strictly related to the use of our Websites, our services, and the sale of products through our Websites.
We process your data, indicatively, for the following purposes:
1.To fulfill our contractual relationship with you, process product and/or service orders, provide customer service, comply with legal obligations, and assert, exercise, or defend legal claims.
2.To provide you with account features and facilitate the purchase of products and/or services.
3.To respond to requests/questions you submit, process refund requests, and handle your complaints in the best possible way. We may also keep a record of your requests/inquiries to better respond to any future communication. We do this based on our contractual obligations to you, our legal obligations, as well as our legitimate interests in providing you with the best possible service and improving our services based on your personal experience.
4.We share your data with third parties to fulfill the necessary services for the completion of our sales contract, such as courier delivery or a technician visiting your home.
5.We process your data to assess your qualifications and skills for the position you applied for or for another position within the Company, as well as for communication purposes related to this.
6.To develop and improve systems and services for the products we provide.
7.To offer you promotions and suggestions that are more relevant to your interests. To display the most interesting content on our Websites or in our Apps, we will use the data we hold for your favorite products.
8.To send you research and evaluation requests in order to improve our services.
9.To maintain, update, and protect your account from fraud and other illegal activities.
10.To process payments and prevent fraudulent transactions.
11.To comply with our contractual or legal obligations and exchange data with law enforcement. For example, following a court order to exchange data with judicial authorities.
12.To send you communications required by law or necessary to inform you about changes in the services we provide. For example, privacy notifications, product recall notices, and legally required information regarding your orders.
13.To send administrative, technological, organizational, and/or commercial information about products or services of our Company, using electronic or traditional means.
Who collects personal data and for what purpose? Are they shared with third parties?
The collection, processing, and retention of your contact information are carried out solely for the exclusive purpose of informing you about the products, services, and actions of our Company. All your data is kept only for this purpose and is processed only by the Sales and Marketing departments of our Company.
It is possible that personal data may be transferred to partners or third parties for further processing for the purpose of providing services, evaluating and improving the functionality of the website, marketing purposes, data management, and technical support. These third parties have contractually committed to us that they will use the personal data only for the above purposes and will not disclose the personal information to third parties, nor will they communicate it to third parties unless required by law.
Additionally, the Company may transfer certain personal data beyond geographical borders to other member companies of the Company or external companies cooperating with our Company or on its behalf. By providing the Data via the Internet, visitors consent to this transfer and/or storage of the Data abroad.
The Company is committed not to sell your personal data by making them available for sale/rent, transferring them, disclosing them, or sharing them with third parties, or using them in any other way and for any other purpose that may jeopardize privacy.
“How long are my personal data retained?
We retain your Personal Data for as long as necessary to fulfill the purposes defined in this Privacy Policy (unless a longer retention period is required by applicable law). Generally, this means that we will retain your personal data for as long as you have an account with our Company. Regarding your Personal Data related to product purchases, we retain this data for a longer period in order to comply with our legal obligations (such as tax and commercial law, and for warranty purposes). At the end of this retention period, your data will be either completely deleted or anonymized, for example, by aggregating it with other data, so that it can be used in a non-identifiable way for statistical analysis and business planning.
For example:
When you place an order, we will retain the personal data you provided us for five years, in order to comply with our legal and contractual obligations.
If your order included a warranty, the relevant personal data will be retained until the end of the warranty period.
Your consent statement for receiving newsletters is kept for as long as you are sent newsletters by the Company, and in any case, not more than six months after the cessation of sending.
For the purpose of processing related to the exploration of a job position in our company (CV form), we consider a retention period of twelve (12) months for your relevant data reasonable and necessary. After twelve (12) months from the receipt of your CV, the respective folder containing all your information will be deleted.”
“Your Data Security
We are committed to safeguarding your Personal Data. Recognizing the importance of the security of your Personal Data, we have taken all appropriate organizational and technical measures to secure and protect your Data from any form of accidental or unlawful processing.
Cases of automatic collection of personal data
In some cases, the Company and its service providers use technologies to automatically collect certain categories of Data when the User visits the online store, as well as through the electronic messages exchanged with the Company. The collection of this data allows the Company to personalize the customer’s online experience, improve the performance, usability, and effectiveness of the Company’s online presence, and evaluate the effectiveness of marketing activities. Such technologies include:
A. IP Addresses: An IP address is a number assigned to the electronic computer each time it accesses the internet. It allows electronic computers and network servers to be identified and communicate with each other. The IP addresses from which visitors appear to originate may be recorded for information technology security and system diagnostics purposes. This data may also be used in aggregate form to conduct trend and performance analysis of the website.
B. Cookies: The term “cookies” refers to small text files that are stored either on the computer or on any electronic device that we use. The purpose of cookies is to inform the website that the user has previously engaged in certain activities.
This Cookie Policy explains what cookies are and how we use them. You should read this policy to understand what cookies are, how we use them, the types of cookies we use, i.e., the information we collect using cookies, and how that information is used, and how to control cookie preferences. For more information on how we use, store, and keep your personal data secure, refer to our Privacy Policy. You can change or withdraw your consent to the Cookie Declaration on our website at any time. Learn more about who we are, how you can contact us, and how we process personal data in our Privacy Policy.”
Your consent applies to the following domain: www.el-bano.com
WHAT ARE COOKIES?
Cookies are small text files used to store small pieces of information. Cookies are stored on your device when the website is loaded in your browser. These cookies help us make the website function properly, make it more secure, provide a better user experience, and understand how the website performs and where it needs improvement.
HOW WE USE COOKIES?
As is common practice with almost all professional websites, our website uses cookies, which are tiny files that are downloaded to your computer, to improve your experience. This page describes what information they gather, how we use it, and why we sometimes need to store these cookies. We will also share how you can prevent these cookies from being stored; however, this may downgrade or ‘break’ certain elements of the sites functionality.
TYPES OF COOKIES WE USE:
Essential: Some cookies are essential for you to be able to experience the full functionality of our site. They allow us to maintain user sessions and prevent any security threats. They do not collect or store any personal information. For example, these cookies allow you to log in to your account and add products to your basket and checkout securely.
Analytics: These cookies store information like the number of visitors to the website, the number of unique visitors, which pages of the website have been visited, the source of the visit, etc. These data help us understand and analyze how well the website performs and where it needs improvement.
How can I check my cookie preferences?
Your current status: Consent not given. Consent Management.
Browsers provide different methods for blocking and deleting cookies used by websites. You can change your browser settings to block/delete cookies. To learn more about managing and deleting cookies, visit the addresses wikipedia.org, www.allaboutcookies.org.
G. Google Analytics: The Company uses Google Analytics. In order to provide website visitors with more options for how their data is collected by Google Analytics, Google has developed the Google Analytics Opt-out Browser Add-on. The add-on communicates with Google Analytics JavaScript (ga.js) to indicate that information about the visit to the website should not be sent to Google Analytics. The Google Analytics Opt-out Browser Add-on does not prevent the sending of information to the website itself or to other web analytics services. More information about using Google Analytics can be found here: http://www.google.com/analytics/learn/privacy.html
D. Web beacons: Web beacons are a small image file on a website that can be used to collect certain data from the User’s computer, such as IP addresses, the time the content of the website was viewed, the type of browser, and the presence of cookies previously placed by the same network server (server). The Company uses web beacons only in accordance with applicable law provisions. The company or its service providers may use web beacons to track the effectiveness of third-party websites that provide us with advertising services or to collect aggregate visitor statistics and manage cookies. The User has the option to make some web beacons inactive by rejecting the related cookies. The web beacon may still record an anonymous visit from your IP address, but information from cookies will not be recorded.
E. Location-based tools
This location data is collected in order to provide customers with information about services that the company believes may be of interest to them based on their location, as well as to improve the products and services provided by the company based on location.
F. Social Network Applications and Widgets: The Company’s website may include functionality for users to share via social networking applications, such as the Facebook like button and the Twitter widget. These social networking applications may collect and use information about the use by website customers. Any Data provided through such social networking applications may be collected and used by other members of that social networking application and these exchanges are governed by the privacy policies of the Companies that provide the application. The Company has no control or responsibility for these companies or the use of User Data by them.
“Furthermore, the Company’s website may host blogs, forums, crowd-sourcing, and other applications or services (collectively referred to as ‘social media features’). The purpose of the social media features is to facilitate the exchange of information and content. Any personal information you provide to any social media feature of the company may be disclosed to other users of that particular social media feature (unless otherwise specified at the collection point), over whom we may have limited or no control.
What are my rights regarding the processing of my personal data?
You have the right at any time to ask us what your personal data is, which we process, for what purposes, whether we give it to third parties and to whom, as well as other relevant information. Also, you have the right to receive a free copy of your personal data upon request. Other rights you have under the relevant legislation include the right to request the updating and/or correction of your data, the cessation and/or restriction of their processing, and their deletion from the Company’s systems, unless there is another legal obligation to retain them. You also have the right to data portability, the right to object to the processing of your personal data, the right to withdraw your consent to the processing of your personal data, and the right to be forgotten.
You can exercise all of the above rights by submitting a written request to the address Ethn. Venizelou 259 Souda p.c 73200 Chania. For any matter related to your personal data and/or for clarifications, you can contact the Company’s Administration either by phone at 2921 089 630 or by email at info@el-bano.com with the subject ‘Exercise of Rights,’ and we will make sure to examine it and respond to you as soon as possible. Every request you submit must be accompanied by the appropriate proof of identification and the required information (e.g., the data that needs correction), as described in the terms of use of the respective service.
To protect the confidentiality of your information, we will ask you to verify your identity before proceeding with any request based on this Privacy Policy. If you have authorized a third party to submit a request on your behalf, we will ask them to prove that they have your permission to act for this purpose.
Applicable law:
The applicable law is Greek law, as shaped according to the General Data Protection Regulation 2016/679/EU, Law 4624/2019, and in general the current national, European, and international legal and regulatory framework for the protection of personal data.
Competent courts for any emerging disputes related to your Data are the Courts of Thessaloniki.
Right to appeal to the Data Protection Authority:
In case the Company delays beyond the justified period to respond to your request, and in any case where you believe that your rights are violated or the Company is not compliant with the obligations to safeguard your data, you have the right to file a complaint with the supervisory authority (Data Protection Authority, Athens Kifisias 1-3, 115 23 Athens, contact@dpa.gr, +30-210 6475600).
Questions and comments:
If you have any questions that have not been covered, or comments and concerns you may have about our Privacy Policy, please contact us at info@el-bano.com or by phone at 2921 089 630.”
Please note that this is a translation, and for any legal matters, it’s always advisable to consult with a qualified legal professional.