Welcome to our online store, specialceuticals.com.
This Website is owned by the Greek company under the name “Zagkos Panagiotis” (trading as “Special Ceuticals”), with registered address at Vomou 3, Athens 11364, Greece, VAT number: 147381230, Tax Office: KEFODE Attikis, General Commercial Registry No.167219502000, email:
Guided by the principle of protecting your privacy, we wish to inform you clearly and transparently about how we collect, use, and protect your personal data when you visit or make purchases from our Website, in accordance with the General Data Protection Regulation – Regulation EU 2016/679 (hereinafter “GDPR”).
This Policy should be read together with our Terms of Use & Conditions (link) and Shipping & Returns Policy (link), as these texts form an integral part of this Policy and collectively govern the operation of the Website and the transactions carried out through it.
By continuing to browse our Website and/or making purchases, you automatically and unconditionally accept the terms of this Policy, including any amendments. We invite you to review this Policy periodically to stay informed of any changes. If you do not agree with any modifications, you must refrain from any action (use of the Website and/or purchases).
1. Data Controller & Contact
The Data Controller for your personal data is Special Ceuticals.
For any matter regarding the protection of your data, you may contact us at:
- Email:
This email address is being protected from spambots. You need JavaScript enabled to view it. - Phone:210 8616011, 210 8620749
- Address:Vomou 3, Athens 11364, Greece
2. To Whom This Policy Applies
This Policy applies to Users who:
- Browse our Website
- Create an account and purchase products through the Company’s Website
- Contact us
- Receive updates via our promotional activities
3. What Personal Data We Collect & Why
We collect and process the following data based on different legal grounds:
|
Category of Data |
Legal Basis |
Purpose of Processing |
|
Personal Identification Data (Name, Surname, Address, City, Postal Code, Telephone) |
Performance of Contract between the Company and the User |
Execution of your order, delivery of products, and issuance of legal receipt/document |
|
Business Details (Company name, VAT number, Tax Office, Profession, Business Address) |
Compliance with Legal Obligation |
Issuance of a legal invoice and maintenance of accounting records in accordance with national tax legislation |
|
Financial Data (Payment details) |
Performance of Contract |
Processing of your payment. We do not store/process your full card details; payment is made through the secure/certified platform of our bank |
|
Contact Details (Email) |
Performance of Contract |
Sending informational messages regarding your order (e.g., confirmation, status, dispatch) |
|
Contact Details (Email) |
Consent |
Sending newsletters and marketing communications, only if you have given explicit, active, and distinct consent (Opt‑in) |
|
Browsing Data (Essential Cookies) |
Legitimate Interest |
Strictly necessary cookies for the functionality and security of the Website (e.g., maintaining shopping cart, connection security) |
|
Browsing Data (Non‑essential Cookies / IP) |
Consent |
Non‑essential Analytics, Marketing & Social Media Cookies: analysis of traffic and display of personalized advertisements/content, only if you have given explicit and free consent via the Cookie Consent Banner |
|
Login Details (optional) (Username and password) |
Performance of Contract (Account Terms) |
Creation and management of a User account, facilitation of future purchases, and access to order history |
4. Cookies Policy
What Are Cookies
Cookies are small text files that are sent and stored on the User’s computer, smartphone, or other device each time they visit a website. Cookies perform various functions, such as remembering your preferences (e.g., language, products in the cart), collecting statistical data to improve our services, and displaying personalized advertising content.
Which Cookies We Use and Why
Our Website uses cookies for various purposes. Some cookies are strictly necessary for the proper functioning of the Website and cannot be disabled, while others are used for analysis or marketing and require the User’s consent.
|
Category of Cookies |
Legal Basis |
Purpose |
Third Parties / More Information |
|
Strictly Necessary |
Legitimate Interest / Technical Necessity |
Ensuring basic functions (e.g., navigation, account login, shopping cart retention, transaction security) |
Not shared beyond necessary technical hosting providers |
|
Statistics / Analytics |
Consent (Opt‑in) |
Understanding how visitors interact with the Website, measuring traffic, and improving user experience |
Google Analytics (see their privacy policy for details) |
|
Marketing / Advertising |
Consent (Opt‑in) |
Providing targeted advertisements relevant to your interests, measuring the effectiveness of advertising campaigns |
Google Ads, Facebook Pixel (see their privacy policies for details) |
|
Social Media |
Consent (Opt‑in) |
Integrating sharing functions (share/like buttons) and content from social media platforms |
Facebook, Instagram (see their privacy policies for details) |
Management and Control of Cookies
The User has full control over the use of cookies. Upon entering our Website, a Cookie Consent Banner appears, through which you can:
- Acceptall cookies.
- Rejectall non‑essential cookies (Analytics, Marketing, Social Media).
Additionally, you may change your preferences or withdraw your consent at any time by clicking the banner link permanently located at the bottom of the Website page. Finally, you can manage or disable cookies through the settings of your browser (Chrome, Firefox, Safari, Edge, etc.).
5. Conditions of Sale & Age
The sale of our products through the Website is intended exclusively for adults (individuals over 18 years of age) who have full legal capacity to enter into contracts.
Our Company does not knowingly collect or otherwise process personal data directly from minors. If it is discovered that personal data of a minor has been collected without the necessary verifiable consent of a parent or guardian, such data will be immediately deleted.
6. How We Protect Your Data
At our Company, we take your privacy very seriously. We implement a series of technical and organizational security measures to ensure the confidentiality, integrity, and availability of the personal data you provide.
These measures include, among others:
- Security During Data Transfer
SSL/TLS Encryption: All communication between your browser and our Website takes place via an encrypted connection (HTTPS protocol). This ensures that your data, such as payment details and passwords, remain private and protected from interception during transmission. - System and Infrastructure Security
Firewall: We use modern firewalls and intrusion detection/prevention systems (IDS/IPS) to continuously monitor network traffic and protect against malicious attacks.
Regular Security Updates: Our Website software and all extensions/plugins are regularly updated to ensure the highest possible protection against known vulnerabilities.
Strong Password Policy: We encourage our Users to use strong and complex passwords. - Data Management and Access
Limited Access: Access to your personal data within our Company is restricted to authorized personnel who need it to perform their duties (e.g., order management, accounting). All employees are bound by confidentiality clauses.
Data Minimization: We collect only the data absolutely necessary to complete your purchase or for the purposes you have consented to (e.g., newsletter). - Payment Procedures
Secure Payment Providers: Your financial data (e.g., credit card number) is neither stored nor processed on our Website servers. It is handled directly by the certified and secure payment platform of Piraeus Bank, which complies with the highest security standards (PCI DSS).
7. Your Rights
Under the GDPR, you have the following rights (reference is made to the relevant Articles of the Regulation):
- Right of Access (Art. 15)
You have the right to obtain confirmation from the Company as to whether or not personal data concerning you is being processed, to access that data, and to receive information about the processing (e.g., what data we hold, why we use it, to whom we transfer it, etc.). - Right to Rectification (Art. 16)
You have the right to obtain without undue delay the rectification of inaccurate personal data concerning you. - Right to Erasure (“Right to be Forgotten”) (Art. 17)
You have the right to obtain the erasure of personal data concerning you without undue delay, under certain conditions (e.g., data no longer necessary, you withdraw consent, data unlawfully processed). - Right to Restriction of Processing (Art. 18)
You have the right to obtain restriction of processing under specific circumstances (e.g., contesting the accuracy of data, processing is unlawful but you oppose erasure). - Right to Data Portability (Art. 20)
You have the right to receive the personal data you have provided to the Company in a structured, commonly used, and machine‑readable format and to transmit it to another controller, where processing is based on consent or contract and carried out by automated means. - Right to Object (Art. 21)
You have the right to object at any time to processing of personal data concerning you which is based on legitimate interests or for direct marketing purposes. - Right to Withdraw Consent
You may withdraw your consent for marketing at any time by clicking the “Unsubscribe” link in any newsletter or by contacting us. - Supervisory Authority / Alternative Dispute Resolution
You have the right to lodge a complaint with the local supervisory authority regarding the processing of your personal data. In Greece, the supervisory authority is the Hellenic Data Protection Authority – dpa.gr.
To exercise any of these rights, contact us at
8. With Whom We Share Your Data
Your personal data is not sold, traded, or otherwise transferred to third parties for their own marketing purposes.
It may be shared with third parties only when necessary for the provision of our services or when required by law:
- Specialized External Partners:Such as courier companies for product delivery and banking institutions for payment processing. These partners act as Data Processors on our behalf and are bound by Data Processing Agreements (DPA) to maintain strict confidentiality and protect your data in accordance with the GDPR.
- Public / Judicial Authorities:When required by law, court order, or request from other competent state authorities, we may provide the necessary data.
The Company is committed to ensuring the protection of your personal data at the highest possible level of security, even when transferring it to external partners or service providers.
9. Data Retention Period
We retain your personal data only for as long as necessary to fulfill the purposes described in this Privacy Policy, or for as long as required by law.
Specifically:
- Order & Accounting Data:Retained for at least five (5) years from the completion of the transaction (as required by Greek tax legislation) for tax audit and legal compliance purposes.
- User Account Data:We retain your account data for as long as your account remains active.
- Marketing Data (Newsletter):Retained until you withdraw your consent (unsubscribe from the list).
- Cookie Data:The lifespan of cookies ranges from the end of the session (session cookies) up to twelve (12) months (for persistent cookies), depending on their purpose.
10. Changes to the Privacy Policy
The Company reserves the right to update or modify this Policy. Changes will take effect from the moment they are posted on the Website. Material changes will be communicated to you through a prominent notice on the Website or by email.
