WEBSITES

PRIVACY POLICY

Last updated: 1 May 2026

1. Data Controller

The data controller is Websites Athens, Athens, Greece. For privacy-related requests, contact us at info@websitesathens.com.

2. Personal Data We Collect

We collect personal data that you choose to send through the contact form, email, phone, or WhatsApp, including name, email address, phone number, city or area, business type, budget range, project needs, message content, and any files or links you share with us.

The contact form also sends basic context needed to process the enquiry, such as the page path and UTM campaign parameters if they are present in the page URL.

3. Why We Use Data and Legal Bases

We use personal data to:

  • Reply to enquiries, prepare quotes, and take steps before entering into a contract.
  • Provide requested digital services and manage client communication under a contract.
  • Meet tax, accounting, and legal obligations.
  • Protect the site and forms from spam, abuse, and security incidents based on legitimate interests.
  • Run optional analytics, advertising pixels, or external badge services only when you have given consent.

4. Cookies and Analytics

This site uses essential storage needed for the site, contact form, security, and remembering cookie choices. Optional analytics and marketing pixels are loaded only after consent through the cookie banner. You can withdraw or change consent through the Cookie settings link in the footer when optional services are enabled.

We may use Cloudflare Web Analytics to understand page performance and traffic trends. If Google Analytics 4 or Meta Pixel are configured, they are treated as optional trackers and are blocked until analytics consent is granted. More detail is available in our Cookie Policy.

5. Service Providers

We do not sell personal data. We use service providers only as needed to operate the site and provide services, including hosting and security providers, form handling providers, email and messaging providers, analytics providers, payment or accounting providers, and tools used to deliver client work.

The homepage includes the Website Carbon badge. Because the official badge requests a result from Website Carbon and stores a local cache entry in the visitor's browser, it is loaded only after optional consent. If you follow the badge link, you leave this site and Website Carbon may process data under its own terms and privacy notice.

Some providers, including Cloudflare, Google, Meta, or Netlify if enabled for this site, may process data outside the European Economic Area. Where this happens, we rely on appropriate transfer safeguards offered by those providers, such as European Commission Standard Contractual Clauses or equivalent lawful mechanisms.

6. Retention

Enquiry data is kept for as long as needed to respond, prepare a quote, manage follow-up, and keep reasonable business records. Client project, invoice, and accounting records are kept for the period required by applicable Greek tax and accounting rules. Optional analytics data is retained according to the settings and retention terms of the analytics provider.

7. Data Security

We use reasonable security measures to protect personal data from unauthorized access, disclosure, or destruction.

8. Your Rights

Under the GDPR, you may request access, correction, deletion, restriction, portability, or objection to processing of your personal data. Where processing is based on consent, you may withdraw consent at any time. To exercise these rights, contact us at the details above.

You also have the right to lodge a complaint with the Hellenic Data Protection Authority at www.dpa.gr.