The protection of your personal data is very important to us. This notice aims to inform you about the type of personal data we collect, the way we process them, how they are protected and your rights in relation to this processing, regarding the services we provide or during your visit to our website.
Definitions
The terms “we” and the “Company” refer to the single-member private company under the name “VENDORA B.V.”, which is based in Almere, the Netherlands, with company registration number 69478260. The terms “you” and “user” refer to any person who visits or uses this website.
The terms “website” and “site” refer to this website, which, together with all its content, belongs to the Company.
The term “GDPR” refers to the General Data Protection Regulation, namely Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons with regard to the processing of personal data, the free movement of such data and repealing Directive 95/46/EC.
Introduction
In our effort to protect and safeguard the privacy and personal data of users/visitors of this website, we have implemented to date a series of actions, rules and procedures to ensure our full compliance with applicable European and national legislation. This Privacy Notice (hereinafter referred to as the “Notice”) aims to inform data subjects, in accordance with Articles 12–14 of the GDPR and the relevant provisions of the Law.
Please read the Notice carefully in order to be informed about the data processed by our Company, how they are protected and what your legal rights are.
Our Company processes your personal data based on the performance of a contract and/or compliance with other legal obligations. In addition, our Company may process your personal data based on the consent provided through our website and provided that you have been previously informed, in accordance with this Notice, about the type of data, the purpose(s), the extent of processing and any recipients thereof. Your consent may be withdrawn at any time by contacting us at support@vendora.gr.
In any case, by visiting our website and/or using our services, each natural person accepts this Notice, which constitutes an integral part of the Terms of Use, in conjunction with which it should be read and interpreted, and is bound by these terms.
What are “Personal Data” and “Processing of Personal Data” (Article 4 GDPR)
“Personal data” means any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one whose identity can be determined, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
“processing” means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
Personal data we collect and process
We collect and process the following personal data:
- Basic account details: Full name, email address.
- Additional details for sellers: Area of residence, phone number. Optional: street/address, photo.
- Data for the use of the Escrow & Payments Application (EPA): Bank account number (IBAN), full address, copy of ID/passport.
- Contact details: Full name, email (via contact form).
- Communication data: Records of emails and other messages.
Methods of data processing
Data is processed through the following methods:
- Electronic registration in databases
- Automated processing for website functions
- Non-automated processing by our staff where required
Purposes of processing
We process data for the following purposes:
- Communication with you upon your request
- Providing information about our services
- Providing our services in accordance with the Terms of Use
- Managing and improving the website
- Compliance with legal obligations
- Sending promotional messages (with your consent)
- Creating anonymous statistics
- Enforcing the Terms of Use
We may work with trusted third-party partners, including advertising and analytics providers such as Google, in order to improve our services and provide relevant content and advertisements.
We use Google AdMob to display advertisements in our mobile application. When you consent to personalised advertising, Google may process your personal data in accordance with its own privacy policies. You can learn more about how Google uses your data here: https://business.safety.google/privacy/
User rights and data deletion
If you have provided us with your personal data, you may exercise your rights (Articles 15 et seq. of the GDPR and relevant law provisions), including the right of access, the right to rectification, the right to restriction of processing, the right to erasure and the right to data portability, where technically feasible, by contacting us via email at support@vendora.gr. Where processing is based on your consent, you may withdraw it at any time, without affecting the lawfulness of processing based on consent before its withdrawal. We inform you that you have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA) regarding the processing of your personal data. For more information, you may visit www.dpa.gr.
In case of exercising one of the above rights, we will make every effort to respond to your request in writing within one (1) month; otherwise, the reasons why a right cannot be exercised or a request cannot be satisfied in accordance with the GDPR will be explained.
You may request the deletion of your data by contacting us at support@vendora.gr. We will delete your data within 30 days, unless there is a legal obligation to retain it.
We advise you to keep your personal settings and personal data complete, accurate and up to date. In case it is found or reasonably considered that your personal data is not true, accurate and up to date, we reserve the right to reject your registration request or suspend or terminate your account immediately without notice, in order to protect other users/visitors.
Where required by applicable law, we will ask you to opt-in or provide explicit consent for the processing of your personal data.
Transfer and retention of personal data
Our Company does not disclose or transmit your personal data to third parties, unless this is required by law or constitutes a necessary action in order to provide you with our services. The servers that make this website available, as well as the databases in which the information is stored, may be located outside Greece, but always within the European Union. The Company has created a network of reliable partners, properly trained in protecting your privacy and personal data, and continuously improving the measures to protect your personal data from unauthorized use, accidental loss, dissemination or destruction.
For more information regarding data processing by Mangopay, the provider that securely manages your payments in accordance with the Terms of Use, please visit Mangopay’s Privacy Policy.
Personal data retention period
We retain your personal data for as long as your account and/or the contract between us is in force and as required by applicable law. If we have no legal obligation to retain such data, we will delete your data as soon as it is no longer necessary for any of the above purposes. The data you provide to the Company through the contact form is stored for a period of one (1) year, unless otherwise specified or required by applicable law.
Security
Our Company implements appropriate technical and organizational measures to protect your personal data. With regard to the processing of your personal data, our Company selects individuals with relevant professional qualifications, who provide sufficient guarantees in terms of technical knowledge and personal integrity to maintain confidentiality. Our Company uses a range of security technologies and organizational procedures to protect your personal data, such as encryption methods, firewalls, and antivirus systems.
In particular, in order to protect our website, we use encryption methods when personal data is transmitted between your system and ours, and we implement firewalls and intrusion detection systems to prevent unauthorized access to your information. Through continuous monitoring, we ensure the secure transmission of information and the uninterrupted use of the website, free from potential malicious software (e.g. viruses) and from unauthorized access to users’ personal data.
Children
Our website is intended for general audiences and we do not knowingly collect personal data from children under the age of 15. Children should always obtain parental consent before disclosing any personal data about themselves (such as names, email addresses, etc.).
Cookies
Cookies are small data files, consisting of text and numbers, which are stored in the browser you use (e.g. Chrome, Mozilla Firefox) and contain information that allows the website to remember important data in order to make the use of the Vendora.gr website more efficient and useful for you. Cookies allow us to enable certain information to facilitate your navigation in relation to the provision of our services. For more information regarding the use of cookies, please refer to our Cookies Policy.
Third Party websites
During your online use of our website, you may encounter links to other websites for your convenience and information. These websites may operate independently from our Company and may have their own notices, statements or privacy policies. We recommend that you review them in order to understand how they may process your personal data, as we are not responsible for the content of non-Company websites, or for managed websites, or for the privacy practices of such websites.
Updates to the Notice
The Company reserves the right to change or modify this Notice at any time, without prior notice, in order to monitor and ensure ongoing compliance with the requirements of the GDPR.
Such changes, modifications, additions or deletions to the Notice will take effect immediately, from the moment they are posted on the website. Any use of the website following such change or modification shall be considered as acceptance by the user/visitor of such changes, modifications, additions or deletions.
Contact us
For any further questions or comments regarding this Notice and how we handle your personal data, please contact us by email at support@vendora.gr email address.
