logo

Privacy Policy

Last updated: 8 June 2026

1. Who We Are

Liora Wines S.A. (“Liora”, “we”, “us”) is a winery and wine merchant registered in Greece, with its principal place of business at Megalochori, 84700 Santorini, Greece. We operate the website at liorawines.com and sell our wines directly to consumers and through trade partners.

For the purposes of the General Data Protection Regulation (EU) 2016/679 (“GDPR”) and Law 4624/2019 (Greek implementation), Liora Wines is the data controller for personal data collected through this website.

Contact our Data Protection Officer: privacy@liorawines.com

2. Data We Collect

We collect personal data only when necessary and only when you provide it or when you interact with our website. This includes:

  • Identity data: name, date of birth (age verification for alcohol purchase)
  • Contact data: email address, telephone number, postal address
  • Order data: purchase history, delivery addresses, payment references (we do not store full card numbers)
  • Communication data: enquiry content, correspondence history
  • Newsletter data: email address and consent timestamp
  • Technical data: IP address, browser type, referring URL, pages visited (collected via cookies — see our Cookie Policy)

3. How We Use Your Data

We use your personal data for the following purposes:

  • Order fulfilment: processing and delivering your wine orders (legal basis: contract performance)
  • Customer communications: responding to enquiries, sending booking confirmations (legal basis: contract performance / legitimate interest)
  • Marketing communications: newsletters, new vintage announcements, special offers — only with your explicit consent (legal basis: consent)
  • Legal compliance: retaining financial records for the period required by Greek tax law (legal basis: legal obligation)
  • Website improvement: anonymised analytics to understand how visitors use our site (legal basis: legitimate interest)

4. Who We Share Your Data With

We do not sell your personal data. We share data only with trusted partners necessary for the operation of our business:

  • Delivery and logistics providers: for order fulfilment within Greece and internationally
  • Payment processors: PCI-DSS compliant payment services (we do not store card data)
  • Email service providers: for transactional and marketing communications
  • IT and hosting providers: servers located within the European Economic Area

Any processor who handles your data on our behalf is bound by a Data Processing Agreement and may not use your data for their own purposes.

5. International Data Transfers

Where personal data is transferred outside the European Economic Area, we rely on Standard Contractual Clauses approved by the European Commission to ensure an equivalent level of protection.

6. How Long We Keep Your Data

We retain personal data only for as long as necessary for the purpose for which it was collected:

  • Order and transaction data: 10 years (Greek tax and accounting law)
  • Marketing consent and newsletter data: until you withdraw consent or request deletion
  • Enquiry correspondence: 3 years
  • Cookie and analytics data: as set out in our Cookie Policy (typically 13 months)

7. Your Rights

Under GDPR you have the following rights:

  • Access: request a copy of the personal data we hold about you
  • Correction: request we correct inaccurate or incomplete data
  • Erasure: request deletion of your data (subject to legal retention obligations)
  • Restriction: request we limit processing in certain circumstances
  • Portability: receive your data in a machine-readable format
  • Objection: object to processing based on legitimate interest, including direct marketing
  • Withdraw consent: where processing is based on consent, you may withdraw at any time without affecting the lawfulness of prior processing

To exercise any of these rights, email privacy@liorawines.com with the subject “Data Rights Request”. We will respond within 30 days. You also have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA) at www.dpa.gr.

8. Cookies

We use cookies to improve your experience on our website. For full details of the cookies we use and how to manage them, please read our Cookie Policy.

9. Changes to This Policy

We may update this Privacy Policy from time to time. The date at the top of this page reflects the most recent revision. We will notify registered customers of material changes by email.

10. Contact

Liora Wines S.A.
Megalochori, 84700 Santorini, Greece
Email: privacy@liorawines.com
Tel: +30 22860 12345