Privacy Policy

This Privacy Policy applies to the website www.dorisr.gr, owned and operated by DorisR SINGLE MEMBER P.C. (DorisR Μονοπρόσωπη Ι.Κ.Ε.), based in Thessaloniki, Greece.
We are committed to protecting the privacy and confidentiality of your personal data in compliance with the General Data Protection Regulation (EU) 2016/679 (GDPR), Greek Law 4624/2019, and other applicable data protection laws.
️ Website development: The website was designed and developed by Hostchefs, a digital agency based in Volos, Greece.

1. Data Controller

DorisR SINGLE MEMBER P.C. (DorisR Μονοπρόσωπη Ι.Κ.Ε.), headquartered in Thessaloniki, Greece, is the controller of your personal data in accordance with applicable data protection laws.

2. Legal Framework

All personal data is collected and processed in accordance with:

    – Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR)
    – Greek Law 4624/2019 on the protection of individuals with regard to the processing of personal data
    – Law 3471/2006 on electronic communications and privacy
    – Directive 2002/58/EC on privacy in the electronic communications sector (“ePrivacy Directive”)


    3. What Data We Collect

    We may collect and process the following categories of personal data:
    – Identification details (e.g., name, surname)
    – Contact details (email, phone number)
    – IP address, device/browser information
    – Usage data (e.g., pages visited, actions on the website)
    – Communication history (from contact forms, email inquiries)

    Data is collected directly from you or automatically through:
    – Contact or booking forms
    – Newsletter registration
    – Cookies and tracking technologies (see section 8)


    4. Purpose and Legal Basis of Processing

    PurposeLegal Basis (Art. 6 GDPR)
    Responding to inquiries or messages6(1)(b) – Performance of a contract or pre-contractual steps
    Sending newsletters and promotions6(1)(a) – Consent
    Website analytics and performance6(1)(f) – Legitimate interest
    Compliance with legal obligations6(1)(c) – Legal obligation

    We do not use your data for profiling or automated decision-making.


    5. Data Retention

    We retain personal data only for as long as necessary:
    – Contact form data: up to 12 months from last communication
    – Newsletter data: until withdrawal of consent
    – Analytics data: anonymized after 26 months


    6. Data Recipients and Transfers

    We do not sell or share your data with third parties, except:
    – Authorized third-party processors under data processing agreements (Article 28 GDPR) such as:
      – Web hosting providers
      – Analytics services (e.g. Google LLC)
      – Email marketing platforms (e.g. Mailchimp)
    – Legal obligations to public authorities when required

    Your data may be transferred outside the EEA only where adequate safeguards are in place (e.g., EU Standard Contractual Clauses).


    7. Your Rights

    Under the GDPR (Articles 12-23), you have the following rights:
    – Right of access to your personal data
    – Right to rectification of inaccurate data
    – Right to erasure (“right to be forgotten”)
    – Right to restrict processing
    – Right to object to processing
    – Right to data portability
    – Right to withdraw consent at any time
    – Right to lodge a complaint with the Hellenic Data Protection Authority (HDPA) at www.dpa.gr


    8. Cookies and Tracking

    We use cookies and similar technologies to:
    – Improve functionality and performance
    – Gather analytics (Google Analytics, Meta Pixel)
    – Deliver personalized content or ads (if applicable)

    You may refuse or delete cookies through your browser settings.

    For more details, please see our Cookie Policy.


    9. Data Security
    We implement appropriate technical and organizational measures (TOMs) in accordance with Article 32 GDPR, including:
    – SSL encryption
    – Firewall and anti-malware systems
    – Access control policies
    – Secure backups


    10. Third-Party Services

    Our website may contain links to external websites. We are not responsible for the privacy practices or content of third-party sites. Please review their respective privacy policies.


    11. Updates to this Policy

    We reserve the right to update this Privacy Policy at any time. The most recent version will always be available at www.dorisr.gr/privacy-policy.
    Last updated: July 24, 2025


    12. Contact

    For any questions or concerns, please contact DorisR Μονοπρόσωπη Ι.Κ.Ε. through the official communication channels stated on the website