Privacy Policy

ETHROS Consulting
Athens, Greece
Email: info@ethros.com.gr

We only collect personal data that you actively provide to us through the contact form on this website:

• Full name
• Email address
• Phone number (optional)
• Job title and organisation (optional)
• Service of interest
• Message content
• Submission metadata: IP address, browser user-agent, timestamp

We use the data you provide only to:

• Respond to your enquiry
• Discuss potential engagement
• Comply with legal obligations

We do not sell, rent, or share your data with third parties for marketing purposes.

We process your data based on Article 6(1)(b) GDPR (steps prior to entering a contract) when you submit an enquiry, and Article 6(1)(f) GDPR (legitimate interests) for keeping records of business communications.

This website uses the following services that may set cookies or process data:

• CookieFirst, Manages your cookie consent preferences. Stores a small first-party cookie remembering your choices. cookiefirst.com/privacy-policy
• Google Fonts, Serves typography (Cormorant Garamond, Inter). Connection logs may be processed by Google. policies.google.com/privacy
• YouTube (embedded videos), Used on the Videos page. YouTube may set cookies when you press play. policies.google.com/privacy

You can manage your cookie preferences at any time via the cookie settings button at the bottom-left of any page.

Contact form submissions are retained in our email systems for up to 24 months unless an engagement results, in which case the data is retained for the duration of the engagement plus 5 years for tax and contractual purposes, in line with Greek tax law.

You have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request erasure ("right to be forgotten")
• Request data portability
• Object to processing based on legitimate interests
• Withdraw your consent at any time
• Lodge a complaint with the Hellenic Data Protection Authority (www.dpa.gr)

To exercise any of these rights, email info@ethros.com.gr. We will respond within 30 days.

We use industry-standard security: HTTPS encryption, server-level rate limiting, header-injection protection on form endpoints, and access restricted to the engagement team. We never request sensitive data (passwords, ID numbers, financial details) through the contact form.

Some third-party services (e.g., Google Fonts, YouTube, CookieFirst) may process data outside the European Economic Area. These transfers are governed by the EU Standard Contractual Clauses or other GDPR-compliant safeguards.

We may update this policy from time to time. The "Last updated" date at the top of this page reflects the most recent revision. Material changes will be highlighted on this page.