Privacy and cookie policy.

Scope of this policy

This privacy policy (the “Policy” or the “Privacy Policy”) describes how Graphics Garage S.A.  collects, uses, storages or otherwise processes an individual’s Personal Data. For the purposes of this policy, “Graphics Garage S.A” refers to a company incorporated under Greek law, having its registered seat and its offices at 6A Stimfalias str, 17456, Athens, telephone number +30 215 215 6818 email address: hello@graphicsgarage.gr. In all cases described in this Policy, Graphics Garage S.A. will process your personal data as a data Controller.

We are committed to protecting the privacy of our users and clients. This Privacy Policy is especially directed at:

  • visitors of the website
  • natural persons contacting us through the contact email address available on the website

This Privacy Policy is intended to inform you how we gather, define, and use information that could identify you, such as your name, email address, address, other contact details, online identifiers or other information that you provide to us when using our websites or when relying on our services. Please take a moment to read this Privacy Policy carefully.

This policy is to be read as consistent with the Cookie Policy.
This policy includes a description of your data protection rights, including a right to object to some of the processing activities we carry out.

Contacting us

For questions specifically about this Privacy Policy or use of your personal information please contact us by mail at : hello@graphicsgarage.gr
Please note that if you contact us to assist you, for your safety and ours we may need to authenticate your identity before fulfilling your request.

Definitions

For the purpose of this policy, “controller”, “processor”, “third party”, “recipient”, “supervisory authority”, “personal data”, “processing”, “data subject” and “personal data breach” shall have the meanings set out in the applicable Data Protection Legislation.

Personal Data
Any information relating to an identified or identifiable natural person (‘data subject’).

Processing
Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Controller
The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.

Consent
Any freely given, specific, informed and unambiguous indication of the data subject’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.

Recipient
A natural or legal person, public authority, agency or another body, to which the personal data are disclosed, whether a third party or not.

Third party
A natural or legal person, public authority, agency or body other than the data subject, controller, processor and persons who, under the direct authority of the controller or processor, are authorised to process personal data.

Personal Data Breach
A breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, Personal Data transmitted, stored or otherwise processed.

Supervisory authority
An independent public authority which is established by a Member State.

Collection of Information

The purpose of the Website is to promote the services provided and to create a contact point with our clients and with our future clients.

As part of our effort to fulfil the above objectives, we receive and store information about you such as:

a) Personal Information

Visitors of the website are required to provide their email address and other personal information (e.g. first and last name, etc.), in order to contact with our Company. Moreover, we may collect your Internet Protocol (IP) address to secure our Websites operation.

b) Non-personal information

We automatically track and collect certain non-personal information (e.g. Website navigation data, timestamps and URLs). We use this information to do internal research on our users’ demographics, interest, and behaviour to better understand, protect and serve you.

Use of Information

We use your information to provide, analyse, administer and enhance our services as well as to communicate with you on these and other topics. For example:

1. We use your Information in order to contact with you and respond to your requests.

2. We use Website navigation data to operate and improve the Website.

3. We collect the IP Addresses to track when you use our Website. We use IP Addresses to monitor the regions from which you navigate our Website and sign-up to use our Services.

Our legal basis for collecting and using your personal information described in this Privacy Policy will depend on the personal information concerned and the specific context in which we collect and use it. We will normally collect personal information from you where we need the personal information to perform a contract with you (for example to provide our services to you), where the processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms, or where we have your consent to do so (for example, for sending you newsletter).

For questions about our use of your personal information (including legal basis and transfer mechanisms we rely on) please contact by mail at :

Storage of Information

We save your Information in our database in order to improve our Website’s and user experience. If you wish your personal information to be permanently deleted, please notify us at .

Protection of Information

Appropriate technical and organisational measures are implemented in order to ensure an appropriate level of security of your Personal Data, including but not limited to encryption techniques, physical and IT system access controls, obligations of confidentiality, etc.

In the event personal information is compromised as a result of a Personal Data Breach and where such breach is likely to result in a high risk to the rights and freedoms, we will make the necessary notifications, as required under the Data Protection Legislation.

Information and Rights

Once you have provided your Personal Data, the Data Protection Legislation grants you several rights, which you can in principle exercise free of charge, subject to statutory exceptions. These rights may be limited, for example if fulfilling your request would reveal Personal Data about another person, or if you ask us to delete information which we are required by law to keep or have compelling legitimate interests in keeping. To exercise any of your rights, you can file a request here [insert contact details for data subjects, e.g. a link to a dedicated webpage for data subject requests].

Should you have unresolved concerns, you have the right to lodge a complaint with a Supervisory Authority where you live or where you believe a breach may have occurred. We encourage you to come to us in the first instance but, to the extent that this right applies to you, you are entitled to complain directly to the relevant Supervisory Authority.

1. Right to withdraw consent

Wherever we rely on your consent, you will be able to withdraw that consent at any time you choose and at your own initiative by logging into your account on our website (if you have one) or by contacting us here [insert contact details for data subjects, e.g. a link to a dedicated webpage for data subject requests]. The withdrawal of your consent will not affect the lawfulness of the collection and processing of your data based on your consent up until the moment where you withdraw your consent.

2. Right to access and rectify your data

You have the right to access, review, and rectify your Personal Data. You may be entitled to ask us for a copy of your information, to review or correct it if you wish to rectify any information like your name, email address and any other preferences, you can easily do so by contacting us here [insert contact details for data subjects, e.g. a link to a dedicated webpage for data subject requests]. You may also request a copy of the Personal Data processed as described in this Privacy Policy.

3. Right to erasure

In accordance with the Data Protection Legislation, you have the right to erasure of your Personal Data processed by us as described in this Privacy Policy in case it is no longer needed for the purposes for which the Personal Data was initially collected or processed or in the event you have withdrawn your consent or objected to processing as described in this Privacy Policy and no other legal ground for processing applies. Should you wish to have your Personal Data erased, please file a request here [insert contact details for data subjects, e.g. a link to a dedicated webpage for data subject requests].

4. Right to restriction of processing

Under certain circumstances described in the Data Protection Legislation, you may ask us to restrict the processing of your Personal Data. This is for example the case when you contest the accuracy of your Personal Data. In such event, we will restrict the processing until we can verify the accuracy of your data.

5. Right to object to processing

Under certain circumstances described in the Data Protection Legislation, you may object to the processing of your Personal Data, including where your Personal Data is processed for direct marketing purposes.

6. Right to data portability

Where you have provided your data directly to us and where the processing is carried out by automated means and based on your consent or the performance of a contract between you and us, you have the right to receive the Personal Data processed about you in a structured, commonly used and machine-readable format, and to transmit this data to another service provider.

Children

We do not knowingly collect or solicit Personal Data from anyone under the age of 16.

In the event we learn that we have collected Personal Data from a child under the age of 16 without verification of parental consent, steps will be taken promptly to remove that information. If you believe that we have or may have information from or about a child under 16 years of age, please contact us at [email address].

Recipients of Personal Information

In general, we do not share or disclose information with Third Parties.

Your Personal Data will be shared with government authorities and/or law enforcement officials if required for the purposes above, if mandated by law or if required for the legal protection of the Controller(s) legitimate interests in compliance with applicable laws

Changes to this Privacy Policy

We reserve the right to modify and update this Privacy Policy from time to time. We will bring these changes to your attention should they be indicative of a fundamental change to the processing or be relevant to the nature of the processing or be relevant to you and impact your data protection rights.

Data Retention

We retain your Personal Data for as long as is required to fulfil the activities set out in this Privacy Policy, for as long as otherwise communicated to you or for as long as is permitted by applicable law.

Applicable Law

The validity and interpretation of this Privacy Policy shall be governed by  the Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of Personal Data and on the free movement of such data (the “GDPR”), as well as any legislation and/or regulation implementing or created pursuant to the GDPR and the e-Privacy legislation, or which amends, replaces, re-enacts or consolidates any of them, and all other national applicable laws relating to the processing of Personal Data and privacy that may exist under applicable law.

© 2019 | Graphics Garage S.A. | Privacy & Cookie Policy.