We take the protection of your personal data very seriously. This privacy statement explains how we use your personal data and what rights and choices you have. It applies to all personal data which you make available to us or which is obtained from such data. Below we inform you about how we handle your personal data when you use our website. By “personal data”, we mean all data that can be related to you personally, e.g. name, address, e-mail address and user behaviour.
General information
Name and contact details of the data controller
The data controller pursuant to Article 4(7) of the EU General Data Protection Regulation (GDPR) is:
KLIMATISTIKI S.A.
7th km. Thessaloniki-Kavala Rd,
Thessaloniki
PO Box: 51506
Post code: 56403
Telephone: +30 2310 681432
Fax: +30 2310 681712
E-mail: info (@) sivis.gr
Website: shop.sivis.gr
Collection and use of your data
Below, we explain to you what data we collect from you and for what purpose we do this.
When visiting our website
If you only use our website for information purposes, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server (“access data”): If you wish to view our website, we collect the following data which is technically necessary for us to display our website to you and to guarantee stability and security (legal basis is Article 6(1), Sentence 1, Litera f GDPR):
- your IP address,
- date and time of your visit,
- time zone difference to Greenwich Mean Time (GMT),
- visited webpage,
- access status/HTTP status code,
- amount of data transferred in each case,
- website from which you came to us,
- your browser,
- your operating system and its interface,
- language and version of the browser software.
When contacting us by e-mail or via the contact form
If you contact us by e-mail or use the contact form, we will store the data you provide (your e-mail address, company name, name of the contact person, postal code/city and, if applicable, address). If the establishment of contact is necessary for the fulfilment of a contract with you or for the implementation of pre-contractual measures (e.g. request for informative material and price lists), which take place at your request, the legal basis is Article 6(1), Sentence 1, Litera b GDPR.
Otherwise, the legal basis for general queries is Article 6(1), Sentence 1, Litera f GDPR. The data will be deleted after a complete answer to your query.
Recorded data within the scope of processing the contract will be deleted or blocked from further use and deleted after the expiry of the tax and commercial law retention periods. The legal basis for storage based on the statutory retention duties is Article 6(1), Sentence 1, Litera c GDPR.
If you have consented to further use of your data to receive product catalogues, invitations to trade fairs or information on special offers, we will store your data until you withdraw your consent. The legal basis will then be § 6(1), Sentence 1, Litera a GDPR (Consent).
Objection to or revocation of consent for the processing of your data
(1) If you have given your consent to process your data, you can revoke it at any time. Such a revocation influences the permissibility of the processing of your personal data after you have declared it to us.
(2) Insofar as we base the processing of your personal data on a weighing of interests, you may object to the processing. In the event your objection is justified, we will review the state of affairs and either discontinue or adapt the data processing or point out our compelling reasons worthy of protection on the basis of which we will continue the processing.
(3) Of course, you can object to the processing of your personal data for advertising and data analysis purposes at any time. You can inform us about your objection to advertising by using the following contact data: If you object, your personal data will no longer be used for the purpose of direct advertising (objection in accordance with Article 21(2) GDPR).
Cookies
In addition to the above data, cookies are stored on your computer when you use our website. Cookies are small text files that are stored on your hard drive and allocated to the browser you are using and through which certain information flows to the location that the cookie sets (here by us). They serve to make the website more user-friendly and effective overall. The legal basis is Article 6(1), Sentence 1, Litera a GDPR.
Some of the cookies we use are deleted after the end of the browser session, i.e. after closing your browser (“session cookies”). Other cookies remain on your end device and enable us to recognize your browser during your next visit (“persistent cookies”). You can set your browser so that you are informed about the placement of cookies and can decide whether to accept them on a case-by-case basis or whether to exclude the acceptance of cookies in specific cases or in general. If cookies are not accepted, the functionality of our website may be restricted.
Cookies set by WooCommerce
Details are provided in tables below, listing cookies that are set in our store with the WooCommerce plugin:
| COOKIE NAME | DURATION | PURPOSE |
|---|---|---|
woocommerce_cart_hash |
session | Helps WooCommerce determine when cart contents/data changes. |
woocommerce_items_in_cart |
session | Helps WooCommerce determine when cart contents/data changes. |
wp_woocommerce_session_ |
2 days | Contains a unique code for each customer so that it knows where to find the cart data in the database for each customer. |
woocommerce_recently_viewed |
session | Powers the Recent Viewed Products widget. |
store_notice[notice id] |
session | Allows customers to dismiss the Store Notice. |
No personal information is stored within these cookies.
Use of Google Analytics
This website uses Google Analytics, a web analysis service of Google. Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyse how users use the site. The information generated by the cookie about your use of this website is usually transferred to a Google server in the United States and stored there. However, if IP anonymisation is activated on this website, Google will abbreviate your IP address within Member States of the European Union or in other states party to the Agreement on the European Economic Area beforehand. Only in exceptional cases will the full IP address be transmitted to a Google server in the US and abbreviated there. On behalf of the operator of this website, Google will use this information to evaluate your use of the website, to compile reports on website activity and to provide the website operator with other services relating to website and Internet use.
The IP address transmitted by your browser in the context of Google Analytics is not merged with other Google data.
You may refuse the use of cookies by selecting the appropriate settings on your browser. However, please note that if you do this you may not be able to use the full functionality of this website. You can also prevent Google from collecting the data generated by the cookie relating to your use of the website (including your IP address) and from processing these data by downloading and installing the browser plug-in available under the following link: http://tools.google.com/dlpage/gaoptout?hl=de.
This website uses Google Analytics with the extension “_anonymizeIp()”. This means that IP addresses are further processed in a shortened form, thus excluding the possibility of personal references. If the data collected about you contain a personal reference, this reference is excluded immediately and the personal data are deleted immediately.
We use Google Analytics to analyse the use of our website and to regularly improve it. The statistics obtained enable us to improve our services and make them more interesting for you as a user. The legal basis for the use of Google Analytics is Article 6(1), Sentence 1, Litera f GDPR. For exceptional cases in which personal data are transferred to the United States, Google has submitted to the EU-U.S. Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.
(6) Information on the third party provider: Google Dublin, Google Ireland Ltd., Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. Terms of use: http://www.google.com/analytics/terms/de.htmlData protection overview:http://www.google.com/intl/de/analytics/learn/privacy.html, as well as the privacy policy: http://www.google.de/intl/de/policies/privacy.
Links to other Internet sites
We occasionally refer to the websites of third parties. Although we select these third parties carefully, we cannot assume any warranty or liability for the accuracy or completeness of the contents or the data security of third party websites. This Data Protection Declaration also does not apply to the linked websites of third parties.
How long we retain your data
if the basis for data processing is the performance of a contract, as long as it is necessary to perform the contract, and after that time for a period corresponding to the period of limitation of claims. Unless a special provision provides otherwise, the limitation period is six years, and for claims for periodic services and claims related to business activity – three years.
You have these rights
You have the following rights in relation to us with regard to your personal data:
- a right to information
- a right to rectification or erasure
- a right to restrict processing
- a right to object to the processing
- a right to portability
You also have the right to complain to a data protection supervisory authority about our processing of your personal data.
Additional information
If you use your site for commercial purposes and you engage in more complex collection or processing of personal data, you should note the following information in your privacy policy in addition to the information we have already discussed.
How we protect your data
We protect customer data with the following site features:
We use a professional hosting service by top.host.
We are entirely using SSL/HTTPS throughout all our sites. This encrypts our user communications with the servers so personal identifiable information is never captured by third parties without authorization.
Databases are sanitized (actual user personal details are removed) before deploying to development or testing environment.
What data breach procedures we have in place
In case of a data breach, System administrators will immediately go through affected users and will attempt to reset passwords if needed after informing the user.
Contact
If you wish to contact us, you will reach us under the address in the paragraph “Controller”. To exercise your rights or to submit suggestions and criticisms regarding the processing of your personal data as well as to withdraw your consent, please contact our Data Protection Officer: E-mail: info@sivis.gr
