1. INTRODUCTION

FINE SPARKLES JEWELLERY places the highest importance on the protection of your personal data.
This Privacy Policy describes how we collect, use, disclose and protect your personal data when you visit or use our website
www.finesparklesjewellery.gr, purchase products, visit our physical store, or otherwise interact with us.

All processing of personal data is carried out in accordance with:

  • Regulation (EU) 2016/679 (GDPR);
  • Greek Law 4624/2019;
  • Decisions and Guidelines of the European Data Protection Board (EDPB);
  • Decisions and Guidelines of the Hellenic Data Protection Authority;

(collectively referred to herein as “Data Protection Legislation”).

2. DATA CONTROLLER

The Data Controller is:

ΔΗΜΗΤΡΙΟΣ ΚΑΡΑΧΑΛΙΟΣ (ΑΤΟΜΙΚΗ ΕΠΙΧΕΙΡΗΣΗ)
Trading as: FINE SPARKLES JEWELLERY
Registered in Greece
VAT No.: 042435581
Tax Office: Pirgou
Registered Address: Agiou Charalampous 7, Pirgos, Ilia, Greece
Commercial Registry No.: 187414825000
Email: info@finesparklesjewellery.gr

If you have any questions regarding the processing of your personal data or wish to exercise your rights,
you may contact us at:
info@finesparklesjewellery.gr

3. PERSONAL DATA UNDER COLLECTION AND PROCESSING

We collect personal data either automatically or directly from you.

A. Data Automatically Collected (Device & Usage Data)

When you visit or use our website, we automatically collect certain information, including:

  • IP address;
  • Browser type and version;
  • Device type and operating system;
  • Time zone;
  • Referring URLs;
  • Pages or products viewed;
  • Date, time and duration of visits;
  • Interaction with the website;

This data is collected through: (i) Cookies, (ii) Log files, and (iii) Tags and pixels.
More information is available in our Cookies Policy.

B. Data You Provide to Us

We collect personal data that you voluntarily provide when you:

  • Place or attempt to place an order;
  • Create an account or wishlist;
  • Contact us (email, forms, customer support);
  • Participate in promotions or surveys;

This information may include:

  • Full name;
  • Billing and shipping address;
  • Email address;
  • Telephone number;
  • Order and transaction details;
  • Date of birth (where provided);
  • Name day;
  • Any information included in communications with us;
  • Payment data (processed exclusively by certified payment providers and never stored by us);

4. PURPOSES AND LEGAL BASES OF PROCESSING

A. Contractual Necessity (Article 6(1)(b) GDPR)

  • Processing and delivery of orders;
  • Payment processing;
  • Issuing invoices and confirmations;
  • Customer account management;

B. Legal Obligation (Article 6(1)(c) GDPR)

  • Compliance with tax and accounting laws;
  • Responding to lawful requests by authorities;

C. Legitimate Interests (Article 6(1)(f) GDPR)

  • Fraud prevention;
  • Website security;
  • Improving services and user experience;
  • Internal analytics (in a proportionate manner);

D. Consent (Article 6(1)(a) GDPR)

  • Marketing communications;
  • Non-essential cookies;
  • Analytics and advertising tools (where applicable);

You may withdraw your consent at any time.

5. SHARING OF YOUR PERSONAL DATA

We share personal data only when necessary and only with trusted partners, including:

  • Hosting and IT service providers;
  • Courier and logistics companies;
  • Payment service providers (e.g. Eurobank, Worldline);
  • Accounting and tax advisors;
  • E-commerce platform providers;

All third parties act either as processors under Article 28 GDPR or as independent controllers
and are contractually bound to comply with GDPR.

We do not store or access your payment card details.

6. INTERNATIONAL DATA TRANSFERS

Some service providers may be located outside the European Economic Area (EEA),
including Canada and the USA. Transfers take place only:

  • Under adequacy decisions;
  • Using Standard Contractual Clauses (SCCs);
  • Or other appropriate safeguards in line with GDPR and EDPB guidance;

7. DATA RETENTION

  • Order and invoicing data: as required by tax law;
  • Customer account data: until deletion is requested;
  • Marketing data: until consent is withdrawn;

8. YOUR RIGHTS (ARTICLES 12–22 GDPR)

  • Right of Access;
  • Right to Rectification;
  • Right to Erasure (“Right to be Forgotten”);
  • Right to Restrict Processing;
  • Right to Data Portability;
  • Right to Object;
  • Right to Withdraw Consent;

You may lodge a complaint with the Hellenic Data Protection Authority:
www.dpa.gr

To exercise your rights, contact us at:
info@finesparklesjewellery.gr

9. COOKIES

We use cookies to ensure proper website functionality and improve user experience.
Non-essential cookies are used only after your consent.
You may manage or withdraw your consent at any time through Cookie Settings.

10. SECURITY MEASURES

We implement appropriate technical and organisational measures to ensure:

  • Confidentiality;
  • Integrity;
  • Availability of personal data;

Measures include encryption, access controls, secure servers and regular security reviews.

11. THIRD-PARTY WEBSITES

Our website may contain links to third-party websites.
We are not responsible for their privacy practices and recommend reviewing their policies separately.

12. CHANGES TO THIS POLICY

We may update this Privacy Policy from time to time.
Any changes will be posted on this page with an updated revision date.

13. CONTACT

For questions, requests, or complaints:
info@finesparklesjewellery.gr