Privacy Policy

Ariston Confectionery (hereinafter referred to as “Ariston” or “the Company”), is committed to protecting your privacy. This Privacy Policy explains how we collect and use your personal data and which rights and options you have in this respect. The Company is responsible for your personal data.

The kind of information we hold about you

The personal data we collect may include:

How is your personal information collected?

We may collect personal data about you in a number of circumstances, including:

If you fail to provide personal information

As a general principle, you will provide us with your personal data entirely voluntarily; there are generally no detrimental effects for you if you choose not to consent or to provide personal data. However, there are circumstances in which Ariston cannot take action without certain of your personal data, for example because the collection of personal data is required to process with your enquiries. In these cases, it will unfortunately not be possible for us to provide you with what you request without first obtaining the relevant personal data and we will notify you accordingly.

How will we use your personal data?

We may use your personal data for the following purposes only (“Permitted Purposes”):

Depending on for which of the above Permitted Purposes we use your personal data, we may process your personal data on one or more of the following legal grounds:

In addition, the processing may be based on your consent where you have expressly given that to us.

Data Sharing

We will only disclose your personal data when you direct us or give us permission, when we are required by applicable law or regulations or judicial or official request to do so, or as required to investigate actual or suspected fraudulent or criminal activities.

Personal data about other people which you provide to us

If you provide personal data to us about someone else you must ensure that you are entitled to disclose that personal data to us and that, without us taking any further steps, we may collect, use and disclose that personal data as described in this Privacy Policy. In particular, you must ensure the individual concerned is aware of the various matters detailed in this Privacy Policy, as those matters relate to that individual, including our identity, how to contact us, our purposes of collection, our personal data disclosure practices (including disclosure to overseas recipients), the individual’s right to obtain access to the personal data and make complaints about the handling of the personal data, and the consequences if the personal data is not provided (such as our inability to provide services).

Data Security

Ariston takes all the appropriate technical and organisational measures to keep your personal data confidential and secure. Personal data may be kept on our personal data technology systems or in paper files.

Data Retention

We will only retain your personal information for as long as necessary to fulfil the Permitted Purposes or you withdraw your consent in accordance with applicable law (where applicable).

To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorised use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

Your rights

Ariston would like to inform you about your legal rights on your personal data we collect. Therefore, please be advised that you have the following legal rights:

If you wish to do any of the above please send an email to [email protected]. We may request that you prove your identity by certain acts (e.g. by providing us with a copy of a valid means of identification) in order for us to comply with our security obligations and to prevent unauthorised disclosure of data. We reserve the right to charge you a reasonable administrative fee for any manifestly unfounded or excessive requests concerning your access to your data, and for any additional copies of the personal data you request from us.

We will consider any requests or complaints which we receive and provide you with a response in a timely manner. If you are not satisfied with our response, you may take your complaint to the Data Protection Commissioner Office, the Republic of Cyprus’ supervisory Authority.

How to contact us

If you would like to contact us with any queries or comments, please send an email to [email protected]