• Legal
  • GDPR
  • Data Protection

Privacy Policy

Last updated: May, 2026

This Privacy Policy describes how A28 (referred to as “we”, “our”, or “us”) collects, uses, and protects your personal data when you visit our website or use our services.

We are committed to protecting your privacy and complying with the General Data Protection Regulation (GDPR - EU 2016/679).

1. Data Controller

The data controller responsible for your personal data is:

A28 Digital Agency
Email: info@a28.gr
Website: https://a28.gr

2. Information We Collect

We may collect and process the following types of personal data:

a) Information you provide directly:

  • Name
  • Email address
  • Phone number (if provided)
  • Messages sent through contact forms
  • Project or service inquiries

b) Information collected automatically:

  • IP address
  • Browser type and device information
  • Pages visited and time spent on site
  • Referring URLs
  • Cookies and tracking data (if consent is given)

3. How We Use Your Data

We use your personal data for the following purposes:

  • To respond to inquiries and provide services
  • To communicate about projects or requests
  • To improve website performance and user experience
  • To analyze traffic and usage patterns (analytics)
  • To ensure security and prevent misuse of our website
  • To comply with legal obligations

We process your data under the following legal bases:

  • Consent (e.g. contact forms, cookies)
  • Contractual necessity (e.g. providing services you request)
  • Legitimate interest (e.g. website analytics, security, service improvement)
  • Legal obligation (where required by law)

5. Cookies & Tracking Technologies

We use cookies and similar technologies to:

  • Analyze website traffic (e.g. Google Analytics)
  • Improve website functionality
  • Understand user behavior

You can control or disable cookies through your browser settings.

Where required, we will request your consent before placing non-essential cookies.

6. Data Sharing

We do not sell or rent your personal data.

We may share data only with trusted third-party services when necessary, such as:

  • Hosting providers
  • Analytics tools (e.g. Google Analytics)
  • Email service providers
  • Security and performance tools

All third-party providers are GDPR-compliant where applicable.

7. Data Retention

We retain personal data only for as long as necessary:

  • Contact form submissions: up to 12 months
  • Client/project data: as required for service delivery and legal obligations
  • Analytics data: according to platform retention settings (e.g. GA4)

8. Your Rights Under GDPR

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion of your data (“right to be forgotten”)
  • Restrict or object to processing
  • Request data portability
  • Withdraw consent at any time

To exercise any of these rights, contact us at:
info@a28.gr

9. Data Security

We implement appropriate technical and organizational measures to protect your data against:

  • Unauthorized access
  • Loss or misuse
  • Alteration or disclosure

However, no method of transmission over the Internet is 100% secure.

10. Third-Party Services

Our website may use third-party services such as:

  • Google Analytics
  • Hosting providers
  • Email providers
  • External embedded content (e.g. maps, videos)

These services have their own privacy policies.

11. Changes to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated revision date.

12. Contact

If you have any questions about this Privacy Policy or your data, you can contact us at:

Email: info@a28.gr
Website: https://a28.gr.gr