1. Who we share your data with

We use third-party services (data processors) on our websites. The extent to which your data is shared with these providers depends on your use of our services, and we specifically mention them (with links to their privacy policies) in the sections below.
Each third-party service we use has been reviewed by our security team to ensure that their privacy policies and practices meet or exceed the same levels of compliance and standards that we follow. Where necessary and available, we maintain additional signed privacy agreements with these companies as an additional layer of accountability to ensure your data is secure.

We disclose potentially personally identifiable information and personally identifiable information only to our employees, contractors and affiliated entities who (i) need to know that information in order to process it on our behalf or provide services and (ii) have agreed, in writing , to ensure them. Some of these employees, contractors and affiliated organizations may be located outside of your home country, by using our websites and services, you consent to the transfer of this information to them. We will not rent or sell potentially personally identifiable information and personally identifiable information to anyone.

We may be required to disclose an individual’s personal information in response to a lawful request by public authorities, including to meet national security or law enforcement requirements.

If we ever make subsequent transfers of your data to third parties for a purpose other than that for which it was originally collected or subsequently authorized by you, we will provide you with an opt-out option to limit the use and disclosure of your personal data.

2. Cookies

A cookie is a string of information that a website stores on a visitor’s computer and that the visitor provides to the website each time the visitor returns to it. We use cookies on all our websites to help identify and track visitors, their use of our services and their preferences on our website. Visitors who do not wish to have cookies placed on their computers should set their browsers to refuse cookies before using our websites, with the disadvantage that some features may not work properly without the help of cookies.

If you leave a comment on our website, you can choose to save your name, email address and website in cookies. These are for your convenience so that you don’t have to fill in your details again when you leave another comment. These cookies last for one year.

If you have an account and log in to this website, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also create various cookies to store your login information and screen preferences. Login cookies last for two days and screen options cookies last for one year. If you select “Remember me”, your login will remain for two weeks. If you log out of your account, the login cookies will be removed.

3. What personal data we collect and why we collect it

Email/Contact Form

Customers who email us or use the contact forms on our websites will have the email address, IP address and data provided in the contact form or email stored in our G Suite files as well as in our integrated enterprise resource management program that we use.

We keep all communication made via e-mail as well as through the contact forms indefinitely, so that we can provide continuous support and improve our services. You may at any time request copies of any previously stored correspondence with us.


We use Google Analytics to anonymously track visitors and gather information about traffic to our websites.

Marketing campaigns

We may use social media campaigns and online advertising. These service providers use cookies on our websites and/or pixel tracking to serve ads on the various platforms.

4. What rights you have to your data

You can request to be “forgotten” and we will delete any personally identifiable data we have about you. Of course, this excludes data that we need for administrative or security purposes, or if we are required by law to retain some of the data.

A person seeking access or seeking to correct, amend or delete inaccurate data should direct their inquiry to contact@gavala-lingerie.gr. We will respond to you within a reasonable time, not exceeding one month.

5. How we protect your data

The security and reliability of our services is our first priority. We invest heavily in training our staff and infrastructure to ensure best practice is followed in everything we do.

6. What data breach procedures do we apply

In the event that an event occurs where our customer data has been lost, stolen or potentially compromised, it is our policy to notify our customers via email no later than 48 hours after our team becomes aware of the occurrence of the event . We will also report this incident to the relevant data protection authority.

7. Minors

The Site is not intended for persons under the age of consent.

8. Changes to Privacy Policy

Although most changes are likely to be minor, we may modify the Privacy Policy, in whole or in part, from time to time in our sole discretion.