PRIVACY POLICY

Last Updated: 23.11.2025

At MAGGINA (hereinafter "we", "us", or "our"), we are deeply committed to protecting the privacy and security of our customers' personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and purchase our products, in strict compliance with the General Data Protection Regulation (EU) 2016/679 (GDPR) and applicable Greek legislation.

1. DATA CONTROLLER

The entity responsible for the processing of your personal data (Data Controller) is:

  • Trade Name: MAGGINA
  • Legal Entity: Maggina
  • Address: Asklipiou 51,Athina 106 80, Greece
  • Email: maggina.brand@gmail.com

2. PERSONAL DATA WE COLLECT

We collect only the information that is necessary for the proper functioning of our e-shop and the fulfillment of your orders. This includes:

a. Information you provide to us directly:

  • Identity Data: First name, last name.
  • Contact Data: Shipping address, billing address, email address, telephone number.
  • Financial Data: Payment details. Note: We do not store credit card numbers on our servers. All payments are processed securely by third-party payment providers (e.g., Stripe, PayPal, Banks).

b. Information collected automatically:

  • Technical Data: IP address, browser type and version, time zone setting, operating system.
  • Usage Data: Information about how you use our website (e.g., pages visited, time spent).

3. HOW AND WHY WE USE YOUR DATA

We process your personal data based on the following legal grounds:

  1. Performance of a Contract: To process and deliver your order, handle payments, and provide customer support.
  2. Legal Obligation: To comply with tax laws (e.g., issuing invoices) and other regulatory requirements.
  3. Legitimate Interest: To improve our website security, prevent fraud, and enhance user experience.
  4. Consent: Where applicable, for sending marketing communications (newsletters) or using non-essential cookies. You can withdraw your consent at any time.

4. SHARING OF YOUR PERSONAL DATA

We do not sell your personal data. However, to fulfill your order, we must share specific data with trusted third-party service providers:

  • Logistics & Shipping: We share your name, address, and phone number with courier companies (Geniki Taxydromiki for Greece, DHL Express for International) to deliver your package.
  • Payment Processors: Banks and payment gateways (e.g., PayPal, Stripe, Klarna) to process transactions securely.
  • IT & Hosting Services: Providers who support our website infrastructure.
  • Legal Authorities: If required by law or to protect our rights.

5. INTERNATIONAL DATA TRANSFERS

Our business operates in Greece (EU). However, some of our service providers (e.g., DHL, global payment gateways) may transfer data outside the European Economic Area (EEA). Whenever such transfers occur, we ensure a similar degree of protection is afforded to it by ensuring at least one of the specific safeguards approved by the European Commission is implemented (e.g., Standard Contractual Clauses).

6. DATA RETENTION

We will only retain your personal data for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements.

  • Order Information: Retained for the period required by tax legislation (usually 5-10 years).
  • Marketing Data: Retained until you unsubscribe or withdraw consent.

7. YOUR RIGHTS UNDER GDPR

Under the GDPR, you have the following rights regarding your personal data:

  • Right to Access: Request a copy of the personal data we hold about you.
  • Right to Rectification: Request correction of inaccurate data.
  • Right to Erasure ("Right to be Forgotten"): Request us to delete your data where there is no good reason for us continuing to process it (subject to legal tax obligations).
  • Right to Restriction: Ask us to suspend the processing of your data.
  • Right to Data Portability: Request the transfer of your data to you or a third party.
  • Right to Object: Object to processing where we rely on a legitimate interest.
  • Right to Withdraw Consent: Withdraw consent at any time where we are relying on consent to process your data.

To exercise any of these rights, please contact us at maggina.brand@gmail.com.

8. SECURITY

We have put in place appropriate security measures (SSL encryption, secure servers) to prevent your personal data from being accidentally lost, used, or accessed in an unauthorized way.

9. COOKIES AND TRACKING TECHNOLOGIES

Our website uses cookies to distinguish you from other users and to improve your experience.

a. Essential Cookies

These are necessary for the website to function (e.g., keeping items in your cart, secure checkout). These cannot be switched off.

b. Analytics & Marketing Cookies (Future Use)

We may use third-party analytics services (such as Google Analytics or Meta Pixel) to help us understand how our site is used and to improve our marketing. These tools collect data anonymously.

Note: Non-essential cookies/tracking pixels will only be activated if you provide your explicit consent via our Cookie Banner. You can change your preferences at any time.

10. MINORS

Our website is not intended for individuals under the age of 18. We do not knowingly collect personal data from minors. If you are a parent or guardian and believe your child has provided us with personal data, please contact us.

11. CHANGES TO THIS POLICY

We may update this Privacy Policy from time to time. The updated version will be indicated by an updated "Revised" date and the updated version will be effective as soon as it is accessible. We encourage you to review this Privacy Policy frequently to be informed of how we are protecting your information.

12. CONTACT US

If you have questions or comments about this policy, or if you wish to exercise your rights, you may contact us via email at:

Email: maggina.brand@gmail.com
Address: Asklipiou 51, Athina 106 80, Greece