PRIVACY POLICY, COOKIES & GDPR COMPLIANCE
1. Privacy and data protection
Data is necessary to be used as a liability when it is necessary to be collected and processed. Our company will never sell, rent or distribute in any way or disclose your personal information.
2. Relevant legislation
This site is designed to comply with the following national and international laws on data protection and privacy:
EU Data Protection Directive 1995 (DPD)
General Data Protection Regulation 2018 (GDPR)
United Kingdom Data Protection Act 1988 (DPA)
3. Personal information that this website collects and for what purpose
This site collects and uses personal information for the following purpose:
3.1 Tracking Website Traffic
Likewise most of websites, we use Google Analytics (GA) to monitor user activity. We use this data to determine the number of people that browse our website, to better understand how they find and use our web pages and to monitor their route on the website.
Despite GA records data such as your location, your device, your web browser, and your operating system, none of these information make you personally familiar to us. GA also records your computer’s IP address, which could be used to identify you, but Google does not gives as access to this information. We believe Google is a third-party data processor.
GA uses cookies, details of which you can find in Google Developer Guides. For your information, our site uses GA’s analytics.js application.
Disabling cookies on your browser will prevent GA from tracking any part of your visit on pages within this website.
3.2 Forms of communication and email links
If you choose to contact us using the contact form, none of the data you provide will be saved on this website neither will be transferred or processed by any third party data processor as defined in section 6.0. Instead, this data will be emailed to us via the SMTP protocol.
SMTP (Simple Mail Transfer Protocol)
Our SMTP servers are protected by a TLS security protocol (sometimes known as SSL), meaning that email is encrypted using 256-bit SHA-2 encryption before being sent over the Internet. The content of the email is decrypted by our local computers and devices. Additionally, our e-mail platform is hosted by Microsoft using Office 365, which is fully GDPR compliant.
4. How we store your personal information
As described in detail in Section 3 above, some personal information will be stored in the database of this site. This data is stored in a pseudonymous way, that is, the data requires additional processing using a separately stored ‘key’ before it can be used to identify a person.
Data Masking is a GDPR requirement that we have implemented on this website.
5. About this website’s server
All web traffic between this site and your browser is encrypted and transferred through the HTTPS protocol (SSL).
6. Our third-party data processors
We use a number of third parties to process personal data for us. These two entities have been carefully selected and comply with the legislation set out in Section 2. Both of these entities are based in the US and are in accordance with the EU-U.S. Privacy Shield.
Google (Privacy Policy)
7. Data violations
We will report any unlawful violation of the database of this site or the database of any third party data processor to anyone and to all relevant stakeholders as well as authorities within 72 hours of the violation if it is obvious that the personal data that is stored in recognizable form, have been stolen.
8. Data controller
The data processing controller of this website is: NATURALIA, Tel : (+30) 210 5729637, 25th Martiou No 120, Peristeri, Attica, Greece, PC 121 32
9. Changes to our privacy policy
This privacy policy may change from time to time according to legislation or industry developments. We will not explicitly notify our customers or users of our website about these changes. Instead, we recommend that you occasionally check this page for any policy changes.