PRIVACY POLICY
Privacy policy
This Privacy Policy describes how your Personal Data is collected, used, stored and shared when you visit or make a purchase from shop.studioavra.gr (the “Site”). Your Personal Data (see below) is protected by the new General Data Protection Regulation (EU 2016/679) and the current Greek Legislation (Law 4624/2019) The present Privacy Policy is in full compliance with the relevant regulations, as mentioned before, while it is assured that the absolutely necessary Personal Data that is being legally collected from you, can be used for the further purposes.
Personal Data we collect
When you visit the Site, we automatically collect certain information about your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device. Additionally, as you browse the Site, we collect information about the individual web pages or products that you view, what websites or search terms referred you to the Site, and information about how you interact with the Site (for example GPS location etc) . We refer to this automatically-collected information as “- Device Information”.
We collect Device Information using the following technologies:
- “Cookies” are data files that are placed on your device or computer and often include an anonymous unique identifier. For more information about cookies, and how to disable cookies, visit http://www.allaboutcookies.org.
- “Log files” track actions occurring on the Site, and collect data including your IP address, browser type, Internet service provider, referring/exit pages, and date/time stamps.
- “Web beacons”, “tags”, and “pixels” are electronic files used to record information about how you browse the Site.
- [[INSERT DESCRIPTIONS OF OTHER TYPES OF TRACKING TECHNOLOGIES USED]]
Additionally when you make a purchase or attempt to make a purchase through the Site, we collect certain information from you, including your name, billing address, shipping address, payment information (including credit card numbers [[INSERT ANY OTHER PAYMENT TYPES ACCEPTED]]), email address, phone number, VAT number, siziongs, shopping history, search criteria, We refer to this information as “Order Information”.
Order Information may be collected whenever you register or subscribe for one of our services, interact with us in any other way, sign up for special offers or other updates, participate in research panels or fill in surveys. We declare that our Site respects the Data Minimization Principal and thus the minimum data required is collected, in order to provide the current services.
[[INSERT ANY OTHER INFORMATION YOU COLLECT:]
When we talk about “Personal Data” in this Privacy Policy, we are talking both about Device Information and Order Information.
When / How do we use your Personal Data?
Your order information is being collected when any of our services is used, when you log in or log out, when you place an order, chang your account details, set up or delete the account, join a survey, subscribe etc.
We use order information that we collect generally to fulfill any orders placed through the Site (including processing your payment information, arranging for shipping, and providing you with invoices and/or order confirmations). Additionally, we use this Order Information to:
- Communicate with you
-Screen our orders for potential risk or fraud; and
- When in line with the preferences you have shared with us, provide you with information or advertising relating to our products or services.
- To proceed on changing your account details, modifying or delete it.
We use the Device Information that we collect to help us screen for potential risk and fraud (in particular, your IP address), and more generally to improve and optimize our Site (for example, by generating analytics about how our customers browse and interact with the Site, and to assess the success of our marketing and advertising campaigns).
We keep the Personal Data you provide and may use it for several further purposes, including: (i) accounting, billing, reporting and audit; (ii) credit checking or screening; (iii) authentication and identity checks; (iv) credit, debit or other payment card verification and screening; (v) debt collection; (vi) safety, security, administrative and legal purposes; (vii) developing, testing and maintaining systems; (viii) upon your explicit consent for customer care and to help us in any future dealings with you, for example by identifying your requirements and preferences; (ix) where required by law or in connection with legal proceeding or disputes; and (x) any other uses set out in the terms and conditions for use of our services. For these purposes we may disclose your Personal Data to one or more of the other organizations listed in the section called “who we will share your personal information with”.
Customization of our online services and advert targeting: We may use the Personal Data we collect when you use our services to build up a picture of your interests. We may then use this Data to try to make sure that when we send you marketing communications and when you visit our websites or use our online services, you don’t miss offers and information that might interest you. This Personal Data may also be used by our third-party advertising agencies and networks, to advertise our own products and services. This is called advert targeting or interest-based advertising. For more information on how to reject targeted advertising or interest-based advertising cookies please read our cookie policy.
Mobile services: When you request our mobile services, we may keep your mobile phone number, the make and model of your phone, the operating system used by your phone and details of your network operator, and we will link a unique identifier to your mobile phone number. We’ll store your device language, app language, country. We need this information in order to provide the features and services enabled through our mobile services and to administer our mobile service.
Customer surveys:
We mainly use your personal data upon your explicit consent, to send you newsletters and information about events and / or other services in which we believe you may be interested in, as well as for statistical, survey and research reasons.
More precisely, we use the information we collect in the following ways:
Sharing you personal Information
We share your Personal Information with third parties to help us use your Personal Information, as described above. For example, we use Shopify to power our online store--you can read more about how Shopify uses your Personal Information here: https://www.shopify.com/legal/privacy. We also use Google Analytics to help us understand how our customers use the Site -- you can read more about how Google uses your Personal Information here: https://www.google.com/intl/en/policies/privacy/. You can also opt-out of Google Analytics here: https://tools.google.com/dlpage/gaoptout.
Finally, we may also share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.
Your Personal Data may be also be shared with providers of customer support and IT plus accounting services
Behavioural advertising
As described above, we use your Personal Information to provide you with targeted advertisements or marketing communications we believe may be of interest to you. For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page at http://www.networkadvertising.org/understanding-online-advertising/how-does-it-work.
You can opt out of targeted advertising by using the links below:
- Facebook: https://www.facebook.com/settings/?tab=ads
- Google: https://www.google.com/settings/ads/anonymous
- Bing: https://advertise.bingads.microsoft.com/en-us/resources/policies/personalized-ads
- [[INCLUDE OPT-OUT LINKS FROM WHICHEVER SERVICES BEING USED]]
Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal at: http://optout.aboutads.info/.
Do not track
Please note that we do not alter our Site’s data collection and use practices when we see a Do Not Track signal from your browser.
Your rights
If you are a European resident, you have the right to access personal information we hold about you and to ask that your personal information be corrected, updated, modified, limited, or deleted. If you would like to exercise this right, please contact us through the contact information below or contact our data protection officer
Additionally, if you are a European resident we note that we are processing your information in order to fulfill contracts we might have with you (for example if you make an order through the Site), or otherwise to pursue our legitimate business interests listed above. Additionally, please note that your information will be transferred outside of Europe, including to Canada and the United States.
Data retention
When you place an order through the Site, we will maintain your Order Information for our records unless and until you ask us to delete this information.
Generally, the Personal Data we collect directly from you, including but not limited, about how you use the services provided, and about how you connect to these services is stored at servers destination inside the European Economic Area (“EEA”). We may designate third-party service providers for the processing of data (Data Processors) as well as for the management and operation of certain functions of the website. We guarantee that we take all the appropriate organizational and technical measures to protect your data, even keeping an electronic record of all categories of processing activities.
All information you provide to us is stored on a third party’s secure servers providing data hosting services to us under our control or on our computers. Where we have given you (or where you have chosen) a password which enables you to access certain parts of the services provided, you are solely responsible for keeping this password confidential. If the password has been stolen or might otherwise be subject to misuse, it is your responsibility to notify us immediately for further action.
When we use your information as described in this policy, this means that your personal information may be transferred to, processed and stored at, a destination outside the European Economic Area (“EEA”). When we do this, we make sure that appropriate steps are taken to protect your personal information and your rights, and we will need your explicit consent to do so.
Your personal data will be retained until is it deleted and for a maximum period of 5 years. However, upon a written request made by you to our Personal Data Officer, we may delete any of the personal data collected. But please note: (1) there might be some latency in deleting this information from our servers and back-up storage; and (2) we may retain this information if necessary to comply with our legal obligations, resolve disputes, or enforce our agreements. Keep in mind that we follow a data minimization principal and thus we request, process and store the minimum possible personal data so to provide our services uninterruptedly
SAFEGUARDING YOUR PERSONAL DATA
We will take reasonable care to maintain appropriate safeguards to ensure the security, integrity and privacy of the information you have provided to us. We have put in place technology and security policies which are designed to protect the personal information we hold about you. We also follow the security procedures that applicable privacy laws require. These covers storing, processing, using and releasing any information you have provided as well as measures designed to prevent unauthorized access or use. When you place an order or access your account information, we use a Secure Socket Layer (SSL) encryption which encrypts your information before it is sent to us to protect it from unauthorized use.
Keep in mind that where we have given you (or where you have chosen) a password which enables you to access certain parts of the services provided, you are solely responsible for keeping this password confidential. If the password has been stolen or might otherwise be subject to misuse, it is your responsibility to notify us immediately for further action.
Changes
We may update this privacy policy from time to time in order to reflect, for example, changes to our practices or for other operational, legal or regulatory reasons.
[[INSERT IF AGE RESTRICTION IS REQUIRED]]
Minors
The Site is not intended for individuals under the age of 18. In order to use our Site, you must provide explicit consent that you are over 18 years old. In case you are minor, you must immediately either refrain from using the current Site or provide your parent’s or guardian’s consent to the Privacy Policy. .
Contact us
For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact our Data Protection Officer by e-mail at nataliamaragkou@gmail.com or contact us (check this better) by mail using the details provided below:
Studio Avra [Re: Privacy Compliance Officer]
Iofontos 14 (Hilton Area), 11634 Athens, Greece Furthermore, we hereby inform you about your right to file a claim at the Hellenic Dat Protection Authority which is the competent authority, located on Kifissias Avenue, number 1 – 3, Zip Code. 115 23, Athens (tel. +30 210 64 75 628 – email: complaints @dpa.gr).