Privacy Policy
This Privacy Policy explains how Reach Out Web (“ROW”, “we”, “us”, “our”) collects, uses, shares, and protects your personal data when you visit www.reachoutweb.com or interact with us. We act as data controller under the EU General Data Protection Regulation (GDPR) and applicable Greek law.
1) Who we are
Service provider: Beros Konstantinos, trading as “Reach Out Web (ROW)”
Address: Patriarchou Grigoriou E 9, Pallini 153 51, Greece
Contact: privacy@reachoutweb.com
Phone: 210-6031297
This information is provided to meet EU/Greece online service disclosure duties.
2) What data we collect
a) Data you provide directly
– Contact forms / enquiries: name, email, phone, company, message, project details.
– Client onboarding & contracts: billing details, signatories, point(s) of contact.
– Recruitment: CV/resume, cover letter, portfolio, references.
b) Data collected automatically (website/analytics)
– Usage data: pages viewed, time on page, clicks, referring URL.
– Device/tech data: browser, operating system, language, screen size, approximate location (city/region).
– Cookies & similar technologies: managed via Complianz (see Cookie Policy). Non-essential cookies load only after your consent.
c) Data from third parties (when you interact with our ads/forms)
– Subject to your consent and platform policies, we receive campaign and conversion data from advertising/marketing platforms such as Google Ads, Meta (Facebook/Instagram), LinkedIn, TikTok, Pinterest, Viber (Rakuten Viber), and—if implemented—HubSpot forms/chat.
3) Why we process your data & lawful bases (GDPR Art. 6)
• Respond to enquiries: reply to forms/emails, schedule a call — Lawful basis: Legitimate interests (business communications) or consent if you opt-in to marketing.
• Provide services / client management: proposals, SOWs, delivery, invoicing, support — Lawful basis: Contract; legal obligation for records.
• Analytics & site performance: measure traffic and improve UX/content — Lawful basis: Consent for non-essential cookies/analytics (GDPR + ePrivacy).
• Marketing you asked for: newsletters, lead magnets, case studies; audience measurement for our campaigns — Lawful basis: Consent (you can withdraw anytime). No cold B2B outreach.
• Recruitment: process applications and interviews — Lawful basis: Legitimate interests and pre-contractual steps.
• Security & fraud prevention: keep the site and systems secure — Lawful basis: Legitimate interests and/or legal obligations.
We do not use automated decision-making that produces legal or similarly significant effects.
4) Cookies & consent management
Our site uses Complianz to display a consent banner, block non-essential tags until you choose, and keep records of consent. You can change or withdraw consent at any time via the banner’s Preferences link. Details appear in our Cookie Policy.
5) Who we share data with (recipients)
We share data only as needed, under contracts that limit processing to our instructions:
– Hosting/security/operations providers.
– Analytics: Google Analytics 4 (GA4).
– Advertising & measurement (activated via consent): Google Ads (including conversion tags), Meta Pixel, LinkedIn Insight Tag, TikTok Pixel, Pinterest Tag, Viber (Rakuten Viber) advertising tools; HubSpot forms/chat if implemented.
– Email & marketing communications: Mailchimp (Intuit Mailchimp) and Brevo (formerly Sendinblue).
– Professional advisers (legal/accounting) and authorities where required by law.
We do not sell your personal data.
7) Data retention
– Enquiries: up to 24 months after last contact.
– Client records: contract term + 6–10 years (tax/accounting).
– Marketing (newsletters/lead magnets): until you withdraw consent or unsubscribe.
– Recruitment: normally 12 months after a decision (unless you consent to a talent pool).
Backups/logs may persist briefly for security and continuity.
8) Your rights
You can access, rectify, erase, restrict, object (including to direct marketing), and port your data, and withdraw consent at any time. You may also complain to the HDPA. To exercise rights, email privacy@reachoutweb.com.
9) Security
We implement technical and organizational measures appropriate to risk (encryption in transit, access controls, least-privilege, staff confidentiality and training) to help prevent unauthorized access, alteration, disclosure, or loss.
10) Children
Our services target businesses and professionals. We do not knowingly collect children’s data; if you believe a child provided data, contact us to delete it.
11) Links to other sites
Our website may link to third-party sites and services. Their privacy practices are governed by their own policies.
12) Changes to this policy
We may update this notice; we’ll post a new “Last updated” date and, where appropriate, provide a prominent notice.
13) Contact
Questions about this Policy or how we handle your data? Email: privacy@reachoutweb.com | Address: Patriarchou Grigoriou E 9, Pallini 153 51, Greece.