• Privacy Policy

Privacy Policy

1.General

This Privacy Policy is part of the Terms of Use of the website www.astirbrand.gr, which is owned by the company under the name ” ASTIR Monoprosopi IKE “, located in Hellenoekklisia Messinia in Greece, with e-mail astirbr@otenet.gr and concerns the conditions of collection, storage, use and processing of your personal data when you visit or use the website www.astirbrand.gr.

All users of the website are requested to read the Privacy Policy in order to be informed about the policies and practices we have developed to safeguard your personal data. Your personal data will be used in accordance with applicable legal provisions.

The Privacy Policy covers the personal data of users – visitors collected exclusively by www.astirbrand.gr, but does not cover their relationship with any service that is not under the ownership and/or control of www.astirbrand.gr.

The rapid expansion of new technologies, the growth of economic activity, the cross-border transfer of personal data and the trend towards enhancing public security make it imperative that personal data are processed and protected securely.

The management and protection of the personal data of the visitor/user of this portal is governed by the provisions of national, Community and international law on the protection of the individual from the processing of personal data, as applicable.

The website reserves the right to modify these terms in accordance with the applicable legal framework.

ASTIR S.A. manages the Personal Data disclosed to it with the utmost care and in a fair manner, ensuring, in all cases, their protection and privacy. Your Personal Data will be exclusively accessible by “ASTIR SINGLE COMPANY IKE” and by any third parties or competent employees who carry out the processing of Personal Data as data processors, based on the instructions of “ASTIR SINGLE COMPANY IKE”.

We are committed to safeguarding your Personal Data. We have taken appropriate organizational and technical measures to ensure the security and protection of your Data from any form of accidental or unlawful processing. These measures are reviewed and modified when necessary.

  1. What is Personal Data & how it is collected

The term “Personal Data”, as used in this Privacy Policy, refers to information of natural persons, either individuals or professionals, such as name, postal address, e-mail address, contact telephone number, etc., which can be used to identify the identity of a visitor to the website.

Any visitor can browse www.astirbrand.gr without providing any personal information. Each visitor will be required to provide Personal Data in case he/she wants to use the services of the website.

During your visit and navigation on our website, your Personal Data is collected in various ways.

You provide them to us when you contact us, e.g. via the contact form on the website or by sending us an email, in order to obtain information or use the services available on this website. ” ASTIR ONLY ” stores and uses the Personal Data concerning you when you contact it by telephone, e-mail or through the contact form it maintains or when you wish to send us information in some other way and therefore transmit your data to us for this purpose.

In any case, however, during a visit to www.astirbrand.gr, some data is automatically collected for technical reasons, such as the IP address ( Internet Protocol Address ) of the access computer, the website from which you are visiting us, the date and time of your visit, the browser type and browser settings, the operating system, etc.

We do not collect any of your data, only what is collected by the cookies you have consented to be used, which are detailed in Website Cookies Policy.

  1. What is the Processing of Personal Data

Processing of Personal Data is the collection, recording, organisation, storage, adaptation, modification, alteration, retrieval, search for information, use, transmission to third parties, dissemination, association, combination, restriction, erasure and destruction of Personal Data of natural persons.

ASTIR S.A., through its website, collects and processes Personal Data, i.e. information relating to the natural person who is identified or can be identified from this information, regardless of whether this identification can be carried out directly or indirectly.

Processing of Personal Data means any operation carried out in relation to such data, whether automated or not.

The processing of Personal Data is carried out, as the case may be, in accordance with the applicable legislation and this Privacy Policy or in accordance with the consent given by you. In some cases, data is used only in pseudonymous or anonymous form. We collect the Personal Data necessary for each processing purpose and process it lawfully, fairly and in a transparent manner in relation to the data subjects.

ASTIR Monoprosopi IKE, in strict compliance with the principles governing the protection of Personal Data provided for by the relevant laws, undertakes that it will not make any improper use without your prior consent.

We store and use personal data and technical information to the extent that this is necessary and required for technical reasons and for the operation of our website, as well as to prevent and counteract attacks and any malicious use, unauthorized access and disclosure of your Personal Data or other illegal behaviour or behaviour contrary to the Terms of Use of the website.

All information related to your Personal Data is secure and confidential. The Personal Data provided by the user/visitor are intended exclusively to ensure the smooth operation of the services provided and the legality of transactions and may be used by any third party only in compliance with the provisions of Law 2472/1997 on the protection of Personal Data processing.

www.astirbrand.gr in no way discloses, publishes, sells, exchanges your Personal Data, except and exceptionally may disclose your personal information when required by a Public Authority, Court, investigation warrant, etc. and to the extent that we are obliged to do so, always in compliance with the procedure provided by law, as well as to safeguard our rights and claims and to defend our company before the courts.

  1. For what purpose and for how long we process your data

ASTIR S.A. undertakes lawful processing of Personal Data, as it collects and processes them exclusively for specified explicit and legitimate purposes and only to the extent necessary for the implementation of these purposes, and retains these data for as long as necessary for the implementation of these purposes, unless an extension of this time is required due to legal claims or legal obligations. We delete the Data collected by the Cookies in accordance with the Cookies Policy of the Website.

In particular, we collect your Data exclusively for the purposes of the services provided by the electronic website www.astirbrand.gr and in particular for a) monitoring the traffic of the website b) communicating with you on the information you provide through the contact form c) complying with the obligations imposed by the applicable legislation.

5. What is the lawful basis for the processing of your Data by www.astirbrand.gr

We collect your Personal Data only if we have a legal basis for processing it. The processing of the website users’ data is either within the framework of the services offered, or based on the consent of the user himself. In the latter case, the processing is based on your consent provided by a clear affirmative action.

On our website www.astirbrand.gr cookies are always used with your informed consent.

For your Data related to the use of Cookies, the lawfulness of their processing is based on your consent. For more information about Cookies Policy of the Website, see here.

Also, as regards the contact form, your consent is given by filling in the form and sending its contents. As regards the astirbr@otenet.gr e-mail address, your consent is provided by sending your e-mail message.

  1. Who are the recipients of your Personal Data

The recipients of your Personal Data are the company that provides us with web and e-mail hosting services.

Furthermore, the recipients of the Data are the absolutely necessary personnel of our company and only when necessary, who are bound by confidentiality and any companies cooperating with us, which process your Data as Processors on our behalf and in accordance with our instructions. In the case of Processing by Processors, they have agreed and contractually committed with our company to maintain confidentiality, not to send Data to third parties without the company’s permission, to take appropriate security measures and to comply with the legal framework for the protection of personal data and in particular the GDPR Regulation.

In addition, we may share or disclose your Data when you have expressly requested it or when required by law.

We do not send your Data outside Greece. Your Personal Data is stored and processed only within Greece.

7. Social media

We use social media such as Facebook. This is how data can be retrieved. If you are logged into one of these, the network may match your visit to the website with your user account. If you are a user of a social network and do not want the data retrieved from your visit to our website to be combined, you must, before logging in to it, log out of your social network first.

8.What are your rights?

You have the following rights:

α) You have the right of access & information regarding your Personal Data.

This means that you have the right to be informed by us if we process your Data. If we process your Data, you can request to be informed about the purpose of the processing, the type of your Data we hold, who we give it to, how long we store it, whether automated decision-making is carried out, and your other rights, such as rectification, erasure, restriction of processing and lodging a complaint with the Data Protection Authority.

b) You have the right to correct inaccurate Personal Data.

If you find that there is an error in your Data or that it is inaccurate, you can submit a request to us to correct it (e.g. to correct your name or update a change of telephone number) or to complete any incomplete Personal Data.

c) You have the right to erasure/right to be forgotten.

You can ask us to delete your data if it is no longer necessary for the above mentioned processing purposes or if you wish to withdraw your consent in case this is the only legitimate basis.

d) You have the right to portability of your Personal Data.

You may request to receive the Data you have provided in a usable and readable format or request us to transfer it to another controller.

(e) You have the right to restrict the processing of your Personal Data.

You can ask us to restrict the processing of your Personal Data if certain conditions apply (such as if you question the accuracy of the information we hold about you).

f) You have the right to object/reject the processing of your Personal Data.

You may object to the processing of your Personal Data if you realise that the processing lacks a legal basis or if you expect to establish whether there are indeed overriding legitimate interests of the controller that justify its retention, where your Data processed are inaccurate or where you simply consider that the purpose for which they were requested has been fulfilled and their retention is no longer necessary or even abusive. You also have the right to withdraw your consent to the processing of your Personal Data, unless there are other compelling and legitimate reasons that override your right.

  1. How you can exercise your rights & how we handle your Claims

If you have a question or a complaint about this Policy and the way we handle your Personal Data or to exercise your rights, you can send us a request either to our postal address (Ellinoeklisia Messinia, P.C. 24 200, Greece), or to the email address astirbr@otenet.gr with the title “Exercising your right of access/ rectification/ erasure/ restriction/ objection” and we will take care to examine it and reply to you as soon as possible.

We will respond to your Requests free of charge without delay and in any case within one (1) month from the time we receive your request. However, if your Request is complex or there are a large number of Requests, we will inform you within the month if we need to obtain an extension of another two (2) months within which to respond to you.

If your Requests are manifestly unfounded or excessive, in particular because of their repetitive nature, we may impose a reasonable fee, taking into account the administrative costs of providing the information or performing the requested action, or refuse to follow up on the Request.

For more information on the progress of your Request, you can contact us by e-mail at astirbr@otenet.gr.

  1. Use of automated decision-making, including profiling when processing your Data;

We do not make decisions, or carry out profiling, based on automated processing of your Data.

  1. Processing of data of minors

In general, we do not process data concerning children under 16 years of age. If we find that we have collected Data from a child under 16 years of age, we will delete this data as soon as possible.

  1. What is the applicable law when we process your Data

Personal Data is processed in accordance with the provisions of the European Regulation for the Protection of Personal Data ( GDPR EU 2016/679 ) and in accordance with the applicable Greek legislation ( Law 2472/1997, as amended and in force, Law 4624/2019 which implemented and incorporated the above European Regulation into domestic law ), but also in accordance with the decisions and regulations of the Personal Data Protection Authority.

If you choose to access our site from another country, the laws of that country and any applicable International Conventions may apply.

  1. Where you can appeal if we breach the applicable law on the protection of Personal Data

You have the right to lodge a complaint with the Data Protection Authority (website: www.dpa.gr, postal address: Kifissia 1-3, P.C. 115 23, Athens, tel. 210 6475600, e-mail address: contact@dpa.gr), if you consider that the processing of your Personal Data violates the applicable national and European law and the general regulatory framework for the protection of Personal Data.

  1. Data Protection Officer ( DPO )

The company “ASTIR Monoprosopi IKE” is the Data Controller of the Data it processes. Its address is Ellinoeklisia Messinia, P.C. 24 200, Greece and its e-mail address is astirbr@otenet.gr

If you wish to contact for any issue related to the processing of your Data and the exercise of your rights, you can contact the Data Protection Officer (DPO) of the above company at the email address astirbr@otenet.gr.

  1. How you will be notified of any changes to this Privacy Policy

This Privacy Policy may be amended at any time and whenever necessary, without notice, in particular if there are significant changes to the Policy or the way we use your Personal Data. For this reason, we consider it advisable to refer to this Policy regularly. This Policy came into force on 01/04/2024. If it is amended, the date on which it was amended will be indicated. The Privacy Policy, as formulated by the most recent amendment, shall always be deemed to be valid.

Last update: 01/04/2024