Privacy Policy

1. Introduction

This Privacy Policy explains how personal data is collected, used, and protected when you visit or interact with our website. By accessing or using the website, you acknowledge and agree to the data practices described in this policy.

2. Information We Collect

We collect personal information that you voluntarily provide, such as your name, email address, billing or contact details when you place an order or contact us. We also automatically collect technical data, including IP address, browser type, device information, and website usage data.

3. Use of Personal Data

We process personal data only where it is necessary and lawful to do so. Your information may be used to operate and manage the website, process and fulfill orders, provide customer support, respond to inquiries, and communicate important service-related information. Personal data may also be used to improve website functionality, analyze user behavior, prevent fraud or misuse, ensure security, and comply with legal or regulatory obligations.

Where required by law, data processing is based on your consent. In other cases, processing may be necessary for the performance of a contract, compliance with legal obligations, or the legitimate interests of the website operator, provided that such interests do not override your fundamental rights and freedoms.

4. Additional Data Use and Processing

Personal data may also be processed for internal administrative purposes, record keeping, and business continuity planning. Where applicable, data may be used to enforce our terms and policies, resolve disputes, protect legal rights, and respond to lawful requests from public authorities or regulatory bodies. We do not use personal data for automated decision-making or profiling that produces legal or similarly significant effects on users, unless explicitly permitted by law.

We ensure that any third-party service providers involved in processing personal data act only on our instructions and are subject to appropriate contractual safeguards. Such providers are granted access solely to the information necessary to perform their services and are required to implement adequate data protection measures.

5. Cross-Border Transfers and Data Minimization

Where personal data is transferred or accessed outside the European Economic Area, we take appropriate steps to ensure an adequate level of protection, including the use of contractual safeguards or reliance on legally recognized transfer mechanisms. By using the website, you acknowledge that such transfers may occur where necessary for service provision.

We apply data minimization principles and collect only the personal data that is relevant, adequate, and necessary for the stated purposes. We regularly review stored data to ensure it remains accurate, up to date, and limited to what is required, and we take reasonable steps to rectify or delete inaccurate or outdated information.

6. Data Security and Retention

We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure. These measures may include secure servers, encryption, access controls, and regular system monitoring. While we take reasonable steps to safeguard your information, no method of transmission or storage is entirely secure, and absolute security cannot be guaranteed.

Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. Retention periods vary depending on the nature of the data and applicable legal obligations. Once personal data is no longer required, it is securely deleted or anonymized in accordance with applicable laws.

7 Governing Law and Jurisdiction

This Privacy Policy may be amended or updated at any time without prior notice. The Privacy Policy is governed by and construed in accordance with the laws of the Republic of Cyprus.