Privacy Policy

GDPR

As of 25 May 2018, the new General Data Protection Regulation 2016/679 of the European Parliament and of the Council, known as GDPR, applies, which strengthens the protection of personal data across the European Union. With respect to your personal data, this privacy policy informs you about how we protect the privacy of your communications, collect, process, use and store your personal data and how you can contact us if you object to the processing of your Data and exercise your rights. We collect Personal Data only for purposes that are directly related to our business. We manage this data with great responsibility.

Processing Principles

We take care to collect only your strictly necessary data that is adequate and clear for the purpose for which it is intended. In this context, when processing your data, we follow the following basic principles:

– Subject to this policy, we do not disclose your personal data to third parties without your consent, unless required by law or permitted by the contract between us.

– Your data may be processed: either to enable us to perform the contract between us, or to better serve you, or to comply with the provisions of the law and we maintain full transparency towards you.

– We also use the data to communicate directly with you in order to offer you better services.

– We limit ourselves to the purpose for which it was collected.

– We process data only to the extent that it is appropriate and relevant to the purpose for which it was collected.

– We use only what is strictly necessary for the purpose we seek (minimisation)

– We keep your personal data only for as long as necessary.

– We update personal data in relation to the purposes of the processing collected, while taking steps to promptly delete or correct it when necessary.

Who collects your personal data?

The company with the distinctive title “Ledi LTD” is the controller of the processing of the personal data you provide to us and is responsible for the security of your data under the Personal Data Protection Act.

The types of data – The sources of their collection – The purposes – Legal basis of processing

The types of personal data we collect and process from you are directly related either to the contract between us or to the services and/or products you choose to provide to you.

What personal data do we collect?

– Contact information such as name, surname, address, email address, telephone number, postcode.

– Account information such as first name, last name, address, email address, telephone number, postcode, date of birth, gender, city, country and user name.

– Payment information and history

– Order information

– Purchase history

– Delivery history

– Activity log information

– IP address

– Data related to electronic communication under the terms and conditions of this policy in order to respond to requirements and requests and to improve the services offered, but also to communicate directly with you about information that may be of interest to you.

What is the lawful basis for processing your data?

We process your personal data because it is necessary for:

– the performance of the contract for the sale of goods

– to comply with our legal obligations

– to comply with our legal obligations in order to fulfil our legal obligations; to comply with our legal obligations; to pursue our legitimate interests

In general, we rely on your consent as a legal basis only for processing related to sending direct marketing messages by email. You have the right to withdraw your consent at any time. Where your consent is the only legal basis for processing, we will stop processing your data after you withdraw it.

We collect data as appropriate:

Before or during the conclusion of the contract between us or the performance of our contractual obligations, during your entry and use of the website, during the provision of services, during the receipt of CVs and during the resolution of complaints.

We also collect your data from various sources with your consent and always in accordance with the applicable legal framework. In summary, data may come from information that you choose to share with us, under contract, from our trusted partners with confirmation that they have a lawful basis for sharing that information with us, from information that is publicly available. This may be information that you have provided directly to them or they have collected about you through their legal processes. The type and amount of data collected will depend on the type of contractual relationship, service/product provision and the processing it will receive. The data shall be relevant, relevant and no more than is necessary for the purposes set out below, shall be accurate and, where necessary, shall be subject to review. The data shall be kept only for the period necessary to fulfil the purposes for which they were collected and processed and shall be deleted after that period.

Why do we collect and use your personal data?

We collect and use your personal data:

– To manage your online purchase, i.e. to process your orders and returns through our online services and to send you notifications about the delivery status or in case of any problems during the delivery of your items.

– to process your payments.

– to manage complaints about our products.

– to offer you different alternative payments.

– to identify you and verify that you are over 16 years of age.

– to improve your shopping experience and our services.

– to send promotional emails about new products, special offers, our news or other information we think you may find useful, using the email addresses you have provided to us.

– To manage and analyse our customer base (purchasing behaviour) in order to improve the quality, variety, and availability of the services we offer,

– to conduct surveys on customer satisfaction

– the administrative organisation and operation of our company.

– for promotional activities, at your request and to communicate with you in relation to our services and products, to enhance our service experience, to fulfil a legal or contractual obligation, to send you newsletters with advice and articles about our services.

Retention time of personal data

Your personal data is retained to fulfil the purposes set out in this Policy and if you request us to do so we may remove all the information we retain (unless a longer retention period is required by applicable law). Our company may also retain personal data after the purposes of collection and processing have been fulfilled, for use: before tax, social security authorities, auditing authorities, and any other public authority or competent court, until the limitation period provided by law in each case, or for as long as we deem necessary to defend our rights and legitimate interests. After the expiry of the retention period, your personal data will be destroyed/deleted from our files and system in compliance with our company’s policy and always provided that their retention is no longer required for the fulfilment of the stated purposes.

Who else has access to your personal data – Third Party Recipients

Data Recipients:

We do not share your Personal Data with third party private companies for financial or other consideration. Our Company may, after ensuring its confidentiality, provide access or transfer your Personal Data to the following processors in order to enable us to offer services to you or to enhance your service experience, namely:

– To consultancy firms for the provision of analytical services.

– To third party marketing, advertising, marketing, promotion and advertising companies for commercial communication, promotion and advertising.

– To companies providing maintenance and support services for software programs with databases.

– To the web hosting service provider with whom we have a contractual relationship.

– To affiliated attorneys, affiliated subcontractors.

– To public agencies and government entities.

We will never transfer, sell, rent or trade our customers’ data to other organisations for marketing purposes. We may share your data with government agencies, regulatory bodies, law enforcement agencies, courts, banking institutions and insurers in circumstances where we are required to do so:

– to comply with our legal obligations.

– to exercise our legal rights.

– to prevent, detect, investigate crimes or prosecute offenders.

– to protect our employees and customers.

Your rights regarding the protection of your personal data.

You have the following rights:

α) To know which personal data concerning you are held and processed by our company, as well as their origin (right of access). This includes the right to information about your personal data at any time. You can contact the company which will gladly inform you by e-mail of your personal data being processed.

1. b) To request the correction and/or completion of your personal data in order to make them complete and accurate, by presenting any necessary document showing the need for completion or correction (right of rectification), which is also an obligation.
2. c) Request the restriction of the processing of his/her data (right of restriction).
3. d) To refuse and/or object to any further processing of personal data held by “Ledi LTD”. We will not continue to process your personal data unless we are unable to demonstrate legitimate grounds for processing that override your interests and rights or we have legitimate claims. Further, you have the right to object to direct marketing, including profiling done for direct commercial purposes. You have the option to opt out of direct marketing.
4. e) To request the deletion of your data from our company’s records at any time, unless an order is pending which has not yet been sent to you or there is a debt owed by you to the company (right to be forgotten).
5. f) To ask the company “Ledi LTD” to transfer the data you have provided to it to any other controller. Whenever our company processes your personal data, you have the right to obtain a copy of them in a structured, commonly used and machine-readable format, as well as to request that they be transferred to another party. This only includes personal data that you yourself have provided to us. (right to data portability).
6. g) Revoke at any time any consent you have given. h) To refuse automatic processing, including the creation of profiles.

How you can exercise your rights:

If you wish to exercise any of the above rights, please contact us using our contact details or go to your personal account where you can change your data or unsubscribe. If you believe that our company is processing your personal data in an incorrect way, please contact us. Our company will respond to any request within one month of receiving it. Upon informing you, it is possible that the above deadline may be extended on a case-by-case basis and if necessary taking into account the volume of requests and their complexity. Reasons will be given for any refusal of your request. Our Company reserves the right, if your requests do not meet the legal requirements, either to impose the payment of a corresponding fee, taking into account the time required to carry out the requested action, the costs of in-house information and the possible communication, or to refuse to follow up your request. If we are in doubt about the identity of the individual submitting the request, we may ask for additional information to confirm his or her identity.

How Do We Protect Your Data?

We do our best to safeguard your Personal Data.
We use secure protocols for communication and data transfer and take all appropriate organizational, technical, physical, electronic, and procedural security measures. Our security measures include data encryption, regular cybersecurity assessments of all service providers who may handle your personal data, security controls that protect our entire technological infrastructure from external attacks and unauthorized access, and internal policies outlining how to ensure the protection of your data, along with training for our employees. While we do our best, we cannot guarantee the absolute security of information. However, we promise to notify the relevant authorities in the event of a potential data breach. We will also inform you if there is a threat to your rights or interests. We will do everything possible to prevent a data breach and assist authorities in the event of any such violations. The company processes data solely through authorized personnel who are strictly obligated to maintain confidentiality.

Website User Obligations

By using our websites and providing your personal data, you acknowledge your obligation to provide true, accurate, and complete information as requested by our company. You can update the company at any time about changes to this information to ensure it remains current and accurate. By using our company’s websites, you confirm that you are over sixteen years old. If you are under sixteen, you must refrain from using the websites and from providing any personal data without the consent of the person exercising parental authority. The company bears no responsibility for violations of these obligations.

The company may delete, cross-check, supplement, or modify the information you provide based on data lawfully collected from third parties and will notify you accordingly. You have the option to unsubscribe or withdraw your consent from processes and actions involving your data at any time.

Cookies and Other Technologies We Use

Our company’s website uses “cookies” so that every time you connect to the site, it retrieves information and offers services relevant to the user. We only install cookies with the user’s consent and after providing appropriate information.

Why We Use Cookies

We use cookies to make your browsing experience easier and more enjoyable.

Types of Cookies We Use:

• Mandatory Cookies: Essential for using certain features on our website, such as logging in. These cookies do not collect personal information.
• Functional Cookies: Offer functionalities that make using our services easier.
• Analytics Cookies: Help track the usage and efficiency of our website and services.
• Advertising Cookies: Deliver ads relevant to you and your interests. They also limit how often you see a particular ad. Targeted or advertising cookies are often linked to website functionality provided by another organization.

Electronic Forms

The electronic forms on our site include checkboxes solely for the acceptance of cookies by the user.

Data Breaches

In the event of a data breach, we will notify the Data Protection Authority within 72 hours, as required by the General Data Protection Regulation (GDPR).

Contact details

For questions and/or comments about our Privacy Policy and this statement, please contact us by using the following contact details:

Ledi LTD
Boreiou Ipeirou 034, Aristo Paradise 2, 4531, Mouttagiaka, Limassol, Cyprus
Website: https://ledi.cy
Email: [email protected]
Phone number: +357 99039334