FREE SHIPPING FOR PURCHASES OVER 50€
T:+30 2102813710 CONTACT
Your shopping cart is empty!

Privacy Policy

PRIVACY POLICY

With this policy the COMPANY under the name "Konstantinos N. Atzoutzoulas & Co. E.E." and the distinctive title "FOXYSTAR", based in N. Heraklion (Address: Romanou Melodou & no. 15, in N. Heraklion, Postal Code: 14122, Athens, Greece), VAT number: 099955180, e-mail: [email protected], (mailto:[email protected]) (hereinafter the "COMPANY") defines and discloses the conditions under which, as "Processing Manager", collects, stores , uses and generally processes your personal data, which collects when you visit, register or use the COMPANY's websites (hereinafter the "Websites") and its mobile applications (hereinafter the "Applications") as well as when you transact with its physical stores.

This Privacy Policy also describes how we use, share and protect your personal data, the choices you have regarding your personal data, and how you can contact us. This Protection Policy is in accordance with the conditions arising from the European Regulation 979/2016/EU (otherwise GDPR).

For any questions regarding this Privacy Policy, or any issue related to the processing of your Data and the exercising your rights, you can contact the email address [email protected]


1. Websites of the COMPANY

Website www.foxy.gr is the COMPANY's website, where the online store for the presentation and sale of the COMPANY's products and services is located.

2. What is Personal Data

The term "personal data" refers to information of natural persons, such as name, postal address, e-mail address, contact phone number, etc., which identify or can identify you, hereinafter "Personal Data".


3. What is Personal Data Processing

Any act or series of acts carried out with or without the use of automated means, on personal data or sets of personal data, such as collection, registration, organization, structuring, storage, adaptation or alteration, retrieval, information retrieval, use, disclosure by transmission, dissemination or any other form of disposal, association or combination, restriction, deletion or destruction.


4. What Personal Data of yours we collect

We collect exclusively and only your absolutely necessary Personal Data, which are appropriate and clear for the intended purpose.

This Data includes the following:[D1] 

·         Data you provide to us during your registration or purchase as a guest and the creation of a user account on the COMPANY Websites or applications, via the Internet or your mobile or through your personal contact with our stores or our sellers and specific data such as electronic address (email) and access code/login password (as mandatory) and name, surname, postal address, telephone number and (as optional), professional VAT number.

·         Data and information that you provide to us through transactions between us (purchases, orders, etc.) and communication between us (via physical stores, our online store, our sellers, telephone, e-mail or through any other way/means).

·         Δεδομένα που αφορούν στον τρόπο πληρωμής για τις συναλλαγές που πραγματοποιείτε μαζί μας.

·         Data related to the payment method of the transactions you carry out with us.

·         Data you provide us when you subscribe to our newsletter.

·         Data about the products and services that you usually choose in preference, in order to recommend products or services of your interest and to further improve your shopping experience with us.

·         Traffic data of our website.

·         Information collected from the use of cookies in your browser.

·         To provide the best possible website experience, we collect technical information about your internet connection and browser, as well as the country code and phone number where your computer is located, the web pages displayed during your visit, advertisements on which you click and which search terms you used.

·         Your social media username, if you interact with us through these channels, to help us respond to your comments or questions.


5. How we use your Personal Data

Where applicable we use your Data:

·         To complete product and service orders. The COMPANY processes your Data in order to fulfill its contractual relationship, to process the order of products and/or services, to provide customer service, to comply with legal obligations, to refute, raise or exercise legal claims. Your Data may need to be transferred to third parties for the delivery of the product or service you have ordered. In addition, we may retain your Data for a reasonable period of time in order to fulfill our contractual obligations, such as product returns, as required by relevant law.

·         To Create a User Account: The COMPANY processes your Data in order to provide you with account functions and to facilitate the purchase of products and/or services.

·         For Communication: The COMPANY uses your Data to respond to your requests/questions, refund requests and/or any complaints. The information you share with us enables us to manage your requests and respond to you in the best possible way. This is based on our contractual obligations to you, our legal obligations and our legitimate interests, so that we can provide you with the best possible service and be able to improve our services based on your own personal experience.

·         To send you newsletter / offers: With your consent, we will use your Personal Data, your preferences and transaction details to inform you via email, internet, phone and/or social media for relevant products and services, including personalized / personalized offers etc. You can withdraw this consent at any time.

·         To comply with our contractual obligations to you or in application of legal provisions or in execution of court decisions.

·         To send communications that are required by law or that are necessary to notify you of changes to the services we provide to you. For example, updates on these privacy notices, product recall notices, and legally required information about your orders.

The processing of your Data is carried out either by the specially authorized staff of the COMPANY, or through IT systems and electronic devices from the COMPANY and exceptionally by third parties, who, having contractually committed to maintaining confidentiality and protecting your Data, carry out work that are necessary to achieve the purposes strictly related to the use of our Websites, their services and the sale of products through our Websites.


6. What is the legal basis for the processing of your Data by the COMPANY

Data protection legislation sets out various reasons why a COMPANY may collect and process your personal data, including:

  • The performance of our contractual relationship.
  • Your consent, where required, such as when you choose to receive newsletters. When collecting your personal data, we will always inform you which data is necessary in relation to a particular service.
  • Our compliance with legal obligation (e.g. tax legislation, e-commerce legislation, etc.)
  • The fulfillment of the purposes of our legitimate interests and consent for one or more purposes.
  • The fulfillment of a duty performed in the public interest.


7. Who are the recipients of your Personal Data?

Access to your Data is provided to the strictly necessary COMPANY personnel, who are bound by confidentiality, and the companies cooperating with us or third party service providers, who process your Data as "Processors" on our behalf and in accordance to our instructions.


8. How your Personal Data is shared

The COMPANY shares your Data with:

  • Third party service providers who process personal data on behalf of the COMPANY, for example (indicatively mentioned) credit card and payment processing, transfers and deliveries, hosting, management and maintenance of our data, e-mail distribution, research and analysis, management promotions, as well as management of certain services and elements. When we use third party service providers we enter into agreements obliging them to implement appropriate technical and organizational measures to protect your personal data.
  • Other third parties, to the extent required for the following purposes: (i) compliance at the request of an organ of the Greek State, court order or applicable law, (ii) prevention of illegal uses of our Websites and Applications or violations of the Terms of Use Our Websites and Apps and our policies, (iii) our own protection against third-party claims, and (iv) helping to prevent or investigate cases of fraud (e.g. counterfeiting).
  • Other third parties to whom yourselves have given your consent.

Your Data shared by you:

  • When you use your social media information on our Websites or Apps, you may create a public profile that includes information such as your username, profile picture, and city. You may also share content with your friends or the general public, including information about your interaction with COMPANY. We encourage you to use the tools we provide to manage COMPANY social media sharing to control the information you make available through COMPANY social media assets.


9. What is the policy we apply to third party Processors of your Personal Data in accordance with the above:

  • We provide only the information needed to perform their specific services.
  • They can only use your Data for the precise purposes we set out in our contract with them.
  • We work closely with them to ensure that your privacy is respected and protected at all times.
  • If we stop using their services, any of the data they hold will be deleted or anonymized.

In case you wish to receive more information about the sharing of your Data to third parties, please contact us by e-mail at [email protected]


10. How we ensure that Processors respect your Personal Data

The Processors on our behalf have agreed and contractually bound themselves with the COMPANY:

  • to observe confidentiality
  • not to send your Data to third parties without the permission of the COMPANY,
  • to take appropriate security measures
  • to comply with the legal framework for the protection of personal data and in particular Regulation 979/2016/EU (otherwise known as GDPR).


11. For how long we keep your Personal Data.

Personal data is retained for the period absolutely necessary for the execution and completion of the Processing purposes mentioned above (unless a longer retention period is required by applicable law). We will generally retain your Personal Data for as long as you have an account with our COMPANY. Regarding your Personal Data relating to product purchases, we retain this data for a longer period in order to comply with our legal obligations (such as tax and commercial law and for warranty purposes where applicable). At the end of this retention period, your data will be completely deleted or anonymized, for example by aggregating with other data, so that it can be used in an unrecognizable way for statistical analysis and business planning.

More specific:

  • Orders

From the completion of an order, we retain the personal data you have provided to us for at least five (5) years so that we can comply with our legal and contractual obligations.

  • Guarantees

If your order included a warranty, the relevant Personal Data will be retained until the end of the warranty period.

  • Newsletter

Your declaration of consent to receive newsletter is kept for as long as the COMPANY sends you a newsletter and, in any case, no longer than six months from the cessation of its sending.

12. Your Personal Data is secure

I. Recognizing the importance of the security of your Personal Data, the COMPANY implements specific technical and organizational security procedures in order to protect Personal Data and information from loss, misuse, alteration or destruction. The processing of the data by the COMPANY is carried out only in a way that ensures the privacy and security of the data, based on the latest developments, the cost, the nature, the context and the purposes of the Processing, with an assessment of the risks and the possibility of their occurrence and the effects thereof on data subjects. In this context, the COMPANY ensures that the Processing is carried out exclusively by staff authorized for this purpose, who are bound by confidentiality obligations and provide the necessary protection guarantees. Also, the partners who support the operation of this website comply with these provisions.

II. The observance of confidentiality by the COMPANY in any transaction with the USER is its priority. Any transmission of information or data from the USER to the COMPANY, either in the case of an online order using codes and declaration of certain required data or a telephone order is made and the USER declares the data requested is confidential and their possible use only takes place when required for the execution of services offered by the website. All data-information is encrypted, where necessary, and in any case is kept with absolute security.

In any case, the COMPANY points out to the USER that he should also take care of the private and confidential nature of the above information and not to disclose it to third parties, as well as to proceed after the completion of any transaction with the COMPANY in safe exit from his account.

The website www.foxy.gr uses the Sectigo RSA Domain Validation SSL protocol, for secure online commercial transactions. This encrypts all Data you provide, including your credit card number, name and address, so that it cannot be decrypted or changed in transit over the Internet.

Secure electronic access to the website www.foxy.gr, for the USER to purchase products remotely, is achieved through the USER's use of a Login Code (USER name) and a Personal Secret Security Code (code). Through their registration, the USER can have absolute security in his personal information.

III. The COMPANY points out to the USER that only he, through the above codes, has access to his data, is solely responsible for maintaining their confidentiality vis-à-vis third parties and the COMPANY bears no responsibility in case of use by an unauthorized third party other than the USER. In case of loss or despite the above in any way of communicating the code, the USER is obliged to immediately notify the COMPANY at [email protected], otherwise the COMPANY is not responsible for the eventual use of the secret code by an unauthorized third party.

IV. The COMPANY informs USERS that for the operation of the online store uses a high security SSL 256-bit certificate. The following certification identifiers appear on this website.

• Padlock - Internationally recognized symbol, displayed in the browser's address bar when the site is secure

.• https Environment - The URL of a secure site starts with https instead of http. The "s" stands for the word secure.

• Green bar - The green color in the address bar of the browser indicates the use of an Extended Validated certificate.

.• Trust Seals - Appear on the website, to indicate that the sites are safe and verified by the providers.

.• Access to the COMPANY's systems (servers) is controlled by a firewall. (mailto:[email protected])

 

V. The COMPANY points out that it is the USER's responsibility to ensure the technical equipment and the appropriate infrastructure that will enable him to use the website and to filter anything that may cause damage to his computer such as Viruses, Worms, Trojan Horses, Spyware, etc. The COMPANY is not considered responsible for losses or damages that may occur, for example to the USER's computer equipment, as a result of the use of this website.

These measures are reviewed and amended when and where deemed necessary.


13. What are your rights

Upon your request, you have the following rights:

 

- Right of access

Meaning, you have the right to be informed by us if we are processing your Personal Data. If we process your Data, you can ask to be informed about the purpose of the processing, the type of your Data that we keep, to whom we give them, how long we store them, whether automated decision-making takes place, but also about your other rights, such as correction, deletion of data, restriction of processing and filing a complaint with the Personal Data Protection Authority.

- Right of rectification

If you find that there is an error in your Personal Data, you can submit a request to us to correct them (e.g. correct a name or update a change of address).

- Right to erasure / right to be forgotten

You can ask us to delete your Personal Data if they are no longer necessary for the aforementioned processing purposes or you wish to withdraw your consent.

- Right of portability

You can request to receive the Personal Data you have provided in readable form or ask us to transfer them to another processor.

- Right of limitation

You may request that we restrict the processing of your Personal Data for the time the consideration of your objections to the processing is pending.

You have the right to object and withdraw consent to the processing of your Personal Data.

You may object to the processing of your Personal Data and we will stop processing the Personal Data unless there are other compelling and legitimate reasons that override your right. If you have given your consent to the collection, processing and use of your personal data, you can withdraw your consent at any time with future effect:

- Opt-out of Marketing Communications

You can choose not to receive marketing communications by changing your e-mail and sms registrations, clicking the delete link or following the instructions included in the message.


14. How you can exercise your rights

To exercise your rights, you can submit a request to us at the email address [email protected] entitled "Exercise of Rights" and we will review it and get back to you as soon as possible.

Exceptionally:

  • if you wish to correct your Data in your user account, you can log in to it and make any correction/change without the need to submit a Request.
  • if you wish to withdraw your consent for sending a newsletter, you can do so by selecting the "Unsubscribe from this list" link located at the bottom of each newsletter.

Identity Verification: To protect the confidentiality of your information, we will ask you to verify your identity before proceeding with any request you make under this Privacy Policy. If you have authorized a third party to make a request on your behalf, we will ask them to demonstrate that they have your permission to act for this purpose.


15. When we respond to your Requests

We respond to your Requests free of charge without delay, and in any occassion within (1) one month of receiving your request. However, if your Request is complex or there is a large number of your Requests, we will notify you within one month if we need to obtain an extension of another (2) two months within which to respond.


16. Where you can go if we violate applicable law to protect your Personal Data

You have the right to submit a complaint to the Personal Data Protection Authority if you believe that the processing of your Personal Data violates the applicable national and regulatory framework for the protection of personal data.


17. How you will be notified of any changes to this Policy

We update this Privacy Policy whenever necessary. If there are significant changes to the Privacy Policy or the way we use your Personal Data, we will post an update to this on our website before the changes take effect and we will notify in any convenient way.

We encourage you to read this Policy periodically to know how your Data is protected. This privacy policy was last modified on 01/02/2024.


FOXY

Curated beauty & skincare products, modern beauty accessories and professional beauty equipment, inspired by global beauty trends.
At Foxy, beauty becomes an experience that elevates your mood and style.