PROTECTION OF PERSONAL DATA
General
The company, named BRODERSPORT, is the controller of the personal data of the visitor/registered user and controls the processing of his data on the online service pages of www.brodersport.gr & www.brodersport.com.
Personal data are processed in accordance with the provisions of the General Data Protection Regulation (GDPR 2016/679), the more specific national and European legislation for certain sectors; applicable Greek legislation on the protection of personal data, as well as on the protection of personal data and privacy in the field of electronic communications (Law 3471/2006 , as applicable) and the decisions of the Personal Data Protection Authority (IFRS)
For the processing of your data as described below, BRODERSPORT relies on the following legal bases:
- Execution of a contract: In order for the visitor/registered user-client to complete his orders at www.brodersport.gr & www.brodersport.com it is necessary to process the personal data provided by him when registering and registering his order in the order registration form and recording his transactions.
- Legal interests: The processing of personal data is necessary for the improvement of THE SERVICES OF BRODERSPORT (processing of statistical and non-identifiable data) the detection of an attempt at fraud as well as for the safeguarding of the legitimate interests of BRODERSPORT.
- Consent – Consent: Registered client users are invited to give their explicit consent to the following processing purposes: sending informational/promotional messages and the automated processing-only analysis of their consumer behaviour (profile).
Information, processing and processing purposes:
BRODERSPORT informs the visitor/registered user and the visitor/registered user acknowledges that he is aware of the following:
a) Processing of Personal Data: BRODERSPORT will process the personal data of the visitor/registered user-client, as stated by him at the time of the creation of his account and in his order in the registration form, in order to complete his specific order through our online store. Furthermore, if the visitor/registered user has given his or her consent, BRODERSPORT will be able to process his personal data for sending commercial informational and promotional messages and/or for the compilation of the customer's purchasing profile and the improvement of the management of its customer base and the operation of its online store www.brodersport.gr & www.brodersport.com.
b) Electronic Orders, Type of Personal Data and Processing Purposes:
b.1) Basic processing
i. The retail user/customer has the option to choose 2 ways to complete an online order and declare his personal data:
- As a visitor: In this case the personal data of the visitor/customer will be kept in the files of BRODERSPORT until the completion of this order, with the exception only of transaction data for tax purposes and their processing will concern only the performance of the sales contract.
- As a registered user of the online store: In this case the customer/user has created a user account in our online store and his personal data will be kept in the company's archives until he requests their deletion. BRODERSPORT has the right to ask the user/customer to confirm the correctness of the data it maintains and to update them if there are changes, at regular intervals. The user/client may at any time change or correct his data by logining to his account with his username and password.
ii. In order to complete an online order and declare his personal data, the wholesale user/customer must be a registered user of the e-shop in the relevant field concerning wholesale customers. In this case the customer/user has been certified by BRODERSPORT as a wholesale user and has created a user account in our online store and his personal data will be kept in the company's records until he requests their deletion. BRODERSPORT has the right to ask the user/customer to confirm the correctness of the data it maintains and to update them if there are changes, at regular intervals. The user/client may at any time change or correct his data by logining to his account with his username and password.
In order to carry out any transaction through the online store (www.brodersport.gr & www.brodersport.com) of BRODERSPORT and to place orders of products of the company, it is requested:
- full name
- the shipping address of the products and the postal code of the region
- the billing address of the order (if different from the shipping address)
- invoicing information (in case an invoice payment is selected, additional information such as Company Name, Occupation, Tax Office and VAT) will be requested.
- the contact phone number
- the customer's e-mail address
In the event that products are requested to be delivered to a third party other than the visitor/registered user, the latter acknowledges that he will have full responsibility for the information and full consent of the person, designated as the addressee, for the disclosure of his personal data to BRODERSPORT for the sole purpose of delivery to him, of the relevant products and assumes full responsibility for any claims of that person against BRODERSPORT.
Credit card details are not stored in the company's media during the transaction but are posted directly in a secure environment of the partner company (Piraeus Bank) that is responsible for routing the cards.
The purpose of the basic processing of the data is the execution of the contract and the completion of the specific order, the communication with the client user and the sending of information regarding the stages of processing the order, the provision of clarifications related to the order and in general the information about purchases made, the delivery of the order to the customer's selection area, the confirmation and identification of the client user in any necessary case and the information about the existing inventory in www.brodersport.gr & www.brodersport.com. The visitor/ registered user is informed that the provision of these mandatory personal data as well as the details of his transactions are necessary and constitute a prerequisite for the proper performance of the contract of order and delivery of the products and services. This does not require the consent of the client user for this specific processing.
Each client who uses the www.brodersport.gr & www.brodersport.com is informed that their personal data relating to the download, execution and delivery of an order as well as questions about PURCHASES, products and services of BRODERSPORT and orders at www.brodersport.gr & www.brodersport.com will be processed for the purpose of customer service by both the competent employees of BRODERSPORT and by third party recipients and/or processors on its behalf in the context of the execution of an order. These third recipients are transport companies, individual or group shipping companies and internet and e-commerce service providers who are subject to the specific strict terms of processing personal data agreed with BRODERSPORT as Controller. BRODERSPORT requires its employees, the maintainers of its website, as well as its third-party partners to take all necessary technical and organisational measures (including appropriate policies and procedures to prevent the disclosure of the personal data of its visitors/registered users-clients who process and have and implement procedures for the management and processing of personal data in a manner that is legal and protect them in accordance with the GDPR.).
No other processing or transmission of customer user data shall be carried out by BRODERSPORT and its online store (www.brodersport.gr & www.brodersport.com) except for the processing under b.2 below for which BRODERSPORT has obtained the prior consent of the client users or if required by law or competent supervisory or judicial authority.
b.2) Treatments requiring consent
b.2.1) In order to send commercial informational and promotional messages to the registered user-client from BRODERSPORT and www.brodersport.gr & www.brodersport.com the registered user/client must have given his or her express consent.
The purpose for this processing of the registered user-customer data is to send commercial promotional messages of BRODERSPORT and/or its third-party partners to the registered user-client, to provide special offers and discounts of www.brodersport.gr & www.brodersport.com , the availability of new or alternative products, the communication of www.brodersport.gr & www.brodersport.com forms.
You may withdraw such consent at any time and not receive such communications from www.brodersport.gr & www.brodersport.com by sending your request by e-mail to your [email protected].
b.2.2.) BRODERSPORT also informs its registered user/client that it can process its personal data and conduct investigations to improve its services to registered users/customers. As part of this processing, BRODERSPORT has the opportunity to record their needs, to take the necessary steps to promote its appropriate products and services, in order to improve the management of its customer base and to promote its products. In order for registered users/customers to receive personalized offers and updates based on the purchases they have made in the company's online store, they must give their consent to the automated processing analysis of their consumer behavior (profiling) and in particular the following data generated by the user-customer's transactions:
• Products purchased at www.brodersport.gr & www.brodersport.com
• Frequency of visits to www.brodersport.gr & www.brodersport.com
• Products he has put in his basket or favorites list in www.brodersport.gr & www.brodersport.com
• Demographics stated in the www.brodersport.gr & www.brodersport.com
• Years of his stay as a registered client in www.brodersport.gr & www.brodersport.com
• Participation in promotions
• Expenditure incurred when purchasing at www.brodersport.gr & www.brodersport.com
• Order history at www.brodersport.gr & www.brodersport.com
The purpose of this specific processing is to optimise the purchasing experience of registered client users, their personal reward, the communication of products and services tailored to the needs of BRODERSPORT's customer base, the receipt by registered users of personalized offers and updates that directly concern them as well as the invitation to participate, with reward or not, in surveys for the configuration of the BRODERSPORT website, for the evaluation of market trends and for the evaluation of products and services based on the markets it has carried out.
The visitor/registered user-client is informed that his personal data may be processed by BRODERSPORT even without his consent in case of fulfilment of its obligations under law, such as when the relevant data are requested by the tax and banking authorities in the context of audits or the competent supervisory and judicial authorities.
c) Recipients of Data: For the data necessary to serve each of the above processing purposes and within the competence of each recipient, the recipients of the data of the registered client user are or may be:
i. The competent officials of BRODERSPORT
ii. Tax authorities and banking authorities in the event of an audit
iii. External partners providing internet services, (fast) transport or group shipping services, product installation services and sales data analysis services, to whom the data necessary for the performance of their tasks are transmitted with strict restrictions and procedures. These companies use the data provided to them under the terms of use of www.brodersport.gr & www.brodersport.com exclusively in accordance with THE GUIDELINES OF BRODERSPORT.
d) Data subject rights: Any registered client user, as a data subject, may at any time exercise his rights as provided for in the General Data Protection Regulation 679/2016 EU and in particular Articles 12 to 23 thereof and national law and in particular:
i. the right to information and access to the data processed by BRODERSPORT;
ii) the right to restrict the processing of its data;
iii) the right to correct or delete part or all (right to be forgotten) of his personal data;
iv) the right to object, i.e. to object to the processing of his personal data;
v) the right to portability of its data.
The exercise of these rights may be exercised by the Member:
• directly online through his personal account at www.brodersport.gr & www.brodersport.com
• making a request to the e-mail address [email protected]
Detail:
For the right to access and correct/supplement personal data, the company allows registered www.brodersport.gr & www.brodersport.com customers to view, correct/supplement their personal data through their personal www.brodersport.gr & www.brodersport.com account in the "Account Information" and "Sending Addresses" section.
For the right to portability of personal data, the company allows registered client users to receive their personal data and/or transmit it to another controller by submitting a written request to the e-mail address [email protected].
Every registered client is informed that they have the right to withdraw their consent for any processing of their data, having given their consent to www.brodersport.gr & www.brodersport.com from their personal www.brodersport.gr & www.brodersport.com account in the "Personal Data Settings" section or by sending e-mail.
In the event of the exercise of one of the above mentioned rights of the registered client user, BRODERSPORT will take all possible measures to satisfy the request within (1) one month of its submission. In this case the registered client user is informed that the minimum necessary from his personal data will be retained, in order to safeguard the legitimate interests of the company.
e) Personal Data Retaining Time: The data of the guest user-client will be retained and processed by BRODERSPORT until the completion of this order.
The data of the registered client user will be retained and processed until the registered client requests the deletion of his account or, for any processing of his data made on the basis of his consent, until he declares the withdrawal of his consent for the purposes of providing the services of BRODERSPORT. However, some necessary personal data relating to his trading relations with BRODERSPORT as well as the information, consent and withdrawal of the member's consent to the processing of his data will remain as information for the registered client user in order to ensure proof of the legality of the processing of his data by BRODERSPORT and to safeguard the legitimate claims of the parties.
f) Special Category Data: The member is informed that BRODERSPORT does not collect or require the disclosure of sensitive personal data (special category data) for the needs of www.brodersport.gr & www.brodersport.com.
For the exercise of his rights the member can contact BRODERSPORT, in the email [email protected].
In any case, every registered client, as a personal data subject, has the right to query BRODERSPORT on how to process and protect their personal data and if they do not consider that they are satisfied with its response they have the right to complain to the competent supervisory authority (Personal Data Protection Authority).
BRODERSPORT states that no other use of the visitor/registered user's personal data will be made for purposes other than those mentioned in this policy without prior information and, where necessary, consent.
SECURITY
The Secure Sockets Layer (SSL) protocol is currently the global standard on the internet for certifying websites to web users and for encrypting data between web users and web servers. An encrypted SSL communication requires all information sent between a client and a server to be encrypted by the sending software and decrypted by the acceptance software, thus protecting personal information during its transfer. Additionally, all information sent with SSL is protected by a mechanism that automatically verifies whether the data has been changed during transport.
The SSL certificate for www.brodersport.gr & www.brodersport.com has been issued by the Comodo certification company and the key size is 2048-bit.
In addition, personal security is the password you give when you become a registered www.brodersport.gr & www.brodersport.com. In order to present any of your personal information, the user name and password must first be given. For this reason, you must keep these items well so that they do not run the risk of falling into the hands of third parties. We also advise you to create a password using symbols along with alphanumeric characters.
Finally, it should be remembered that the credit card details are not stored in the company's media during the transaction but are registered directly in a secure environment of the cooperating company (Piraeus Bank) that is responsible for routing the cards.
All transactions you make through www.brodersport.gr & www.brodersport.com are governed by international and European law, which regulates matters relating to e-commerce as well as by the Consumer Protection Act (Law 2251/1994), which regulates matters relating to distance selling.
The online store www.brodersport.gr & www.brodersport.com accepts VISA, Mastercard and Maestro credit cards. Your transactions in our online store are protected by modern security systems (RSA 2048-SHA256/TLS 1.2 with AES-256 + Forward Secrecy with modern browsers) that guarantee a secure trading environment.