Privacy Policy

Privacy Policy for Midifiles.gr

1. Introduction

At Midifiles.gr, we take your privacy seriously and are committed to protecting your personal information. This Privacy Policy explains how we collect, use, store, and protect your data when you visit our website.

We fully comply with all applicable privacy laws, including the General Data Protection Regulation (GDPR) 2016/679 and other relevant regulations.

2. Data Controller Information

Data Controller:
Stylianos-Andreas Iliakis (Music Producer)
Email: stelino1976@gmail.com
Website: Midifiles.gr

For any questions or concerns regarding privacy protection, please contact us using the details above.

3. What Information We Collect

We may collect the following types of information:

3.1 Personal Information You Provide

• Contact Details: Name, email address
• Order Information: Payment details for custom MIDI services
• Communication Data: Messages sent through contact forms
• Account Information: If you create an account on our website

3.2 Automatically Collected Information

• Technical Data: IP address, browser type, device information
• Website Usage: Pages visited, time spent, download activities
• Cookies: See our Cookie Policy for detailed information

3.3 Special Categories of Data

We do not intentionally collect sensitive personal data (such as health information, religious beliefs, etc.). If such data is provided accidentally, it will be deleted immediately.

4. How We Use Your Information

We use your personal data for the following purposes:

4.1 Essential Services (Legal Basis: Performance of Contract)

• Processing your orders for custom MIDI files
• Delivering purchased files and services
• Providing customer support
• Managing payments and transactions

4.2 Website Operation (Legal Basis: Legitimate Interest)

• Ensuring website security and functionality
• Analyzing website performance and usage
• Preventing fraud and abuse

4.3 Marketing (Legal Basis: Consent)

Only with your explicit consent:

• Sending newsletters about new MIDI files
• Marketing communications about our services
• Promotional offers and updates

4.4 Legal Compliance (Legal Basis: Legal Obligation)

• Compliance with tax and accounting requirements
• Responding to legal requests from authorities

5. Data Sharing and Disclosure

We do not sell your personal data to third parties. We may share your data only in the following limited circumstances:

5.1 Service Providers

• Payment Processors: For secure payment handling
• Email Services: For sending newsletters (if you have consented)
• Web Hosting: For website operation and maintenance
• Cloud Storage: For secure data backup

5.2 Legal Requirements

• When required by law or legal process
• To protect our rights and prevent illegal activities
• In the event of a business transfer or merger

5.3 International Transfers

If data is transferred outside the EU, we ensure adequate protection through:

• Standard Contractual Clauses approved by the European Commission
• Adequacy Decisions by the European Commission
• Your explicit consent

6. Data Retention

We retain your personal data only for as long as necessary:

• Customer Data: 7 years (for tax/accounting purposes)
• Marketing Consent: Until you withdraw your consent
• Website Analytics: Maximum 26 months
• Communication Requests: 2 years or until resolution

7. Data Security

We implement strong security measures to protect your information:

• Encryption: All data transfers are encrypted (SSL/TLS)
• Access Control: Limited access on a need-to-know basis
• Regular Backups: Secure, encrypted backups
• Security Monitoring: Continuous monitoring for threats
• Staff Training: Regular training on privacy and security matters

8. Your Privacy Rights

Under the GDPR, you have the following rights:

8.1 Access Rights

• Right of Access: Request a copy of your personal data
• Right to Rectification: Correct inaccurate information
• Right to Erasure: Request deletion of your data

8.2 Control Rights

• Right to Restrict Processing: Restrict how your data is used
• Right to Data Portability: Receive your data in a portable format
• Right to Object: Object to processing based on legitimate interest

8.3 Consent Rights

• Right to Withdraw Consent: Stop marketing communications at any time
• Right to Lodge a Complaint: Submit complaints to data protection authorities

To exercise your rights, contact us at: stelino1976@gmail.com

9. Cookies and Tracking

Our website uses cookies to improve your experience:

9.1 Essential Cookies

• Required for website functionality
• Cannot be disabled

9.2 Analytics Cookies

• Help us understand website usage
• Can be disabled through your browser settings

9.3 Marketing Cookies

• Used for advertising and personalization
• Require your consent

For detailed cookie information, see our Cookie Policy.

10. Third-Party Websites

Our website may contain links to external websites. We are not responsible for the privacy practices of these third-party websites. Please check their privacy policies before sharing any personal information.

11. Children’s Privacy

Our website is not intended for children under 16 years of age. We do not knowingly collect personal information from children. If we discover that we have collected such information, we will delete it immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated “Last Updated” date. For significant changes, we will notify you via email or a notice on the website.

13. Contact Details

For any questions regarding this Privacy Policy or your personal data, contact:

Stylianos-Andreas Iliakis
Email: stelino1976@gmail.com
Website: https://midifiles.gr

Hellenic Data Protection Authority (Greece):
Website: http://www.dpa.gr
Email: contact@dpa.gr