Privacy Policy (GDPR)

Privacy Policy

Last updated: 16/04/2026

1. Data Controller

KRIKO METHOD O.E.
VAT: EL803186006
Address: Agiou Ioannou Prodromou 28
Email: info@krikomethod.com
Phone: +30 697 360 0105

2. Data We Collect

  • Contact & application form: full name, email, phone, message.
  • Booking form (LatePoint): full name, email, phone, selected service, date/time, optional notes.
  • Payment data: card details are entered directly in the secure Eurobank e-Commerce environment and are not stored on our servers.
  • Technical data: IP address, browser type, cookies (see Section 9).

3. Purposes & Legal Bases

  • Contract performance (Art. 6.1.b GDPR): managing bookings, delivering services, communicating with the client.
  • Consent (Art. 6.1.a GDPR): optional communications, non-essential cookies.
  • Legal obligation (Art. 6.1.c GDPR): tax and accounting records.
  • Legitimate interest (Art. 6.1.f GDPR): website security, fraud prevention.

4. Recipients & Third-Party Providers

Your data may be shared with:

  • Eurobank e-Commerce / Cardlink — payment processing.
  • Google LLC — calendar sync (Google Calendar) for booking management.
  • Hosting provider (The Hosting Project) — website data storage.
  • Accountant / Public Authorities — for tax compliance.

We do not transfer data to third countries outside the EEA without appropriate GDPR safeguards (Standard Contractual Clauses).

5. Retention Period

  • Booking & client data: 5 years from the last session (tax purposes).
  • Email communications: 2 years.
  • Technical logs: 12 months.

6. Your Rights

Under the GDPR, you have the right to:

  • Access your data
  • Rectify inaccurate data
  • Erase data (“right to be forgotten”)
  • Restrict processing
  • Data portability
  • Object to processing
  • Withdraw consent at any time

To exercise your rights, contact info@krikomethod.com.

7. Supervisory Authority

You have the right to lodge a complaint with the Hellenic Data Protection Authority:
Kifisias 1-3, 115 23 Athens · www.dpa.gr · contact@dpa.gr

8. Security

We implement appropriate technical and organisational measures (SSL/TLS, firewall, access controls, regular backups) to protect your data.

9. Cookies

Our website uses cookies — small text files stored on your device — to ensure proper functionality, remember your preferences, and analyse traffic.

Cookie Categories

  • Strictly Necessary: Required for the website and booking system to function (e.g. session management, security tokens). These do not require consent.
  • Functional: Remember your preferences such as language selection. Activated with your consent.
  • Analytics: Help us understand how the website is used through anonymised traffic data. Activated only with your consent.
  • Marketing: Used for targeted advertising, if applicable. Activated only with explicit consent.

Managing Cookies

You can manage your cookie preferences at any time via the cookie consent banner or through your browser settings. Disabling certain cookies may affect website functionality.

Third-Party Cookies

Some cookies may be placed by third-party services we use (e.g. Google Analytics, payment gateway). These are governed by the respective provider’s privacy policy.

10. Changes to This Policy

We may update this Privacy Policy from time to time. The current version is always published on this page with the date of last update.

Scroll to Top