Last Modified: 2024-02-16


This Privacy Policy (together with our Terms, the DPA and any other document referred to in it) describes the type of information that we collect from you (“you/your”) through the use of our services (“Services”), or the use of our website (“Website”), how that information may be used or disclosed by us and the safeguards we use to protect it.

Our Website and Services may contain links to third party websites that are not covered by this Privacy Policy. We therefore ask you to review the privacy statements of other websites and applications to understand their information practices.

We have drafted this Privacy Policy to be as clear and concise as possible. Please read it carefully to understand our policies regarding your information and how we will treat it. By using or accessing our Website or the Services, you agree to the collection, use and disclosure of information in accordance with this Privacy Policy. This Privacy Policy may change from time to time and your continued use of the Website or the Services is deemed to be acceptance of such changes, so please check periodically for updates.

Please check back regularly to keep informed of updates to this Privacy Policy. Please read this Privacy Policy carefully and ensure that you understand it. Your acceptance of our Privacy Policy is deemed to occur upon your first use of our Services and/or Website. If you do not accept and agree with this Privacy Policy, you must stop using our Services and/or Website immediately.

You have the right to make a complaint at any time to the Hellenic Data Protection Authority (HDPA), the Greek supervisory authority for data protection issues ( We would, however, appreciate the chance to deal with your concerns before you approach the HDPA so please contact us in the first instance. It is important that the personal data we hold about you is accurate and current. Please keep us informed if your personal data changes during your relationship with us.

If you have any comments on this Privacy Policy, please email them to [email protected]


2.1 Here are our details:

– Our Website address is

– Our company name is MAYA INSIGHTS P.C

           – Our registered address is Chiou 56, Athens 104 39, Greece

           – Our Data Protection Officer can be contacted at [email protected]

2.2 We respect your right to privacy and will only process personal information about you or provided by you in accordance with the Data Protection Legislation which for the purposes of this Privacy Policy shall mean: (i) the General Data Protection Regulation ((EU) 2016/679) (GDPR), (ii) Law No. 4624/2019 “on the Hellenic Data Protection Authority, the implementation of Regulation 2016/679 and the transposition of Directive 2016/680” (Government Gazette A/137/29.08.2019) and any other national implementing laws, regulations and secondary legislation, as amended or updated from time to time, in Greece and other applicable privacy laws.


3.1 Personal data, or personal information, means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).

3.2 We may collect, use, store and transfer different kinds of personal data about you which we have grouped together as follows:

3.3 We may also collect, use and share Aggregated Data such as statistical or demographic data for any purpose. Aggregated Data may be derived from your personal data but is not considered personal data in law as this data does not directly or indirectly reveal your identity. For example, we may aggregate your Usage Data to calculate the percentage of users accessing a specific website feature. However, if we combine or connect Aggregated Data with your personal data so that it can directly or indirectly identify you, we treat the combined data as personal data which will be used in accordance with this Privacy Policy.

3.4 We do not collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.

3.5 We will ensure that your personal data is processed lawfully, fairly, and transparently, without adversely affecting your rights. We will only process your personal data if at least one of the following basis applies:

a) You have given consent to the processing of your personal data for one or more specific purposes;

b) processing is necessary for the performance of a contract to which you are a party or in order to take steps at the request of you prior to entering into a contract;

c) processing is necessary for the purposes of the legitimate interests pursued by us or by a third party such as our financial payments, except where such interests are overridden by the fundamental rights and freedoms of the data subject, in particular where the data subject is a child.

3.6 If you provide personal information to us about another data subject, you are responsible for ensuring that you have their consent to provide that data for the uses set out in this Privacy Policy and for bringing this Privacy Policy to their attention.


4.1 We (or third party data processors, agents and sub-contractors acting on our behalf) may collect, store and use your personal information by way of different methods to collect data from and about you including through:

Direct interactions. You may give us your information by filling in forms via our Website or via any Order Form or other documentation or by corresponding with us by post, phone, email or otherwise. This includes personal data you provide when you:

a) visit the Website;

b) subscribe to our Services, create an account on our Website or sign an Order Form or other related documentation;

c) carry out our contracts with you and/or provide the relevant Services to you;

e) request marketing to be sent to you;

f) enter a competition, promotion or survey; or

g) give us some feedback.

4.2 In addition to the above, we may use the information in the following ways:

a) To personalise your Website experience and to allow us to deliver the type of content and product offerings in which you are most interested.

b) To administer a contest, promotion, survey or other site feature.

c) If you have consented to receive our e-mail newsletter, we may send you periodic e-mails. If you would no longer like to receive promotional e-mail from us, please opt-out, remove or modify information you have provided to us. If you have not opted-in to receive e-mail newsletters, you will not receive these e-mails. Visitors who register or participate in other site features such as marketing programs and ‘members-only’ content will be given a choice whether they would like to be on our e-mail list and receive e-mail communications from us.

d) Present Website content effectively to you.

e) Provide information, and services that you request, or (with your consent) which we think may interest you.

f) Tell you our charges,offers or proposals.

4.3 We will only use your personal data when the Data Protection Legislation allows us to. Most commonly, we will use your personal data in the following circumstances:

a) Where we need to perform the contract we are about to enter into or have entered into with you.

b) Where it is necessary for our legitimate interests (or those of a third party) and your interests and fundamental rights do not override those interests.

c) Where we need to comply with a legal or regulatory obligation, for example compliance with health and safety, tax or other statutory obligations.

4.4 Generally we do not rely on consent as a legal basis for processing your personal data other than in relation to our marketing communications or sending third party direct marketing communications to you via email or text message. You have the right to withdraw consent to marketing at any time by contacting us at [email protected] , and we will either delete your data from our systems or move your data to our “unsubscribe list”. However, you acknowledge this will limit our ability to provide the best possible services to you.

4.5 As already indicated above, with your permission and/or where permitted by law, we may also use your data for marketing purposes which may lead to us contacting you by email and/or telephone with information, news and offers on our Services. We agree that we will not do anything that we have not agreed to under this Privacy Policy, and we will not send you any unsolicited marketing or spam. We will take all reasonable steps to ensure that we fully protect your rights and comply with our obligations under the Data Protection Legislation.


5.1 We may transfer your collected data to storage outside Greece. It may be processed outside Greece to fulfil your order and to receive our Services and deal with payment. If we do store or transfer data outside Greece, we will take all reasonable steps to ensure that your data is treated as safely and securely as it would be within Greece and under the Data Protection Legislation. Your acceptance of this Privacy Policy shall be your consent permitting us to store or transfer data outside Greece if it is necessary for us to do so.

5.2 Data security is of great importance to us, and to protect your data we have put in place suitable physical, electronic and managerial procedures to safeguard and secure data collected through our Website and/or as a result of the provision of the Services to you. We abide by the principles governing the processing of personal data under the Data Protection Legislation and we take appropriate organisational and technical measures to ensure the security and confidentiality of your personal data and to protect them against any accidental or unlawful destruction, accidental loss, alteration, unauthorised disclosure or access, as well as any other form of unlawful processing. In addition, we limit access to your personal data to those employees, agents, contractors and other third parties who have a business need to know. They will only process your personal data on our instructions and they are subject to a duty of confidentiality.

5.3 We have put in place procedures to deal with any suspected personal data breach and will notify you and any applicable regulator of a breach where we are legally required to do so.

5.4 By giving us your personal data, you agree to this arrangement. We will do what we reasonably can to keep your data secure.

5.5 We have implemented security measures such as a firewall to protect any data and maintain a high level of security.

5.6 Notwithstanding the security measures that we take, it is important to remember that the transmission of data via the internet may not be completely secure and that you are advised to take suitable precautions when transmitting to us data via the internet and you take the risk that any sending of that data turns out to be not secure despite our efforts.

5.7 If we give you a password upon registration on our Website, you must keep it confidential. Please don’t share it apart from those that they have a business need to know.

5.8 We will keep personal data for as long as is necessary.In general we will keep your personal data for as long as we have a business relationship with you or another person (for example, a legal entity for which you are the authorized representative / agent or beneficial owner) in relation to which we have obtained your personal data.

We may however be required to retain personal data for a longer period of time to ensure we comply with our legislative requirements or to defend ourselves against legal claims and proceedings. We review our data retention obligations to ensure we are not retaining data for longer than we are legally obliged to.


6.1 We are allowed to disclose your information in the following cases:

6.1.1 If we want to sell our business, or our company, we can disclose it to the potential buyer.

6.1.2 We can disclose it to other businesses in our group.

6.1.3 We can disclose it if we have a legal obligation to do so, or in order to protect other people’s property, safety or rights.

6.1.4 We can exchange information with others to protect against fraud or credit risks or to defend ourselves against legal claims and proceedings.

6.2 We may contract with third parties to supply services to you on our behalf. These may include cloud hosting processing, data visualization processing, customer communication processing, payment processing, search engine facilities, advertising and marketing. In some cases, the third parties may require access to some or all of your data.

6.3 Where any of your data is required for such a purpose, we will take all reasonable steps to ensure that your data will be handled safely, securely, and in accordance with your rights, our obligations, and the obligations of the third party under the Data Protection Legislation. Any third party that we share data with will not be permitted to use it for any other purpose than fulfilling their contract with us.


7.1 Under the Data Protection Legislation, you have the right to:

7.2 You also have rights with respect to automated decision-making and profiling as set out in section 10 below.

7.3 You have the right to ask us not to process your personal data for marketing purposes. We will usually inform you (before collecting your data) if we intend to use your data for such purposes or if we intend to disclose your information to any third party for such purposes.

7.4 To enforce any of the foregoing rights or if you have any other questions about our Website or this Privacy Policy, please contact us at [email protected] .

7.5 If you have exercised any or all of your data protection rights and still feel that your concerns about how we use your personal data have not been adequately addressed by us, you have also the right to complain to the Hellenic Data Protection Authority (HDPA), the Greek supervisory authority for data protection issues (


8.1 Please note that our terms and conditions and our policies will not apply to other websites that you get to via a link from our Website. We have no control over how your data is collected, stored or used by other websites and we advise you to check the privacy policies of any such websites before providing any data to them.


9.1 We may modify or amend this privacy policy from time to time. We will reasonably endeavor to notify you appropriately when we make changes to this privacy policy and we will amend the revision date at the bottom of this page. We do however encourage you to review this statement periodically so as to always be informed about how we are processing and protecting your personal information.


10.1 In establishing and carrying out a business relationship, we generally do not use any automated decision-making. In the event that we use personal data for the purposes of automated decision-making and those decisions have a legal (or similarly significant effect) on you, you have the right to challenge to such decisions under Data Protection Legislation, requesting human intervention, expressing their own point of view, and obtaining an explanation of the decision from us.

10.2 The right described in section 10.1 does not apply in the following circumstances:

a) the decision is necessary for the entry into, or performance of, a contract between the you and us;

b) the decision is authorised by law; or

c) you have given you explicit consent.

10.3 Where we use your personal data for profiling purposes, the following shall apply:

a) Clear information explaining the profiling will be provided, including its significance and the likely consequences;

b) Appropriate mathematical or statistical procedures will be used;

c) Technical and organisational measures necessary to minimise the risk of errors and to enable such errors to be easily corrected shall be implemented; and

d) All personal data processed for profiling purposes shall be secured in order to prevent discriminatory effects arising out of profiling.


11.1 By using our Website and by way of acknowledgment, you agree to our Privacy Policy.


12.1 We will use our best efforts to negotiate in good faith and settle any dispute that may arise out of or relate to this Privacy Policy or any breach of it.

12.2 Any dispute shall not affect our ongoing obligations under this Privacy Policy.

12.3 This Privacy Policy and any dispute or claim relating to or connected with it (including non-contractual disputes or claims) shall be governed by and construed in accordance with the laws of the Republic of Greece and the courts of Greece are the only place where disputes or claims relating to or connected with this Privacy Policy (including non-contractual disputes or claims) may be decided.

13. Compliance with Google API Services User Data Policy
We adhere to the Google API Services User Data Policy, including the Limited Use requirements, for any information received through Google APIs. Our use and transfer of information obtained from Google APIs will strictly follow the guidelines set by Google, ensuring that the data is handled in a secure and responsible manner. For more information on the Google API Services User Data Policy and the Limited Use requirements, please visit the Google API Services User Data Policy. By using our services, you acknowledge and agree to the use and transfer of your data in this manner.

14. Data Sharing with Third-Party Tools

Maya Insights P.C provides services that may involve the extraction of data to third party cloud computing or AI services to enhance business operations and decision-making. This includes, but is not limited to:

In sharing this data with third-parties, such as cloud computing or AI services, we ensure purpose-limited sharing where: 

Third-party representatives are not allowed to read the data unless:

All other transfers, uses, or sales of user data are prohibited, including:

By linking data sources, clients give their permission for their data to be transferred and processed using third-party tools, subject to the restrictions outlined above.

15. Data Management Practices

By engaging with our services, clients acknowledge and agree to the terms of data management as outlined.

16. Data Retention policy
This policy applies to all non-personal data collected, processed, and stored by Maya Insights P.C in the course of its operations.

16.1. Retention Guidelines

16.2 Data Deletion Procedures

16.3 Compliance

16.4 Data Security

16.5 Review and Revision

16.6 Contact Information, for inquiries or requests related to data retention and deletion, please contact [email protected].