Privacy Policy | lynx Web Designer

Last Updated: January 23, 2026

Introduction

DIGITAL LYNX – DELIGIANNIS GEORGIOS (“we,” “us,” “our”) is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you visit our website (lynxweb.eu) or use our services.

This policy complies with: – General Data Protection Regulation (GDPR) – EU Regulation 2016/679 – Greek Data Protection Law 4624/2019 – EU e-Privacy Directive

Data Controller Information

Company Name: DIGITAL LYNX – DELIGIANNIS GEORGIOS
VAT Number: EL068876917
Address: Leoforos Syggrou 196, 17671 Athens, Greece
Email: info@lynxweb.eu
Website: lynxweb.eu

1. What Personal Data We Collect

1.1 Information You Provide Directly

When you contact us, request services, or use our website, we may collect:

Contact Information: – Full name – Email address – Phone number – Company name and position – Mailing address

Project Information: – Project requirements and specifications – Business information relevant to services – Communication preferences – Feedback and correspondence

Payment Information: – Billing address – VAT number (for businesses) – Payment transaction details (processed securely by Stripe and Viva Wallet)

Note: We do not store complete credit card numbers. Payment data is securely processed by our payment providers (Stripe and Viva Wallet) in compliance with PCI DSS standards.

1.2 Information Collected Automatically

When you visit our website, we automatically collect:

Technical Data: – IP address – Browser type and version – Operating system – Device information – Time zone and location data

Usage Data: – Pages visited – Time spent on pages – Referring website – Click patterns and navigation paths – Date and time of visits

Cookies and Tracking Technologies: – Session cookies – Analytics cookies (Google Analytics) – Functional cookies – Marketing cookies (if consent given)

See our Cookies Policy for detailed information.

2. Legal Basis for Processing Your Data

Under GDPR, we process your personal data based on the following legal grounds:

2.1 Contractual Necessity

Processing is necessary to: – Provide services you’ve requested – Execute project agreements – Process payments and issue invoices – Communicate about active projects

2.2 Legitimate Interests

We process data for legitimate business purposes: – Improving our services and website – Marketing our services to potential clients – Maintaining business records – Preventing fraud and ensuring security

2.3 Legal Obligations

We process data to comply with: – Greek tax and accounting laws – EU data protection regulations – Other applicable legal requirements

2.4 Consent

Where required by law, we obtain your explicit consent for: – Marketing communications – Non-essential cookies – Sharing your information with third parties for marketing

You may withdraw consent at any time without affecting the lawfulness of processing before withdrawal.

3. How We Use Your Personal Data

We use your information for the following purposes:

3.1 Service Delivery

Providing requested digital services
Project management and communication
Delivering completed work
Technical support and maintenance

3.2 Business Operations

Processing payments and invoicing
Managing client relationships
Maintaining business records
Accounting and tax compliance

3.3 Communication

Responding to inquiries
Sending project updates
Providing customer support
Sending administrative notifications

3.4 Marketing (with your consent)

Sending newsletters and promotional materials
Informing you about new services
Sharing relevant industry insights
Inviting you to events or webinars

You can opt out of marketing communications at any time.

3.5 Website Improvement

Analyzing website usage and performance
Improving user experience
Testing new features
Troubleshooting technical issues

3.6 Legal and Security

Protecting against fraud and abuse
Enforcing our Terms and Conditions
Complying with legal obligations
Defending legal claims

4. Who We Share Your Data With

We may share your personal data with the following categories of recipients:

4.1 Service Providers

Payment Processors: – Stripe (for credit/debit card payments) – Viva Wallet (for payment processing)

Analytics Services: – Google Analytics (website traffic analysis)

Cloud & Hosting Services: – Website hosting providers – Email service providers – Cloud storage services

Professional Services: – Accountants and tax advisors (as required by law) – Legal advisors (when necessary)

All service providers are contractually bound to protect your data and use it only for specified purposes.

4.2 Legal Requirements

We may disclose your information when required by law or to: – Comply with legal processes – Respond to government requests – Protect our rights and property – Ensure safety and security

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your data may be transferred to the new entity. We will notify you of any such change.

4.4 With Your Consent

We may share your information with third parties when you give explicit consent.

5. International Data Transfers

Your data is primarily stored and processed within the European Economic Area (EEA). However, some service providers may process data outside the EEA.

When data is transferred internationally, we ensure adequate protection through: – EU Commission adequacy decisions – Standard Contractual Clauses (SCCs) – Binding Corporate Rules – Other legally recognized safeguards

Stripe: Stripe Inc. is a US-based company. Data transfers are protected under Standard Contractual Clauses approved by the EU Commission.

Google Analytics: Google LLC processes data in the US under the EU-US Data Privacy Framework.

6. How Long We Keep Your Data

We retain your personal data only as long as necessary for the purposes outlined in this policy:

6.1 Active Clients

Duration of business relationship
Plus retention period required by law

6.2 Financial Records

Minimum 5 years (Greek tax law requirement)
May be longer based on legal obligations

6.3 Marketing Data

Until you unsubscribe or withdraw consent
Maximum 3 years of inactivity

6.4 Website Analytics

26 months (Google Analytics default)

6.5 Correspondence

Generally 3 years after last contact
Longer if required for legal purposes

After retention periods expire, we securely delete or anonymize your data.

7. Your Rights Under GDPR

You have the following rights regarding your personal data:

7.1 Right to Access

Request copies of your personal data and information about how we use it.

7.2 Right to Rectification

Request correction of inaccurate or incomplete data.

7.3 Right to Erasure (“Right to be Forgotten”)

Request deletion of your data under certain circumstances: – Data no longer needed for original purpose – You withdraw consent (where consent was the legal basis) – You object to processing with no overriding legitimate grounds – Data was unlawfully processed

Exceptions apply when we must retain data for legal obligations.

7.4 Right to Restrict Processing

Request limitation of how we use your data in specific situations.

7.5 Right to Data Portability

Receive your data in a structured, machine-readable format to transfer to another controller.

7.6 Right to Object

Object to processing based on legitimate interests or for direct marketing purposes.

7.7 Rights Related to Automated Decision-Making

We do not use automated decision-making or profiling that produces legal or similarly significant effects.

7.8 Right to Withdraw Consent

Withdraw consent at any time where processing is based on consent.

7.9 Right to Lodge a Complaint

File a complaint with:

Hellenic Data Protection Authority (HDPA)
Address: Kifisias 1-3, 11523 Athens, Greece
Phone: +30 210 6475 600
Website: www.dpa.gr
Email: contact@dpa.gr

8. How to Exercise Your Rights

To exercise any of your rights, please contact us:

Email: info@lynxweb.eu
Subject Line: “Privacy Rights Request”

Please include: – Your full name – Email address or phone number – Specific right you wish to exercise – Any relevant details to help us locate your data

We will respond to your request within one month. In complex cases, we may extend this by two additional months and will inform you of any delay.

9. Security Measures

We implement appropriate technical and organizational measures to protect your data:

9.1 Technical Security

SSL/TLS encryption for data transmission
Secure hosting infrastructure
Regular security updates and patches
Firewall protection
Access controls and authentication

9.2 Organizational Security

Staff training on data protection
Confidentiality agreements
Limited access to personal data (need-to-know basis)
Regular security audits
Incident response procedures

9.3 Payment Security

All payment transactions are processed through PCI DSS compliant providers (Stripe and Viva Wallet). We do not store complete payment card details.

10. Children’s Privacy

Our services are not directed to individuals under 16 years of age. We do not knowingly collect personal data from children.

If we become aware that we have collected data from a child without parental consent, we will take steps to delete that information promptly.

Parents who believe their child has provided information to us should contact us immediately.

11. Third-Party Websites

Our website may contain links to external websites. We are not responsible for the privacy practices of third-party sites.

We encourage you to review the privacy policies of any external websites you visit.

12. Cookies and Tracking

We use cookies and similar tracking technologies. For detailed information, please see our separate Cookies Policy.

You can control cookie preferences through: – Our cookie consent banner (first visit) – Your browser settings – Third-party opt-out tools

13. Marketing Communications

13.1 Email Marketing

With your consent, we may send: – Newsletters – Service updates – Special offers – Industry insights

13.2 How to Opt Out

You can unsubscribe from marketing emails by: – Clicking “unsubscribe” in any email – Contacting us at info@lynxweb.eu – Adjusting your communication preferences

You will continue to receive essential service-related communications even if you opt out of marketing.

14. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect: – Changes in our practices – Legal or regulatory requirements – New services or features

Notification of Changes: – Updated “Last Updated” date at the top – Prominent notice on our website for material changes – Email notification to active clients (for significant changes)

Continued use of our services after changes constitutes acceptance of the updated policy.

By using our website and services, you acknowledge that you have read and understood this Privacy Policy and agree to the collection and use of your information as described.