Terms of use


  • Terms of Use and Conditions.
  • Liability Disclaimer.
  • Copyright – Industrial Property – Prohibition of Reproduction.
  • Third Party Websites.
  • Changes to the website.
  • Privacy Policy.
  • Cookies Policy.
  • User Obligations.
  • Dispute Resolution.
  • Modification/Update of Terms of Use and Conditions.

Terms of Use and Conditions

Welcome to the official website of Apollonion Artou SA (hereinafter the Company), please read carefully the following terms of use and conditions that govern this website and in case you disagree with even some of them please do not make use of this. If you use our website, this implies that you have read and unreservedly accept these terms and conditions. Please check this page each time you visit our website as these terms and conditions may be amended and updated by the Company whenever deemed necessary.

Liability Disclaimer

The Company bears no responsibility, direct or indirect, for any damage (positive or negative) that may occur to anyone from the use of its website and/or information contained therein, regardless of whether the relevant information is provided by the Company or by a third party.

The Company makes every effort to ensure that the content of its website is as up-to-date, secure and error-free as possible, but in no case does it absolutely guarantee the accuracy and correctness of the data/information contained therein. In any case, the user of this website is solely responsible for evaluating the published content and the Company bears no responsibility for any risk or damage suffered by the user from the use of its content.

Copyright – Industrial Property – Prohibition of Reproduction

The entire content of the information, as well as the services that appear on the Company’s website, belong exclusively to this Company or to its respective beneficiary, while they are protected by intellectual and industrial property laws.

All content of this website, including distinctive titles, marks, images, graphics, photos, designs, texts, etc. are the intellectual property of the Company and are protected according to the relevant provisions of Greek law, European law and international conventions or intellectual property of third parties for which the Company has obtained a license to use for its own exclusive needs and for the operation of its website . Any copying, transfer or creation of a derivative work based on this content or misleading the public about the actual provision – website administrator is prohibited. Reproduction, republishing, uploading, communication, dissemination or transmission or any other use of the content in any manner or medium for commercial or other purposes is permitted only with the prior written consent of the Company or any other copyright holder. The names, images, logos and distinctive features listed and describing the website with the trademark or the products or services of the Company or third parties are the property of the Company or third parties respectively, protected by the relevant laws on commercial signals. Their use on this website does not under any circumstances grant a license or right to use them by third parties.

Third Party Websites

The Company’s website provides in some places references (hyperlinks) to other web nodes (site). Users’ browsing of them is done solely at their own risk. The Company’s website is not responsible for any damage that may be caused by the use of links or hyperlinks to other websites, as well as for the information that may be included on its linked websites.

Changes to the website

The Company always reserves the right to change or remove any part or even the entire website without prior notification to the users. Website users cannot have any claim for compensation if they are unable to use this website and the services offered.

Privacy Policy

The use of the electronic pages and services provided to the visitor/user, from the Company’s website, presupposes his unreserved agreement with the Personal Data Protection Policy. Therefore, the visitor/user must carefully read the contents of the Privacy Policy posted on this website.

Cookies Policy

The Company’s website may collect identification information of its users using technologies such as cookies. For more information visit the Cookies Policy which is available on our website.

User Obligations

The users and visitors of this website have the obligation to respect all the rules of Greek and International law as well as user morals.

Users may use this website only in accordance with the current Terms and Conditions, in the event that unauthorized use of this website is detected, the user agrees to indemnify the Company for any loss or damage that may occur.

Dispute Resolution

These Terms and Conditions are governed and interpreted by Greek law. The parties agree that an effort will be made to amicably resolve any dispute arising in relation to these Terms and Conditions. In the event that an amicable resolution of these is not possible, the courts of Athens are designated as competent for the resolution. By using the Company’s website, you expressly and unconditionally accept the above terms.

Modification/Update of Terms of Use and Conditions

The Company may modify these Terms of Use and Conditions from time to time for reasons of compliance with regulatory changes, for reasons of optimizing its operations and services. Any updates, modifications will be posted on this website with a date indication, so that it is known which is the most recently updated version.

Revision: 2019

Privacy Policy


Group of companies



  • Subject of the personal data protection policy.
  • Profile of Group companies.
  • Definitions.
  • General Principles of Personal Data Processing.
  • Personal data collected and method of collection.
  • Data of minors.
  • Disclaimer for Third Party Websites.
  • Purposes of Processing.
  • Transmission to Third Parties.
  • Data Protection and Security.
  • Rights of Personal Data Subjects.
  • Data Retention Period.
  • Updates to the Personal Data Protection Policy.

Subject of the personal data protection policy

Profile of Group Companies:

KARAMOLEGOS A.E. Bread Industry is active in the sector of standardized bakery-confectionery products. Alongside the industrial activity, which concerns the production of bakery products, the company is also active in the marketing of various pastries and sweets, in order to satisfy the demand of its customers for a greater variety of products.

Apollonion Artou SA, is a leading Greek company in the production of dough and confectionery products, active in the development of a chain of stores of the same name, under the distinctive title “APOLLONION”, currently maintaining 29 stores in key points of the wider Athens area.

Karamolegos Bakery Romania SA, is a company of the Group (as defined below), which was incorporated in Bucharest, Romania on October 13, 2005 as a limited company (S.A.) in accordance with the Companies Law 31/1990 of Romania with main activities the production and sale of fresh confectionery, pastries and sweets.

The above companies Artovohimania Karamolegos S.A., Apollonion Artou S.A.V.E. and Karamolegos Bakery Romania S.A. (hereinafter the “Group”) guarantee the protection and respect of the privacy of natural persons dealing with them (either collectively as a Group and/or individually as companies), as well as the protection of their personal data, whether it is held online or on its premises.

For this reason, within the framework of the current national and EU legal framework governing the protection of personal data, in particular the EU General Data Protection Regulation [Regulation 2016/679 (GDPR)], the Group communicates this legal, reasonable and transparent personal data protection policy, with the aim of providing information on the personal data it collects, how it is used, as well as how those dealing with it can benefit from its use (s. the Group) natural persons, when they visit the Group’s facilities and/or websites.

This personal data protection policy is valid and applies to all facilities and/or digital environments, which belong to the Group and these companies and are related to its activities.

In particular, the subject of this Policy is the definition of the basic principles and rules, according to which the Group collects, processes and stores personal data, as defined by the current legislation.


For the purposes of this document, the following terms shall be understood as follows:

“Personal data”: any information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one whose identity can be ascertained, directly or indirectly, in particular by reference to an identifier such as name, ID number, location data, online identifier or one or more factors that characterize the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.

“Special categories of personal data”: personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs or trade union membership, as well as the processing of genetic data, biometric data for the purpose of unambiguous identification of a person , data relating to health or data relating to a natural person’s sex life or sexual orientation.

“Processing”: any operation or series of operations carried out with or without the use of automated means, on personal data or sets of personal data, such as collection, registration, organization, structuring, storage, adaptation or alteration, retrieval, information retrieval, use, disclosure by transmission, dissemination or any other form of disposal, association or combination, restriction, deletion or destruction.

“Anonymization”: the processing of personal data in such a way that the data can no longer be attributed to a specific data subject.

“Pseudonymisation”: the processing of personal data in such a way that the data can no longer be attributed to a specific data subject without the use of additional information, provided that such additional information is kept separate and subject to technical and organizational measures to ensure that cannot be attributed to an identified or identifiable natural person.

“Controller”: the natural or legal person, public authority, agency or other entity that, alone or jointly with others, determines the purposes and manner of processing personal data; when the purposes and manner of such processing are determined by Union law or the law of a Member State, the controller or the specific criteria for his appointment may be provided for by Union law or the law of a Member State.

“Processor”: the natural or legal person, public authority, agency or other entity that processes personal data on behalf of the controller.

“Consent” of the data subject: any indication of will, free, specific, explicit and fully informed, by which the data subject manifests that he agrees, by statement or by a clear positive action, to be the subject of processing of the personal data that they concern it.

“Personal Data Breach”: the breach of security resulting in the accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access of personal data transmitted, stored or otherwise processed.

“Health-related data”: personal data relating to the physical or mental health of a natural person, including the provision of health care services, and which disclose information about the state of health.

“Existing legislation”: The provisions of the currently existing Greek, EU or other legislation to which the Group is subject and which define personal data protection issues, such as in particular Regulation (EU) 2016/679 of the European Parliament and of the Council on the protection of natural persons against the processing of personal data and for the free movement of such data (General Data Protection Regulation, GDPR) and the respective national legislation.

General Principles of Personal Data Processing

When the Group processes personal data, it ensures that:

  1. To have collected and processed this data legally, by virtue of the provisions of the existing legislation and the conditions it sets.
  2. To process personal data only for specified, explicit and legal purposes.
  3. Not to share personal data with third parties, except when it is necessary and permissible under existing legislation. In this case, it discloses only the data that is absolutely necessary in relation to the purpose of the disclosure, while taking care to inform the data subjects before doing so.
  4. To take appropriate technical and organizational measures, so that personal data is processed in a way that guarantees the appropriate security of personal data, including its protection from unauthorized or illegal processing and accidental loss, destruction or deterioration. In addition, to periodically review the adequacy and effectiveness of these measures.
  5. To make the necessary efforts so that the personal data it maintains and processes is always accurate and up-to-date.
  6. Not to keep the personal data it collects for a longer period of time than the purposes for which they were collected and processed (it is suggested to add the exact retention period per category of personal data). However, it is possible to keep them for a longer period of time if the processing of such data is necessary:
  7. i. to comply with a legal obligation that imposes the processing based on a provision of law.
  8. ii. for the fulfillment of a duty performed in the public interest or in the exercise of public authority assigned to the Group.

iii. for reasons of public interest.

  1. iv. for archiving purposes in the public interest, or for the purposes of scientific or historical research, or for statistical purposes, after taking the appropriate technical and organizational measures, including their pseudonymization, and only if these purposes cannot be served through the anonymization of the data.
  2. v. to establish, exercise or support legal claims.

Personal data collected and method of collection

The Group, in the context of its services and operations, may collect personal data of its employees, as well as of its partners in general, as well as other natural persons with whom it deals. In particular, it may collect the following:

a) “Personal data” (simple personal data):

Ø  Prospective employee data: CV data is collected (such as education, training, training of the employee, experience, evaluation). These data are submitted by the prospective employees themselves by sending the resume either directly to the Company (via email) or through third party partner companies, which undertake on behalf of the Company the collection of resumes for certain jobs.

Ø Employee data: for the employees of the Group, a file is kept with all the necessary information for the recruitment process and for the processing of payroll and the management of the employment relationship, such as first name, surname, patronymic, patronymic, year of birth, Identity Card Number, place of birth, gender, nationality, marital status, residential address, Tax Registration Number, previous service information, educational qualifications, date of employment, job title, hours, work permit (when required for foreign workers) Insured Person Registration Number, bank account number account and/or bank credit/debit card details, employee arrival and departure details, details of potential employee benefits (e.g. company cars, credit cards and loans), details of employee training, evaluation, etc. The data in question is collected directly by the employees of the Group. Also, it is possible that this data does not always belong to employees but also to third parties (e.g. members of the employee’s family, children, etc., who benefit from the mandatory insurance of the parent’s fund as a protected member).

Ø Supplier Data: for our suppliers (in case they are natural persons or sole proprietorships) we collect data such as name, surname, Tax Registration Number, address, telephone, IBAN account details, D.O.Y, supplier evaluation data. We collect this data directly from the Suppliers.

Ø Partner Data: for our external partners (e.g. Agents, cleaning crews, etc.) we collect data such as name, surname, ID number, Tax Registration Number, address, in case they enter our premises we collect further time input and output time as well as image data. We collect this data directly from the Partners.

Ø Customer Data (who procure our products – wholesale): for our customers (in the case of natural persons or sole proprietorships) we collect data such as name, surname, Tax Registration Number, address, etc. These data whether we collect them directly from Customers or through our partner agents.

Ø Consumer Data: for our consumers, we collect the data they submit to us in case they notify us of a complaint, request (by phone, email, social media, etc.).

Ø Data of participants in contests: for participants in contests we conduct we collect data such as name, surname, telephone, email, home address, age, marital status, etc. This data is submitted by the participants themselves if they read the respective Terms and Conditions of the Competition, in order to declare participation.

Ø  Data of Visitors to our premises: when someone visits our premises we may collect image data as well as name, surname, time of entry and time of exit and ID number, etc. We collect the data from the subjects themselves to ensure the legal interests of the Group, and in particular the safety of persons and goods.

Ø  Data of Visitors to our websites: the data we collect through our websites are only those submitted by the visitors themselves (e.g. via the contact form) and in particular the name, telephone and email. Also, we may only collect certain necessary information related to traffic on the respective website, such as indicatively the internet protocol address (IP address) and the type of browser (browser) used by the visitor, cookies. Furthermore, more specific information is reflected in the Cookies Policy on each website of the Group Companies, which is posted in a prominent place on the respective website of each Group company.

Depending on the circumstances, the Group may process the above data both as a controller and as a processor on behalf of third parties.

b) “Special Categories of Personal Data” (Sensitive Personal Data):

In some cases, the Group may collect and process data belonging to special categories of personal data (including sensitive personal data), in order to meet its legal obligations.

Ø  In particular, it may process data related to health (such as health certificates during the recruitment process based on the legislation on hygiene and food safety, or when granting sick leave, the process of declarations of occupational accidents, or when collecting complaints from consumers.

Ø Similarly, in exceptional cases, especially when required by applicable legislation, the Group may collect and process data related to criminal convictions or offences, such as copies of criminal records, always respecting the principle of proportionality.

Data of minors

According to the statutory purposes of the Group, the provision of services directly to minors is not foreseen, so it is not the policy of the Group to seek or receive personal data of minors (i.e. from persons who have not reached the age of 18), either directly or indirectly through third parties, except for the cases concerning children’s data, in the capacity of the protected member of insured parents.

However, since it is impossible to always verify the age of persons accessing or using the Group’s websites, parents and guardians of minors are advised to contact the Group immediately if they become aware of any unauthorized disclosure of data by minors for whom they are responsible, in order to exercise respectively the rights granted to them, such as e.g. to delete their data.

Disclaimer for Third Party Websites

In the Group, links may be provided, which redirect the user to third-party websites. The Group does not control such third party websites and is not responsible for the content posted on them or further links appearing on them. The Group is not responsible for the privacy practices of third parties or the content of third party websites.

Purposes of Processing

The Group, based on its statutory activities, may collect and process personal data for the following purposes:

  1. In order to meet the legal obligations imposed by the legislation, such as e.g. tax, etc.
  2. In order to meet its obligations, in its capacity as an employer, in the context of which it may hire and employ staff and/or contract with external partners.
  3. In order to ensure its proper operation.
  4. In order to ensure the safety of its personnel, facilities and equipment.
  5. In order to legally enter into contracts and meet the legal obligations imposed by them.
  6. For promotional, marketing and communication purposes.

Transmission to Third Parties

It is possible for the Group to transmit the above data to third parties, in particular because this is provided for by the existing legislation as its obligation or alternatively in accordance with the guarantees provided for in the existing legislation. In particular, in the context of achieving the processing purposes mentioned above, data may be transmitted to:

–       third partner companies that provide the Group with relevant services such as recruitment companies, banks, insurance companies, social media service providers, certification bodies etc. In any case, these companies are contractually bound to the Companies of our Group and the obligation of confidentiality is ensured as well as all the obligations provided for in the GDPR.

–       public authorities (Police departments, Prosecution authorities, E.F.E.T., Health, etc.) upon request

In case the transmission concerns a country outside the European Union (EU) or the European Economic Area (EEA), the Group must check whether:

  • The Commission has issued a relevant adequacy decision for the third country to which the transfer will take place.
  • Appropriate guarantees are observed in accordance with the Regulation for the transmission of this data.

Otherwise, transmission to a third country is prohibited and the Group cannot transmit personal data to it, unless one of the special exceptions provided for in the Regulation applies (e.g. explicit consent of the subject and information regarding the risks involved in the transfer, the transfer is necessary for the execution of a contract at the request of the subject, there are reasons of public interest, it is necessary to support legal claims and vital interests of the subjects, etc.).

Data Protection and Security

To prevent unauthorized access, maintain data accuracy and ensure appropriate use of Subjects’ personal data, the Group and its Companies have taken reasonable measures to protect personal data. However, it is emphasized that no method of transmission over the Internet or method of electronic storage is 100% secure. However, all necessary digital data security measures are taken (antivirus, firewall).

The preservation of originals or copies of documents containing personal data of natural persons in a physical archive is done in a way that ensures their security both from unauthorized access (e.g. locking, alarm system, transmission in a sealed envelope, confidentiality classification), and from damage or destruction (e.g. fire protection system, storage in cupboards inaccessible in the event of a flood).

Rights of Personal Data Subjects

The Group ensures that the Data Subjects can exercise the rights recognized by the legislation regarding the collection and processing of personal data. It is pointed out that each Subject may, at any time, exercise his rights for the processing of his personal data, as defined by the EU GDPR (2016/679). In particular, each Subject has the right to:

  • To request access to his personal data. He can request to receive a copy of his personal data held and check the legality of said processing.
  • To request the correction of his personal data. It can request the verification of the accuracy of the data kept and if these are found to be incomplete or inaccurate, to provide corrected ones.
  • To request the deletion of his personal data. It may request that personal data be deleted or removed, as long as its retention is not based on any legal basis or legitimate interest.
  • To request restriction of the processing of his personal data.
  • To request the portability/transmission of his personal data to the Subject himself and/or to third parties. In this case they will be provided to the Data Subject or to a third party who has chosen their personal data in a structured, widely used, machine-readable format. The satisfaction of this right is possible only in automated processing.
  • To withdraw his consent at any time, for the processing of his personal data where this was required. In the event that consent is withdrawn regarding data, the processing of which is absolutely necessary for the provision of the services provided by the Group Companies, then each Group Company reserves the right to discontinue any service to the Subject. However, this will not affect the lawfulness of any processing carried out prior to the withdrawal of the Subject’s consent.

To exercise all the above rights, you can contact the email dpo@apollonion-bakery.gr.

In the event that any of the above requests/rights are exercised, in any Company of the Group, the relevant Company will immediately ensure the satisfaction of your request within a reasonable period and at the latest within thirty (30) days from the identification of the submitted request, informing you in writing of the progress to his satisfaction.

For any complaint regarding this policy or personal data protection issues, you can address the Greek Personal Data Protection Authority via the following link: www.dpa.gr.

It would be better, however, for the relations between us as well as for the improvement of our services, if we were given the opportunity to hear your concerns directly and to manage them, so please before any action of approaching the Data Protection Authority as contact us using the contact details listed above.

Data Retention Period

The personal data collected is kept for a predetermined and limited period of time, depending on the purpose of the processing, after which the data is deleted from the Group’s records, unless a different retention period is provided for or permitted by applicable law.

Updates to the Personal Data Protection Policy

The Group may modify this Personal Data Protection Policy from time to time for reasons of compliance with regulatory changes, for reasons of optimizing its operations and services. Updated versions of this Privacy Policy will be posted on the Group’s website with a date indication, so that it is known which is the most recently updated version.

Revision: September 2018

Terms of Use & Cookies Policy


  • Subject of the Cookies Policy.
  • Sense.
  • Types and Use of cookies from this website.
  • How to delete cookies.
  • Updates to the Cookies Policy.

Subject of the Cookies Policy

Our Company, under the name “Apollonion Artou SA” (hereinafter Company) guarantees the respect of your privacy when browsing its website. In this context, by virtue of this Policy we wish to provide you with information about the cookies we use, the information we collect with them and how they are used by the Company.

By using the Company’s website you agree that we may use cookies in accordance with the terms of this Policy.

You can be informed in detail about the management of your personal data by the Company and the protection of your privacy, in the Company’s Personal Data Protection Policy.


Cookies identification files are small text files, which are stored permissibly on the computer or mobile device of the user visiting a website. They enable the website to remember information from each user’s visit in order to make it more useful to the user on their next visit (such as language, font size and other display preferences).

Cookies originating from the Company’s website are used to identify the user and, through statistical data, to improve the services provided to him, such as by providing personalized services. The user-friendly collection of non-personal information and data that does not reveal his identity in any way contributes to the faster and more efficient operation of our website through statistical evaluations and comparative observations, to the faster processing of the user’s orders and to general optimization of the services provided by this website.

The technical storage of cookie files is permitted with the user’s consent, which can be given through appropriate settings in the web browser or through another application, for the purposes of transmitting a communication, providing a service explicitly requested by the user and for the processing purposes mentioned above. The user may delete the cookie files from his terminal equipment at any time. However, we inform you that this may have consequences on the ease of access to the website and may lead to reduced functionality.

Types and Use of cookies from this website

This website uses the following types of cookies:

A. Necessary Cookies: Necessary cookies are very important for the proper functioning of our website, as they allow you to browse and use its functions. These cookies do not identify you.

B. Functionality and analysis cookies: These cookies improve our website and provide personalized services (e.g. remember your choices and preferences regarding secure search and facilitate website browsing, etc. .). By improving the operation of our website with the use of cookies, we upgrade the browsing experience for the visitor of our website. The information that can be collected about users from this type of cookies is related to the server, the type of browser, the user’s preferences.

C. Security Cookies: This type of Cookies may be used for security purposes (e.g. prevention of cyber-attacks and any other malicious activity).

D. Advertising cookies: These cookies are necessary to display advertisements related to the user’s preferences. This information may be shared with third parties for the purpose of targeted advertising that may be displayed to the user when visiting third party websites.

E. Social media cookies: These cookies are used in order to show you relevant advertisements outside the Company’s website. We may also use the relevant Cookies to track your activity on social media and platforms. Finally, these Cookies can help us to improve our website by measuring the time and way of browsing our website.

How to delete cookies

To learn more about the types of cookies and how you can manage cookies, you can visit the website: http://www.allaboutcookies.org. In case you refuse the use of cookies, it is possible that some features of this website will not work normally.

Updates to the Cookies Policy

The Company may modify this Cookies Policy from time to time for reasons of compliance with regulatory changes, for reasons of optimizing its functions and services. Any updates, modifications will be posted on this website with a date indication, so that it is known which is the most recently updated version.

Revision: 2019