Privacy Policy
The protection of your personal data is important to us!
For this reason, we take appropriate measures to protect the personal data we process and to ensure that the processing of personal data is always carried out in accordance with the obligations set out by the legal framework, both by our company and by third parties who process personal data on our company’s behalf.
Please take a moment to read this Privacy Policy and learn how our company under the name «PETROS SIMEONIDIS SECURITY SERVICES PRIVATE COMPANY GENERAL PARTNERSHIP» with registered office in Korydallos Attica, at 6 Delfon & Grigoriou Lampraki Street, tel. +30 210 3007750, e-mail: [info@entopizo.gr](mailto:info@entopizo.gr) (hereinafter the “Company” or “we” or “us”), acting as the Data Controller, collects, stores, uses and generally processes your personal data when you visit, register with or use the Company’s websites (hereinafter the “Websites”) and its mobile applications (hereinafter the “Apps”), as well as when you transact with its physical stores. This Privacy Policy also describes how we use, disclose and protect your personal data, the choices you have regarding your personal data, and how you can contact us.
For any questions you may have regarding this Privacy Policy, as well as any issue related to the processing of your Data and the exercise of your rights, you may contact the Company’s Data Protection Officer (DPO) at the following e-mail address: [info@entopizo.gr](mailto:info@entopizo.gr).
---
1. A few words about the Company’s Websites
The website entopizo.gr is the Company’s website, where you can find the Company’s online store for the display and sale of its products. In addition, through the website gps.entopizo.gr you can gain access to the device tracking service provided by the Company,
• job search within the Company through “Career Opportunities”
• sending informational/advertising material (newsletter)
---
2. What is personal data?
The term “personal data” refers to information about natural persons, such as name, postal address, e-mail address, contact telephone number, etc., which identifies or can identify your identity, hereinafter “Personal Data” or “Data”.
---
3. What is the Processing of Personal Data?
Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
---
4. Is the provision of your Data mandatory?
The provision of Data to the Company may be necessary in order to achieve the purposes specified in this Privacy Policy or may be optional. The mandatory or optional nature of the provision of Data is indicated by an asterisk (*) next to the mandatory personal data fields. If you refuse to provide the information marked as mandatory on the Websites, it will be impossible to achieve the primary purpose for collecting such Data and, for example, the Company may become unable to fulfill the sales contract or provide other services available through the Websites. The provision of additional Data to the Company, beyond those marked as mandatory, is optional and does not entail consequences regarding the main purposes of data collection, but its provision helps to optimize the quality of the services provided.
---
5. Which of your Data do we collect?
We make sure to collect only your Data that is strictly necessary, appropriate and relevant for the purpose for which it is intended. This Data includes in particular:
• Data when creating a user account on the Websites or Apps – Mandatory: e-mail address*, login password* – Optional: first name, last name, gender, date of birth, postal address, telephone number.
• Information from your transactions with us, either through our physical stores or through our online store – For example, we collect notes from our conversations with you, details of any complaints or comments you make, details of purchases you have made, products added to or removed from your cart, wish lists, coupon redemptions, websites you visit and how and when you contact us.
• Shopping interests and preferences, which help us suggest specific products and services that may interest you – For example, which of our products you show a preference for, in order to receive a personalized offer from us. We will request and use only the Data we have collected to suggest products or services of interest to you and to further improve your shopping experience with us. Of course, it is always your choice whether you share such information with us.
• Traffic data** of our website or other websites you visited before ours.
• Information collected through the use of cookies in your browser. Learn more about how we use cookies in the relevant link.
• Copies of documents you provide to prove your age or identity when required by law (such as a copy of an ID card or student card). For example, such copies may include details of your full name, address, date of birth and your facial image (photo). If you provide a passport, the data will also include your place of birth, gender and nationality.
• Payment information.
• Your comments and product reviews.
• Your image may be recorded on CCTV when you visit one of our physical stores.
• In order to provide the best possible website experience, we collect **technical information** regarding your internet connection and browser, as well as the country and telephone code where your computer is located, the web pages displayed during your visit, the advertisements you click on and any search terms you enter. Learn more about this.
• Your social media username, if you interact with us through those channels, to help us respond to your comments, queries or feedback.
• Educational information, such as studies, skills, knowledge of foreign languages, professional experience (only in cases where you apply for a job position).
CHILDREN
We comply with the law and do not allow children under the age of 16 to register on our Websites and Apps. We will seek parental consent for children participating in the Company’s experiences and events.
---
6. How do we use your Data?
We want to offer you the best possible experience when shopping with us. To achieve this, it is necessary to obtain a complete picture of you by combining the Data we have collected. Then we use your Data to offer you product and service offers that are likely to interest you. Data protection legislation allows us to do this within the framework of our legitimate interest and our need to understand our customers so that we can provide a high level of service.
Of course, if at any time you wish to change the way we use your Data, you may send us an e-mail at [info@entopizo.gr](mailto:info@entopizo.gr).
Remember that if you choose not to share your Data with us or to refuse certain communication rights, we may not be able to provide some services you have requested. For example, if you ask us to inform you when a product is back in stock, we cannot do so if you have withdrawn your general consent to receive updates from us.
We also inform you that your Data is processed either by specially authorized Company personnel, or through IT systems and electronic devices by the Company and, by exception, by third parties, who, having contractually committed to confidentiality and the protection of your Data, perform tasks necessary to achieve the purposes strictly associated with the use of our Websites, their services and the sale of products through them. You will find information about this below in section 9 “Who are the recipients of your Data? How is your Data disclosed?”.
Below you will find details on how and why we use your Data:
For providing access to the Websites, the Apps and the services you request
• Product orders: The Company processes your Data in order to fulfill its contractual relationship, process your order for products and/or services, provide customer support services, comply with legal obligations, and defend, raise or exercise legal claims. If we do not collect your Data during the completion of the order either from our physical stores or from our online store, we will not be able to process your order and comply with our legal obligations. Your Data may need to be transferred to third parties for the supply or delivery of the product or service you have ordered. In addition, we may retain your Data for a reasonable period of time to fulfill our contractual obligations, such as product returns, as required by applicable legislation.
• Creation of User Account: The Company processes your Data to provide you with account functions and to facilitate the conclusion of purchases of products and/or services.
• Communication: The Company uses your Data to respond to requests/questions you submit, refund requests and/or complaints. The information you share with us enables us to manage your requests and respond to you in the best possible way. We may also keep a record of your questions/requests to us so we can respond better to any future communication. We do this based on our contractual obligations to you, our legal obligations and our legitimate interests in providing you with the best possible service and being able to improve our services based on your personal experience.
• Sharing your Data with a third party service provider (such as courier delivery or a technician visiting your home): Without sharing your personal data, we would be unable to fulfill your request. Below you will find more information on how we share personal data with third parties.
• Job search: The Company processes your Data to assess your qualifications and skills for the position you have applied for or for another position within the Company, as well as for the purpose of contacting you in relation to this purpose.
For providing information about our products, services and events, and for other promotional purposes
• Sending newsletter/offers: With your consent, we will use your personal data, your preferences and your transaction details to inform you via e-mail, online, telephone and/or social media about relevant products and services, including personalized offers, discounts, etc. Of course, you may withdraw this consent at any time.
• Web push notifications: Depending on your browsing, and having previously given your consent, you may receive notifications about our offers, news, your wish list and your shopping cart. You may withdraw this consent at any time.
• Participation in competitions: The Company processes your Data when you agree to participate in competitions it organizes, to notify you if you are the winner and to deliver your prize.
For the operation, improvement and maintenance of our business activity, products and services
• Development and improvement of systems and services for the products we provide you: We do this based on our legitimate business interests.
• We want to provide you with offers and suggestions more relevant to your interests: To help us form a better and broader understanding of you as a customer, we combine your personal data collected throughout our relationship, such as your purchase history both in our physical stores and in our online store. For this purpose, we also combine Data we collect directly from you with Data we receive from third parties to whom you have given your consent to transfer such Data to us. For example, by combining this Data, this will help us tailor your experience and decide what inspiration or content to share with you. We also use anonymized data from customers’ purchase history to identify trends in different areas of the country. This may then guide which products we display in specific stores.
• To show you the most interesting content on our Websites or Apps, we will use the Data we hold about your favorite products. This is done based on your consent to receive App notifications or – for our Websites – your consent to the placement of cookies on your device. For example, we may display a list of products you have recently looked at or offer you recommendations based on your purchase history and any other Data you have shared with us.
• To send you survey and evaluation requests so that we can improve our services: These messages will not contain advertising content and do not require prior consent when sent by e-mail or text message (SMS). We have a legitimate interest in doing so, as it helps our products or services to be more relevant to you. You are of course free to refuse to receive such requests from us at any time by updating your preferences in your online account.
For the protection of our rights, assets or safety, or those of third parties
• Protecting your account from fraud and other illegal activities: This includes using your Data to maintain, update and protect your account. We also monitor browsing activity with us to quickly identify and resolve any problems and to protect the integrity of our website. All of the above form part of our legitimate interest. For example, we check your password when you log in and use automated IP address monitoring to detect possible fraudulent logins from unexpected locations.
• Operation of CCTV systems: In order to protect our customers, premises, property and partners from crime, we operate CCTV systems in our stores that record images for security. We do this based on our legitimate business interests. If we detect any criminal or alleged criminal activity through the use of CCTV, fraud monitoring and suspicious transaction monitoring, we will process this Data for the purpose of preventing or detecting illegal acts. Our goal is to protect our customers, employees and partners from criminal activities.
• Processing payments and preventing fraudulent transactions: We do this based on our legitimate business interests. This also helps protect our customers from fraud.
For our compliance with our legal obligations
• To comply with our contractual or legal obligations to share data with law enforcement authorities: For example, following a court order to share data with judicial services.
• To send you communications required by law or necessary to inform you of changes to the services we provide you: For example, updates to this privacy notice, product recall notices and legally required information relating to your orders. These service messages will not contain promotional content and do not require prior consent when sent by e-mail or text message (SMS). If we do not use your personal data for these purposes, we cannot comply with our legal obligations.
---
7. For what purpose do we process your Data?
We collect your Data for the purposes of the products and/or services provided by our Company and in particular for:
a) the management of the sale of our products and/or services, e.g. communication and informing you regarding product availability and the progress of your order, execution of your order, shipment of products, management of your debts to the Company, execution of returns and provision of guarantees.
b) compliance with obligations imposed by applicable legislation, e.g. tax legislation, e-commerce directive.
c) checking, improving and adapting to your preferences and choices regarding our products and/or services.
d) sending, by electronic or traditional means, administrative, technological, organizational and/or commercial information about our products and/or services.
e) conducting customer satisfaction surveys, promoting our products and/or services, sending newsletters about our products and/or services.
f) evaluating applications and CVs for the purpose of recruitment in our Company.
---
8. What is the lawful basis for the processing of your Data by the Company?
Data protection legislation defines various reasons why a company may collect and process your personal data, including:
• the terms of our contractual relationship;
• your consent, where required. For example, when you choose to receive newsletters. When collecting your personal data, we will always inform you which data is necessary in relation to a particular service;
• the Company’s obligations arising from the law (e.g. tax legislation, e-commerce legislation, etc.);
• the Company’s legitimate interest. In certain cases, we collect your Data in a way that you would reasonably expect as part of the operation of our business and which does not materially affect your rights, freedoms or interests. For example:
– We will use your purchase history to send or make available to you personalized offers.
– We also combine the purchase history of many customers to identify trends and ensure we can keep up with market demand or develop new products/services.
---
9. Who are the recipients of your Data – How is your Data disclosed?
Only the strictly necessary Company personnel, who are bound by confidentiality, and our partner companies or third-party service providers, which process your Data as Processors on our behalf and according to our instructions, have access to your Data.
Disclosure of Data by the Company
The Company shares your Data with:
• Companies of the Company’s group for the purposes and within the framework of the terms mentioned in section 7 of this Privacy Policy.
• Stores and/or commercial enterprises cooperating with the Company for the sale of its products/services.
• Third-party service providers who process personal data on behalf of the Company, for example (indicatively) for credit card and payment processing, transport and deliveries, hosting, management and maintenance of our data, e-mail distribution, research and analysis, management of brand and product promotional activities, Google, Facebook, as well as management of certain services and elements. When we use third-party service providers, we enter into agreements that oblige them to implement appropriate technical and organizational measures to protect your personal data.
• Other third parties, to the extent necessary for the following purposes:
(i) compliance with a government request, court order or applicable law,
(ii) prevention of illegal uses of our Websites and Apps or violations of the Terms of Use of our Websites and Apps and our policies,
(iii) protection against third-party claims, and
(iv) contribution to the prevention or investigation of fraud cases (e.g. counterfeiting).
• Other third parties where you have given your consent yourself.
Disclosure by you
• When you use certain social media features on our Websites or Apps, you may create a public profile that may include information such as username, profile picture and city. You may also share content with your friends or the general public, including information about your interaction with the Company. We encourage you to use the tools we provide to manage the sharing on the Company’s social media in order to control what information you make available through those social media features.
Below is the policy we apply to those with whom we share your Data as described above:
• We provide only the information they need to perform their specific services.
• They may use your Data only for the specific purposes we define in our contract with them.
• We work closely with them to ensure that your privacy is respected and protected at all times.
• If we stop using their services, any of your data they hold will be deleted or anonymized.
To improve your customer experience on our Websites and Apps, we use the following companies, which will process your Personal Data as part of their contracts with us:
Google, Twitter, Instagram, Facebook, YouTube, Yahoo, Bitrix24, Skroutz, BestPrice, WordPress, Epsilonet and ACS courier.
For more information about the sharing of your Data with third parties, please contact our Company’s Data Protection Officer.
---
10. How do we ensure that the Processors respect your Data?
The Processors acting on our behalf have agreed and contractually committed to the Company:
• to maintain confidentiality,
• not to send your Data to third parties without the Company’s permission,
• to take appropriate security measures,
• to comply with the legal framework for the protection of natural persons against the processing of personal data and for the free movement of such data (General Data Protection Regulation 679/2016/EU, otherwise GDPR), as applicable, to the extent and in the way it is relevant to them within the framework of our cooperation.
---
11. International Data Transfer
The personal data we collect (or process) via our Websites and Apps will be stored in Greece. However, some of the Data recipients with whom the Company shares your Personal Data may be located in countries other than the one in which your Personal Data was originally collected. The legislation in those countries may not provide the same level of data protection as the country where you initially provided your Personal Data. Nevertheless, when we transfer your Personal Data to recipients in other countries, including the USA, we are committed to protecting your Personal Data as described in this Privacy Policy and in accordance with applicable law.
We take measures to comply with applicable legal requirements regarding the transfer of personal data to recipients in countries outside the European Economic Area or Switzerland that do not ensure an adequate level of protection. We use various measures to ensure that your Personal Data transferred to these countries enjoys adequate protection in accordance with data protection rules. These include signing Standard Contractual Clauses, certifying that the recipient has adopted European Binding Corporate Rules, or complies with the EU–US and Swiss–US Privacy Shield.
---
12. For how long do we retain your Data?
We retain your Personal Data for as long as necessary to fulfill the purposes set out in this Privacy Policy (unless a longer retention period is required by applicable law). In general, this means that we will retain your personal data for as long as you have an account with our Company.
Regarding your Personal Data related to product purchases, we retain such data for a longer period in order to comply with our legal obligations (such as tax and commercial law and for warranty purposes). At the end of this retention period, your data will be completely deleted or anonymized, for example by aggregating it with other data so that it can be used in a non-identifiable way for statistical analysis and business planning.
Some examples of customer data retention periods:
• Orders: When you place an order, we will retain the personal data you gave us for five years so that we can comply with our legal and contractual obligations. For certain products, such as electrical items, we will retain the data for 10 years.
• Guarantees: If your order included a guarantee, the corresponding personal data will be retained until the end of the guarantee period.
• **Newsletter:** Your consent statement for receiving a newsletter is kept for as long as the newsletter is sent to you by the Company and in any case no longer than six months from the termination of its dispatch.
---
13. Is your Data safe?
We are committed to safeguarding your Personal Data. Recognizing the importance of the security of your Personal Data, we have taken all appropriate organizational and technical measures to protect your Data from any form of accidental or unlawful processing. We use the most modern and advanced methods to ensure the highest possible security.
The entopizo.gr website uses the TLS protocol for secure online commercial transactions. In this way, all Data you provide is encrypted, including your credit card number, name and address, so that it cannot be read or altered during transmission over the Internet.
In addition, the login credentials used to identify you as an account user consist of two elements: your Username and your Personal Secret Security Code (Password). Each time you enter your details, you are provided access to your personal account. This process is achieved securely through encryption during their transfer over the Internet and the Company’s servers.
In the same way, you are given the possibility to change your Personal Secret Security Code (Password) as often as you wish. After entering the desired password, the new password is encoded and stored in the Company’s systems. For this reason, the only person who knows your password is you, and you are solely responsible for keeping it secret from third parties.
These measures are reviewed and modified whenever deemed necessary.
---
14. What are your rights?
You have the right of access to your personal data. This means that you have the right to be informed by us whether we process your Data. If we do process your Data, you can request to be informed about the purpose of processing, the type of Data we keep, to whom we disclose it, how long we store it, whether automated decision-making takes place and about your other rights, such as rectification, erasure of data, restriction of processing and submission of a complaint to the Data Protection Authority.
You have the right to rectification of inaccurate personal data. If you find that there is an error in your Data, you can submit a request for us to correct it (e.g. correction of name or change of address).
You have the right to erasure / right to be forgotten. You may ask us to delete your Data if it is no longer necessary for the above-mentioned processing purposes or if you wish to withdraw your consent where this is the only lawful basis.
You have the right to data portability. You may ask us to receive in a readable form the Data you have provided or to request that we transfer it to another data controller.
You have the right to restriction of processing. You may ask us to restrict the processing of your Data for as long as your objections to processing are being examined.
You have the right to object and to withdraw your consent to the processing of your Data. You may object to the processing of your Data and we will stop processing your Data, unless there are other compelling and lawful reasons that override your right. If you have given your consent for the collection, processing and use of your personal data, you may withdraw your consent at any time with future effect.
Opting out of Marketing Communications.
You may choose not to receive the Company’s marketing communications by changing your options in your user account (my profile) on our Websites. You can also opt out of receiving marketing communications by changing your e-mail and SMS subscriptions by clicking the unsubscribe link or following the instructions contained in the message. Alternatively, you can contact us using the contact details in the “Questions and Comments” section below.
Where we rely on our legitimate interest.
In cases where we process your personal data on the basis of our legitimate interest, you may ask us to stop processing for reasons related to your personal situation. We must then stop unless we believe we have a compelling legal reason to continue processing your Personal Data.
---
15. How can you exercise your rights?
To exercise your rights, you may submit a relevant request to the Data Protection Officer at the Company’s postal address (Delfon 6 & Gr. Lambraki – Korydallos – PC 18121) or at its e-mail address ([info@entopizo.gr](mailto:info@entopizo.gr)) with the title “Exercise of Right” and we will make sure to examine it and respond to you as soon as possible.
By way of exception:
• If you wish to correct your Data in your user account, you may log in and make any correction/change yourself without requiring the submission of a Request.
• If you wish to withdraw your consent to receive a newsletter, you may do so by selecting the link “To unsubscribe from the newsletter mailing list click here” located at the bottom of each newsletter.
• If you wish to stop receiving web push notifications from the Company, you may disable this option from your browser settings.
Identity verification:
In order to protect the confidentiality of your information, we will ask you to verify your identity before we proceed with any request you submit based on this Privacy Policy. If you have authorized a third party to submit a request on your behalf, we will ask them to prove that they have your permission to act for this purpose.
---
16. When do we respond to your Requests?
We respond to your Requests free of charge and without delay, and in any case within one (1) month from the time we receive your request. If, however, your Request is complex or there is a large number of Requests, we will inform you within the month if we need to obtain an extension of another two (2) months within which we will respond.
If your Requests are manifestly unfounded or excessive, in particular due to their repetitive nature, the Company may impose a reasonable fee, taking into account the administrative costs of providing the information or performing the requested action, or may refuse to act on the Request.
---
17. What is the applicable law when we process your Data?
Applicable law is Greek law, as shaped in accordance with the General Data Protection Regulation 2016/679/EU, and generally the applicable national and European legal and regulatory framework for the protection of personal data. The Courts of Athens are competent for any disputes arising in relation to your Data.
---
18. Where can you lodge a complaint if we violate the applicable law on the protection of your Personal Data?
You have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA) (postal address: 1–3 Kifisias Avenue, PC 115 23, Athens, tel. +30 210 6475600, e-mail: [contact@dpa.gr](mailto:contact@dpa.gr)), if you consider that the processing of your Personal Data violates the applicable national and regulatory legal framework for the protection of personal data.
---
19. How will you be informed of any changes to this Policy?
We update this Privacy Policy whenever necessary. If there are significant changes to the Privacy Policy or the way we use your Personal Data, we will post the updated version on our website before the changes take effect and we will notify you in any appropriate way.
We encourage you to read this Policy periodically to be informed about how your Data is protected. This Privacy Policy was last amended on 26 August 2020.
---
20. Questions and Comments
We hope that this Privacy Policy has helped you understand how we handle your Personal Data and your rights to control how our Company handles it.
If you have any questions that have not been covered, or comments and concerns you may have regarding our Privacy Policy, please contact our Data Protection Officer, who will be happy to assist you:
• By e-mail at: [info@entopizo.gr](mailto:info@entopizo.gr) or [admin@entopizo.gr](mailto:admin@entopizo.gr)
• By letter to the Data Protection Officer at: Delfon 6 & Gr. Lambraki, Korydallos, Attica, Greece.
For this reason, we take appropriate measures to protect the personal data we process and to ensure that the processing of personal data is always carried out in accordance with the obligations set out by the legal framework, both by our company and by third parties who process personal data on our company’s behalf.
Please take a moment to read this Privacy Policy and learn how our company under the name «PETROS SIMEONIDIS SECURITY SERVICES PRIVATE COMPANY GENERAL PARTNERSHIP» with registered office in Korydallos Attica, at 6 Delfon & Grigoriou Lampraki Street, tel. +30 210 3007750, e-mail: [info@entopizo.gr](mailto:info@entopizo.gr) (hereinafter the “Company” or “we” or “us”), acting as the Data Controller, collects, stores, uses and generally processes your personal data when you visit, register with or use the Company’s websites (hereinafter the “Websites”) and its mobile applications (hereinafter the “Apps”), as well as when you transact with its physical stores. This Privacy Policy also describes how we use, disclose and protect your personal data, the choices you have regarding your personal data, and how you can contact us.
For any questions you may have regarding this Privacy Policy, as well as any issue related to the processing of your Data and the exercise of your rights, you may contact the Company’s Data Protection Officer (DPO) at the following e-mail address: [info@entopizo.gr](mailto:info@entopizo.gr).
---
1. A few words about the Company’s Websites
The website entopizo.gr is the Company’s website, where you can find the Company’s online store for the display and sale of its products. In addition, through the website gps.entopizo.gr you can gain access to the device tracking service provided by the Company,
• job search within the Company through “Career Opportunities”
• sending informational/advertising material (newsletter)
---
2. What is personal data?
The term “personal data” refers to information about natural persons, such as name, postal address, e-mail address, contact telephone number, etc., which identifies or can identify your identity, hereinafter “Personal Data” or “Data”.
---
3. What is the Processing of Personal Data?
Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
---
4. Is the provision of your Data mandatory?
The provision of Data to the Company may be necessary in order to achieve the purposes specified in this Privacy Policy or may be optional. The mandatory or optional nature of the provision of Data is indicated by an asterisk (*) next to the mandatory personal data fields. If you refuse to provide the information marked as mandatory on the Websites, it will be impossible to achieve the primary purpose for collecting such Data and, for example, the Company may become unable to fulfill the sales contract or provide other services available through the Websites. The provision of additional Data to the Company, beyond those marked as mandatory, is optional and does not entail consequences regarding the main purposes of data collection, but its provision helps to optimize the quality of the services provided.
---
5. Which of your Data do we collect?
We make sure to collect only your Data that is strictly necessary, appropriate and relevant for the purpose for which it is intended. This Data includes in particular:
• Data when creating a user account on the Websites or Apps – Mandatory: e-mail address*, login password* – Optional: first name, last name, gender, date of birth, postal address, telephone number.
• Information from your transactions with us, either through our physical stores or through our online store – For example, we collect notes from our conversations with you, details of any complaints or comments you make, details of purchases you have made, products added to or removed from your cart, wish lists, coupon redemptions, websites you visit and how and when you contact us.
• Shopping interests and preferences, which help us suggest specific products and services that may interest you – For example, which of our products you show a preference for, in order to receive a personalized offer from us. We will request and use only the Data we have collected to suggest products or services of interest to you and to further improve your shopping experience with us. Of course, it is always your choice whether you share such information with us.
• Traffic data** of our website or other websites you visited before ours.
• Information collected through the use of cookies in your browser. Learn more about how we use cookies in the relevant link.
• Copies of documents you provide to prove your age or identity when required by law (such as a copy of an ID card or student card). For example, such copies may include details of your full name, address, date of birth and your facial image (photo). If you provide a passport, the data will also include your place of birth, gender and nationality.
• Payment information.
• Your comments and product reviews.
• Your image may be recorded on CCTV when you visit one of our physical stores.
• In order to provide the best possible website experience, we collect **technical information** regarding your internet connection and browser, as well as the country and telephone code where your computer is located, the web pages displayed during your visit, the advertisements you click on and any search terms you enter. Learn more about this.
• Your social media username, if you interact with us through those channels, to help us respond to your comments, queries or feedback.
• Educational information, such as studies, skills, knowledge of foreign languages, professional experience (only in cases where you apply for a job position).
CHILDREN
We comply with the law and do not allow children under the age of 16 to register on our Websites and Apps. We will seek parental consent for children participating in the Company’s experiences and events.
---
6. How do we use your Data?
We want to offer you the best possible experience when shopping with us. To achieve this, it is necessary to obtain a complete picture of you by combining the Data we have collected. Then we use your Data to offer you product and service offers that are likely to interest you. Data protection legislation allows us to do this within the framework of our legitimate interest and our need to understand our customers so that we can provide a high level of service.
Of course, if at any time you wish to change the way we use your Data, you may send us an e-mail at [info@entopizo.gr](mailto:info@entopizo.gr).
Remember that if you choose not to share your Data with us or to refuse certain communication rights, we may not be able to provide some services you have requested. For example, if you ask us to inform you when a product is back in stock, we cannot do so if you have withdrawn your general consent to receive updates from us.
We also inform you that your Data is processed either by specially authorized Company personnel, or through IT systems and electronic devices by the Company and, by exception, by third parties, who, having contractually committed to confidentiality and the protection of your Data, perform tasks necessary to achieve the purposes strictly associated with the use of our Websites, their services and the sale of products through them. You will find information about this below in section 9 “Who are the recipients of your Data? How is your Data disclosed?”.
Below you will find details on how and why we use your Data:
For providing access to the Websites, the Apps and the services you request
• Product orders: The Company processes your Data in order to fulfill its contractual relationship, process your order for products and/or services, provide customer support services, comply with legal obligations, and defend, raise or exercise legal claims. If we do not collect your Data during the completion of the order either from our physical stores or from our online store, we will not be able to process your order and comply with our legal obligations. Your Data may need to be transferred to third parties for the supply or delivery of the product or service you have ordered. In addition, we may retain your Data for a reasonable period of time to fulfill our contractual obligations, such as product returns, as required by applicable legislation.
• Creation of User Account: The Company processes your Data to provide you with account functions and to facilitate the conclusion of purchases of products and/or services.
• Communication: The Company uses your Data to respond to requests/questions you submit, refund requests and/or complaints. The information you share with us enables us to manage your requests and respond to you in the best possible way. We may also keep a record of your questions/requests to us so we can respond better to any future communication. We do this based on our contractual obligations to you, our legal obligations and our legitimate interests in providing you with the best possible service and being able to improve our services based on your personal experience.
• Sharing your Data with a third party service provider (such as courier delivery or a technician visiting your home): Without sharing your personal data, we would be unable to fulfill your request. Below you will find more information on how we share personal data with third parties.
• Job search: The Company processes your Data to assess your qualifications and skills for the position you have applied for or for another position within the Company, as well as for the purpose of contacting you in relation to this purpose.
For providing information about our products, services and events, and for other promotional purposes
• Sending newsletter/offers: With your consent, we will use your personal data, your preferences and your transaction details to inform you via e-mail, online, telephone and/or social media about relevant products and services, including personalized offers, discounts, etc. Of course, you may withdraw this consent at any time.
• Web push notifications: Depending on your browsing, and having previously given your consent, you may receive notifications about our offers, news, your wish list and your shopping cart. You may withdraw this consent at any time.
• Participation in competitions: The Company processes your Data when you agree to participate in competitions it organizes, to notify you if you are the winner and to deliver your prize.
For the operation, improvement and maintenance of our business activity, products and services
• Development and improvement of systems and services for the products we provide you: We do this based on our legitimate business interests.
• We want to provide you with offers and suggestions more relevant to your interests: To help us form a better and broader understanding of you as a customer, we combine your personal data collected throughout our relationship, such as your purchase history both in our physical stores and in our online store. For this purpose, we also combine Data we collect directly from you with Data we receive from third parties to whom you have given your consent to transfer such Data to us. For example, by combining this Data, this will help us tailor your experience and decide what inspiration or content to share with you. We also use anonymized data from customers’ purchase history to identify trends in different areas of the country. This may then guide which products we display in specific stores.
• To show you the most interesting content on our Websites or Apps, we will use the Data we hold about your favorite products. This is done based on your consent to receive App notifications or – for our Websites – your consent to the placement of cookies on your device. For example, we may display a list of products you have recently looked at or offer you recommendations based on your purchase history and any other Data you have shared with us.
• To send you survey and evaluation requests so that we can improve our services: These messages will not contain advertising content and do not require prior consent when sent by e-mail or text message (SMS). We have a legitimate interest in doing so, as it helps our products or services to be more relevant to you. You are of course free to refuse to receive such requests from us at any time by updating your preferences in your online account.
For the protection of our rights, assets or safety, or those of third parties
• Protecting your account from fraud and other illegal activities: This includes using your Data to maintain, update and protect your account. We also monitor browsing activity with us to quickly identify and resolve any problems and to protect the integrity of our website. All of the above form part of our legitimate interest. For example, we check your password when you log in and use automated IP address monitoring to detect possible fraudulent logins from unexpected locations.
• Operation of CCTV systems: In order to protect our customers, premises, property and partners from crime, we operate CCTV systems in our stores that record images for security. We do this based on our legitimate business interests. If we detect any criminal or alleged criminal activity through the use of CCTV, fraud monitoring and suspicious transaction monitoring, we will process this Data for the purpose of preventing or detecting illegal acts. Our goal is to protect our customers, employees and partners from criminal activities.
• Processing payments and preventing fraudulent transactions: We do this based on our legitimate business interests. This also helps protect our customers from fraud.
For our compliance with our legal obligations
• To comply with our contractual or legal obligations to share data with law enforcement authorities: For example, following a court order to share data with judicial services.
• To send you communications required by law or necessary to inform you of changes to the services we provide you: For example, updates to this privacy notice, product recall notices and legally required information relating to your orders. These service messages will not contain promotional content and do not require prior consent when sent by e-mail or text message (SMS). If we do not use your personal data for these purposes, we cannot comply with our legal obligations.
---
7. For what purpose do we process your Data?
We collect your Data for the purposes of the products and/or services provided by our Company and in particular for:
a) the management of the sale of our products and/or services, e.g. communication and informing you regarding product availability and the progress of your order, execution of your order, shipment of products, management of your debts to the Company, execution of returns and provision of guarantees.
b) compliance with obligations imposed by applicable legislation, e.g. tax legislation, e-commerce directive.
c) checking, improving and adapting to your preferences and choices regarding our products and/or services.
d) sending, by electronic or traditional means, administrative, technological, organizational and/or commercial information about our products and/or services.
e) conducting customer satisfaction surveys, promoting our products and/or services, sending newsletters about our products and/or services.
f) evaluating applications and CVs for the purpose of recruitment in our Company.
---
8. What is the lawful basis for the processing of your Data by the Company?
Data protection legislation defines various reasons why a company may collect and process your personal data, including:
• the terms of our contractual relationship;
• your consent, where required. For example, when you choose to receive newsletters. When collecting your personal data, we will always inform you which data is necessary in relation to a particular service;
• the Company’s obligations arising from the law (e.g. tax legislation, e-commerce legislation, etc.);
• the Company’s legitimate interest. In certain cases, we collect your Data in a way that you would reasonably expect as part of the operation of our business and which does not materially affect your rights, freedoms or interests. For example:
– We will use your purchase history to send or make available to you personalized offers.
– We also combine the purchase history of many customers to identify trends and ensure we can keep up with market demand or develop new products/services.
---
9. Who are the recipients of your Data – How is your Data disclosed?
Only the strictly necessary Company personnel, who are bound by confidentiality, and our partner companies or third-party service providers, which process your Data as Processors on our behalf and according to our instructions, have access to your Data.
Disclosure of Data by the Company
The Company shares your Data with:
• Companies of the Company’s group for the purposes and within the framework of the terms mentioned in section 7 of this Privacy Policy.
• Stores and/or commercial enterprises cooperating with the Company for the sale of its products/services.
• Third-party service providers who process personal data on behalf of the Company, for example (indicatively) for credit card and payment processing, transport and deliveries, hosting, management and maintenance of our data, e-mail distribution, research and analysis, management of brand and product promotional activities, Google, Facebook, as well as management of certain services and elements. When we use third-party service providers, we enter into agreements that oblige them to implement appropriate technical and organizational measures to protect your personal data.
• Other third parties, to the extent necessary for the following purposes:
(i) compliance with a government request, court order or applicable law,
(ii) prevention of illegal uses of our Websites and Apps or violations of the Terms of Use of our Websites and Apps and our policies,
(iii) protection against third-party claims, and
(iv) contribution to the prevention or investigation of fraud cases (e.g. counterfeiting).
• Other third parties where you have given your consent yourself.
Disclosure by you
• When you use certain social media features on our Websites or Apps, you may create a public profile that may include information such as username, profile picture and city. You may also share content with your friends or the general public, including information about your interaction with the Company. We encourage you to use the tools we provide to manage the sharing on the Company’s social media in order to control what information you make available through those social media features.
Below is the policy we apply to those with whom we share your Data as described above:
• We provide only the information they need to perform their specific services.
• They may use your Data only for the specific purposes we define in our contract with them.
• We work closely with them to ensure that your privacy is respected and protected at all times.
• If we stop using their services, any of your data they hold will be deleted or anonymized.
To improve your customer experience on our Websites and Apps, we use the following companies, which will process your Personal Data as part of their contracts with us:
Google, Twitter, Instagram, Facebook, YouTube, Yahoo, Bitrix24, Skroutz, BestPrice, WordPress, Epsilonet and ACS courier.
For more information about the sharing of your Data with third parties, please contact our Company’s Data Protection Officer.
---
10. How do we ensure that the Processors respect your Data?
The Processors acting on our behalf have agreed and contractually committed to the Company:
• to maintain confidentiality,
• not to send your Data to third parties without the Company’s permission,
• to take appropriate security measures,
• to comply with the legal framework for the protection of natural persons against the processing of personal data and for the free movement of such data (General Data Protection Regulation 679/2016/EU, otherwise GDPR), as applicable, to the extent and in the way it is relevant to them within the framework of our cooperation.
---
11. International Data Transfer
The personal data we collect (or process) via our Websites and Apps will be stored in Greece. However, some of the Data recipients with whom the Company shares your Personal Data may be located in countries other than the one in which your Personal Data was originally collected. The legislation in those countries may not provide the same level of data protection as the country where you initially provided your Personal Data. Nevertheless, when we transfer your Personal Data to recipients in other countries, including the USA, we are committed to protecting your Personal Data as described in this Privacy Policy and in accordance with applicable law.
We take measures to comply with applicable legal requirements regarding the transfer of personal data to recipients in countries outside the European Economic Area or Switzerland that do not ensure an adequate level of protection. We use various measures to ensure that your Personal Data transferred to these countries enjoys adequate protection in accordance with data protection rules. These include signing Standard Contractual Clauses, certifying that the recipient has adopted European Binding Corporate Rules, or complies with the EU–US and Swiss–US Privacy Shield.
---
12. For how long do we retain your Data?
We retain your Personal Data for as long as necessary to fulfill the purposes set out in this Privacy Policy (unless a longer retention period is required by applicable law). In general, this means that we will retain your personal data for as long as you have an account with our Company.
Regarding your Personal Data related to product purchases, we retain such data for a longer period in order to comply with our legal obligations (such as tax and commercial law and for warranty purposes). At the end of this retention period, your data will be completely deleted or anonymized, for example by aggregating it with other data so that it can be used in a non-identifiable way for statistical analysis and business planning.
Some examples of customer data retention periods:
• Orders: When you place an order, we will retain the personal data you gave us for five years so that we can comply with our legal and contractual obligations. For certain products, such as electrical items, we will retain the data for 10 years.
• Guarantees: If your order included a guarantee, the corresponding personal data will be retained until the end of the guarantee period.
• **Newsletter:** Your consent statement for receiving a newsletter is kept for as long as the newsletter is sent to you by the Company and in any case no longer than six months from the termination of its dispatch.
---
13. Is your Data safe?
We are committed to safeguarding your Personal Data. Recognizing the importance of the security of your Personal Data, we have taken all appropriate organizational and technical measures to protect your Data from any form of accidental or unlawful processing. We use the most modern and advanced methods to ensure the highest possible security.
The entopizo.gr website uses the TLS protocol for secure online commercial transactions. In this way, all Data you provide is encrypted, including your credit card number, name and address, so that it cannot be read or altered during transmission over the Internet.
In addition, the login credentials used to identify you as an account user consist of two elements: your Username and your Personal Secret Security Code (Password). Each time you enter your details, you are provided access to your personal account. This process is achieved securely through encryption during their transfer over the Internet and the Company’s servers.
In the same way, you are given the possibility to change your Personal Secret Security Code (Password) as often as you wish. After entering the desired password, the new password is encoded and stored in the Company’s systems. For this reason, the only person who knows your password is you, and you are solely responsible for keeping it secret from third parties.
These measures are reviewed and modified whenever deemed necessary.
---
14. What are your rights?
You have the right of access to your personal data. This means that you have the right to be informed by us whether we process your Data. If we do process your Data, you can request to be informed about the purpose of processing, the type of Data we keep, to whom we disclose it, how long we store it, whether automated decision-making takes place and about your other rights, such as rectification, erasure of data, restriction of processing and submission of a complaint to the Data Protection Authority.
You have the right to rectification of inaccurate personal data. If you find that there is an error in your Data, you can submit a request for us to correct it (e.g. correction of name or change of address).
You have the right to erasure / right to be forgotten. You may ask us to delete your Data if it is no longer necessary for the above-mentioned processing purposes or if you wish to withdraw your consent where this is the only lawful basis.
You have the right to data portability. You may ask us to receive in a readable form the Data you have provided or to request that we transfer it to another data controller.
You have the right to restriction of processing. You may ask us to restrict the processing of your Data for as long as your objections to processing are being examined.
You have the right to object and to withdraw your consent to the processing of your Data. You may object to the processing of your Data and we will stop processing your Data, unless there are other compelling and lawful reasons that override your right. If you have given your consent for the collection, processing and use of your personal data, you may withdraw your consent at any time with future effect.
Opting out of Marketing Communications.
You may choose not to receive the Company’s marketing communications by changing your options in your user account (my profile) on our Websites. You can also opt out of receiving marketing communications by changing your e-mail and SMS subscriptions by clicking the unsubscribe link or following the instructions contained in the message. Alternatively, you can contact us using the contact details in the “Questions and Comments” section below.
Where we rely on our legitimate interest.
In cases where we process your personal data on the basis of our legitimate interest, you may ask us to stop processing for reasons related to your personal situation. We must then stop unless we believe we have a compelling legal reason to continue processing your Personal Data.
---
15. How can you exercise your rights?
To exercise your rights, you may submit a relevant request to the Data Protection Officer at the Company’s postal address (Delfon 6 & Gr. Lambraki – Korydallos – PC 18121) or at its e-mail address ([info@entopizo.gr](mailto:info@entopizo.gr)) with the title “Exercise of Right” and we will make sure to examine it and respond to you as soon as possible.
By way of exception:
• If you wish to correct your Data in your user account, you may log in and make any correction/change yourself without requiring the submission of a Request.
• If you wish to withdraw your consent to receive a newsletter, you may do so by selecting the link “To unsubscribe from the newsletter mailing list click here” located at the bottom of each newsletter.
• If you wish to stop receiving web push notifications from the Company, you may disable this option from your browser settings.
Identity verification:
In order to protect the confidentiality of your information, we will ask you to verify your identity before we proceed with any request you submit based on this Privacy Policy. If you have authorized a third party to submit a request on your behalf, we will ask them to prove that they have your permission to act for this purpose.
---
16. When do we respond to your Requests?
We respond to your Requests free of charge and without delay, and in any case within one (1) month from the time we receive your request. If, however, your Request is complex or there is a large number of Requests, we will inform you within the month if we need to obtain an extension of another two (2) months within which we will respond.
If your Requests are manifestly unfounded or excessive, in particular due to their repetitive nature, the Company may impose a reasonable fee, taking into account the administrative costs of providing the information or performing the requested action, or may refuse to act on the Request.
---
17. What is the applicable law when we process your Data?
Applicable law is Greek law, as shaped in accordance with the General Data Protection Regulation 2016/679/EU, and generally the applicable national and European legal and regulatory framework for the protection of personal data. The Courts of Athens are competent for any disputes arising in relation to your Data.
---
18. Where can you lodge a complaint if we violate the applicable law on the protection of your Personal Data?
You have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA) (postal address: 1–3 Kifisias Avenue, PC 115 23, Athens, tel. +30 210 6475600, e-mail: [contact@dpa.gr](mailto:contact@dpa.gr)), if you consider that the processing of your Personal Data violates the applicable national and regulatory legal framework for the protection of personal data.
---
19. How will you be informed of any changes to this Policy?
We update this Privacy Policy whenever necessary. If there are significant changes to the Privacy Policy or the way we use your Personal Data, we will post the updated version on our website before the changes take effect and we will notify you in any appropriate way.
We encourage you to read this Policy periodically to be informed about how your Data is protected. This Privacy Policy was last amended on 26 August 2020.
---
20. Questions and Comments
We hope that this Privacy Policy has helped you understand how we handle your Personal Data and your rights to control how our Company handles it.
If you have any questions that have not been covered, or comments and concerns you may have regarding our Privacy Policy, please contact our Data Protection Officer, who will be happy to assist you:
• By e-mail at: [info@entopizo.gr](mailto:info@entopizo.gr) or [admin@entopizo.gr](mailto:admin@entopizo.gr)
• By letter to the Data Protection Officer at: Delfon 6 & Gr. Lambraki, Korydallos, Attica, Greece.