INTRODUCTION

This Privacy Policy describes how www.zephiros.gr ("we," "us," or "Zephiros") collects, processes, and protects users' personal data through automated data processing, in accordance with the General Data Protection Regulation (GDPR) (EU) 2016/679 and Greek Law 4624/2019 on personal data protection.

This Privacy Policy applies solely to data collected through this website and does not extend to data collected offline or by third-party websites linked to www.zephiros.gr, which are not under our control. Therefore, we bear no responsibility for the privacy practices of these third-party websites.

We are committed to safeguarding your personal data and ensuring compliance with all applicable data protection laws. If you have any questions or concerns regarding the processing of your personal data, you may contact us at info@zephiros.gr, and we will be happy to assist you.

DEFINITIONS

- Personal Data – any information relating to an identified or identifiable natural person.
- Processing – any operation or set of operations which is performed on Personal Data or on sets of Personal Data.
- Data subject - a natural person whose Personal Data is being Processed.
- Child - a natural person under 16 years of age.
- We/us (either capitalized or not) – Zephiros

DATA PROTECTION PRINCIPLE

We promise to follow the following data protection principles:

- Lawfulness, fairness, and transparency – Our processing activities have lawful grounds. We provide transparency on how we process your data.

- Purpose limitation – We process Personal Data for specific, legitimate purposes.

- Data minimization – We only collect necessary data.

- Storage limitation – We retain Personal Data only for as long as required.

- Accuracy – We ensure data accuracy.

- Integrity and confidentiality – We protect Personal Data against unauthorized access.

DATA SUBJECT'S RIGHTS

You have the following rights under GDPR and Greek Law 4624/2019:

- Right to information – Know whether your Personal Data is being processed.

- Right to access – Obtain a copy of your Personal Data.

- Right to rectification – Correct inaccurate or incomplete data.

- Right to erasure – Request deletion of your Personal Data in certain cases.

- Right to restrict processing – Limit processing under certain conditions.

- Right to object – Object to processing, including direct marketing.

- Right to data portability – Receive your data in a structured format.

- Right to lodge a complaint – File a complaint with the Hellenic Data Protection Authority (www.dpa.gr).

- Right to withdraw consent – Withdraw consent at any time.

DATA WE COLLECT

- Information you provide – Name, email, phone number, address.

- Automatically collected information – IP address, browser type, cookies.

- Information from partners – Data shared with us by third-party partners with legal grounds.

- Publicly available information – Data that is lawfully public.

LEGAL BASIS FOR PROCESSING

We process your Personal Data on the following legal grounds:

- Contractual obligation – Providing requested services.

- Legal obligation – Compliance with legal requirements.

- Legitimate interest – Improving user experience and service quality.

- Consent – Sending newsletters, marketing materials, and other services requiring your permission.

DATA RETENTION PERIOD

We retain billing and transaction data for as long as required by applicable tax and financial laws. Personal Data collected for other purposes will be deleted when no longer necessary.

DATA SHARING

We do not sell or share your Personal Data with third parties unless required by law or necessary to provide services. Trusted third-party services used:

  • Google Analytics & Google Ads (for analytics and advertising purposes).

COOKIES POLICY

We use cookies to:

- Enhance website functionality.

- Analyze website traffic and improve user experience.

- Provide personalized content and advertising.

Users can manage cookie settings via their browser or through our website's cookie consent banner.

DATA SECURITY MEASURES

We implement industry-standard security measures, including:

- Secure communication protocols (HTTPS).

- Data anonymization where possible.

- Regular security monitoring.

Despite these efforts, no system can be 100% secure. We will notify authorities and affected users in case of a data breach.

CHILDREN'S PRIVACY

We do not knowingly collect data from children under 16.

CHANGES TO THIS PRIVACY POLICY

We reserve the right to update this policy. The last update was on [04.03.2025].

For any concerns, contact us at info@zephiros.gr