Privacy Policy | Next.gr

Privacy Policy

1. Introduction

Overview and Scope of the Policy

[Your Company Name] ("we," "us," "our," or the "Company") is committed to safeguarding your privacy and ensuring transparency in the ways we collect, process, and protect your personal information. This Privacy Policy ("Policy") outlines how we handle personal data gathered through your interactions with our website, applications, products, services, and other platforms (collectively referred to as the "Services").

This Policy applies to all users and customers ("you," "your," or "user") who access or utilize our Services, regardless of geographic location, and is intended to comply with applicable privacy laws and regulations, including but not limited to the European Union’s General Data Protection Regulation ("GDPR"), the California Consumer Privacy Act ("CCPA"), and the California Privacy Rights Act ("CPRA").

By accessing or using our Services, you acknowledge and agree to the terms described in this Privacy Policy.

Effective Date and Last Updated Date

  • Effective Date: 3/21/2025
  • Last Updated: 16/20/2025

We periodically review and update this Policy to reflect changes in our privacy practices or applicable laws. Any updates or revisions will be clearly indicated by the "Last Updated" date above.

2. Definitions

To help you understand the terminology used throughout this Privacy Policy, we provide clear explanations of key terms below:

  • Personal Data (or Personal Information):
    Any information that relates to an identified or identifiable natural person ("Data Subject" or "Consumer"), such as your name, email address, phone number, location data, IP address, online identifiers, or other factors specific to your physical, physiological, genetic, mental, economic, cultural, or social identity.

  • Sensitive Personal Information:
    Personal information that requires additional protection due to its sensitive nature, including but not limited to Social Security numbers, government-issued IDs, financial account information, precise geolocation data, biometric data, racial or ethnic origin, religious beliefs, health information, or other data defined as sensitive by applicable privacy laws.

  • Processing:
    Any operation or set of operations performed on personal data, whether automated or not, including collection, storage, use, analysis, disclosure, transmission, deletion, or modification.

  • Data Subject (or Consumer):
    The individual (you) to whom personal data or personal information relates.

  • Data Controller:
    The natural or legal person, agency, or other body which determines the purposes and means of the processing of personal data. For purposes of this Policy, [Your Company Name] acts as the Data Controller.

  • Data Processor (or Service Provider):
    A natural or legal person, agency, or other body that processes personal data on behalf of the Data Controller.

  • Third Party:
    Any person or entity other than you (the data subject), [Your Company Name], our service providers, or our affiliates, that may receive or have access to your personal data through our Services.

  • Sale (of Personal Information):
    Under the California Consumer Privacy Act ("CCPA") and California Privacy Rights Act ("CPRA"), a "sale" is broadly defined to include selling, renting, releasing, disclosing, disseminating, making available, transferring, or otherwise communicating personal information to another business or third party for monetary or other valuable consideration.

  • Sharing (of Personal Information):
    Under CPRA, "sharing" specifically refers to providing personal information to third parties for cross-context behavioral advertising purposes, regardless of monetary consideration.

  • Consumer (under CCPA/CPRA):
    A natural person who is a California resident, as defined in California law, including individuals in California temporarily or permanently, who may access our Services and whose personal information is subject to protection under the CCPA/CPRA.

  • Consent:
    A freely given, specific, informed, and unambiguous indication of your agreement to the processing of your personal data, provided by clear affirmative action (e.g., ticking a checkbox or submitting a form).

  • Legitimate Interests:
    The interests pursued by [Your Company Name] or by a third party that justify processing personal data, provided those interests do not override your fundamental rights and freedoms.

3. Information We Collect

In providing our Services, we collect several types of personal data, including information you provide directly, information collected automatically, and information obtained from third-party sources.

Types/Categories of Personal Data Collected:

We may collect and process the following categories of personal information:

  • Identifiers:
    Name, email address, postal address, telephone number, username, unique personal identifiers, IP address, or other similar identifiers.

  • Commercial Information:
    Information related to your purchases, subscriptions, transaction history, preferences, and other purchase or consumption histories or tendencies.

  • Internet or Other Electronic Network Activity:
    Browsing history, search history, interactions with our websites or applications, clickstreams, device information, operating system, browser type, or other analytics data.

  • Geolocation Data:
    Approximate or precise geographic location information, if you enable location services on your device.

  • Professional or Employment-related Information:
    Current or past job history, professional affiliations, or other related professional details (when applicable, such as during employment applications).

  • Communications and Interaction Data:
    Content of communications or interactions with us, including emails, surveys, feedback, customer support interactions, or other engagement-related data.

Sources from Which Personal Data is Collected:

We may collect personal information from the following sources:

  • Directly From You:
    Information you provide voluntarily when you use our Services, create an account, subscribe to newsletters, participate in surveys, fill out forms, contact customer support, or engage with us through other communication channels.

  • Automatically Through Technology:
    Information collected automatically when you visit or interact with our website or applications, such as cookies, pixels, web beacons, scripts, and other tracking technologies. These technologies collect data about your device, browser, usage patterns, and preferences.

  • Third-Party Sources:
    We may obtain personal information about you from third-party partners, such as marketing or advertising partners, analytics providers, social media platforms, or public databases, where permitted by applicable law.

Sensitive Personal Information (as defined by CPRA):

In some limited cases, we may collect sensitive personal information, including:

  • Account login credentials (such as usernames or passwords, securely encrypted)
  • Precise geolocation information (with your explicit consent)
  • Financial account details (such as payment or billing information) provided for transactions
  • Government-issued identifiers (only if explicitly requested or required by applicable law)

We limit our use of sensitive personal information strictly to the purposes disclosed when collected and only in compliance with applicable privacy laws, including obtaining consent when required.

4. Purpose and Legal Basis for Processing Personal Data

We collect and process personal data only for specific, legitimate purposes and in compliance with applicable laws, including the GDPR, CCPA, and CPRA. Below we detail these purposes along with the legal grounds under which your data is processed.

Clearly Defined Purposes for Collecting and Processing Data

We use your personal data for the following specific purposes:

  • To Provide and Maintain Our Services:
    To operate, manage, and deliver the services and products you request, including processing transactions, account management, and customer support.

  • To Communicate With You:
    To respond to your inquiries, send transactional communications, notify you about changes to our policies, and deliver service-related notices or updates.

  • To Improve and Personalize Your Experience:
    To enhance and personalize your user experience, improve our products and services, conduct analytics, and identify usage trends.

  • Marketing and Advertising:
    To provide targeted advertising, promotions, and marketing communications about our services, subject to your consent or where permitted by law.

  • Security and Fraud Prevention:
    To protect our users, systems, and infrastructure; prevent fraud and misuse; investigate potential security incidents or unlawful activities; and comply with applicable law.

  • Compliance and Legal Obligations:
    To comply with applicable legal and regulatory obligations, respond to lawful requests from authorities, enforce our terms and conditions, and protect our rights.

Legal Basis for Processing (Under GDPR)

If you are in the European Economic Area (EEA), the United Kingdom, or Switzerland, we process your personal data under the following legal bases:

  • Consent:
    When you provide explicit consent for specific purposes, such as receiving marketing communications, newsletters, or personalized advertising.

  • Contractual Necessity:
    Where processing is necessary to enter into or perform our obligations under a contract with you (e.g., providing the products or services you request).

  • Compliance with Legal Obligations:
    When processing is required to comply with applicable laws, regulations, or other legal obligations.

  • Legitimate Interests:
    Processing may be based on our legitimate interests or those of a third party, provided your interests or fundamental rights do not override such interests. Our legitimate interests include improving our services, maintaining security, and conducting analytics and direct marketing.

Business and Commercial Purposes (Under CCPA/CPRA)

If you are a California resident, we process your personal information for the following business and commercial purposes:

  • To fulfill or meet the reason you provided the information (e.g., to respond to inquiries, provide products or services, process payments).
  • To personalize, advertise, and market our products and services.
  • For auditing, research, and analysis to maintain, improve, and develop new services.
  • For detecting security incidents, protecting against malicious activity, fraud, and illegal activities.
  • To comply with legal obligations and regulatory requirements.

We do not process your sensitive personal information beyond the specific purposes disclosed at collection unless explicitly authorized by you or as required by law.

5. How We Use Your Information

We process your personal information responsibly and transparently. Below we provide a detailed description of how your personal data is used both internally and externally, aligned with the purposes described previously in this Privacy Policy.

Internal Use of Personal Information

We use the personal data we collect internally for the following specific purposes:

  • Service Delivery and Account Management:
    To provide and manage our services and products, administer your user account, authenticate access, fulfill your requests, process payments, and manage customer service and support interactions.

  • Personalization and User Experience Enhancement:
    To personalize and improve your experience on our platforms by providing content, recommendations, and offers relevant to your preferences and usage history.

  • Operational and Technical Improvements:
    To conduct internal research, analysis, and development activities to improve the functionality, efficiency, and reliability of our services, websites, applications, and internal systems.

  • Analytics and Reporting:
    To analyze usage patterns, track user behavior, monitor service performance, and generate internal reports to support our decision-making processes.

  • Security, Fraud Prevention, and Compliance:
    To detect, prevent, and investigate fraud, unauthorized access, and security incidents, ensuring compliance with applicable laws and protecting our users, assets, and operations.

External Use and Disclosure of Personal Information

We may disclose your personal data externally under the following circumstances:

  • Service Providers and Third-Party Vendors:
    We share personal information with carefully vetted third-party service providers and vendors who assist us in providing services such as hosting, data storage, payment processing, analytics, customer support, marketing, advertising, and other business operations. These providers are contractually obligated to protect your personal data and use it solely for purposes instructed by us.

  • Marketing, Advertising, and Promotional Activities:
    With your consent, where required, we may use your personal data to deliver targeted marketing communications, promotional materials, or advertisements about our products or services. You may opt out of marketing communications at any time.

  • Analytics Providers:
    We may engage third-party analytics providers to help us better understand user behavior, website performance, and improve our products and services. These providers may collect or have access to certain personal information, such as IP addresses or device identifiers, solely to perform services on our behalf.

  • Legal Obligations and Compliance:
    We may disclose personal data as required by law, regulation, legal process, governmental requests, or to protect our rights, privacy, safety, or property, or those of our users or the public.

  • Corporate Transactions:
    Personal information may be disclosed or transferred during corporate events such as mergers, acquisitions, restructuring, asset sales, or in connection with financing activities.

Clarification on Marketing, Analytics, and Product Improvement

  • Marketing and Communications:
    We use personal data (such as name, email, contact details, preferences, and engagement history) to deliver relevant marketing messages, promotional offers, newsletters, or other communications to you. Marketing communications are provided subject to your consent or where permitted by law, and you can opt out at any time.

  • Analytics:
    We use analytics tools to track, analyze, and better understand user interactions and preferences. Analytics data helps us optimize the effectiveness of our website, applications, content, advertising campaigns, and overall user experience.

  • Product and Service Improvement:
    We use personal data to identify trends, evaluate and enhance our products and services, test new features, gather user feedback, and improve the overall quality and user-friendliness of our offerings.

We do not sell or share your personal information to third parties for their independent marketing purposes without your explicit consent.

6. Data Sharing and Disclosure

We value your privacy and share your personal data only under clearly defined circumstances. Below, we outline the categories of third parties with whom your data may be shared, the purposes for such sharing, and clarify our practices regarding the sale or sharing of your information under CCPA and CPRA definitions.

Categories of Third Parties with Whom Data is Shared

We may disclose your personal information to the following types of third parties:

  • Service Providers:
    Entities that assist us in providing our services, such as web hosting companies, cloud service providers, payment processors, IT support, customer service platforms, email marketing providers, and data analytics providers.

  • Advertising and Marketing Partners:
    Third parties who assist with advertising, promotions, targeted marketing, and analytics, provided you have consented or have not opted out where legally applicable.

  • Professional Advisors and Affiliates:
    Legal counsel, auditors, insurance providers, and other professional advisors or affiliates who support business operations, regulatory compliance, or dispute resolution.

  • Governmental Authorities and Regulators:
    Law enforcement, regulatory authorities, or governmental agencies, as required or permitted by law or to respond to legal processes and enforce compliance.

  • Corporate Transactions:
    Third parties involved in business transactions such as mergers, acquisitions, divestitures, or asset sales, where personal data may be transferred as part of business assets.

Purposes for Sharing Personal Data

We share your personal data with the third parties listed above exclusively for the following purposes:

  • To deliver, maintain, and improve our services.
  • To provide secure and efficient data storage, hosting, and IT infrastructure.
  • To process transactions, payments, or customer support inquiries.
  • To perform data analysis, research, and reporting to enhance user experience.
  • To conduct targeted advertising, marketing, and promotional campaigns (subject to your consent or legal basis).
  • To comply with legal requirements, enforce our terms of service, protect the rights, property, and safety of our business and users, and respond to lawful requests from authorities.

Clear Distinction Regarding the "Sale" or "Sharing" of Personal Data (CCPA/CPRA)

Under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA), certain disclosures of personal data may constitute a "sale" or "sharing":

  • Sale:
    We do not sell your personal information to third parties in exchange for monetary compensation. However, as defined by the CCPA/CPRA, certain disclosures involving personal data for advertising purposes may be considered a "sale." You have the right to opt out of such disclosures at any time.

  • Sharing (Cross-Context Behavioral Advertising):
    Under CPRA, "sharing" specifically refers to providing personal data to third parties for cross-context behavioral or targeted advertising. We may engage in this practice to provide personalized advertising and content. California residents have the right to opt out of sharing at any time.

  • Transfer to Third Parties (Not Constituting "Sale" or "Sharing"):
    We transfer personal information to third parties strictly for business purposes defined above. These third parties act as service providers under specific contractual obligations, prohibiting them from using the information for purposes other than providing services to us.

Your Right to Opt-Out (California Residents):
If you wish to opt out of the sale or sharing of your personal information, please follow the instructions provided in the "How to Exercise Your Rights" section of this Privacy Policy.

7. Data Retention

We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, comply with our legal and regulatory obligations, resolve disputes, and enforce our agreements.

How Long Personal Data is Stored

The retention periods for your personal data depend primarily on the type and nature of the information and the purpose for which it was collected. Specifically:

  • Account and Transactional Data:
    We retain personal data related to your account or transactions for as long as your account remains active and for a reasonable period thereafter, typically for up to [specify a timeframe, e.g., 7 years], to comply with legal obligations, audit requirements, dispute resolution, and enforcement of agreements.

  • Marketing Data:
    Information used for marketing purposes, such as contact details and marketing preferences, is retained until you withdraw your consent or opt-out, or until we determine that the data is no longer accurate or useful.

  • Customer Support and Communications:
    Communications and records related to customer support or user inquiries are retained as long as reasonably necessary to fulfill your requests, resolve issues, and maintain records of our interactions, usually up to [specify a timeframe, e.g., 3 years] from the last interaction.

  • Technical and Usage Data:
    Data collected automatically (such as analytics data, logs, and system usage information) is generally retained for a shorter period, typically up to [specify a timeframe, e.g., 12–24 months], unless required for security, fraud prevention, or compliance purposes.

Criteria for Determining Retention Periods

When determining the appropriate retention periods for personal data, we consider the following criteria:

  • The nature and sensitivity of the personal data collected.
  • The purpose for which the personal data was initially obtained and processed.
  • Whether we have ongoing contractual obligations or a continued legitimate business interest in retaining the data.
  • Applicable legal, regulatory, or contractual requirements to retain the data (e.g., tax, accounting, or record-keeping obligations).
  • The likelihood and necessity of the data being required to defend against potential legal claims or disputes.
  • The potential risks or harm arising from unauthorized use or disclosure.

Upon expiration of the applicable retention period, we securely delete, anonymize, or otherwise securely dispose of personal data in accordance with applicable data protection laws and regulations.

8. Data Subject Rights

Depending on your location and applicable privacy laws (such as GDPR for EU residents, and CCPA/CPRA for California residents), you may have certain rights regarding your personal data. Below, we clearly outline these rights and explain how you can exercise them.

GDPR Rights (For Users in the EU/EEA, UK, and Switzerland)

If you are located in the EU, EEA, UK, or Switzerland, you have the following rights concerning your personal data:

  • Right of Access:
    You have the right to obtain confirmation whether we process your personal data and to request access to your data and information about how it is processed.

  • Right to Rectification:
    You have the right to request correction of any inaccurate or incomplete personal data we hold about you.

  • Right to Erasure ("Right to be Forgotten"):
    You can request the deletion of your personal data in certain circumstances, including when your data is no longer necessary for the purposes it was collected, or if you withdraw your consent and there is no other legal basis for processing.

  • Right to Restrict Processing:
    You have the right to request the limitation or restriction of processing your personal data under certain conditions (e.g., while a request to rectify or erase your data is being processed).

  • Right to Data Portability:
    You can request to receive your personal data in a structured, commonly used, machine-readable format and have the right to transmit this data to another controller, where technically feasible, without hindrance.

  • Right to Object:
    You can object to processing of your personal data based on legitimate interests, direct marketing purposes, or when processing involves automated decision-making and profiling.

  • Rights Related to Automated Decision-Making/Profiling:
    You have the right not to be subject to a decision based solely on automated processing, including profiling, which significantly affects you or produces legal effects, unless it's necessary for contractual purposes, authorized by law, or based on your explicit consent.

CCPA/CPRA Rights (For California Residents)

If you are a California resident, you have the following rights regarding your personal information under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to Know:
    You have the right to request disclosure of the categories and specific pieces of personal information we have collected about you, the categories of sources from which data was collected, the purposes of collection, the categories of third parties with whom data was shared, and information on whether your data was sold or shared.

  • Right to Delete Personal Information:
    You may request the deletion of your personal information we collected, subject to certain exceptions outlined by law.

  • Right to Opt-Out of Selling or Sharing Personal Information:
    You have the right to opt out of the sale or sharing of your personal information to third parties for cross-context behavioral advertising or other purposes defined by CPRA. You can exercise this right at any time through our "Do Not Sell or Share My Personal Information" link or by contacting us directly.

  • Right to Correct Inaccurate Personal Information:
    You can request the correction of any inaccurate personal information we maintain about you.

  • Right to Limit Use and Disclosure of Sensitive Personal Information (CPRA):
    You have the right to request limitations on how we use or disclose your sensitive personal information, restricting its use solely to the purposes necessary to perform services or provide goods you request, comply with law, or other specific authorized purposes.

Exercising Your Data Subject Rights:
To exercise any of the rights described above, please refer to our "How to Exercise Your Rights" section or contact us directly using the information provided in this Privacy Policy. We will respond to requests in compliance with applicable privacy laws and regulations within the legally required timelines.

9. How to Exercise Your Rights

We respect your privacy rights and make it easy for you to exercise them. Below, we provide clear instructions on how you can submit requests regarding your personal data, along with information about how we verify your identity to ensure the security of your data.

Identity Verification Procedures

To protect your privacy and security, we will verify your identity before processing your request. Verification procedures depend on the nature of the request and sensitivity of the information involved, and may include:

  • Confirming your identity using the email address or phone number associated with your account or records.
  • Requesting additional information from you (such as your account details, recent transactions, or other identifiers).
  • Asking you to confirm details that only you would reasonably know.

If we are unable to verify your identity based on information provided, we may request additional information or documentation. If we still cannot verify your identity, we may deny your request in accordance with applicable laws.

Authorized Agent (CCPA/CPRA):

California residents may designate an authorized agent to submit privacy requests on their behalf. If you use an authorized agent, we may require:

  • A written authorization signed by you permitting the authorized agent to make the request.
  • Verification of your identity directly with you.

We will respond to verified requests within the legally required timeframe (generally within 30 days for GDPR requests and within 45 days for CCPA/CPRA requests). If additional time is needed, we will notify you and provide reasons for the extension.

10. International Data Transfers

We operate globally, and your personal data may be transferred, processed, and stored outside the country or region where you reside, including transfers to countries or regions that may have data protection laws different from those applicable in your jurisdiction.

Disclosure of International Transfers of Personal Data

When we transfer personal data internationally, including from the EU/EEA, UK, or Switzerland to countries outside these regions, we ensure compliance with applicable privacy laws (including GDPR), and we clearly inform you about such transfers.

Your personal data may specifically be transferred to:

  • Our affiliated companies, subsidiaries, or offices located internationally.
  • Service providers, vendors, or business partners located outside your jurisdiction for the purposes outlined in this Privacy Policy.
  • Data storage providers and data centers situated outside your country or region.

Safeguards Applied to International Transfers

To ensure your personal data is adequately protected when transferred internationally, we rely on appropriate safeguards recognized under applicable data protection laws, such as:

  • Standard Contractual Clauses (SCCs):
    We utilize European Commission-approved Standard Contractual Clauses for data transfers from the EU/EEA, UK, or Switzerland to third countries lacking an adequacy decision to ensure appropriate protection of your data.

  • Adequacy Decisions:
    Where applicable, we transfer personal data to countries or territories recognized by the European Commission, the UK, or Swiss authorities as providing an adequate level of data protection.

  • Additional Safeguards and Measures:
    In circumstances where additional safeguards are necessary, we may adopt further technical, contractual, or organizational measures to ensure your data remains protected according to EU, UK, Swiss, or other applicable data protection standards.

By using our services and providing your personal information, you acknowledge and consent (where legally required) to the transfer, processing, and storage of your data internationally as described in this section.

If you have questions or require further information about our international transfers or safeguards, please contact us using the details provided in the Contact Information section of this Privacy Policy.

11. Security Measures

We take data security seriously and implement robust administrative, technical, and physical security measures designed to protect your personal data from unauthorized access, disclosure, alteration, loss, or destruction.

Administrative Security Measures

Our administrative measures include:

  • Access Controls:
    Limiting access to personal data to authorized personnel who require access strictly on a need-to-know basis.

  • Employee Training:
    Regular privacy and data protection training for employees and contractors who handle personal information, ensuring awareness of their responsibilities.

  • Policy Management:
    Maintaining clear internal privacy and security policies outlining responsibilities, compliance standards, and incident management procedures.

  • Incident Response Planning:
    Established procedures to promptly detect, respond to, and mitigate data breaches or security incidents, and to notify affected users or authorities when legally required.

Technical Security Measures

We implement technical safeguards such as:

  • Encryption:
    Protecting sensitive data in transit and at rest through encryption technologies (e.g., TLS/SSL protocols, AES encryption).

  • Secure Authentication:
    Utilizing secure authentication methods, including multi-factor authentication (MFA) where appropriate, to safeguard account access.

  • Network Security:
    Employing firewalls, intrusion detection systems, and network monitoring tools to identify and mitigate cybersecurity threats.

  • Regular Security Assessments:
    Performing regular vulnerability scans, penetration tests, and security audits to identify and promptly address potential vulnerabilities.

  • Secure Software Development:
    Adhering to industry-standard secure coding practices and regular security testing to ensure the integrity and resilience of our software and systems.

Physical Security Measures

Physical security measures include:

  • Facility Protection:
    Secure and restricted access to offices, data centers, and storage facilities to prevent unauthorized physical access to personal data.

  • Surveillance and Monitoring:
    Deploying security monitoring systems (e.g., video surveillance, security personnel) to maintain facility safety and control physical access.

  • Equipment and Media Disposal:
    Secure destruction or anonymization of data storage devices, media, and documents containing personal data before disposal or reuse.

Ongoing Review and Improvement

We regularly evaluate our security measures to ensure they remain effective against emerging threats and comply with evolving data protection standards and legal requirements.

While we strive to protect your personal data through these measures, no security system is entirely foolproof, and we cannot guarantee absolute security of personal data transmitted to or stored by us. If you have concerns about data security or suspect unauthorized activity, please contact us immediately using the information provided in the Contact Information section of this Privacy Policy.

12. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience, improve our services, and analyze usage patterns. This section explains what these technologies are, how we use them, and how you can manage your preferences.

Explanation of Cookies and Tracking Technologies

  • Cookies:
    Cookies are small text files stored on your device when you visit websites or use applications. Cookies enable websites to remember your preferences, logins, and other browsing information.

  • Web Beacons (Pixels):
    Web beacons, also known as pixels or tracking tags, are small, transparent images embedded in web pages or emails to track user interactions or measure engagement (e.g., email open rates).

  • Analytics Tools:
    These tools, like Google Analytics or similar services, collect information about how users interact with our website or application, providing insights on performance, engagement, and user behavior.

  • Local Storage (HTML5):
    Allows websites or applications to store information locally on your device to improve functionality, performance, and user experience.

Purpose of Cookies and Tracking Tools

We use cookies and tracking technologies for the following specific purposes:

  • Essential (Strictly Necessary) Cookies:
    Necessary for basic website functionality, authentication, security, and enabling access to secure areas of the website. These cookies are essential and cannot be disabled without affecting site functionality.

  • Functional Cookies:
    Enable websites to remember your preferences (e.g., language, region, user settings) and provide personalized functionality to improve your experience.

  • Analytics and Performance Cookies:
    Allow us to analyze website usage, monitor traffic, measure the effectiveness of content, understand user behavior, and make improvements based on data insights.

  • Advertising and Targeting Cookies:
    Used to deliver targeted and personalized advertisements based on your browsing habits, interests, or demographic information. These cookies may track your activity across different websites (cross-context behavioral advertising).

Third-Party Cookies and Tools

Some cookies and tracking technologies used on our website or services are provided by third-party service providers (e.g., advertising partners, analytics providers). These third parties may collect personal information directly from your device or browser and have their own privacy policies governing data collection and use.

How to Control Your Tracking Preferences

You have choices regarding cookies and tracking technologies:

  • Cookie Banner/Consent Tool:
    When you first visit our website, you can customize or withdraw consent to non-essential cookies through our cookie consent banner or privacy preference settings.

  • Browser Settings:
    Most browsers allow you to manage or disable cookies through your browser settings. Refer to your browser's help section for instructions. However, please note that disabling certain cookies may limit functionality and your user experience.

  • Third-Party Opt-Outs:
    For third-party analytics or advertising cookies, you may opt out directly through providers' websites. For example, Google Analytics offers opt-out tools (https://tools.google.com/dlpage/gaoptout). You can also visit http://www.aboutads.info/choices or http://www.youronlinechoices.eu to manage advertising preferences.

By continuing to use our website without changing your settings, you consent to our use of cookies and tracking technologies in accordance with this Privacy Policy.

13. Children's Privacy

Protecting the privacy of minors is especially important to us. Our services are not intended for or directed toward children or minors under the age of [specify clearly your minimum age, e.g., 13, 16, or 18] years old. We do not knowingly collect personal data from individuals under this age.

Compliance with Applicable Laws (COPPA, GDPR, CCPA/CPRA)

We comply fully with applicable laws governing children's privacy:

  • COPPA (U.S.):
    The Children's Online Privacy Protection Act ("COPPA") protects children under 13 years old. Our services are not directed at children under 13, and we do not knowingly collect or solicit personal data from children under this age.

  • GDPR (EU/UK/EEA):
    Under the General Data Protection Regulation, personal data of children under the age of 16 (or a lower age specified by Member State law, but not below 13) can only be processed with parental consent. Our services do not knowingly target or process data from children below the GDPR-specified age without verifiable parental consent.

  • CCPA/CPRA (California):
    Under California privacy laws, including the California Consumer Privacy Act and California Privacy Rights Act, minors under 16 have specific protections. We do not knowingly "sell" or "share" personal information of minors under 16 without affirmative consent from the minor (if aged 13-15) or consent from a parent or guardian (if under 13).

Clear Indication of Intended User Age

Our services are intended solely for users who are at least [clearly indicate your minimum age, such as 16 years of age or older]. If we become aware that personal data from a child under our stated age limit has been collected without proper consent, we will promptly delete or anonymize such information in accordance with applicable law.

Parental or Guardian Concerns

If you are a parent or guardian and believe your child under the age indicated above has provided personal information to us without your consent, please contact us immediately using the details provided in the Contact Information section. We will take steps to promptly remove that information from our systems.

14. Changes to this Privacy Policy

We regularly review and update this Privacy Policy to ensure it remains accurate, transparent, and compliant with applicable laws and industry standards.

Process for Notifying Users of Changes

When we make material changes to this Privacy Policy, we will inform you through one or more of the following methods:

  • Posting the updated Privacy Policy prominently on our website or service, clearly indicating the new "Last Updated" date at the top of this policy.
  • Providing a notice on our homepage or within our services, highlighting the key changes.
  • Sending you an email notification directly, especially when the changes significantly affect your privacy rights or our data handling practices.

We recommend that you periodically review this Privacy Policy to stay informed about how we are protecting your information.

Frequency of Policy Review and Updates

We typically review and update our Privacy Policy annually, or more frequently if necessary, in response to:

  • Changes in applicable data protection laws or regulations (e.g., GDPR, CCPA, CPRA).
  • Modifications to our business practices, products, services, or technologies.
  • Feedback or concerns raised by users or stakeholders.
  • Evolving industry standards or best practices.

Your continued use of our website or services after any updates to this Privacy Policy indicates your acceptance and agreement to the revised terms.

If you disagree with changes to the Privacy Policy, you should discontinue use of our services and contact us if you wish to exercise any applicable privacy rights.

15. Jurisdiction-Specific Notices

Certain regions provide additional rights and require specific disclosures regarding the processing of personal information. Please review the notices below applicable to your jurisdiction.

A. California Privacy Rights (CCPA/CPRA)

If you are a California resident, California law provides you with specific rights regarding your personal information. This section supplements the information contained in our Privacy Policy.

Categories of Personal Information Collected and Shared:
We collect, and may disclose or share for business purposes, the following categories of personal information about California residents:

  • Identifiers
  • Commercial information
  • Internet or electronic network activity
  • Geolocation data
  • Professional or employment-related information
  • Sensitive personal information (as defined under CPRA)

Sale or Sharing of Personal Information:
We do not sell your personal information in exchange for monetary consideration. However, under CPRA, certain disclosures involving personal data for targeted or cross-context advertising may be considered "sharing." California residents have the right to opt out of this sharing.

Exercising Your Rights:
California residents may exercise their privacy rights, including the right to know, correct, delete, or opt out, by submitting a request as described in the "How to Exercise Your Rights" section.

Non-Discrimination:
We will not discriminate against you for exercising your rights under California privacy laws, including denying goods or services, charging different prices, or providing lower-quality services.

B. EU/EEA, UK, and Switzerland Privacy Rights (GDPR)

If you are a resident of the European Economic Area (EEA), United Kingdom, or Switzerland, the following additional disclosures apply:

Legal Basis for Processing:
Our legal basis for processing personal data under GDPR includes consent, contractual necessity, legitimate interests, and compliance with legal obligations, as described in Section 4 of this Policy.

International Transfers:
Your data may be transferred outside of the EU/EEA, UK, or Switzerland. We ensure that transfers are protected by appropriate safeguards, such as Standard Contractual Clauses (SCCs), adequacy decisions, or other recognized methods described in our "International Data Transfers" section.

Data Subject Rights:
You may exercise rights provided under GDPR, including access, rectification, erasure, restriction, data portability, and objection to processing or automated decision-making, by contacting us as described in the "How to Exercise Your Rights" section.

Data Protection Authority:
If you have concerns about our processing of your personal data, you have the right to lodge a complaint with your national data protection authority or supervisory authority in your jurisdiction.

C. Other Jurisdictions

Depending on your region, additional rights or disclosures may apply. If you have questions about privacy rights specific to your jurisdiction or if you would like to exercise such rights, please contact us directly using the contact information provided in Section 15 of this Privacy Policy.

© 2025 Next.gr
Home Terms of Use Privacy Policy Cookie Policy Disclaimer Contact us