Valid from 25/10/2022
How we collect personal data
Directly from you: We collect personal data directly from you when you visit our website, when you request information, submit a request, CV, or communicate with us in any way.
By automated means through the use of the website: When you visit the company's website, we may collect data from you based on your browsing and using our services. This data may include search history, address IP, screen resolution, the browser you used, operating system and settings, access times, and URL reference as well as data collected through cookies (See Cookies Policy).
WHAT PERSONAL DATA WE COLLECT
When you visit the website https://yourmajesty.gr/ we collect the following personal data, which (data) will vary depending on the use performed by each visitor (contact form, Newsletter, and other):
Telephone (mobile, landline)
Any information you include in the text of the contact form
Information you include in your CV
Browsing data such as address IP, screen resolution, browser used, operating system and settings, access times and URL and data collected through (cookies).
The purpose of the data collection/processing is to provide information to all users, existing and prospective clients about the company and our products, to effectively communicate with the users and clients, to support, promote and perform the contractual relationship with our customers and to protect the security of transactions. Specifically, we use your data:
To enable you to access and use our website and the services we provide through our website
To respond to service requests.
To send you notices and commercial communications,
To perform marketing and promotional campaigns
To be able to detect and prevent cases of fraud, abuse, security incidents, and other harmful activities and to perform security and risk assessments.
To ensure the company’s compliance with legal obligations
To improve our services and improve the user experience, for the purposes of controlling, troubleshooting and improving the functionality and quality of our online services and generally to optimize and tailor our web platform to your needs, making our website easier and more efficient to use.
LEGAL BASIS FOR PROCESSING
The legal basis for the processing of personal data collected in accordance with the above is:
processing of the personal data is necessary for the performance of the contract between you and YOUR MAJESTY, specifically to provide the services and/or information requested.
Processing is necessary for the purposes of the legitimate interests pursued by the Company or by a third party. YOUR MAJESTY will always balance your rights and interests in the protection of your personal data against YOUR MAJESTY’s rights and interests or those of the third party.
processing is necessary for compliance with a legal obligation to which YOUR MAJESTY is subject (such as tax law or lawful law enforcement requests).
Your consent, in order to process your personal data for direct marketing purposes, to provide personalized offers or any other instance where consent is required under applicable law.
The company also reserves the right to regularly communicate with our clients by telephone, mail, email, SMS, or any other means of communication, using the contact information which has been obtained lawfully, within the context of the company’s contractual relationship with the user (article 11§ 3 of N. 3471/2006) provided that the user has not opposed this communication. This communication may include an update on services provided, research to improve the services provided to the Customers, and other promotional activities and to serve similar purposes.
PERSONAL DATA RECIPIENTS
For the fulfilment of the each of the above processing purposes and within the scope of the responsibilities and duties of each recipient, the recipients of the user's data may be:
The employees of the company
Tax and other authorities or other public authorities in case of audits
External partners providing accounting services, audits, Internet services, technical support services or other services necessary for the operation of the website and the performance of the services by the company.
It should be noted that when storing, accessing and/or processing the user's personal data, the employees and agents of the company fully comply with the relevant provisions of the European General Data Protection Regulation 2016/679 on the protection of Data as well as with current Greek legislation and jurisprudence on the protection of personal data. The company requires of its employees, its website hosting and service providers, as well as its third-party partners to take all necessary technical and organizational measures (including appropriate policies and procedures) to prevent unauthorised disclosure of users’ personal data to which they gain access, and implement procedures for the management and processing of personal data in a manner that is lawful and protect such data according to GDPR imposed obligations.
We retain your personal data for the duration of our contractual relationship. The personal data we process is not retained for a longer period than is necessary for the performance of the contract and any services directly related to it:
a. In the case of a contractual relationship, your personal data is retained for as long as it is necessary to fulfill the contractual purpose and for the duration legal limitation period of the relevant claims as this is determined by applicable law, and at least for as long as it is defined by the legal (tax or other) obligation.
b. In case you contact us via email, your personal data is retained for as long as necessary to respond to your request and for a period of twelve (12) months after the completion of the request.
We will also retain personal data:
To the extent required by law (for example, in order to comply with tax legislation)
In order to comply with court proceedings (any ongoing or future court proceedings)
To establish, exercise or defend our legal rights, personal security of the users and the public.
However, some necessary personal data regarding your contractual relationship with the company as well as information concerning your notification on the processing of your data and your consent, where applicable, may be retained so as to establish the lawfulness of processing of user data by the company and the legal claims of the parties.
TECHNICAL AND ORGANISATIONAL MEASURES
The Company has taken the appropriate technical and organizational measures to safeguard the security and protection of Personal Data in order to securely store personal data and prevent accidental loss or destruction and unauthorized and / or illegal access, use, modification or disclosure. Indicatively, the following are mentioned:
Physical security measures such as access control and recording, security policies, implementation of measures for the safe destruction of files, installation of security locks, etc. *
Electronic security measures such as encryption, pseudonymization, user access control of information systems, installation of security hardware and software, etc.
regular training and updating of authorized users.
regular adequacy checks of security systems.
Our data centers, where Personal Data are stored, are located in Greece, where the Company's data center is located and the backup location is located within the Company in an area that carries all the necessary security measures. Also stored data are located with partner cloud service providers, whose datacenters are located in the EU. A second copy is created in encrypted form which is kept outdoors bearing all the security measures. If you need more information about the protection measures you can contact (enter an e-mail address).
The company, its employees, processors, assistants, agents shall implement appropriate technical and organisational measures to ensure, as much as possible, the most appropriate protection of personal data against accidental or unlawful destruction, loss, alteration, unlawful disclosure or access to them and any unlawful processing, as well as to ensure the possibility of restoring availability and access to them. These measures also serve so as to demonstrate that processing is performed in accordance with GDPR, obviously taking into account the nature, scope, context and purposes of processing as well as the risks of varying likelihood and severity for the rights and freedoms of natural persons, while applying appropriate procedures for the regular testing, evaluation and evaluation of the effectiveness of the techniques and organisational measures.
The personal data we process are processed on servers located mainly in the EU or EEA. In any case, if there is a case where the transfer of personal data to a third country is required, the Company has at its disposal alternative data transfer mechanisms to ensure the lawfulness of their processing, such as the Standard Contractual Clauses (SCCs).
Under the GDPR (articles 12-22) you have the following rights:
Request a copy of your personal data.
Withdraw your consent when this is the legal basis of the processing of your personal data.
Request that your personal data be corrected if it is inaccurate.
Request erasure of the personal data you have provided, under the conditions set out by law.
Request restriction of processing, under the conditions set out by law.
Request the portability of your personal data, if you have provided us with the data and the processing is based on consent or performance of a contract and processing is based on automated means.
Oppose some form of processing of your personal data by the company.
To exercise any of the above rights, you may contact us via e-mail at email@example.com or by post or in person at the premises of the company YOUR MAJESTY’S in 12 Polytechneiou str. 10433 Athens. We will take all possible measures to satisfy your request within a reasonable period, no later than one (1) month after the submission of the request and proper proof of your identity. That period may be extended by two further months where necessary, taking into account the complexity and number of the requests. Please note that the absolutely necessary user data may be retained, in order to safeguard the legal interests of the Company.
Please note that depending upon the circumstances and the request, we may not be permitted to provide access to personal data or otherwise fully comply with your request; for example, where producing your information may reveal the identity of someone else. We reserve the right to charge an appropriate fee for complying with your request where allowed by applicable law, and/or to deny your requests where, in the Company’s discretion, they may be unfounded, excessive, or otherwise unacceptable under applicable law.
Finally, each user has the right to submit a request to the Company on the processing and protection of his/her Personal Data, and if he/she considers that any of his/her rights are violated, he/she has the right file a complaint with the Hellenic Data Protection Authority (http://www). dpa. gr/),, Kifissias 1-3, P.C. 115 23, Athens, 210 6475600, by submitting the specially provided complaint form that is available at https://www. dpa. gr/el/syndesi/polites/kataggelia).
Please be aware that the content and services of this site are not intended for persons under 18 years of age. No personal data must be submitted to the company through the website by visitors under 18 years of age. If we become aware that a user under the age of 18 has registered and provided personal data without the explicit consent of the parent or legal guardian, we will immediately delete, after receiving such information or request, the relevant data in accordance with the applicable company policy.
The company may change this policy. Please check the effective date at the top of the policy to see when it was last revised. Every revision will be implemented as soon as we publish the revised policy.
If we make substantive changes to this policy that broaden our rights to use the personal data that we have already collected from you, we will inform you and provide you with a choice for the future use of these data.