Privacy policy – GDPR


The terms We and Business refer to the company SONS OF CHRISTOS MATHIOUDAKIS S.A., located at 75 SOLONOS Street, in Kallithea, (VAT number: 998254137/ Kallithea Tax Bureau).

The term You refers to any person who visits – uses this website.

The term Website refers to the site which, as well as the entire content, is the full and exclusive property of the company SONS OF CHRISTOS MATHIOUDAKIS S.A.

The company SONS OF CHRISTOS MATHIOUDAKIS S.A. is committed to the protection of the processing of personal data of each visitor – user of the website and all natural persons, in the context of the cooperation they have developed or wish to develop with the company.

This Privacy Policy explains in simple terms how we process the personal data that you exclusively provide to us through the contact form of the aforementioned website or by any other means of communication.

In any case, by using our services, each person accepts this Policy and is bound by its terms.

The company SONS OF CHRISTOS MATHIOUDAKIS S.A. regularly processes the text of this Policy in order to monitor and ensure ongoing compliance with the requirements of the General Data Protection Regulation 2016/679/EU.


1) Personal data: any information relating to an identified or identifiable natural person (data subject); an identifiable natural person is one whose identity can be established, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, a descriptive identifier or to one or more factors specific to the physical, physiological, genetic, psychological, economic, cultural or social identity of that person;

(2) Processing: any operation or set of operations which is performed, whether or not by automated means on personal data or on sets of personal data, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

The website publishes a contact form through which the company SONS OF CHRISTOS MATHIOUDAKIS S.A. receives personal data of visitors/users with their consent, such as full name, telephone number, and email. Also, for the fulfilment of the contractual obligations (e.g., offers, contracts, invoices, etc.) or for sending information notes and in the context of existing or potential cooperation with the company SONS OF CHRISTOS MATHIOUDAKIS S.A., the latter will request with your consent by any means (e.g., by telephone or e-mail) the name of the company, VAT number, tax office, registered office, activity, and other contact details (e.g., e-mail, fax, contact telephone number, etc.).

Any natural person may have access to the data collected upon request, which may be made either by telephone, electronically, or through the contact form on the website. He or she also has the right to object at any time to the processing of data concerning him or her, to request rectification, restriction, non-transmission, or erasure in the same way. Any request will be examined by us, and you will receive a response within the reasonable period of thirty (30) days. The above rights are specified and described in detail in Articles 15-21 of the General Data Protection Regulation, where you can find detailed information. In the event of a breach of your personal data, you have the right to lodge a complaint with the Data Protection Authority (1-3 Kifissias Street, P.C. 115 23, Athens, +30 210 6475600, [email protected]).

Our business does not share or transmit personal data to third-party recipients, unless required by law or necessary to fulfil our contractual obligation to you, such as transmitting your details to a courier company to send documents you have requested.

Employees of our company who have access to the data are obliged to maintain the confidentiality of this data.

Our business may store your personal data in the cloud. This means that your personal data may be processed by a cloud service provider on behalf of our business and your personal data may be stored in different locations around the world, but without the further possibility of sharing it with third parties. The business uses organisational and contractual measures to protect personal data and to impose clauses and restrictive requirements on cloud service providers to ensure that your personal data remains secure.

The data that you disclose to our company is kept by us for a period of one year, unless a contract is attached between us. In the event that a contract is attached between us, we will retain your necessary personal data for a period of ten (10) years, unless legislation provides for a longer period.


Our company takes all necessary security measures to protect and safeguard the privacy of your personal data (e.g., firewalls, encryption).

The data you submit to the business is managed exclusively by specially authorized staff of the company, who are under our control. Only when necessary to fulfill our obligations are managed and administered on our instructions and possibly by other recipients. To carry out the processing, our company selects persons with corresponding professional qualifications who provide sufficient technical knowledge and personal integrity guarantees to ensure confidentiality. The company, through its respective contractual commitments and its partners, takes all those security measures necessary to protect and ensure your personal data’s privacy, confidentiality, and integrity. In any case, their security in the platform environment is subject to reasons beyond our sphere of influence, as well as reasons due to technical or other network weaknesses beyond the company’s control or reasons of force majeure or fortuitous events.


By browsing the site, we collect simple identification and measurement information, such as how many users have visited certain parts of the website. Cookies are small data files consisting of texts and numbers stored in the browser used by the visitor/user (Chrome, Mozilla Firefox, Internet Explorer) and contain information that allows the website to remember important information. The visitor/user can choose to disable cookies through the browser settings, receive instructions by clicking on Help in their menu, as well as delete all cookies that have been recently stored on him/her. However, disabling cookies from the browser may prevent the visitor/user from using all the site’s features.


For questions or clarifications regarding the processing of personal data or the exercise of the rights of visitors/users and other natural persons under the GDPR, please contact us at infο

Where does the GDPR apply?

The GDPR applies to personal data, i.e., any information relating to an identifiable person who can be identified directly or indirectly, in particular by reference to an identifier.

This definition provides a wide range of personal identifiers for the creation of personal data, including how the Company collects information.

The GDPR applies to both automated personal data and non-automated filing systems, where personal data is accessible according to specific criteria.