GMach Labs

Privacy Policy

Last updated: 25 May 2026

This Privacy Policy explains how G‑Mach Labs (“we”, “us”, “our”) collects and processes personal data when you visit g-mach.gr or contact us. We handle your data lawfully and transparently, in line with the EU General Data Protection Regulation (GDPR) and Greek data protection law.

Who we are

The data controller is G‑Mach Labs — [registered legal name], [registered address], Greece ([VAT / Γ.Ε.ΜΗ. number]). For any question about your data, email [email protected].

What data we collect

We keep data collection to a minimum. We collect:

  • Contact details you submit through our contact form: your name, email address, company (optional), and the content of your message.
  • Technical data automatically logged by our hosting provider for security and reliability, such as IP address, browser type, and timestamps.
  • A single functional cookie that remembers your language preference (see our Cookie Policy).

How we use your data and legal basis

  • To respond to your enquiry and take steps at your request before entering into a contract (Art. 6(1)(b) GDPR).
  • To operate, secure, and improve our website, based on our legitimate interest (Art. 6(1)(f) GDPR).
  • We do not use your data for advertising, profiling, or automated decision-making.

Sharing and processors

We do not sell your data. We share it only with service providers who process it on our behalf under appropriate agreements:

  • Resend — delivers the email generated by our contact form.
  • Vercel — hosts and serves the website.

International transfers

Some providers may process data outside the European Economic Area. Where that happens, the transfer is protected by appropriate safeguards such as the European Commission’s Standard Contractual Clauses.

How long we keep it

We keep enquiry emails for as long as needed to handle your request and for a reasonable period afterwards for our records, then delete them. Server logs are retained for a short period by our hosting provider.

Your rights

Under the GDPR you have the right to:

  • access your data and request a copy;
  • have inaccurate data corrected;
  • request erasure of your data;
  • restrict or object to processing;
  • data portability;
  • withdraw consent at any time, where processing is based on consent.

Complaints

To exercise any right, email [email protected]. You also have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA), Kifissias 1‑3, 115 23 Athens, www.dpa.gr.

Security

We use appropriate technical and organisational measures — including encryption in transit (HTTPS) and access controls — to protect your data. No method of transmission over the internet is completely secure, however.

Children

Our website is intended for businesses and adults. We do not knowingly collect data from children.

Changes to this policy

We may update this policy from time to time. The “last updated” date at the top reflects the latest version.

Questions about this page?

Get in touch[email protected]