EU GDPR Policy
EU GDPR
For the online store timecentershop.gr
1. Data Controller
The data controller of the personal data collected through the online store timecentershop.gr is the sole proprietorship “GEORGIOS KOUGIOUMTZOPOULOS OF POLYKARPOS”, headquartered at 16 Voulis Street, Athens, Postal Code 10563, Greece, telephone: +30 2103234246, email: [email protected].
The processing of personal data is carried out in accordance with Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR) and the applicable Greek legislation in force from time to time.
2. Collection of Personal Data
The personal data processed by the online store timecentershop.gr are those provided by the user during registration or upon completion of an order, as well as data collected automatically during browsing on the website through cookies and other technologies.
More specifically, the online store collects the following personal data:
• identification details (full name)
• contact details (email address, telephone number)
• shipping and billing details (address)
• transaction details
• website usage data (e.g. IP address, cookies, browsing data, browser type).
3. Purposes of Processing
Personal data are processed for the following purposes:
• the execution and completion of orders
• communication with the user/customer
• issuance of tax documents and invoices
• compliance with the legal obligations of the business
• sending updates and commercial communications, only following the user’s prior consent
• improvement of services and user experience.
In the event that personal data of third parties are provided, the user must ensure that such persons have been informed regarding the processing of their data.
4. Lawful Grounds for Processing
The processing of personal data is carried out in accordance with the provisions of Regulation (EU) 2016/679 and is based on the following legal grounds:
• the performance of a contract, for the completion of orders and the provision of the online store’s services
• compliance with the legal obligations of the business (e.g. tax legislation)
• the legitimate interest of the business for purposes such as transaction security and the proper operation of the website
• the user’s consent, where required, particularly for the sending of informational and promotional communications.
5. Disclosure of Data to Third Parties
For the performance of the contract and the operation of the online store, personal data may be disclosed to cooperating third parties, such as:
• courier companies, for the delivery of orders
• banks and payment service providers, for the completion of transactions
• accountants and tax consultants, for compliance with the business’s tax obligations
• hosting and technical support providers of the website.
Such disclosure takes place only to the extent necessary for the above purposes, and the third parties are bound to process the data in accordance with the provisions of Regulation (EU) 2016/679 (GDPR), as well as with appropriate contractual safeguards regarding confidentiality and security.
6. Data Retention Period
Personal data are retained for as long as necessary for the performance of the contract and compliance with the legal obligations of the business.
In particular, data relating to transactions are retained for a period of at least five (5) years, in accordance with tax legislation, and may be retained for a longer period where required for the establishment, exercise, or defense of legal claims.
7. Rights of Data Subjects
In accordance with Regulation (EU) 2016/679, the user has the following rights:
• the right of access to their personal data
• the right to rectify inaccurate or incomplete data
• the right to erasure of their data
• the right to restriction of processing
• the right to object to processing
• the right to data portability, namely to receive their personal data in a structured, commonly used, and machine-readable format
• the right to withdraw consent at any time, with effect for future processing activities.
To exercise the above rights, the user may submit a relevant request to the following email address: [email protected].
For the protection of personal data, the online store may request additional information to verify the identity of the applicant before satisfying the request.
The user also has the right to lodge a complaint with the competent supervisory authority, namely the Hellenic Data Protection Authority (www.dpa.gr).
8. Data Security
The online store implements appropriate technical and organizational measures to protect personal data against unauthorized access, loss, destruction, or alteration. Such measures include, indicatively, the use of security technologies, controlled access to data, and the implementation of protection procedures, considering the nature, scope, and risks involved, in accordance with the requirements of Regulation (EU) 2016/679 (GDPR).
9. Cookies
The website uses cookies and similar technologies to ensure its proper operation, improve user experience, and analyze website traffic, in accordance with applicable European and national legislation.
Cookies are small text files stored in the user’s browser while browsing the website.
The website uses the following categories of cookies:
• Necessary cookies, which are essential for the operation of the online store.
• Statistical cookies, which are used for traffic analysis and service improvement (e.g. through tools such as Google Analytics).
• Marketing cookies, which are used to display personalized advertising content, provided that the relevant consent has been granted.
The installation of non-essential cookies takes place only following the user’s prior consent through the relevant cookie acceptance mechanism (cookie banner).
The user may withdraw or modify their consent at any time through the browser settings or the cookie management tool provided on the website.
10. Amendments to the Policy
The online store reserves the right to amend this Privacy Policy. Any amendments are published on the website and become effective upon publication. Users are required to review this Policy regularly for any changes. Continued use of the website constitutes acceptance of all terms.
11. Contact – Data Protection Authority
For any issue concerning the processing of personal data, the user may contact the online store at the following email address: [email protected].
If the user believes that their rights are being violated, they have the right to lodge a complaint with the competent supervisory authority, namely the Hellenic Data Protection Authority (www.dpa.gr).