Privacy Policy

This Privacy Statement informs you about the processing of your data in the course of your visit and use of the website www.nikosnicolaou.com (hereinafter also referred to “our Website”).

1. Controller

We, Nikos Nicolaou Ltd, are the controller pursuant to Article 4 Subsection (7) of the EU Data Protection Regulation (hereinafter referred to as “GDPR”) with respect to personal data processed on/via www.nikosnicolaou.com.

Our contact details are:

Nikos Nicolaou Ltd

APT 51 ROSLER BUILDING SE1 0FT
London, UK
phone: +44 (0)
e-mail: nikosnicolaoustore@gmail.com

2. Collection and processing of personal data as well as scope and purpose of such data’s use

2.1 When visiting our Website

If you visit our Website, the web browser of your client device (computer, laptop, tablet, smartphone etc.) will send automatically certain information to the web server of our Website. This information is temporarily stored in electronic protocols, so-called log files. The following information is gathered thereby and stored until it is automatically deleted:

  • IP address of the accessing client device,
  • date and time of the access,
  • timezone gap in relation to the Greenwich Mean Time (GMT),
  • name and URL of the accessed pages/files,
  • access status / HTTP status,
  • transferred data amount,
  • the website from which the access occurs (referrer URL),
  • type and version of the web browser used, including its language,
  • type and version of the operating system of your client device.

This data will be stored for a period of 14 days and thereafter automatically deleted.

We will process this data for the following purposes:

  • enabling a smooth connection to our Website,
  • enabling a comfortable use of our Website,
  • analysing the system stability and system safety as well as
  • for further administrative purposes.

The legal basis for the processing of the data listed above is Article 6 Subsection 1 Sentence 1 (f) GDPR. Our legitimate interest in this processing consists of the purposes of the data processing as specified above.

Furthermore, our Website uses cookies and web analytics tools. For further details thereon, please refer to Sections 3 and 4 of this Privacy Statement.

2.2 E-mail newsletter

Newsletter subscription

By giving your consent, you can subscribe to our e-mail newsletter (hereinafter referred to as “Newsletter”) by which we will inform you about our products, sales, and events.

The subscription procedure with respect to our Newsletter consists of the so-called double opt-in procedure. This procedure consists of the following steps: after your completion of the subscription form, we will send you an e-mail to the e-mail address you entered into the subscription form, in which we will ask you to confirm your subscription by activating a link contained in this e-mail. If you do not activate this link within a period of 14 days, your data provided in the course of the subscription will be deleted automatically. Furthermore, we will store the following information: the IP addresses provided by your client device at the time of subscription and confirmation of your subscription as well as those times themselves. The purpose of the double opt-in procedure is to enable us to prove your subscription and to analyse the potential abuse of your personal data.

When subscribing to our Newsletter, you only need to provide us with your e-mail address. You can voluntarily provide us with further information which we would use to address you personally. After your confirmation of your subscription, we will store your e-mail address in order to be able to send you our Newsletters.

The legal basis for the data processing in the course of a Newsletter subscription is the consent of the subscriber pursuant to Article 6 Subsection 1 Sentence 1 (a) GDPR.

You may at any time withdraw your consent to receiving our Newsletter by unsubscribing from our Newsletter. You may affect this un-subscription by activating the un-subscription link included in any of our Newsletter e-mails or by sending a message to our contact details specified in Section 2.1 of this Privacy Statement.

Newsletter emailing after purchase

If you have bought products in our Onlineshop, we will probably send you Newsletters also in case you have not subscribed to it, provided however that such Newsletters advertise products similar to those you have bought in our Onlineshop. In this case, the Newsletters will be sent to the e-mail address you provided in the course of the purchase.

For this type of Newsletter emailing, we store this e-mail address in our Newsletter address database. To be able to prove the legitimateness of the Newsletter emailing, we also store the IP addresses provided by your client device at the time of the purchase as well as this time itself.

The legal basis for the data processing in the course of the Newsletter emailing after a purchase is Article 6 Subsection 1 Sentence 1 (f) GDPR. Our legitimate interest in the data processing is the direct marketing of our products towards our clients.

You may at any time object to receiving our Newsletter by activating the un-subscription link included in any of our Newsletter e-mails or by sending a message to our contact details specified in Section 2.1 of this Privacy Statement.

Newsletter tracking

Please note that we analyze the user behavior of the recipients of our Newsletters. For this purpose, our Newsletters contain so-called web beacons/tracking pixels each of which consists of a one-pixel graphics file. For this analysis, we link the information specified in Section 2.1 of this Privacy Statement or parts thereof and the web beacons to your e-mail address and an individual ID. Also, the hyperlinks included in our Newsletters contain this ID. With the data gathered thereby, we generate a user profile in order to be able to match the interests of our clients through the contents of our Newsletters. For this purpose, we analyse your interests by collecting the following data: the time when you open a Newsletter and the hyperlinks you activate in a Newsletter. In some circumstances, we will link this information with actions you rendered on our Website.

The legal basis for the data processing in the course of the tracking specified above is, in case of Newsletter subscription, the consent of the subscriber pursuant to Article 6 Subsection 1 Sentence 1 (a) GDPR.

In case of Newsletter emailing after a purchase, the legal basis for the data processing in the course of the tracking specified above is Article 6 Subsection 1 Sentence 1 (f) GDPR. Our legitimate interest in the data processing is our need to match our Newsletter with the interests of our clients.

You may object to the tracking specified above by unsubscribing from our Newsletter; you may affect this unsubscription by activating the unsubscription link included in any of our Newsletters or by sending a message to our contact details as specified in Section 2.1 of this Privacy Statement. The information we have gathered by the before mentioned tracking will be stored as long as you are a subscriber of our Newsletter. As soon as you unsubscribe from our Newsletter, we will anonymize your data gathered by the tracking and only use the so anonymized data for statistical purposes.

You may also prevent the before mentioned tracking if you disable the display of pictures within your e-mail client software. In this case, no graphics/pictures of our Newsletters will be shown and it may be that you cannot use all functions of our Newsletters. If you (re-)enable the display of pictures in e-mails manually, the before mentioned tracking will (again) occur.

Newsletter service provider

The processing of our Newsletters will be affected by using services and IT-systems of the following service provider which is pursuant to Article 4 Subsection (8) GDPR:

MailChimp, The Rocket Science Group, LLC
675 Ponce de Leon Ave NE
Suite 5000
Atlanta, GA 30308 USA

MailChimp is a marketing automation service provided by the Rocket Science Group.

For more information visit https://mailchimp.com/legal/privacy/?_ga=2.38633443.1378729253.1535139209-2058154263.1533076501

2.3 Contact form

Our website contains a contact form via which you may address inquiries to us. To do so, you have to enter a valid e-mail address. You may voluntarily provide other information via the contact form.

We will use the information you provide us via the contact form to answer your inquiries. We will delete this information as soon as it is no longer necessary for answering your inquiry; alternatively, we will restrict the processing of this information in case we have to maintain this information for statutory reasons.

You may at any time object to the further processing of the information you provided us via the contact form, for example via e-mail to nikosnicolaoustore@gmail.com, however, such objection will not affect the data processing occurred before your objection.

The legal basis for the processing of your information provided to us via the contact form is Article 6 Subsection 1 Sentence 1 (a) GDPR.

2.4 When using our Onlineshop

If you place orders in our Onlineshop, it is necessary for the completion of the contract with you that you provide us with such personal data which we need for the processing of your order. We have expressly indicated in our webshop which information we need mandatorily; you may provide us with further information voluntarily. We will process the information you provide us within the webshop for the processing of your order.

Payments will we be processed by an external service provider. For this purpose, you will be directed temporarily to the website of the respective service provider upon placing your order (check out). We ourselves do principally not collect or store data on payments. Only in case you provide us with payment information separately in the course of returns or complaints, we will store and process this information, however only for the purpose to process the respective returns or complaints.

You may voluntarily create a personal customer account by which we can store your data for further orders. If you do so, we will store the data you provide us within the customer account until you object to such storage. You may effect such objection at any time by deleting your customer account.

Due to statutory provisions on accounting and taxes, we are obliged to store your order and payment data for a period of ten years.

The legal basis for the processing of your order and payment data is Article 6 Subsection 1 Sentence 1 (b) GDPR.

The legal basis for the storage of this data due to statutory provisions on accounting and taxes is Article 6 Subsection 1 Sentence 1 (c) GDPR.

3. Cookies

Our website uses cookies. Cookies are small text files which are created by your web browser automatically and which are stored on your client device (computer, laptop, tablet, smartphone etc.) if you visit our Website.

The cookies used by our Website do not cause any harm to your client device, they do in particular not contain computer viruses, trojans or other malware.

Our website uses the following categories of cookies the scope and function of which we explain in the following:

  • Technically necessary cookies
    Technically necessary cookies enable the use of our Website by enabling basic functions like menu navigation and access to secured areas of our Website. The use of our Website will not operate properly without these cookies.
  • Preference cookies
    Preference cookies enable our Website to remember certain information which influences the way our Website behaves or looks like, for example by remembering the language you use or the region from which you access our Website.
  • Statistical cookies 
    Statistical cookies help us to understand how the visitors of our Website interact with our Websites contents by anonymously gathering information on the user behavior. We use and analyze this information anonymously for statistical purposes.
  • Marketing cookies
    Our Website uses marketing cookies to track the visits of the users of our Website. This tracking helps us to understand the preferences and interests of the visitors of our Website and enables us to show to the visitors of our Websites advertising on our Website or on third party websites which is relevant for and appealing to them.

With respect to the duration of the storage of the cookies on your client device, the following applies:

  • Transient cookies
    Transient cookies will be deleted automatically as soon as you close your web browser. One of the main categories of transient cookies is session cookies. Session cookies store a so-called session ID with which our Website can allocate various access events of your web browser to a common session. Our Website can thereby recognize your client device when you return to our Website. Session cookies will be deleted when you log out from our Website or close your web browser.
  • Persistent cookies 
    Persistent cookies will be deleted automatically after a preset period of time; this period may be different from cookie to cookie. You may at any time delete cookies in the safety/privacy settings of your web browser.

The legal basis for the use of cookies by our Website is Article 6 Subsection 1 Sentence 1 (f) GDPR. Our legitimate interest in the data processing results from the purposes for the use of cookies as specified above.

At the beginning of your visit of our Website, our Website will inform you on the cookies which are used by our Website and specify to which cookie category each cookie belongs (technically necessary cookies, preference cookies, statistical cookies or marketing cookies). Thereby, you will be notified on the name, the provider, the purpose and the time of deletion of each such cookie.

You will be able to deactivate each cookie category except for technically necessary cookies. These deactivations remain until you delete all cookies within the security/privacy settings of your web browser.

You can at any time modify your settings made upon the beginning of the visit of our Website with respect to any category of cookies (however except for technically necessary cookies) by closing our Website in your web browser, deleting all cookies within the security / privacy settings of your web browser and revisiting our Website thereafter. By this procedure, our Website will again show you the categories of cookies as specified above and enable you to modify your deactivation preferences.

Please refer to the user menu of your web browser for further details on deleting cookies within the security/privacy settings of your web browser.

Most web browsers allow you to particularly block cookies which are not set by our Website itself but by third-party providers (hereinafter referred to as “Third Party Cookies”). Please refer to the user menu of your web browser for further details thereon.

In the security/privacy settings of your web browser, you can generally block any types or categories of cookies and thereby prevent the storage of cookies on your client device. Please refer to the user menu of your web browser for further details thereon. Please note that after this general blocking you will probably not be able to use all functions of our Website.

4. Web analysis tools

4.1 Google Analytics

We use Google Analytics on our Website in order to meet the demands of the visitors to our Website and to optimize our Website, both on an ongoing basis. Furthermore, we use Google Analytics to statistically analyse the use of our Website, also in order to meet the demands of the visitors through our online presence.

Google Analytics is a web analyses service provided by Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter referred to as “Google”), cf. https://www.google.com/intl/en/contact/.

Google Analytics creates pseudonymized user profiles and uses cookies (cf. Section 3 of this Privacy Statement with respect to cookies in general).

The information generated by the cookies set by Google Analytics during your visit to our Website, such as

  • IP address of the accessing client device,
  • date and time of the access,
  • timezone gap in relation to the Greenwich Mean Time (GMT),
  • name and URL of the accessed pages/files,
  • the website from which the access occurs (referrer URL),
  • type and version of the web browser used, including its language,
  • type and version of the operating system of your client device,

will be transferred to a server of Google located in the U.S. and stored on this server. Google will use this information in order to analyze our Website, to create reports on the website activities and to render additional services in connection with the use of our Website and the use of the internet for market research and for statistical services which enable a needs-based design of our Website. This information will probably be transferred to third parties in case the statutory laws so provide or in case third parties act as a data processor.

Your IP address will in no case be linked to other data of Google. Your IP address will be anonymized so that it may not be linked to other information of you or of other persons (IP masking).

Google LLC is certified under the EU U.S. Privacy Shield, cf. https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active. Therefore, the data transfer to Google is subject to an adequacy decision pursuant to Article 45 Subsection 9 GDPR.

Data which is linked on our Website by Google Analytics to cookies will be deleted after a period of [14][26][38][50] months.

Our use of Google Analytics with the functions specified above is based on Article 6 Subsection 1 Sentence 1 (f) GDPR. Our legitimate interest in this use and the above-specified data processing by Google Analytics results from the purposes specified above in Section 4.1 of this Privacy Statement.

You may prevent the storage of the cookies Google Analytics uses by the following measures:

  • By disabling marketing cookies at the beginning of your visit to our Website (cf. Section 3 of this Privacy Statement).
  • By blocking Third Party Cookies or all cookies by choosing the respective setting within the security/privacy settings of your web browser (cf. Section 3 of this Privacy Statement). Please note that, after such blocking, you may probably not use all functions of our Website.
  • By downloading and installing the browser add-on provided by Google under https://tools.google.com/dlpage/gaoptout?hl=en.

You can find further information with respect to data protection in connection with Google Analytics within the Google Analytics Help under https://support.google.com/analytics/answer/6004245?hl=en as well as with respect to data protection by applying at Google generally under https://policies.google.com/privacy?hl=en&gl=de.

4.2 Google Tag Manager

For the administration and control of the web analysis tools as specified in Section 4 of this Privacy Statement above, we use Google Tag Manager.

Google Tag Manager is a service of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter referred to as “Google”), cf. https://www.google.com/intl/en/contact/. Google LLC is certified under the EU U.S. Privacy Shield, cf. https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active. Therefore, the data transfer to Google is subject to an adequacy decision pursuant to Article 45 Subsection 9 GDPR.

Google Tag Manager enables us to administrate and control those HTML commands of our Website via which the web analysis tools as specified in Section 4 above of this Privacy Statement (so-called “tags”) via a graphical user interface. Google Tag Manager implements these tags on our Website. Google Tag Manager does not use any cookies and does not gather any personal information. Only the web analysis tools itself which are specified in Section 4 above of this Privacy Statement and which we administrate by using Google Tag Manager gather data (cf. Sections 4.1 to 4.6 of this Privacy Statement). Google Tag Manager does not have access to this data.

5. YouTube Videos

We may include YouTube videos on our Website which are stored on https://www.youtube.com and may be run directly from our Website.

The website https://www.youtube.com is operated by YouTube, LLC., 901 Cherry Ave, San Bruno, CA 94066, USA (hereinafter referred to as “YouTube”). YouTube is a subsidiary of Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA (hereinafter referred to as “Google”), cf. https://www.google.com/intl/en/contact/.

We implement YouTube videos only by using the so-called “extended data protection mode”. That means: no data with respect to you will be transferred to YouTube unless you start one of the YouTube videos on our Website. Only if you do so, the data as specified in the following paragraph will be transferred to YouTube. We do not have any influence on this data transfer.

By starting a YouTube video which is included in our Website, YouTube obtains the information that you have visited the respective subpage of our Website. Furthermore, the data as listed in Section 2.1 of this Privacy Statement above or parts thereof will be transferred to YouTube. This occurs regardless of whether you have created a personal user account with Google in which you are logged in. If you are logged in in such an account, the before mentioned data will be directly linked to your Google account. If you want to prevent this link of data with your personal Google account, you have to log out from your Google account before starting the respective YouTube video. YouTube stores your data within user profiles and uses it for marketing, market research and/or needs-based design of its website. This use occurs in particular (also for visitors not logged in to Google accounts) for the purpose of needs-based advertisement and in order to inform other users of YouTube on your activities on our Website. You may object to the creation of user profiles by directly contacting YouTube / Google.

By the implementation of YouTube videos on our Website, you will be enabled to start these videos and to probably use other functionalities of YouTube. We implement YouTube videos in order to improve our Website.

The legal basis for this data processing is Article 6 Subsection 1 Sentence 1 (f) GDPR. Our legitimate interest in the implementation of YouTube videos on our Website is justified by the purposes specified above.

Google LLC and YouTube, LLC., a subsidiary of Google LLC, are certified under the EU U.S. Privacy Shield, cf. https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active#other-covered-entities. Therefore, the data transfer to YouTube / Google is subject to an adequacy decision pursuant to Article 45 Subsection 9 GDPR.

For further information with respect to the purposes and the scope of data collection and data processing by YouTube, please refer to the privacy policy of Google; in this privacy policy, you will also obtain information to your rights and adjustment possibilities with respect to the protection of your privacy: https://policies.google.com/privacy?hl=en&gl=de.

6. Shopify

In order to design our Website based on the needs of the visitors of our Website and in order to optimize our Website otherwise, we use services of Shopify Inc. and its affiliates, including Shopify Data Processing (USA) Inc., Shopify Payments (USA) Inc., Shopify (USA) Inc., and Shopify International Limited (collectively, “Shopify”). (hereinafter referred to “Shopify“). These services gather and store data on an anonymized basis and produce user profiles from this data by using pseudonyms.

In order to enable these purposes, the Shopify services may use cookies which are able to recall web browsers (cf. Section 3 above with respect to cookies in general). However, the Shopify services do not link user profiles to data related to a visitor represented by a pseudonym without such visitors prior consent. In particular, Shopify anonymizes IP addresses immediately upon receipt; after such anonymization, the link of user profiles to IP addresses are no longer possible.

The above-specified analysis of user behavior is based on Article 6 Subsection 1 Sentence 1 (f) GDPR. Our legitimate interest in this anonymized analysis of user behavior consists of our intent to design our Website pursuant to the needs of its visitors and to optimize it otherwise.

You may prevent the storage of the cookies which are used by the Shopify services by the following measures:

  • By disabling marketing cookies at the beginning of your visit to our Website (cf. Section 3 of this Privacy Statement). 
  • By blocking Third Party Cookies or all cookies by choosing the respective setting within the security/privacy settings of your web browser (cf. Section 3 of this Privacy Statement). Please note that, after such blocking, you may probably not use all functions of our Website.

For more information visit: https://www.shopify.com/legal/privacy

7. Hosting of our Website

Our website is hosted at the following service provider as our processor pursuant to Section 4 Subsection (8) GDPR: commerce tools GmbH

1&1 Internet Ltd.

Elgendorfer Straße 57
D-56410 Montabaur
Tel. +49 2602 96 00

Any data processing specified in this Privacy Statement regarding your personal data will, therefore, occur via this services provider.

For more information visit: https://www.1and1.co.uk/terms-gtc/terms-privacy/?linkId=nav.foot.account.privacy

8. Your Rights

You have towards us the following rights with respect to your personal data:

  • The right of access/information pursuant to Article 15 GDPR;
  • the right to rectification pursuant to Article 16 GDPR; 
  • the right to erasure pursuant to Article 17 GDPR;
  • the right to a restriction of processing pursuant to Article 18 GDPR;
  • In case we process your personal data on the basis of legitimate interests pursuant to Article 6 Subsection 1 Sentence 1 (f) GDPR: the right pursuant to Article 21 GDPR to object to the processing of your personal data either on grounds relating to your particular situation or in case of direct marketing; in Sections 3 and 4 above of this Privacy Statement, we have specified the ways and means by which you can exercise your right to object to data processing we render based on Article 6 Subsection 1 Sentence 1 (f) GDPR; in other cases you can exercise your right to object by sending an e-mail to nikosnicolaoustore@gmail.com;
  • the right to data portability pursuant to Article 20 GDPR; 
  • the right pursuant to Article 7 Subsection 3 GDPR to withdraw any consent you have given to us with respect to data processing at any time; you may render this right for example by sending an e-mail to nikosnicolaoustore@gmail.com or by sending a message to our other contact details specified in Section 1 of this Privacy Statement; such a withdraw effects that we have to discontinue the data processing which is based on your withdrawn consent for the future; however, the withdrawal of your consent will not affect the lawfulness of processing based on the respective consent before its withdrawal; 
  • the right pursuant to Article 77 GDPR to lodge a complaint with a supervisory authority; usually, you can, therefore, address the supervisory authority competent for your main residence or for the registered seat of Work in Progress Textilhandels GmbH.
9. Data security

Our website uses for the communication with your web browser the common SSL encryption standard (Secure Socket Layer) in connection with a level of encryption of 256 bit. In case your web browser does not support encryption with 256 bit, our Website will rather use 128-bit v3 technology. Whether a particular page of our Website communicates with your web browser by using these encryption technologies is indicated in the address or status bar of your web browser by a padlock symbol.

We further use appropriate technical and organizational measures to protect your data against accidental or intended manipulations, loss, destruction and against unauthorized access by third parties. We improve these safety measures according to the general technological developments on an ongoing basis.

10. The validity of this Privacy Statement

This Privacy Statement is currently valid and has been created in August 2018.

 

Search