Connect I.T. (Γρηγόριος Μαχαιρίδης) respects your privacy and is committed to protecting your personal data. This Privacy Policy explains what personal data we collect, how we use it, the legal basis for processing, your rights, and how to contact us regarding data protection matters. Our processing complies with the General Data Protection Regulation (EU) 2016/679 (GDPR), Greek Law 4624/2019, and Greek Law 5160/2024.
1. Data Controller
The data controller responsible for processing your personal data is:
2. Personal Data We Collect
We collect personal data only to the extent necessary to provide our services and operate this website. Specifically:
2.1 Website Visitors
When you browse this website, our servers and content delivery networks may automatically log technical information such as your IP address, browser type and version, operating system, the pages you visit, the date and time of access, and the referring URL. This information is collected for security, troubleshooting, and statistical purposes.
2.2 Contact Communications
When you contact us by email or telephone using the contact details provided on our website, we collect and process the personal data you voluntarily provide (such as your name, email address, telephone number, organization, and the content of your message) in order to respond to your inquiry.
2.3 Domain Name Registrants
As an accredited registrar of .gr and .ελ domain names (EETT Registry No. 10-179), we collect and process personal data of registrants on behalf of the Hellenic Telecommunications and Post Commission (EETT), acting as a data processor under Article 28 of the GDPR. The categories of data, the purposes, and the retention periods for this processing are defined by the EETT Domain Names Management and Allocation Regulation (Β΄ 2908/2024) and by EETT itself as the data controller.
3. Purposes and Legal Basis for Processing
We process personal data for the following purposes and on the following legal bases under Article 6 of the GDPR:
- Service provision and contract performance (Art. 6(1)(b) GDPR): to provide the technology services, hosting, and domain registration services you have contracted with us.
- Legal obligations (Art. 6(1)(c) GDPR): to comply with statutory and regulatory obligations imposed on us, including obligations arising from EETT regulations, tax legislation, and accounting law.
- Legitimate interests (Art. 6(1)(f) GDPR): to operate and secure our website, prevent abuse, troubleshoot technical issues, and respond to inquiries from prospective customers.
- Consent (Art. 6(1)(a) GDPR): for any optional functionality (such as the third-party accessibility widget) that you have explicitly agreed to via the cookie consent banner. You may withdraw your consent at any time without affecting the lawfulness of processing carried out before withdrawal.
4. Cookies and Local Storage
This website does not set tracking cookies of its own. We use the browser's local storage (localStorage) to remember your accessibility and language preferences. These are strictly functional and do not transmit any information to us or any third party.
4.1 Functional Local Storage (no consent required)
- lang — stores your selected interface language (en or el).
- fontSize — stores your selected font size for accessibility (1–5).
- highContrast — stores whether high-contrast mode is enabled.
- cookieConsent — stores your cookie consent choice so we don't ask again.
These items are stored only in your browser, never sent to us, and you can clear them at any time through your browser settings.
4.2 Optional Third-Party Services (consent required)
With your consent, we load the UserWay accessibility widget, which may set its own cookies and process technical data. See section 5 below for details. You can refuse or withdraw consent at any time via the cookie banner.
5. Third Parties and Recipients
This website integrates the following third-party services. We do not sell, rent, or otherwise share your personal data for marketing purposes.
Google Fonts
We load typography from Google Fonts (Google Ireland Limited / Google LLC). Your browser connects directly to Google's servers, which may log your IP address. Google's privacy policy: https://policies.google.com/privacy
jsDelivr CDN
We load some JavaScript libraries from the jsDelivr public CDN (operated by ProspectOne). Your browser connects directly to jsDelivr, which may log your IP address. Privacy policy: https://www.jsdelivr.com/terms/privacy-policy-jsdelivr-net
UserWay Accessibility Widget
With your explicit consent, we load the UserWay accessibility widget (UserWay Inc.) to enhance accessibility features. UserWay may set its own cookies and process technical data such as IP address and browser information. The widget is not loaded if you decline or withdraw consent. Privacy policy: https://userway.org/privacy/
Google Analytics 4
With your explicit consent, we load Google Analytics 4 (Google Ireland Limited / Google LLC) — measurement ID G-C1ZJJ3QL4N — to understand how visitors use our website and to improve our services. We have enabled IP anonymization. Google Analytics may set cookies (such as _ga, _ga_*) and process technical data including a truncated IP address, browser and device information, pages visited, and approximate geographic location. The script is not loaded if you decline or withdraw consent. Google's privacy policy: https://policies.google.com/privacy. You can also install the Google Analytics opt-out browser add-on: https://tools.google.com/dlpage/gaoptout
EETT (Hellenic Telecommunications and Post Commission)
For domain name registrations, we transmit registration data to EETT (the Registry) as required by the Domain Names Management and Allocation Regulation. EETT acts as the data controller for the domain name registry database. EETT privacy policy: https://www.eett.gr/dilosi-prostasias-prosopikon-dedomenon/
6. International Data Transfers
Some of our third-party providers (notably Google Fonts and UserWay) are established outside the European Economic Area. Where personal data is transferred to a third country, such transfer takes place under appropriate safeguards as provided in Chapter V of the GDPR (such as Standard Contractual Clauses or an adequacy decision of the European Commission).
7. Data Retention
We retain personal data only for as long as necessary to fulfil the purposes for which it was collected, including any legal, accounting, or reporting requirements. Specifically:
- Email correspondence: retained for as long as needed to handle your inquiry and a reasonable period thereafter (typically up to 2 years).
- Customer records and contracts: retained for the duration of the contractual relationship and for the periods required by tax and accounting legislation (currently 5–10 years from the end of the financial year).
- Server access logs: retained for up to 12 months for security and troubleshooting purposes.
- Domain registrant data: retained according to the EETT Domain Names Management and Allocation Regulation and EETT's archival decisions.
8. Your Rights as a Data Subject
Under the GDPR, you have the following rights regarding your personal data:
- Right of access (Art. 15) — to obtain confirmation of whether we process your data and a copy of it.
- Right to rectification (Art. 16) — to have inaccurate data corrected.
- Right to erasure (Art. 17) — to request deletion of your data, subject to legal retention obligations.
- Right to restriction of processing (Art. 18).
- Right to data portability (Art. 20) — to receive your data in a structured, machine-readable format.
- Right to object (Art. 21) — to object to processing based on legitimate interests.
- Right to withdraw consent (Art. 7(3)) — at any time, without affecting prior lawful processing.
- Right to lodge a complaint with the Hellenic Data Protection Authority (HDPA): www.dpa.gr.
To exercise any of these rights, please contact us at info@connectit.gr. We will respond within one month, in accordance with Article 12 of the GDPR.
9. Security
We implement appropriate technical and organizational measures to protect personal data against unauthorized access, accidental loss, disclosure, alteration, or destruction. These measures include HTTPS encryption for data in transit, access controls, regular software updates, and staff confidentiality obligations.
10. Changes to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, services, or legal obligations. The "Last updated" date at the top of this page indicates when the most recent revision took effect. We encourage you to review this page periodically.
11. Contact
For any question, request, or complaint regarding your personal data or this Privacy Policy, please contact us: