Privacy Policy

Website Personal Data Protection Policy

In force as of 25-05-2018

Thank you for visiting the Website of ANDREANOUDIS ATHANASIOS S.A. (hereinafter “the company”).

Before using our website, please read carefully this Personal Data (PD) Protection Policy.

Introduction

The company, in its capacity as Controller, informs you of the way data concerning you is collected and processed.

Personal data(PD) is any information referring to natural persons, the identity of whom is known or can be detected.

Protecting your personal data is very important for the Company, which takes measures to ensure it when you visit its Website.

This Personal Data Protection Policy lists the type of information we may collect when you visit our Website and informs you of how we use such information. When you voluntarily provide personal information, such as your name, address or email address, we treat such information with absolute confidentiality. Without prejudice to the special provisions of this Personal Data Protection Policy, no personal information shall be subject to lease, sale, public posting or notification to other companies, organisations or websites.

As stated in the Terms of Use of the website and the Cookies Policy, the services provided via the website are addressed to the general public, are not targeted to children and do not - knowingly - collect personal information from children under the age of 16.

The Personal Data Protection Policy is applied for all website users. This Policy is applied in the collection and use of your personal data by the company (e.g. information identifying a specific person, such as full name or email address).

The kind of information we collect from you

When you visit the Company we may collect some of your data. Some of this data may be of personal nature. This data may include the search history, the IP address, the screen resolution, the browser you used, the operating system and settings, the hours of access and your reference URL. If you use a mobile device, we may also collect data identifying the device, the settings and your location.

The Company reserves the right to collect non personal identification data of users (browser type, p.c. type, operating system, internet provider etc.] and/or monitor IP addresses using appropriate technologies (cookies). Cookies are small text files stored on each user’s hard disc and do not receive information from any document or file on their computer. They are used to facilitate user access during the use of specific services or/and pages of the Website, as well as for statistics. For more information on the cookies used by the Website, please visit the Cookies Policy page.

If you want to contact us via the contact form, we will necessarily collect your full name, email address and telephone numbers.

If you wish to register for the Company’s newsletter, we will collect your email address and full name.

If you choose to send us a message via our facebook page, we will collect your name in order to respond to your request.

How your personal data is collected

We collect your personal data directly from you. You provide us your personal data when you complete the registration/contact forms available in our website (contact form/newsletter registration form, message via our Facebook page).

Use - disclosure of personal data

We use your personal data to respond to your requests, in order to better serve you and allow the dispatch of products.

For example: Continuous information via the newsletter, communication for matters concerning offers and new products.}.

Your personal data collected via the website are disclosed/transferred to third parties (Courier Delivery Service company) for the dispatch of the ordered products to the address you have specified.

Storage - protection of personal data

The data centre where your personal data is stored is located in the USA, at the company HOSTGATOR. The database backup (MySQL) is also located in the USA.

Personal data storage period

The storage period of your personal data is specified as follows:

1.    When you fill in your personal data in the contact form said data is kept for up to 3 years after our last transaction.

2.    When you register for our newsletter, your personal data is kept for 3 years. However, you can always notify us at any time that you do not wish to receive the newsletter, by sending us a relevant email at e-sales@rockclub.gr  hence all your data will be deleted or you can delete all your information by clicking here.

Upon expiry of the period set out by the relevant statutory-tax requirement (if applicable), your personal data will be deleted

Your rights regarding personal data processing

You have the right to acquire information regarding your personal data that we have stored at any time, in accordance with the legislation in force and free of any charge.

You may request to automatically see all the data we have stored for you, by clicking here.  We may request a proof of your identity prior to providing said data. In some cases, we may not be able to allow access to specific personal data. For instance, if your personal data is related to personal data of other individuals or if it is stored for legal reasons. In these cases, we will explain you why you cannot access said data.

You have the right to request the correction - update of your data and the company will proceed to its direct correction. 

You have the right to request the deletion of your data and the company will proceed to its direct deletion. However, in some cases where the applicable statutory and tax obligations require the mandatory storage of data, the deletion of data may be prohibited. In these cases, we will explain you why and for how long we cannot delete your personal data.

You have the right to request the company to stop processing your data and the company will proceed to the direct stop of processing thereof. If this is not possible, we will explain you why we cannot stop processing your PD.

You have the right to request the company to restrict the processing of your data and the {company/entity} will proceed to the direct restriction of the processing thereof. If this is not possible, we will explain you why we cannot restrict the processing of your PD.

You have the right to request the transfer of your data to another entity/organisation and the company will proceed to the direct transfer thereof.  However, in some cases, due to documented obligations of the Company, your request may not be accepted.

In case it is proven that there has been a leakage of your personal data from the Company resulting in your direct or consequential loss, you have the right to file a complaint at the competent supervising authority (Hellenic Data Protection Authority).

In case you exercise one of your above rights, our company will take any necessary measure to address your demand within thirty (30) calendar days from the receipt thereof, notifying you in writing that your request has been met or of the reasons that prevent the exercise of your right or/and meeting one or more of your above rights in accordance with the General Data Protection Regulation (EU 679/2016).

For the exercise of your above rights or any questions regarding the personal data protection policy or any help regarding the exercise of rights or understanding privacy options, please contact the confidentiality team at the email e-sales@rockclub.gr , or visit the link GDPR, or send us a letter at:

ANDREANOUDIS ATHANASIOS S.A.

EPIROU LAND PARCEL NO. 115 P.C. 570 09     

KALOCHORI THESSALONIKI - GREECE

http://www.rockclub.gr/eshop

Changes to the personal data protection policy

The company may amend this Personal Data Protection Policy. Please check the Effective Date in the beginning of this Policy to see the latest review of this Policy. Every review shall take effect as soon as the revised Policy is posted.

If we make any substantial changes to this Policy, extending our rights to use personal data which we have already collected from you, we will notify you and give you the option to specify the future use of said data.

GDPR section