Legal Information

Privacy &
Data Protection Policy

We value your trust. Learn how we securely collect, process, and protect your personal data in compliance with the EU General Data Protection Regulation (GDPR).

Last updated: July 2026

The individual enterprise Galanos Doukas (hereinafter "Levina", "we", "us", or "our"), with registered offices at 10 Iasonos St., Korydallos 181 20, Greece, VAT No. (Α.Φ.Μ.): 146848462, Tax Office (Δ.Ο.Υ.): NIKAIAS, and GEMI No. (Αρ. Γ.Ε.ΜΗ.): 190293909000, is committed to protecting the personal data of visitors and customers of the website www.levina.gr.

This Privacy Policy explains how we collect, use, disclose, and safeguard your personal data in accordance with the EU General Data Protection Regulation (GDPR) (2016/679).

1. What Data We Collect and Why

We only collect personal information that is strictly necessary to provide you with the best possible service:

  • During Order Checkout (E-shop): We collect your name, shipping address, billing address, contact phone number, and email address. Purpose: The execution of the sales contract, billing, and delivery of products through partner courier/shipping companies.
  • Contact Form: We collect your name, email, and message content. Purpose: To respond to your requests, questions, or inquiries regarding specialized custom orders.
  • Newsletter Subscription (Marketing): We collect your email address only if you explicitly choose (opt-in) to receive updates, news, and launches of exclusive collections. Purpose: To keep you informed about Levina's latest design creations.
  • Cookies and Technical Data: We collect your IP address, browser type, and behavioral data via cookies (only if you consent in our cookie banner). Purpose: For optimizing website browsing performance and customer user experience.

2. Legal Basis for Processing

We process your data based on the following legal foundations:

  • Contract Execution: To prepare, custom tailor, and ship the prosthesis and design products you purchased.
  • Consent: For sending marketing newsletters and using non-essential cookies.
  • Legal Obligation: For issuing receipts/invoices and complying with Greek and European tax laws.

3. Who We Share Your Data With (Third-Party Recipients)

We do not sell or rent your personal data. To run our site and ship orders, we share details strictly with:

  • Courier / Shipping Companies: We share your name, delivery address, and phone number with partner shipping companies exclusively for the transport and delivery of your items.
  • Payment Providers: Your card details are never stored on our servers. They are securely processed directly on the payment gateway systems of our partner bank / payment providers (e.g., Stripe, Viva Wallet, PayPal).
  • Accounting Support: Invoice details are shared with our external accountant for tax declaration and corporate legal accounting.

4. Data Retention Period

  • Order and invoicing data is stored for the time period required by Greek tax laws (typically 10 years).
  • Newsletter subscription data is retained until you withdraw your consent (by clicking "Unsubscribe" in any email or by contacting us directly).
  • Contact form inquiries are kept for at least 6 months after resolution to support future customer service reference.

5. Your Rights (Under GDPR)

You have the following rights regarding your personal data:

  • Right of Access: To request details of the personal data we store about you.
  • Right to Rectification: To request correction of incorrect or outdated data.
  • Right to Erasure ("Right to be Forgotten"): To request deletion of your data (provided there is no legal or tax obligation requiring its retention).
  • Right to Portability: To receive your data in a structured, digital format.
  • Right to Withdraw Consent: You can unsubscribe from marketing lists at any time.

To exercise any of these rights, please contact us via email at info@levina.gr.

6. Data Security

We employ modern SSL/HTTPS security protocols to encrypt your data during transfer to the website, ensuring that unauthorized third parties cannot intercept or read your personal details.

7. Data Protection Authority

If you believe that the processing of your data violates GDPR regulations, you have the right to lodge a formal complaint with the Hellenic Data Protection Authority (HDPA) at www.dpa.gr.