Skip to content
LEGAL

Privacy Policy

Last updated: 10 May 2026

This Privacy Policy explains how iwebforyou Ltd (Cyprus), operating the Praionbrand («we», «us»), collects, uses, stores, and protects your personal data when you visit praion.gr or use our services. We comply with the General Data Protection Regulation (GDPR — EU Regulation 2016/679), Cypriot law (Law 125(I)/2018), and Greek law (Law 4624/2019) where applicable.

1. Who we are.

Company name:iwebforyou Ltd (Cyprus), operating the «Praion» brand for AI-first marketing and web design services.

Registered office: Spyrou Kyprianou 20, Chapo Central, 1st Floor, Apt. 101, 1075 Nicosia, Cyprus

VAT: CY10399633B

Brand website: praion.gr

Contact email: info@praion.gr

DPO contact (where applicable): privacy@praion.gr

2. What data we collect.

A) Data you give us:

  • Name, email, phone, company name (when filling forms)
  • Information about your business (industry, size, goals)
  • Communications (emails, messages, call recordings with consent)
  • Billing and payment details (for clients)

B) Data we collect automatically:

  • IP address, browser type, device info
  • Pages visited, time spent, referral source
  • Cookies (see Cookie Policy)

C) Data from third parties:

  • Analytics from Google Analytics (anonymised)
  • Lead sources from LinkedIn, Meta (when running campaigns)

3. Why we collect it.

  • Service delivery: Contract execution with clients, account management
  • Communication: Responding to inquiries, sending proposals, customer support
  • Marketing (with consent): Newsletter, updates on new services, AEO insights
  • Legal obligations: Tax records, GDPR compliance
  • Service improvement: Analytics to understand which content/services are useful

4. Legal basis for processing.

We process your data under the following legal bases (GDPR Article 6):

  • Consent (Article 6(1)(a)): Newsletter, marketing communications, optional cookies
  • Contract (Article 6(1)(b)): Service delivery to clients
  • Legal obligation (Article 6(1)(c)): Tax, accounting records
  • Legitimate interests (Article 6(1)(f)): Security, fraud prevention, business analytics

5. How long we keep data.

  • Lead data (briefs, contact forms): 24 months if no engagement follows
  • Customer data: Duration of engagement + 7 years after (tax obligation)
  • Marketing subscribers: Until unsubscribe + 30 days buffer
  • Analytics data: 26 months (Google Analytics default)
  • Server logs: 90 days

6. Sharing with third parties.

We don’t sell or rent your data. We share only with:

  • Service providers that help us: hosting (server provider), email service (Google Workspace), analytics (Google Analytics), CRM, payment processing
  • Legal authorities: where required by law
  • Successors in case of acquisition/merger: with prior notice

All third-party providers are bound by Data Processing Agreements per GDPR.

7. International data transfers.

Some of our tools (e.g., Google Workspace, Google Analytics) may transfer data outside the EU (typically US). In these cases, we rely on:

  • Standard Contractual Clauses (SCCs) approved by the European Commission
  • Adequacy decisions of the EU where applicable
  • EU-US Data Privacy Framework where the provider is certified

8. Your GDPR rights.

You have the right to:

  • Access: Request a copy of your data
  • Rectification: Request correction of inaccurate data
  • Erasure («right to be forgotten»): Request deletion
  • Restriction of processing: Request processing to stop
  • Portability: Receive your data in structured format
  • Objection: Object to processing (mainly marketing)
  • Withdraw consent: Where the legal basis is consent

How to exercise rights: Send email to privacy@praion.gr. We respond within 30 days.

9. Right to complain to the Authority.

If you believe we violated your rights, you can lodge a complaint with the relevant Data Protection Authority.

Primary authority (Data Controller’s seat):

Office of the Commissioner for Personal Data Protection of Cyprus
1 Iasonos Str., 1082 Nicosia, Cyprus
Phone: +357 22-818456
Email: commissioner@dataprotection.gov.cy
Web: dataprotection.gov.cy

Alternatively, for residents of Greece:

Hellenic Data Protection Authority
Kifissias Ave 1-3, Athens 11523, Greece
Phone: +30 210-6475600
Email: contact@dpa.gr
Web: dpa.gr

10. How we protect data.

  • SSL/TLS encryption for all communications
  • Access controls and role-based permissions
  • Encrypted backups
  • Regular security audits
  • Staff training on data protection
  • Incident response plan for data breaches

In case of data breach significantly affecting your rights, we notify you within 72 hours.

11. Children.

Our services are not directed at minors under 16. We don’t knowingly collect data of minors.

12. Changes to this policy.

We may update this policy from time to time. Significant changes are communicated via email to registered users and via banner on the website. Last updated date appears at the top.

13. Questions?

Send email to privacy@praion.gr for any privacy-related question.