Privacy Policy

We have prepared this Privacy Policy, respecting your personal data and in full compliance with the provisions of the General Data Protection Regulation (EU) 2016/679 and applicable data protection legislation, that clarifies and defines the data and information we are legally capable to collect, how we use this data and to make you aware of your options by visiting our website.

1. Who we are and what we do?

STREET BRANDS S.A. (hereinafter referred to as the “Company” or “we” or “our”), a company with its registered seat in Athens, Panormou Str. 115Z and Plakentias and website www.streetwok.gr is primarily engaged in the establishment and operation of restaurants, preparation and distribution of food items and wholesale of beverages, soft drinks and food as well as the import of these items from abroad under the applicable national and European legislation.
In light of the purposes of providing our services and products, we may proceed to collect and process the personal data of natural persons in accordance with the Greek legislation in force (i.e. Law 4624/2019), as well as with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data (General Data Protection Regulation, hereinafter referred to as “GDPR”) and therefore, we may act as a “Data Controller”.

This Privacy Policy is prepared and presented so as to simplify and clarify our personal data processing practices and activities, to explain what type of personal data and/or other personally identifiable information we may collect during the use of our website and our services by you, in what way and on what grounds do we collect these data, what we use them for, when and to whom they may be transmitted, for how long do we retain these data and how you can manage data about you and exercise your legal rights, as provided under the GDPR.
Kindly note that by providing your personal data to our Company (via the website, in person, email, over the phone), you agree to our processing of your personal data as per this Privacy Policy.

2. Personal data collected and how

We may collect and further process different types of personal data in the course of operating our business and providing our services. These data may include:

• Basic personal data and contact information, such as your name, postal address, business address, telephone number, mobile phone number and email address
• Records of your communication and visits to our shops
• Recruitment related data, such as your Curriculum Vitae, your education and employment history, details of professional experience and other information relevant to potential recruitment to the Company
• Website usage data, such as details of your visits to our website or information collected through the cookies.
• Any other personal information related to you that you may provide to us.

We may collect these personal data in a variety of means and through different channels of communication, such as:
 

• You may provide these data to us directly, for example through our website, by corresponding to us via email, letter or over the phone or in person
• We may collect the information from third party sources, for example through our collaborators or external consultants, for the purposes of further cooperation with our Company.
• Finally, we may collect the information from publicly open and available sources.

3. Where do we store the information you have provided?

The information and personal data that we collect are stored within the European Economic Area.

4. Use of personal data and purposes

We collect and further process your personal data for specified, explicit and legitimate purposes, as described in this Privacy Policy, that are justified under European and national data protection laws, and do not process your personal data further in a manner that is incompatible with those purposes and those data protection laws.
In particular, we use the personal data:

•  To provide products and services you have requested
• To manage our business operations and administer our clients’ business relationship with us, including processing payments, accounting, auditing, billing, supporting services.
• To analyze and improve our services to and communications with you.
• To protect the security of and manage access to our premises, IT systems, communication systems and our website and prevent and detect security threats, fraud or other criminal or malicious activities.
• For investigating purposes and to prevent unauthorized access to our services and other illegal activities.
• To identify persons authorized to trade on behalf of our customers, suppliers and/or service providers.
• To comply with our legal and regulatory obligations, including reporting to and/or being audited by national and international regulatory bodies.
• To comply with court orders and/or defend our legal rights and
• To communicate with you on the latest legal developments, announcements, and other information about us, via newsletters, briefs etc, upon your explicit consent.
• For the assessment of qualifications and the probability of recruitment in our Company.
• To facilitate your presence at the events we may organize and offer you the appropriate service.
• For any other purpose related and/or ancillary to any of the above or any other purpose for which your personal data was provided to us.

Any potential marketing-related communication will only be carried out after you have opted in and we will provide you the opportunity to opt out anytime, if you do not wish to continue receiving marketing-related communication from us. We will not use your personal data for taking any automated decisions affecting you or creating profiles other than as described above.

5. Lawful basis for the processing of your personal data

We process any personal data that we collect as above, based on the following lawful bases:

1.  The personal information we hold and process, is necessary for the performance of our contract, to which our customers are a party, or to provide the products or respond to inquiries that our customers have otherwise requested.
2. The personal information we collect and process may also be necessary for our legitimate business interests, in terms of offering the best possible solution and services, in managing our everyday business needs, in providing our customers or prospective customers with information about the services and products we offer, and about which they have expressed an interest or that we believe will be of benefit to them.
3. In some cases, our ground for collecting and processing the information is based on your explicit consent to our collection and processing of your personal information, such as -for example- when we communicate with you in terms of providing relevant marketing information.
4. We may also process your personal data in order to comply with a legal obligation to which the Company is subject and for the fulfillment of regulatory and statutory obligations or court or other orders (e.g. compliance with tax procedures, Anti-Money Laundering procedures, fraud detection etc.)

6. Sharing your personal data

We do not sell or rent or exchange or in any way transfer your personal data or other personally identifiable information collected by us, as part of a customer relationship or visit to our website or other similar transaction, to any third party.

We may only share your personal data with the following indicative categories of recipients:

• Banking institutions, insurance institutions, lawyers or other legal specialists (including mediators), consultants or experts or other professional advisors as the case may be (e.g. financial, business or other advisors), auditors, chartered accountants or other third parties engaged in the course of the services we provide to our customers or prospective customers.
• Third party service providers to whom we outsource certain functions such as technology and IT services, accounting services, translation services, postal and transport services. In such cases, we require all such third party service providers to act in compliance with this Privacy Policy, our instructions and the applicable data protection laws. We commit to use appropriate safeguards as required by applicable law to ensure the confidentiality, integrity and security of your personal data when engaging such service providers.
• We may share your personal data with courts, government, regulatory or other public authorities.

7. Retention period of your personal data

We will generally store and retain your personal data for as long as it is necessary for the fulfillment of our purposes of processing and any other linked purpose.

In case the processing of your personal data is necessarily related to the establishment, exercise or defense of our legal rights and claims, we will retain your personal data until the completion of limitation period of our claims or until the settlement of the said claims, or in order for our Company to be in full compliance with the legal requirements relating to the retention of your personal data.

Kindly note that the retention periods for each of the collected and processed personal data are based on and correspond to our business needs and good practices.

8. Personal data security measures

We store your personal data securely on our servers, which are managed by our Company as well as with third party storage providers.

We maintain the appropriate technical and organizational security measures to protect the personal data that we hold on our networks and systems, from unauthorized access, disclosure, alteration, misuse, loss and destruction. The security measures indicatively include physical, technical, administrative, electronic and procedural safeguards, firewalls, physical access controls to our data centers and information access authorization controls. Our security procedures also mean that we may occasionally request proof of identity, in order to verify your identity before communicating with you or disclosing any personal information to you.

Kindly note that, while we try our best to safeguard your personal data, once we receive and collect it, especially regarding the data received through our website, no transmission of data over the Internet or any other public network can be guaranteed to be 100% secure.

9. Rights in relation to your personal data

According to the provisions of the GDPR, you reserve the following rights in relation to the processing of your personal data:

Right of Access (article 15 GDPR):

You have the right to access to the personal data that is being processed by us and if necessary to receive a copy of that data and/or supplementary information with respect to their processing.

Right to Rectification (article 16 GDPR):

If the personal information that we hold about you is inaccurate or incomplete, you have the right to rectify, update or amend it, by contacting us at the abovementioned contact details. Alternatively, you may send us a relevant request at the following email address: info@streetwok.gr

Right to erasure (article 17 GDPR):

You have the right to ask us to delete or remove your personal information in some circumstances, such as where we no longer need it or if you withdraw your consent (where applicable).

Right to restrict processing (article 18 GDPR):

You have the right to request the restriction of the processing of your personal data in certain circumstances, such as where you contest the accuracy of your personal data or when the processing is unlawful and you object to the erasure of your personal data and you request the restriction of its use instead of its erasure, when your personal data is not required for the purposes of processing, however it is required for the establishment, exercise or defence of legal claims, and when you object to processing and pending the verification whether our legitimate grounds override your rights.

Right to object processing (article 21 GDPR):

You have the right to object at any time to processing of your personal data in cases where this is required for the purposes of legitimate interests we pursue as data controllers.

Right to data portability (article 20 GDPR):

You have the right, in certain circumstances, to obtain personal information that you have provided to us in a structured, commonly used and machine readable format, and to transfer it another data controller in order to resuse it or ask us to transfer this to a third party.

Right to withdraw the consent (article 7 GDPR):

If we rely on your consent as our legal ground for processing your personal data, you have the right to withdraw that consent at any time. However, please note that withdrawal of your consent does not affect the legality of consent-based processing during the period before such consent was revoked.

Right to lodge a complaint with the Hellenic Data Protection Authority

To exercise any of your aforementioned rights you have the right to lodge a complaint to the Hellenic Data Protection Authority (www.dpa.gr), Phone Number: +30 210 6475600, Fax: +30 210 6475628, Email Address: contact@dpa.gr

10. Updating this Privacy Policy

We reserve the right to update and amend this Privacy Policy from time to time in order to be fully in line with any changes regarding the lawful processing of your personal data or other changes in legal provisions.
Should we choose to amend this Privacy Policy, the updated Policy will be posted on our website for your consideration and any changes will be implemented as soon as they are posted online.
Therefore, we suggest that you review our Privacy Policy when you visit our website, so as to be updated on the way we collect and process your personal data.

11. Στο πλαίσιο του ΕΣΠΑ 2014-2020 και του ΕΠΑνΕΚ 2014-2020 του επιχειρησιακού προγράμματος «ΑΝΤΑΓΩΝΙΣΤΙΚΟΤΗΤΑ-ΕΠΙΧΕΙΡΗΜΑΤΙΚΟΤΗΤΑ-ΚΑΙΝΟΤΟΜΙΑ» η εταιρεία μας Street Brands Εστίαση ΑΕ έλαβε μέρος στη Δράση «ΕΠΙΔΟΤΗΣΗ ΚΕΦΑΛΑΙΟΥ ΚΙΝΗΣΗΣ ΣΕ ΕΠΙΧΕΙΡΗΣΕΙΣ ΕΣΤΙΑΣΗΣ ΓΙΑ ΠΡΟΜΗΘΕΙΑ ΠΡΩΤΩΝ ΥΛΩΝ» που υλοποιείται στο πλαίσιο του Ε.Π. "Ανταγωνιστικότητα Επιχειρηματικότητα και Καινοτομία", και εντάσσεται στον Άξονα Προτεραιότητας «Ανάπτυξη επιχειρηματικότητας με Τομεακές προτεραιότητες» (ΑΠ 1 και ΑΠ 1Σ), στον Θεματικό Στόχο 3 «Βελτίωση της ανταγωνιστικότητας των μικρομεσαίων επιχειρήσεων» και στην επενδυτική προτεραιότητα 3(γ) «Στήριξη της δημιουργίας και της επέκτασης προηγμένων ικανοτήτων για την ανάπτυξη προϊόντων και υπηρεσιών» και συμβάλλει στον Ειδικό Στόχο 1.4: «Αναβάθμιση του επιπέδου επιχειρηματικής οργάνωσης και λειτουργίας των ΜΜΕ, κατά προτεραιότητα στους εννέα (9) στρατηγικούς τομείς της χώρας