General Data Protection Regulation (GDPR)
At 21Flowers Flower Shop, we have worked hard to prepare for the General Data Protection Regulation (GDPR) of the EU to ensure that we fulfill its obligations and maintain transparency regarding customer messages and how we use data. GDPR is a comprehensive law for data protection that came into effect on May 25, 2018. It replaced the existing EU law to enhance the protection of "personal data" and the rights of individuals. It is a unified set of rules governing the processing and monitoring of data in the EU.
Privacy and Personal Data Security Policy
In view of the implementation of the General Data Protection Regulation (GDPR), 21Flowers Flower Shop fully implements the terms and conditions of the Privacy Policy - Personal Data Protection Declaration. In this context, 21Flowers Flower Shop has made improvements to ensure data security and privacy protection for both legal entities and natural persons.
Who processes personal data?
Personal data will be processed by all employees and associates of 21Flowers Flower Shop, for one or more of the following purposes - Telephone, written, or electronic communication with the sender or recipient for your order assistance. For all the above cases, the employees and associates of 21Flowers act only on behalf of 21Flowers and are specifically authorized for this purpose, as they are fully bound by confidentiality, based on the relevant private contracts signed and the obligations provided for by law, regarding the collection and processing of the above data. To protect the confidentiality of the personal data you transmit through the use of this website, we maintain physical, technical, and organizational safeguards. We constantly update and test the security technology we use. We limit access to your personal data only to personnel who need to know this information to provide you with privileges and services. In addition, we train our staff on the importance of confidentiality and the preservation of the privacy and security of your information.
Data Retention Period
Our flower shop retains customer data for as long as the business relationship with customers lasts. However, it may, in each case, for the smooth operation of the business, retain them for a longer period. 21Flowers Flower Shop stores personal data for the time period (one week from placing your order), and in compliance with the relevant legal provisions, all user data after the expiration of the above deadline is automatically deleted. The website www.21Flowers.gr of our flower shop stores cookies for thirty (30) calendar days.
Hosting Server, storage, and file management
All data traffic between our flower shop website and browsers is encrypted using the HTTPS protocol. In compliance with the relevant legal provisions, all user data and files are deleted within one week from placing your order, both from the Server and the working environment of our website.
Customer Rights regarding data processing
21flowers is committed as an online store to allow you to make any purchase you want and to have your favorite flowers delivered to the place you want through a secure browsing with 2 methods:
1 - For registered users; where users have full access to their account and manage it themselves. Right to access their account, right to correct, right to delete stored data or even the entire account.
2 - For visitors; where users have limited capabilities and cannot make any deletion of information.
This privacy notice is intended to provide you with information about the personal data collected by 21Flowers Flower Shop from you and how it is used. If you have any questions, please contact us.