Theodore Georgedakis

Legal

Privacy Policy

Last updated: May 2026

This Privacy Policy explains how Theodore Georgedakis ("we", "us", "I") collects, uses, and protects information when you visit georgedakis.com (the "Site"). We are committed to handling your data transparently and in line with the EU General Data Protection Regulation (GDPR) and Greek data protection law.

1. Data Controller

The data controller is Theodore Georgedakis. For any privacy-related question or request, contact: theodore@georgedakis.com.

2. What we collect

  • Contact details you submit voluntarily (name, email, phone, message) via forms or scheduling links.
  • Calendar booking data when you book a meeting through our Google Calendar scheduling page (processed by Google).
  • Technical data such as IP address, browser type, device, referring URL, and pages visited — collected by our hosting provider and, with your consent, by analytics cookies.

3. Legal basis for processing

  • Consent — for non-essential cookies (analytics, marketing).
  • Performance of a contract / pre-contractual steps — when you contact us to discuss an engagement.
  • Legitimate interest — to keep the Site secure and operational.
  • Legal obligation — where required by applicable law.

4. How we use your data

  • To respond to your inquiries and schedule meetings.
  • To deliver advisory, speaking, or related services you've requested.
  • To operate, secure, and improve the Site.
  • To comply with legal and regulatory obligations.

5. Sharing your data

We do not sell your personal data. We share it only with service providers acting on our instructions, including: hosting (Lovable Cloud / Cloudflare), email (Google Workspace), scheduling (Google Calendar), and — only with your consent — analytics providers. These processors are bound by confidentiality and data-protection terms.

6. International transfers

Some of our processors may be located outside the European Economic Area. Where this is the case, transfers rely on appropriate safeguards such as the EU Standard Contractual Clauses.

7. Retention

We keep contact and inquiry data for as long as needed to respond to and follow up on your request, and afterwards only as required by law (typically up to 5 years for commercial correspondence). Analytics data is retained according to the provider's default retention settings.

8. Your rights

Under GDPR you have the right to:

  • access the personal data we hold about you;
  • request correction or deletion;
  • restrict or object to processing;
  • data portability;
  • withdraw consent at any time (without affecting prior lawful processing);
  • lodge a complaint with the Hellenic Data Protection Authority (www.dpa.gr).

To exercise any of these rights, email theodore@georgedakis.com.

9. Cookies

We use cookies and similar technologies as described in our Cookie Policy. You can change your preferences any time via the "Cookie settings" link in the footer.

10. Changes

We may update this Policy from time to time. The "Last updated" date at the top reflects the latest revision.