Privacy Policy
Data Protection Declaration
This document details our compliance actions with the General Data Protection Regulation 2016/679, also known as GDPR.
Definitions
The Company:
Our company under the name “Wellness Spot” with the address “17th November 35 Alimos, 17455” and VAT number “124724245” which is the exclusive owner of this website and all of its content.
The User:
Any person who visits our website and any person who acquires a membership account to use the services offered.
Website:
The wellness-spot.gr website, which, as well as all of its content, is fully and exclusively owned by our Company.
Introduction
Our Company firmly believes in the protection of personal data, in the principles governing the processing of data and in particular that:
All data is processed lawfully and fairly in a transparent manner.
Data is collected for specified, explicit and legitimate purposes and is not further processed in a manner inconsistent with those purposes.
The data are adequate, relevant and limited to what is necessary for the purposes for which they are processed.
The data shall be accurate and, where necessary, updated.
Data shall be kept in a form which permits identification of data subjects only for the time necessary for the purposes of processing.
Data shall be processed in a manner that ensures their appropriate security.
Please read this Privacy Statement carefully in order to be informed about your personal data that the Company collects and how it uses and protects it, as well as the relevant options and possibilities available to you.
Ways of collecting personal data
The Company may collect your personal data in the following ways (indicatively):
Registration on the Website,
You may register on the Site by registering on the Website,
Contacting the Company,
Contact us via the Contact form, send us a message to the Contact form, communicate with us via the website, communicate with us via email, purchase products,
Contacting a Company representative by e-mail, telephone or mail,
Subscription to the Company’s newsletter,
Cookies that are stored on your computer or mobile device when you visit our Website.
Security
The Company recognizes the importance of the issue of security of Personal Data as well as electronic transactions and its obligations in this regard and takes all necessary measures, using the most modern and advanced methods, to ensure maximum security of the User. All information related to the User’s personal data is secure and confidential. We receive your personal data only if you choose to provide it and expressly consent to its processing by our Company.
Safety is achieved by the following methods:
Identification
Two fields are used to identify the User. The User is the only one who has access to his/her data through the above secret password and is solely responsible for maintaining its secrecy and hiding it from third parties. In the event of its loss or leakage, you must immediately notify the Company, otherwise the Company is not responsible for its use by an unauthorized person. The system does not keep a history of users’ secret passwords. That is, in case of loss, the old secret password cannot be communicated to the user. In order for the user to be able to access his/her account on our website again, a new secret code must be issued through a special identification procedure. The Company recommends that, for security reasons, the User should change his password at regular intervals and avoid using easily traceable passwords (e.g. date of birth or telephone number). It is also recommended to use symbols (e.g. $^*#@!_) in addition to letters and numbers when creating the secret password.
Controlled Access.
The web hosting provider that our site currently uses is Quantrum.gr.
Encryption
Using special software, the Company’s computer system first decrypts the information it receives before processing it. The Company’s systems send information following the same encryption process. Wherever on the Website you enter personal data (password, email, addresses, phone numbers, credit card numbers, etc.) there is SSL (Let’s Encrypt) encryption.
Transaction Privacy
Privacy is self-evident for us. The basic principles governing traditional transactions also apply in the case of electronic transactions with the Company. All information transmitted by the User is confidential and the Company has taken all necessary measures to ensure that it remains secure and is used only to the extent necessary for the performance of the contract and the provision of services.
The User, in order to ensure the security of his/her data, should not disclose them or the access data to third parties.
Purpose of processing personal data
Your personal data will not be used for purposes other than those mentioned herein and provided by you, unless we obtain your permission, or unless required or permitted by law. The Company collects with your consent only personal data that is strictly necessary in order to satisfy your requests and provide you with the services you choose in the best possible circumstances and in the most efficient manner. If and where additional information is required, you will be informed of this at the time of data collection and will be asked again for consent.
The Company collects data for communication, issuing formal written offers and related sales documents, in accordance with applicable legislation and the requirements of financial services (tax authorities, taxis, etc.).
Purchasing
The Company collects data during online ordering through the shopping cart on our website. This data concerns personal data, such as shipping details, buyer details, as well as the products or services selected by the visitor or User of our website. These data are used as in normal transactions, i.e. for their safe completion and the possibility of informing the User in the context of the execution of the contract.
We do not collect data related to payment, such as bank account number, credit or debit card number. If the User chooses “payment by card” the necessary payment card details will have to enter them on the secure website of the partner payment bank to which they will be automatically redirected to complete the payment (redirect).
Provision of Services
The User’s personal data as they arise during the provision of the services chosen by the User, will be stored and accessible for the execution of the contract and the provision of services in an efficient manner, so that the competent persons and any strictly authorized collaborator can perform or control the progress of each project.
Service Improvement and Measurement
In addition, the Company collects information when the User visits it online, as well as through any emails exchanged, about how the User uses the services, such as, for example, the type of content displayed or the frequency and duration of their activities. Furthermore, the Company collects information from or about the devices through which the User accesses the Services, depending on the rights granted. The Company may correlate the information collected from the various devices of the User, as this contributes to the consistency of the Services provided. The collection of this data allows to personalize the visitor’s online experience, to improve the performance, usability and effectiveness of the Website and to evaluate the effectiveness of the promotional activities (marketing).
In particular, login information is collected, such as:
the name of the mobile phone provider or internet service provider (ISP),
the language and time zone of the browser,
the geographical location of the access device, and the type of browser (Google Chrome, Safari, etc.)
the IP address of the electronic device through which you access the Website.
IP address.
The IP address is a number assigned to your electronic device each time you access the Internet and for information security and system diagnostics purposes, this data is collected when you visit the Website.
Cookies
Cookies are small files of information stored in your computer’s browser. Sites can only access cookies stored on your computer. Any website that you have accepted to store cookies on your browser can only access its own cookies and not cookies from other websites.
Find out about the relevant European directive at http://ec.europa.eu/ipg/basics/legal/cookies/index_en.htm
Processing of personal data by third parties
We may share your personal data with service providers, corporate partners and third parties in accordance with applicable law. For example, the Company may outsource the processing of your personal data as set out herein to a specialist company for this purpose.
The Company will only disclose personal data in compliance with this Statement and/or when required by applicable law. Agreements with these corporate partners will limit the purposes for which your personal data may be disclosed and processed as set out herein and will require adequate protection of your personal data.
The Company may store your personal data in the cloud. This means that your personal data may be processed by a cloud service provider on behalf of the Company and your personal data may be stored in different locations around the world. The Company uses organizational and contractual measures to protect personal data and to impose similar, but in no way less restrictive, requirements on cloud service providers, including requirements regarding the exclusive processing of the user’s personal data for the purposes stated herein.
While browsing the Company’s Website, the user may encounter links to other websites, for practical and informative reasons. These websites may operate independently of the Company and may have their own notices, statements and privacy policies. The user is advised to read and understand how his/her personal data is processed in relation to these sites, as the Company is not responsible for the content of sites owned or managed by another company, nor for the use or privacy practices of these sites.
User rights
The User has the right to access his/her personal data collected and processed by the Company, as well as the right to be informed, upon request, by sending an email to info@wellness-spot.gr.
The User may restrict, modify, correct, supplement and delete his/her personal data processed by the Company and for this purpose he/she may contact the Company by sending an email to info@wellness-spot.gr.
The User has the possibility to withdraw this consent to the processing of personal data by sending an email to info@wellness-spot.gr.
After studying the relevant request and identifying the individual, the Company will proceed within a period of one month to satisfy it, provided that the request is legitimate and valid.
For any questions or to obtain information related to the processing and protection of personal data, you may contact the Company by sending an email to info@wellness-spot.gr.
In case of non-compliance within the one-month period, the User reserves the right to file a complaint with the Personal Data Protection Authority (1-3 Kifissia Street, P.K. 115 23, Athens, +30 210 6475600, contact@dpa.gr ).
Do you want recieve more information about our services?
Opening Hours:
Weekdays 8:00 – 16:00
Phone: +30 210 9831101
Email: info@wellness-spot.gr
Address:
17is Noemvriou 35 Alimos, 17455