IT ALL STARTS HERE
IT ALL STARTS HERE
IT ALL STARTS HERE
IT ALL STARTS HERE
IT ALL STARTS HERE
IT ALL STARTS HERE
IT ALL STARTS HERE
IT ALL STARTS HERE
IT ALL STARTS HERE
IT ALL STARTS HERE

Privacy Policy & GDPR Compliance

Privacy Policy

Last Updated: July 2026

Mykonos Chocolate Co. (Mykonos Chocolate S.A. – ΣΟΚΟΛΑΤΟΠΟΙΙΑ ΜΥΚΟΝΟΥ Α.Ε.) is committed to protecting the privacy and personal data of its customers, visitors, and business partners.

This Privacy Policy explains how we collect, use, store, disclose, and protect your personal information when you visit our website, purchase our products, create an account, subscribe to our newsletter, or otherwise interact with Mykonos Chocolate Co.

We process all personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”), the applicable Greek data protection legislation, including Law 4624/2019, and any other relevant European and national legal requirements.

By using our website and services, you acknowledge that you have read and understood this Privacy Policy.

1. Data Controller

The Data Controller responsible for the processing of your personal data is:

Mykonos Chocolate Co.
Mykonos Chocolate S.A. (ΣΟΚΟΛΑΤΟΠΟΙΙΑ ΜΥΚΟΝΟΥ Α.Ε.)

Mykonos, Greece

Email: info@mykonoschocolate.co

Website: www.mykonoschocolate.co

2. Information We Collect

We collect only the personal information necessary to provide our products and services.

This may include:

Personal Information

  • Full name
  • Billing address
  • Shipping address
  • Email address
  • Telephone number
  • Company name (where applicable)
  • VAT Number (where applicable)

Order Information

  • Products purchased
  • Order history
  • Delivery information
  • Payment status
  • Gift messages
  • Customer communications

Payment Information

Payments are processed securely through certified third-party payment providers.

Mykonos Chocolate Co. does not store or have access to your complete credit or debit card details.

Technical Information

When you browse our website, we may automatically collect technical information including:

  • IP address
  • Browser type and version
  • Device information
  • Operating system
  • Time zone
  • Website usage information
  • Cookie identifiers
  • Analytics data

3. Purpose of Processing

We process your personal data solely for legitimate business purposes, including:

  • Processing and fulfilling your orders
  • Delivering products
  • Processing payments
  • Providing customer support
  • Responding to enquiries
  • Managing your account
  • Improving our products and services
  • Preventing fraud and unauthorized activity
  • Complying with legal and tax obligations
  • Sending marketing communications where permitted by law or with your consent

4. Legal Basis for Processing

We process your personal data based on one or more of the following legal grounds under Article 6 of the GDPR:

  • Performance of a contract
  • Compliance with legal obligations
  • Legitimate interests pursued by Mykonos Chocolate Co.
  • Your explicit consent where required

5. Marketing Communications

If you choose to receive marketing communications, we may send you updates regarding:

  • New collections
  • Limited editions
  • Exclusive launches
  • Events
  • Promotions
  • Company news

You may withdraw your consent at any time by clicking the unsubscribe link included in our emails or by contacting us directly.

6. Cookies

Our website uses cookies and similar technologies to:

  • Ensure proper website functionality
  • Improve user experience
  • Remember your preferences
  • Analyze website performance
  • Measure marketing effectiveness

Where required by law, non-essential cookies are only activated after obtaining your consent.

Please refer to our separate Cookie Policy for detailed information.

7. Sharing Personal Data

We never sell, rent, or trade your personal information.

Your personal data may be shared only with carefully selected service providers where necessary, including:

  • Payment service providers
  • Courier and logistics companies
  • Website hosting providers
  • Email marketing platforms
  • Analytics providers
  • Customer support services

All third-party processors are contractually required to process your personal data securely and in accordance with applicable data protection legislation.

8. International Data Transfers

Where personal data is transferred outside the European Economic Area (EEA), appropriate safeguards will be implemented in accordance with the GDPR, including Standard Contractual Clauses or other approved legal mechanisms where applicable.

9. Data Retention

We retain personal information only for as long as necessary to:

  • Complete your orders
  • Provide customer support
  • Meet accounting and tax obligations under Greek law
  • Resolve disputes
  • Protect our legal rights

When personal data is no longer required, it is securely deleted or anonymized.

10. Your Rights

Under the GDPR, you have the right to:

  • Access your personal data
  • Request correction of inaccurate information
  • Request deletion (“Right to be Forgotten”)
  • Restrict processing
  • Object to processing
  • Withdraw consent at any time
  • Receive your personal data in a portable format
  • Lodge a complaint with the Hellenic Data Protection Authority (HDPA)

Requests regarding your personal data may be submitted using the contact details provided below.

11. Data Security

We implement appropriate technical and organizational measures designed to protect your personal information against accidental loss, unauthorized access, disclosure, alteration, or destruction.

Although no internet transmission can be guaranteed as completely secure, we continuously monitor and improve our security practices.

12. Children’s Privacy

Our website and products are not intended for individuals under the age of 16.

We do not knowingly collect personal information from children.

If we become aware that personal information has been collected from a child without appropriate consent, we will promptly delete such information.

13. Third-Party Websites

Our website may contain links to third-party websites or services.

Mykonos Chocolate Co. is not responsible for the privacy practices or content of those websites, and we encourage you to review their respective privacy policies.

14. Changes to this Privacy Policy

We reserve the right to update this Privacy Policy at any time to reflect changes in legislation, technology, or our business operations.

The updated version will always be published on this page together with the latest revision date.

15. Contact Us

If you have any questions regarding this Privacy Policy or wish to exercise any of your data protection rights, please contact us:

Mykonos Chocolate Co.
Mykonos Chocolate S.A. (ΣΟΚΟΛΑΤΟΠΟΙΙΑ ΜΥΚΟΝΟΥ Α.Ε.)

Mykonos, Greece

Email: info@mykonoschocolate.co

We are committed to protecting your personal information with transparency, integrity, and the highest standards of privacy and security.

Back To Top