Privacy policy
Protecting your privacy and in particular your personal data is of utmost importance for us. Information you provide to The Website through the ordering process will only be used to keep you up-to-date with your order’s progress and to contact you if there are any issues. Subscribers to the mailing list will only receive Eva Gamayun Art related announcements and may unsubscribe at any time.
We will NEVER sell or otherwise give out information to a third party.
Collecting Personal Information
When you visit the Website, we collect certain information about your device, your interaction with the Site, and information necessary to process your purchases. We may also collect additional information if you contact us for customer support. In this Privacy Policy, we refer to any information that can uniquely identify an individual (including the information below) as “Personal Information”.
All card payments are processed through Stripe, Paypal, and they use TLS 1.1 encryption with Secure Sockets Layer (SSL) 128-bit encryption protocol. Encryption is a way of coding the information until it reaches its recipient, who shall be able to decode it using the appropriate key. Our Website shall not collect or store your credit card details in any way, thus you need to re- enter them each time you use your credit card for transactions through our website.
See the list below for more information about what Personal Information we collect and why.
Device information
Examples of Personal Information collected: version of web browser, IP address, time zone, cookie information, what products you view, search terms, and how you interact with the Site.
Purpose of collection: to load the Site accurately for you, and to perform analytics on Site usage to optimize our Site.
Source of collection: Collected automatically when you access our Site using cookies, log files, web beacons, tags, or pixels.
Disclosure for a business purpose: shared with our processor Webflow.
Order information
Examples of Personal Information collected: name, billing address, shipping address, payment information, email address, and phone number.
Purpose of collection: to provide products or services to you to fulfill our contract, to process your payment information, arrange for shipping, and provide you with invoices and/or order confirmations, communicate with you, screen our orders for potential risk or fraud, and when in line with the preferences you have shared with us, provide you with information or advertising relating to our products or services.
Source of collection: collected from you.
Disclosure for a business purpose: shared with our processor Webflow.
Behavioral Advertising
We use Google Analytics to help us understand how our customers use the Website. You can read more about how Google uses your Personal Information here. You can also opt out of Google Analytics here.
For more information about how targeted advertising works, you can visit the Network Advertising Initiative’s (“NAI”) educational page here.
You can opt out of targeted advertising by: Facebook and Google.
Additionally, you can opt out of some of these services by visiting the Digital Advertising Alliance’s opt-out portal here
Sharing Personal Information
We share your Personal Information with service providers to help us provide our services and fulfill our contracts with you, as described above. For example: we use Webflow to power our online store.
We may share your Personal Information to comply with applicable laws and regulations, to respond to a subpoena, search warrant or other lawful request for information we receive, or to otherwise protect our rights.
Using Personal Information
Lawful basis
– your consent;
– the performance of the contract between you and the Website;
– compliance with our legal obligations;
– to protect your vital interests;
– to perform a task carried out in the public interest;
– for our legitimate interests, which do not override your fundamental rights and freedoms.
Retention
Automatic decision-making
We do not engage in fully automated decision-making that has a legal or otherwise significant effect using customer data.
Our processor Webflow uses limited automated decision-making to prevent fraud that does not have a legal or otherwise significant effect on you.
Services that include elements of automated decision-making include:
– temporary denylist of IP addresses associated with repeated failed transactions. This denylist persists for a small number of hours.
– temporary denylist of credit cards associated with denylisted IP addresses. This denylist persists for a small number of days.
Your rights
If you are a resident of the EEA, you have the right to access the Personal Information we hold about you, to port it to a new service, and to ask that your Personal Information be corrected, updated, or erased. If you would like to exercise these rights, please contact us at [email protected].
CCPA
If you are a resident of California, you have the right to access the Personal Information we hold about you (also known as the ‘Right to Know’), to port it to a new service, and to ask that your Personal Information be corrected, updated, or erased. If you would like to exercise these rights, please contact us at [email protected].
Cookies
A cookie is a small amount of information that’s downloaded to your computer or device when you visit our Website. We use a number of different cookies, including functional, performance, advertising, and social media or content cookies. Cookies make your browsing experience better by allowing the website to remember your actions and preferences (such as login and region selection). This means you don’t have to re-enter this information each time you return to the site or browse from one page to another. Cookies also provide information on how people use the website, for instance, whether it’s their first time visiting or if they are frequent visitors.The length of time that a cookie remains on your computer or mobile device depends on whether it is a “persistent” or “session” cookie. Session cookies last until you stop browsing and persistent cookies last until they expire or are deleted. Most of the cookies we use are persistent and will expire between 30 minutes and two years from the date they are downloaded to your device.You can control and manage cookies in various ways. Please keep in mind that removing or blocking cookies can negatively impact your user experience and parts of our website may no longer be fully accessible.Most browsers automatically accept cookies, but you can choose whether or not to accept cookies through your browser controls, often found in your browser’s “Tools” or “Preferences” menu. For more information on how to modify your browser settings or how to block, manage or filter cookies can be found in your browser’s help file or through such sites as www.allaboutcookies.org.
Do Not Track
Please note that because there is no consistent industry understanding of how to respond to “Do Not Track” signals, we do not alter our data collection and usage practices when we detect such a signal from your browser.
Personal Data Security & Retention
Your personal data shall be retained only for the time required for the purposes of processing, i.e. for the duration of our contract, your consent, our legal obligations (such as compliance for tax purposes) and our legal interest in each case.The procedure of personal data processing shall be carried out in a way that ensures its confidentiality. Appropriate technical and organizational measures shall be applied to ensure the appropriate level of security of your data against accidental or unlawful destruction, accidental loss, alteration, unauthorised disclosure or access or any unauthorised form of processing.The data provided shall be protected by appropriate information security techniques to ensure both their secure transmission via the internet and their secure storage in Information Systems. For your safe navigation in our online store (e-shop), as well as for the security of your transactions, the Company shall take all appropriate measures by adopting modern, high quality security standards according to market trends, such as the high level encryption technology SSL (Secure Socket Layer), enabled during the input of sensitive personal data, offering 256-bit encrypted communication.All third parties who may receive your personal data shall be required to have all the appropriate technical and operational security measures in place to protect your personal data, in accordance with Greek and EU legislation on data protection.You are kindly requested not to disclose your banking details, or any sensitive personal data via e-mail. In no way shall the processing of such data serve the purposes of processing, as set out above.
Links
Our website contains links to other websites. This privacy statement on the protection of personal data shall not apply with regard to access of users to other websites.Please refer to the privacy policies of these websites for more information on how they handle your data.
Changes
We may update this Privacy Policy from time to time in order to reflect, for example, changes to our practices or for other operational, legal, or regulatory reasons.
Contact
For more information about our privacy practices, if you have questions, or if you would like to make a complaint, please contact us at [email protected]. Last updated: 24th July 2022. If you are not satisfied with our response to your complaint, you have the right to lodge your complaint with the relevant data protection authority.