This Privacy Policy governs the manner in which Photis Pafitis & Son Ltd. collects, uses, maintains and discloses information collected from users of this website. This Privacy Policy applies to the website and all products and services offered by Photis Pafitis & Son Ltd.

Contents

1. GENERAL NOTES
  a)LEGAL BASIS
  b)CONTENTS
  c)PROCESSING OF PERSONAL DATA
  d)INTERNATIONAL TRANSFERS
2. PROCESSING ON OUR WEBSITE
  a)ENCRYPTION ON OUR WEBSITE
  b)COLLECTION OF SERVER LOG FILES
  c)STORAGE PERIOD AND DELETION
3. RIGHTS OF THE DATA SUBJECT
  a)RIGHT TO INFORMATION
  b)RIGHT OF RECTIFICATION
  c)RIGHT OF ERASURE
  d)RIGHT TO DATA PORTABILITY
  e)RIGHT OF OBJECTION
  f)REVOCATION OF YOUR CONSENT
  g)RIGHT OF COMPLAINT TO THE SUPERVISORY AUTHORITY
4. THIRD PARTY SERVICES ON OUR WEBSITE
  a)GENERAL INFORMATION ABOUT COOKIES
  b)SOCIAL MEDIA LINKS
5. CHANGES

1. GENERAL NOTES

According to the European Data Protection Regulation (GDPR) and national data protection laws, every person is entitled to protection of their privacy and protection against misuse of their personal data. We take the protection of your personal data very seriously. We treat your data confidentially and in accordance with the statutory data protection regulations and this Privacy Policy.

  1. LEGAL BASIS

We use your data on the basis of various legal grounds:

  • depending on the services you use (contract or pre-contractual measures for contact forms GDPR Art. 6(1)(c)); 
  • following a legal obligation (GDPR Art. 6(1)(c)) 
  • based on your consent that you have given us; or
  • for a legitimate interest, e.g. to ensure the security or the functionality of our website.

  1. CONTENTS

The purposes for which we process your data may include:

  1. To provide and maintain our service to you;
  2. Notify you of any changes with respect to our service;
  3. Collect analytics data and other valuable data so that we can improve our service;
  4. Monitor the use of our service;
  5. Identify, prevent and correct technical problems;
  6. To provide you with news, special offers and general information about other products, services and events offered by us to the extent that they are similar to those you have already purchased from or requested from us.

  1. PROCESSING OF PERSONAL DATA

We process personal data in accordance with the EU-GDPR and the relevant national data protection laws. Personal data is any information relating to an identified or identifiable natural person. 

We process your data for the duration required for the respective purposes. In the case of longer-term retention obligations due to legal and other obligations to which we are subject, we restrict processing accordingly.

  1. INTERNATIONAL TRANSFERS

We may share information with third parties for the purposes defined in this policy. Therefore, your Personal Data may be processed outside your jurisdiction, and in countries that are not subject to an adequacy decision by the European Commission or your local regulator, which may not provide for the same level of data protection as your jurisdiction, such as the EEA.  When we transfer Personal Data to non-EEA/non-UK countries we implement appropriate safeguards to protect this information. We ensure that the recipient of your Personal Data offers an adequate level of protection, for instance by entering into the appropriate back-to-back agreements and, if required, standard contractual clauses for the transfer of data as approved by the European Commission. 

 

2. PROCESSING ON OUR WEBSITE

  1. ENCRYPTION ON OUR WEBSITE

On our website, we use encryption for security reasons and to protect the transmission of confidential content, such as your inquiries that you send to us. 

We point out that data transmission on the Internet (e.g. communication by e-mail) can have security gaps. A complete protection of data against access by third parties without the use of an e-mail encryption, such as PGP or SMIME, is not possible and is at your own risk. 

  1. COLLECTION OF SERVER LOG FILES

Our website can generally be visited without registration. Information such as accessed pages or names of the accessed file, date and time are stored on the server for statistical purposes without this data being directly related to your person.

We automatically collect and store information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browser type and version
  • Operating system used
  • Referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address

This information can only be indirectly assigned to persons. A combination of this data with other data sources is not made. We reserve the right to check this data retrospectively if we become aware of concrete indications of illegal use.

  1. STORAGE PERIOD AND DELETION

We store your personal data only as long as this is necessary for the fulfilment of the purposes or – in the case of consent – as long as you do not revoke the consent.

 

3. RIGHTS OF THE DATA SUBJECT

As a data subject, you have the following rights under data protection legislation. To exercise one or more of these rights, simply contact us at pafitis@cy.net.

  1. RIGHT TO INFORMATION

You have the right to request confirmation from us as to whether personal data concerning you is being processed; if this is the case, you have a right to access this personal data and to the information as described in Art. 15 GDPR.

  1. RIGHT OF RECTIFICATION

As a data subject, you can have us adjust the existing personal data at any time if it is incorrect. 

  1. RIGHT OF ERASURE

You as the data subject can submit a deletion request to us at any time. Unless a legal or other obligation requires us to continue to retain the data, we will be happy to comply with your request. In the event of non-erasure, we will restrict processing.

  1. RIGHT TO DATA PORTABILITY

You have the right to receive your personal data, which is processed on the basis of your consent or a contract, in a structured, common and machine-readable format and, if necessary, to transfer it to another controller.

  1. RIGHT OF OBJECTION

Any person concerned by the processing of personal data has the right to object at any time, on grounds relating to their particular situation, to the processing of personal data concerning them.

We shall no longer process the personal data in the event of the objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or if the processing serves the purpose of asserting, exercising or defending legal claims.

  1. REVOCATION OF YOUR CONSENT 

You can revoke a consent once given at any time. To do so, contact us by email or phone.

  1. RIGHT OF COMPLAINT TO THE SUPERVISORY AUTHORITY

If you are dissatisfied with our response to any of your requests for the protection of your personal data or with the way we process your data, you have the right to complain to your local supervisory authority. 

 

4. THIRD PARTY SERVICES ON OUR WEBSITE

  1. GENERAL INFORMATION ABOUT COOKIES

We use on our website, so-called cookies. Cookies are small text files that are stored in your web browser. They help us to display certain functions on our website.

Most browsers accept cookies by default. Cookies can be rejected in the security settings. If you do not allow cookies, certain features on our site may not be available to you, and some pages may not display properly. Detailed instructions on how to prevent cookies from being placed by browser settings can be found at: https://www.allaboutcookies.org/

We categorise our cookies into 3 categories:

  • Essential – This category includes all cookies that are necessary for secure website operation and those that we use based on our legitimate interest.
  • Functional – This category includes all cookies that improve or monitor the performance of the website. 
  • Marketing – This category includes all cookies that provide us with information regarding the use of the website and the target groups for our services. 

  1. SOCIAL MEDIA LINKS 

Our website provides links to the profiles of our company on Facebook and Instagram. When you click on the link, you will leave our website and be redirected to the servers of the social media providers. 

 

5. CHANGES

As part of our continuous improvement process, we regularly make changes to our Privacy Policy in order to remain compliant with legal regulations in the future. Your rights as a data subject remain unaffected by such changes. Please always note the current status of this statement.  

 

Last updated: January 2022