General
Respect for your privacy and the management, protection and security of your personal data is a priority for NIMA KILKIS (www.nimakilkis.com).NIMA KILKIS (www.nimakilkis.com) has established this Data Protection Policy in order to inform you who visit this website https://nimakilkis.com/ of NIMA KILKIS, regarding the type and purpose of the collection and general processing of your data, the recipients of such data, your rights and how to contact us for any issue you may have in relation to your personal data.
This Data Protection Policy includes:
1. Information about the Data Controller of your personal data.
2. The type of data we collect about you.
3. The purpose of the collection and processing of your personal data and the lawful basis for the processing.
4. The security measures we take to protect your personal data.
5. The period for which your personal data is kept.
6. Information about your rights and how to exercise them.
Data Controller NIMA KILKIS, PAPAKYRIAZI 33, 61 100 KILKIS - GREECE. E-mail: [email protected]
Personal data we collect
"Personal Data" is any information that can be used to identify an individual.NIMA KILKIS (www.nimakilkis.com) collects such information when you use, or interact with, our website. Specifically: the NIMA KILKIS (www.nimakilkis.com) collects, stores and processes the following categories of personal data:
If you are a visitor/user of our online store and our official social media accounts: Through the contact form in our online store, in order to serve any requests and clarifying questions, you will be asked to enter your name and your e-mail address. In addition, when you browse our online store, you may be asked to submit personal information in order to take advantage of certain services/benefits. For example, when you provide your consent for promotional communication (newsletter) and news about us, your e-mail address will be requested. In this case, after being informed about the purpose of the processing and before collecting your data, your explicit consent will be requested.
Also, when you communicate with us on our company's social media (Facebook, Instagram, etc.), you provide us with your personal identification and contact data, which we process on a case-by-case basis solely for the purpose of serving your request.
In addition, when you create a personal account in our online store, it is necessary to enter your full name and email address and a password. Through your personal account you can create your wish list for your favourite products.
If you are a customer or prospective customer:
When submitting your online order, you must provide us with your full name, the shipping address of the products, your email address, contact phone number and payment details. In addition, we may need your VAT and tax number to complete the purchase. At the time of purchase, the date of purchase, as well as the method of payment and shipping will be stored.
NIMA KILKIS (www.nimakilkis.com) collects the above data when you provide them through the conclusion of a contract for the sale of our products and when you use our e-shop to make your purchases.
Specifically, regarding the security of payments: the online store NIMA KILKIS (www.nimakilkis.com) accepts credit/debit cards Mastercard, American Express, Diners, Visa & Maestro, of any bank through Security Certificate & SSL Technology (Security Certificate & SSL Technology), the confirmation of which is carried out through the 3D Secure Network system of VISA and MASTERCARD.
All card payments are processed through the e-banking service in Piraeus Bank's online environment, which fully supports the 3D Secure security protocol that secures online card payments and uses TLS (Transport Layer Security) encryption. Your personal information is transferred encrypted at 256bit with the SSL (Secure Sockets Layer) protocol. Encryption is a way of encoding information until it reaches the intended recipient, who can decode it using the appropriate key.
The online store NIMA KILKIS (www.nimakilkis.com) does not collect or store in any way your credit card details, and for this reason you need to re-enter them every time you use your credit card for transactions through this site.
In case you become our customer, NIMA KILKIS (www.nimakilkis.com) informs you that it wishes to process the data of its customers provided to us in the context of a purchase or other transaction with us for the purpose of direct commercial communication for related products or purposes. In particular, we will process your email and mobile phone number for the purpose of sending email, SMS, viber or other multimedia about our products, , provided that you do not object to the sending of such commercial communication.
In those cases where we have collected your email and/or your mobile phone in the context of your purchase, in the context of our legitimate interest to promote and advertise our products, we can use this data to optimize your browsing experience and to display ads relevant to your preferences on social networking sites.
In case you are our customer and you have accepted the Cookies that record what you have seen in our store or what you have forgotten in your cart, we may send you an email to remind you what you have seen and what you have left in your cart. In these cases you can request to opt-out by clicking the unsubscribe button in the email or in any case by contacting us.
Data collection by automated means
Further, during your interaction with us through this Website, certain data is automatically collected from your device or web browser ("cookies").Through the use of cookies and other similar technologies, we collect data about the devices through which you visit our Site, such as your Internet Protocol (IP) address, browser type and version, operating system and platform, and other technology on the devices used to access our Site.
Legal bases for processing your personal data
The processing of your Personal Data is based on five legal bases:
The performance of a contract to which the consumer or supplier is a party.
Compliance with a legal obligation, where we are required to process your personal data in order to comply with a legal obligation or to provide information to a public body or law enforcement authority.
The legitimate interest, in the performance of our legitimate activity, in order to ensure its continuation, unless this is overridden by the interest or fundamental rights and freedoms of the data subject which require the protection of personal data.
Your consent: in order for your data to be processed, your explicit consent will be requested by the Data Controller. Your personal data will only be processed if you agree to this. You may withdraw your consent at any time, without retroactive effect, by contacting us at διεύθυνση:[email protected]
Why do we use your Personal Data?
We use your data:
- To communicate with you on matters relating to the sale of our products to you.
- To receive your orders, process them, and ship the products to you.
- For the management, processing and handling of your payments including the security of our financial transaction and invoice issuance.
- To handle any complaints you may have.
- For your convenience as a Member by opening an Account with us.
- To create, maintain and preserve a database of our clientele and analyse it.
- To send you commercial communication via Newsletter, SMS, or other multimedia (VIBER) regarding news of our Company, products, offers and promotions.
- To analyse your behaviour and understand your preferences.
- To understand and analyse the results of our advertising and promotions.
- For the processing of your requests such as withdrawal, product replacement, etc.
- To satisfy your rights regarding your personal data.
- For the security of transactions.
- For business analysis and improvements, such as for the marketing and optimization of our products, to optimize your experience and your service from us within our Online Store, and to customize your experience in our Online Store.
- For market research, statistical analysis, to develop marketing strategies and manage marketing campaigns and to inform you or our partners of potential opportunities to participate in its marketing or product promotion initiatives.
- To detect, prevent and respond to fraud or other illegal activities.
- To protect the rights, assets of our own or third parties.
Other purposes: we may use your data in other ways. In this case, we will provide specific notices to inform you when we collect the data, and we will obtain your consent prior to processing where required. In order to achieve these purposes, we will only collect and generally process data that is compatible with the purpose of the processing.
To whom do we transfer your personal data?
The personal data that we collect may, from time to time, be transmitted to third parties to whom NIMA KILKIS (www.nimakilkis.com) entrusts the processing of personal data on its behalf or with whom it cooperates. In particular:
Data may be transferred to providers of information technology products and/or services and/or support for all kinds of information and electronic systems and networks, direct mail/mail companies, law firms, administrative support service providers.
In special cases, the personal data of data subjects may also be transferred to third parties:
To competent supervisory or judicial authorities, if required by the applicable legal framework or a court order.
We do not disclose your personal data to third parties outside the European Union in countries where there is no appropriate data protection regime. However, should such a data transfer need to take place, we will take every possible measure to ensure that your data is treated securely, for example by using Standard Contractual Clauses (SCCs) established by the Commission.
Storage Period and Personal Data Security
The data storage period varies from case to case:
We retain your personal data for the period of time required by law during which the competent public authorities have the right to check NIMA KILKIS (www.nimakilkis.com).
When processing is imposed as an obligation by provisions of the applicable legal framework, as well as for the establishment, exercise, and/or support of legal claims of NIMA KILKIS (www.nimakilkis.com), your personal data will be stored for as long as the relevant provisions require.
When your consent is required for specific processing [e.g. when you wish to receive our newsletters], your personal data is stored until it is withdrawn. With regard to the sending of newsletters, we will store your data until you exercise your right to object (opt-out).
The processing of personal data shall be carried out in a manner that ensures its confidentiality. We apply appropriate technical and organisational measures to ensure an appropriate level of security of your data against the risks of accidental or unlawful destruction, accidental loss, alteration, unauthorised disclosure or access and any other form of unlawful processing.
The data you provide to us is protected by appropriate information security techniques to ensure both its secure transfer over the internet and its secure storage in Information Systems. We require all third parties who may receive your personal data to have appropriate technical and operational security measures in place to protect your personal data in accordance with Greek and EU data protection legislation. In any case, the way the internet works and the fact that it is free to anyone does not allow to provide guarantees that unauthorized third parties will never be able to breach the technical and organizational measures in place, gaining access and possibly making use of personal data for unauthorized and/or improper purposes.
Your rights
Your rights under Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation) are as follows:
Right of access to data: the right of the data subject to obtain confirmation from the controller of the processing of personal data and access to a range of information.
Right to rectification: the right of the data subject to require the controller to correct inaccurate data and to complete incomplete data.
Right to restrict processing: the right of the data subject to require the controller to restrict processing under certain conditions.
Right to object to processing: the data subject's right to object to the processing of your data under certain conditions, in particular when it comes to "profiling" or direct marketing purposes.
Right to erasure (right to be forgotten): the right of the data subject, when he or she no longer wishes his or her personal data to be processed and kept, to request their erasure, provided that the data are not kept for a specific legitimate and stated purpose.
Right to data portability: the right of the data subject to receive or request the transfer of his or her data, in a non-discernible form, from one controller to another under certain conditions. However, there are exceptions to the rights of erasure and data portability, in accordance with Articles 17(1)(b) and (c) of the Directive. 3 and 20(3) and 20(2). 3 of the Regulation and the provisions of Articles 31 to 35 of Law 4624/2019.
Right to complain to the Data Protection Authority (www.dpa.gr): Furthermore, we inform you that you have the right to appeal to the Personal Data Protection Authority for issues concerning the processing of your personal data. For the competence of the Authority and how to lodge a complaint, you can visit its website (www.dpa.gr ? My rights ? Filing a complaint), where detailed information is available. Postal address: 1-3 Kifissia Avenue, P.C. 115 23, Athens, Greece, telephone: +30 210 6475600, e-mail: [email protected].
For any additional information, as well as for the exercise of the above rights, please contact the Data Protection Officer or the Data Controller at the above contact details. As a general rule, your request will be granted, within one month of receipt. The information, any communication and all actions taken pursuant to Articles 15 to 22 and 34 GDPR are provided free of charge.
Information concerning minors
Our website and services are not intended for use by minors under the age of 13. We do not collect Personal Data from minors under the age of 15 without consent from a parent or guardian. If you are a parent or guardian of a child under the age of 13 and are concerned that your child may have provided us with Personal Data, please contact us at the contact information above.
Special Categories of Data
We ask you not to disclose to us through the application or via e-mail your banking data, as well as your sensitive personal data. The processing of this category of personal data does not in any way serve the purposes of processing as defined above. Third party content on the website and hyperlinks NIMA KILKIS (www.nimakilkis.com) is not responsible for the content and services of other third parties to which it refers through their links, hyperlinks or banners (including, without limitation, social networking sites such as e.g. Facebook, YouTube, Pinterest, Google+). The administrator does not guarantee nor can it control the availability, content and privacy policy of the linked website. Therefore, for any problem encountered when visiting/using them, you should contact the respective websites that are solely responsible for the provision of their services. Access using the links provided to the website in question is the sole responsibility of the user.
This privacy statement does not apply to the user's access to other applications/websites/platforms/software and services. Please refer to the privacy policies of these applications/ websites/platforms/software and services for more information on how they handle your data.
Update of this policy
This policy was last updated on 17/07/2023
We may revise this data protection policy periodically if we deem it necessary to comply with changes in legislation or for any other reason. The revised data protection policy will take effect from the date of its publication/posting on the website.