Privacy Policy – GDPR

Privacy Policy

This Privacy Policy explains how Polyglot Lab collects, uses, stores, and protects your personal data in accordance with the General Data Protection Regulation (EU 2016/679 – GDPR) and applicable Greek law.

  1. Data Controller
  1. Personal Data We Collect
    When visiting our website or purchasing courses through our e-shop, we may collect the following data:
  • Full name
  • Email address
  • Phone number
  • Billing/shipping address
  • Payment data (processed securely via providers such as Stripe, PayPal – we do not store card details)
  • Login details (username, password)
  • Course purchase and access history
  • Communication records (if you contact us)
  1. Purpose of Processing
    We process your data exclusively for the following purposes:
  • Processing orders and delivering online courses
  • Issuing invoices and receipts
  • Customer service and technical support
  • Sending updates and newsletters (only with consent)
  • Improving the user experience
  1. Legal Basis
    We process data based on:
  • Contract performance (e.g. course purchase)
  • Your consent (e.g. marketing emails)
  • Compliance with legal obligations (e.g. tax compliance)
  1. Data Retention
    We retain your data:
  • As long as necessary to provide our services
  • In accordance with tax legislation (e.g. 5 years for invoices)
  • Until you withdraw your consent (where applicable)
  1. Your Rights
    According to GDPR, you have the right to:
  • Access your personal data
  • Request rectification of inaccurate data
  • Request erasure (right to be forgotten)
  • Restrict processing
  • Data portability
  • Object to processing based on legitimate interest
  • Withdraw consent at any time
    To exercise your rights, contact:  info@polyglot-lab.com
  1. Data Recipients
    We do not share your data with third parties except where required:
  • By payment providers (e.g. Stripe, PayPal)
  • By authorized partners operating the platform
  • By public authorities, where legally required

All partners are contractually bound to protect your data.

  1. Cookies and Tracking

We use cookies to enhance your browsing experience. See our [Cookies Policy] for more details.

  1. Data Security
    We implement appropriate technical and organizational measures, including:
  • Data encryption
  • SSL secure connections
  • Password protection and access controls
  1. Complaints
    If you believe your data rights are violated, you may contact:
  • Hellenic Data Protection Authority: dpa.gr