Our Company respects your privacy and aims to process your personal data with confidentiality and security. To achieve this goal in all interactions with our visitors and customers, we take all appropriate measures to ensure the compliance of this online store with the provisions of national and European legislation on personal data protection, including Regulation 2016/679 of the European Parliament and of the Council for the protection of natural persons concerning the processing of personal data (“General Data Protection Regulation” – hereinafter “Regulation”), as well as Greek Law No. 4624/2019.
This Website Personal Data Protection Policy aims to provide information about how we process personal data collected during a user’s visit to our online store or when purchasing a product from it through this website, including any data that the user may provide through the available contact form or as a result of the interaction of our website with others.
This Website Personal Data Protection Policy should be considered together with any other relevant notice of personal data protection or notice of fair processing that we may provide for specific cases in which we collect or process user or visitor personal data.
Please read this policy carefully, always in conjunction with the Cookie Policy posted on our website, so that you understand whether and why our website collects your personal data, how it processes them, and for how long they are retained in our systems.
Our company, N. Psathas & Co. LLC, operates in the field of online sales of cosmetics and pharmaceutical products, offering this online store (hereinafter also referred to as the “e-shop”), with the aim of providing high-quality and renowned products, as well as personalised customer service to its clients and visitors. In this context, our company is fully committed to the protection of the personal data of the visitors and customers of its e-shop.
We aim to be transparent in advance regarding the data we collect, how we use it, the recipients of this data, and the rights of users as data subjects, as provided by the applicable legislation on personal data protection. For these purposes, we inform you that we act as the Data Controller for your personal data concerning the actions you take through the website, whether as a visitor browsing the e-shop website or as a customer placing the desired order.
Some of the terms used in this Privacy Policy have legal significance and are defined by the applicable regulatory framework. More specifically:
“Processing” means any operation or series of operations performed with or without the use of automated means on personal data. It includes, but is not limited to, the collection, recording, organisation, storage, and general management of personal data.
“Personal data” means any information relating to an identified or identifiable natural person. An identifiable natural person is one whose identity can be verified, directly or indirectly, especially by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.
“Consent” means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of personal data.
“Data Controller” means the natural or legal person, public authority, agency, or other body that determines the purposes and means of the processing of personal data.
For more definitions, you can refer to Article 4 of the Regulation by clicking here.
The processing of your personal data by our Company is governed by the following principles, as further specified by the Regulation:
Our Company takes appropriate measures to apply the above principles at all stages of interaction with you through this e-shop.
Every user of our website is considered a data subject, whether they are simply visiting the e-shop, submitting their details through our contact form, creating an account on our website to place an order, or signing up for our newsletter to receive information and updates about our Company’s activities and products.
The personal data we collect and process are always related to the execution of our obligations towards you and are necessary for providing the desired information through our website.
When you browse our e-shop, we automatically collect information about how you use our services, such as the types of pages you view or visit, or the frequency and duration of your activities. Additionally, servers, log files, and other technologies automatically collect certain information to assist us in managing, protecting, and improving our services. We share personal information with third parties only as described in this policy or as required by applicable law.
Upon creating an account on our website, we collect your name, surname, product delivery address, telephone number, email address, and user password. Any of these data marked as optional are provided by you at your discretion to help us offer you better services. If you wish to log in to our website using Facebook or Instagram, you authorise our website to collect additional information about you through these platforms. When completing your order, we ask for additional information necessary for its execution, such as billing address (if different from the product delivery address), company name, and VAT number if you require an invoice. Payment-related information, such as your credit card number, is requested by the cooperating banks to process payment at the order completion stage but is never stored in our systems. All of the above information is necessary for us to communicate with you and successfully process your desired order.
To contact our Company through the contact form available on the website, we ask for your name, surname, telephone number, and email address so that we can get in touch with you and respond to any inquiries.
In case you wish to subscribe to our newsletter, we collect only your email address with your consent.
By browsing our website, filling out the Contact Form, and creating an account, you declare that you accept the terms of this Policy regarding the collection and processing of your personal data.
When placing an order, it is necessary for you to understand that the collection of the above-mentioned contact information is essential for the proper progress of your order and the correct execution of the contract between us.
As the data controller, our Company, with your registration on the recipient list of its informative newsletter, via entering your email address in the designated field and ticking the checkbox provided before entering your email address, obtains your consent to send you informative and/or advertising materials (newsletter) about its offers and new services.
Your email will be used exclusively by our Company and will not be disclosed to third parties, even if the newsletter pertains to products and/or services of third-party companies or partners with which it maintains commercial cooperation.
Your consent statement will be kept for as long as you receive the newsletter from the Company and no longer than six months after the cessation of its transmission. You can revoke your consent at any time by following the link at the bottom of each newsletter or by contacting the relevant department of our Company.
We use cookies and other technologies to collect information about your activity, browser, and device. This data helps us create a profile for each user. Some of this data will be aggregated or statistical, meaning we won’t be able to identify it individually. If you prefer, you can disable or reject browser cookies through your browser settings or device. However, rejecting or removing cookies may affect the availability and functionality of our services. For more information about the use of cookies, please refer to our Cookies Policy.
We may also collect information about your device each time you use our website. We may correlate the information we collect from different devices, which helps us provide tailored services depending on the device you are using. For example, we collect:
a) Characteristics such as the operating system and its version
b) Browser type and IP address
Additionally, when you use our website, we collect log information, which may include, among other things:
a) How you arrived at our website
b) Details about the device you used, such as browser type and language
c) Access times
d) Pages you visited
e) Identifiers related to cookies or other technologies that can uniquely identify your device or browser
f) Pages you visited before or after navigating to our website.
The table below, as defined by law, provides a detailed explanation of the type of data we process, the purpose of processing, and the legal basis for such processing.
The Company may share personal information within its network. Company members receiving this information are not allowed to use or disclose the information and are bound by strict confidentiality clauses.
In order to fulfil the legal obligations arising from our contract with you, we share your personal data with the following recipients:
Some of these recipients may be located outside the European Economic Area. For more information on how we protect your personal data outside the EEA, please refer to the “International Data Transfers” section.
We will retain your personal data for as long as you are registered on our website, meaning as long as you keep your account active, or for as long as necessary to provide our services to you. In any case, your data will be deleted or destroyed ten years after their collection. We may continue to retain your personal data even after the closure of your account, while respecting the principle of “strict necessity for knowledge” to comply with legal or regulatory requirements, resolve disputes, or prevent fraud and abuse.
Personal information posted on the website by users or in connected applications, which may become available worldwide via the internet, is beyond the control of our website. In any case, any transmission required to be made to third countries will be carried out in accordance with the requirements of Regulation (EU) 2016/679 and Greek Law No. 4624/2019 and only in full compliance with the law.
Visitors/users of the website who are children are not allowed access to its services. If, however, underage users voluntarily visit our website, and this cannot be controlled, the website bears no responsibility. In any case, the services provided for any orders through the website and that can be carried out using a credit or debit card are assumed to be done under the supervision of a parent or guardian or commissioner, with the latter’s consent.
We inform you that you have the right to:
Our Company will examine and respond to the above requests within one month from their receipt. In exceptional cases, this period may be extended by two additional months if further time is required, and the request is particularly complex.
Please be aware that you can contact us regarding any concerns about the security of your data related to the website at the following telephone number: 210-6815190, as well as via email: info@dev.np-pharmacy.gr.
We have implemented appropriate security measures in our efforts to prevent accidental loss of personal information or unauthorised use or access.
Those who process your information for the lawful purposes explained above are subject to confidentiality obligations.
Furthermore, we have procedures in place to address any data security breaches. Specifically, the website:
The user acknowledges that transmitting information over the internet inherently poses security risks, and as a result, the Company cannot guarantee the security of data transmitted in this manner.
The user is responsible for keeping their password confidential when accessing the website or related applications. Under no circumstances will our website ask you to disclose your password, except for the sole purpose of logging into the website or any linked applications.
In accordance with the above, please note that our website does not store any credit/debit card information you enter when placing your order.
It should be noted that we cannot guarantee the security of information received via email. Therefore, you SHOULD NOT send us information and payment details via email. In case you choose to provide us with your details, you expressly consent to their use exclusively for the purpose of processing your order, and our Company will not store this information.
For any matter concerning the processing of your data and if you wish to exercise any of your aforementioned rights, you can contact our company’s designated contact person at the following email address: info@dev.np-pharmacy.gr or by phone at 210-6815190.
You can submit a request for access free of charge; however, depending on the personal information you request, we may charge a fee to cover the cost of providing the details we hold. We will inform you of the possibility of such charges upon receiving your access request and await your confirmation to proceed with the process and payment of this amount.
We hope that we can address any questions or concerns you may have regarding the use of your information. If you are not satisfied with how the Company manages your personal data, you have the right to contact the relevant supervisory authority.
The competent supervisory authority is the Hellenic Data Protection Authority (HDPA), located at 1-3 Kifisias Avenue, Athens, 11523, telephone 2106475600, and email address contact@dpa.gr.
The website updates this policy periodically by publishing the new version on the website or related applications. Users should regularly check this page to ensure that they agree with any changes to the terms of this policy.
The Company may notify users of changes to this policy (either via email or through the website’s personal messaging service or related applications).
