Privacy Policy

Privacy Policy and Privacy Policy
(According to the General Data Protection Regulation, (EU) 2016/679)

  1. Edit for Personal Data (IFRS) and Customer’s Special Category Personal Data (CTRDP). With the purchase of products, the Customer through the company’s e-shop declares that he / she wants to make a purchase where the business based on the information / data stated by the Customer on the order form should send the order to the customer. In order to carry out the mission, it is necessary for the Customer to declare the specific Personal Data (PRS) and Special Category Personal Data (CIRRN) listed in the relevant fields of the order form. These data are necessary for the completion of the transaction and the proper execution of the order. Correct and complete information on the information requested by the Company constitutes a Customer’s obligation under the law. Inaccurate or incomplete disclosure of the information requested by the Company, is also granted the right to cancel or terminate the transaction at any time.
    The Company will process Customer data that is necessary to complete the order from the eshop based on the explicit consent that the Customer will be given at this stage through the Product Order or at any other later stage.
  2. Types of data processing by the Company. Once the Customer has ordered the product, completing all the necessary fields, the Company proceeds, with the help of automated software (woocommerce), to a series of data processing, collecting, registering, organizing, correcting, storing, adjusting, changing, retrieving, searching for information. The Company uses the automated means to complete the order and send the order to the customer. The use of this automated software concerns the accuracy, consistency and speed of completing and sending the order.
    Regular audits are conducted by the Company for the compliance of the Company, these audits are in line with European and Greek legislation.
    Audits are also carried out and data and data are sent to the tax authorities for the purposes of compliance of the Company with its transactions with EU Member States.
  3. The duration of the Customer’s records kept by the Company. The Company will retain the Customer’s data for as long as the transaction relationship is maintained between them. In the event that, for any reason, it ceases, the Company will keep it for as long as it is required until the expiration of any related claims. However, in any case the Company will keep the data for a period of up to one (1) year after the expiration of the cooperation between them.
  4. Customer’s rights in relation to the processing of his or her data. The Customer has the following rights: the right of access (to know which data we process, for which reason the addressees), correction (to correct any deficiencies or inaccuracies of the data), deletion (forgiveness) our records, if they are no longer necessary), limiting the processing (in case of questioning the accuracy of the data, etc.), portability (it receives the personal data concerning it, which it has given to a responsible person ed Asia, a structured, commonly used and readable format machines). These rights are exercised at no cost to the Customer unless there are consistent and time-consuming iterations where the Company has administrative costs, so the Customer will bear the cost. If the Customer exercises any of his rights, the Company will take every possible action to satisfy the Customer’s request within thirty (30) days of receipt of the request. In addition, the Customer may at any time oppose the processing of IFRS and CFRC by withdrawing his consent. However, this will result in the transaction being terminated by the Company, because (as noted above) no online store can complete the transaction and execute the order without processing the Personal Data Character (Client) of the Customer (subject of the data).
  5. Security of Customer’s Personal Data. Data security is the ultimate commitment and responsibility for the Company. For this reason, all modern and suitable for the purpose of processing technical (encryption, anonymity, etc.) and organizational measures are applied. All information, which is related to the user’s personal information, is secured as secret, with 128-bit encryption SSL protocol for secure online trading. Secure Sockets Layer (SSL) is today the world’s leading online standard for website certification for network users and encryption of data between network users and web servers. An encrypted SSL communication requires all information sent between a client and a server to be encrypted by the sender software and decrypted by the receiving software, thereby protecting personal information when transferred. In addition, all information sent under the SSL protocol is protected by a mechanism that automatically verifies whether the data has been changed during transport.
  6. Transmitting Customer Data. Customer data will be transmitted to parts of the Company responsible for completing the service provided and for its proper and smooth operation. These departments are the technical support department and the accounting office that the company collaborates with. Customer data may also be transmitted and made accessible by legal and / or natural persons with whom, from time to time, the Company cooperates for marketing and advertising purposes. Also, data in the context of the operation of the Customer’s Insurance Contract may be transmitted to various departments, public authorities, etc. However, in this case, these legal and / or natural persons will process the Customer’s personal data solely for the purpose of providing services to the Enterprise and not for the benefit of itself, acting as processors. It is absolutely certain that in every transmission the Company always takes every measure so that the data to be transmitted is always the minimum necessary and that the conditions for lawful processing will always be met.
  7. Processing Customer’s Data for Commercial Purposes. For the duration of the processing mentioned above, the Company may only process your IFRSs (but not those of the ECDC). Customer may oppose at any time this processing of his or her data (for commercial purposes) by sending a request to the business. In this case, Customer data will no longer be processed for commercial purposes.
  8. Complaint / protest. For any matter relating to the processing of your data, please contact the Data Protection Officer (DPO) of the Business info@comoofficial.com
  9. IP Addresses. The IP address through which the PC has access to the Internet and then to the site www.comoofficial.com is recorded and utilized exclusively for the collection of statistics regarding the monitoring of the site traffic www.comoofficial.com.