At ETHO MARIA we are committed to respecting and protecting your personal data. We understand that you are aware of and care about your own personal privacy interests, and we take that seriously.
This Privacy and Data Protection Notice describes the information that ETHO MARIA collects about you; how we use and protect this information; the choices you can make about how we use this information.
We recognize that information privacy is an ongoing responsibility, and so we will from time to time update and amend this Notice. So please check our website https://ethomaria.com/en occasionally to ensure that you are aware of and satisfied with any changes.
1. Who we are
We are ETHO MARIA, a company with international presence and head offices in Athens, Milan and Miami. We have been creating jewelry and timeless pieces of impeccable quality since 2008.
2. What type of information is collected from you?
2.1. Name / Trade name. We collect the given names (first name, family name) and trade names of clients and contacts when they express interest in our products.
2.2. Email address. We collect the email address of clients and contacts when they express interest in our products.
2.3. Postal address. We collect the postal address of clients for billing purposes and for dispatching orders by post.
2.4. Other contact information. We collect other contact information such as the phone numbers of clients or of their contacts to better provide them with relevant information about our products and for order arrangements.
2.5. Billing data. We collect information of clients that is necessary for billing purposes such as TRN and Tax Office.
2.6. We try to minimize the risk to your rights and freedoms by not collecting or storing sensitive information about you.
3. Where do we obtain the information from?
We obtain information about you when you express your interest in our products upon contacting us by any means available (e.g. phone, e-mail, instant message on social media etc.), when you apply for our digital authenticity card and when you use our website. We do not sell your information to anyone and only share it with third parties who are facilitating the delivery of our services to you.
4. How do we use (process) the information?
We use your information only and exclusively for the provision of our products.
5. Legal basis for processing
5.1. The processing of your information, which is used for the provision of our products, is based on the conclusion and performance of a contract.
5.2. In certain cases, the processing of your information is necessary for the purposes of our legitimate interests or for our compliance with national and/or European legislation.
6. How long do we store your information?
We retain your information for the duration of our customer relationship and only for as long as it is necessary in accordance with applicable legislation.
7. Safeguards taken to protect your information
When you give us personal information, we take steps to ensure that it’s treated securely. To help protect the privacy of your information, we maintain physical, technical and administrative safeguards. We update and test our security technology on an ongoing basis. We restrict access to your information to those employees who need to know that information in order to provide benefits or services to you. In addition, we train our employees about the importance of confidentiality and maintaining the privacy and security of your information. Among other things, we have implemented the following technical and organizational measures and procedures designed to protect your information from loss, misuse, unlawful processing or alteration:
• detection and management of security incidents
• use of servers with restricted access and subject to regular checks
• use of IT systems and computer programs that are installed in a way that minimizes the use of personal data and/or user authentication data
• adoption of data retention and deletion/destruction policies
• need-to-know access to systems and databases
8. When and how we share information with others?
Within the context of our activities and for your own convenience, we rely on thirdparty service providers to perform a variety of business operations on our behalf. In so doing, we may need to share your information with them. We provide our service providers with only the personal information they need to perform the services we request, and we require that they protect this information, strictly adhere to National and European legislation on the management of this information and not use it for any other purpose. The information we collect from you is stored in one or more databases hosted by third parties located in the European Union. These third parties do not use or have access to your personal information for any purpose other than delivery of orders and IT maintenance services.
9. Your rights
You have the right to request access to your personal information that we process. You also have the right to:
9.1. Rectify incorrect personal data or erase it (in certain circumstances).
9.2. Restrict or object to the processing of your personal data.
9.3. Receive (under conditions) your data so that you can use it elsewhere.
9.4. Where we process data based on your consent, you also have the right to withdraw your consent at any time but this does not affect the lawfulness of the processing before the date that you withdrew your consent.
Finally, you have the right to lodge a complaint with the competent Greek supervisory authority, which is the Hellenic Data Protection Authority (http://www.dpa.gr/).
10. Transferring of information outside the ΕΕΑ
Within the context of our activities, information we collect about you might be transferred or processed outside the EEA. For this purpose, however, we will take all reasonable steps to ensure that your information is held in compliance with the applicable data protection legislation. Such transfers take place only if the specific requirements, as set forth in Articles 44 et seq. of the GDPR, are fulfilled in order to ensure an adequate level of protection is guaranteed for such international data transfers in each case.
12. How to contact us?
13. Version information – Changes and Updates
This Notice was last updated on November 2021. We reserve the right to amend this Notice at any time, for any reason, without notice to you, other than the posting of the amended Privacy and Data Protection Notice at our website. We may e-mail periodic reminders of changes to and updates of this Notice, but you should check our website frequently to see the current Privacy and Data Protection Notice that is in effect.