GDPR Compliance
GDPR Compliance
Last updated: May 2026
1. Our Commitment to GDPR
GrowthProjects.eu is committed to protecting your personal data and respecting your privacy in full compliance with the General Data Protection Regulation (EU) 2016/679 (GDPR). This page explains how we meet our obligations as a data controller operating within the European Union.
2. Who We Are
GrowthProjects.eu is an Erasmus+ consultancy and support agency based in Corfu, Greece, providing proposal development, partner matching, and project support services to organisations across Europe.
3. What Personal Data We Collect
We may collect and process the following personal data:
- Name and email address (when you contact us via our contact form or email)
- Organisation name and country (when enquiring about our services)
- Usage data (pages visited, time on site — collected anonymously via Google Analytics)
- Any information you voluntarily provide in messages or project briefs
We do not collect sensitive personal data (special category data) as defined under Article 9 of the GDPR.
4. Legal Basis for Processing
We process your personal data on the following legal bases:
- Consent — when you submit a contact form or email us directly
- Legitimate interests — to respond to enquiries, improve our services, and maintain our website
- Contract — when processing is necessary to deliver a service you have requested
5. How We Use Your Data
Your personal data is used solely for:
- Responding to your enquiries and requests
- Delivering the services you have contracted us for
- Sending relevant updates if you have consented to receive them
- Improving the performance and content of our website
We do not sell, rent, or share your personal data with third parties for marketing purposes.
6. Data Retention
We retain your personal data only for as long as necessary to fulfil the purpose for which it was collected, or as required by applicable law. Contact enquiries are retained for a maximum of 3 years. You may request deletion at any time.
7. Third-Party Services
We use the following third-party services that may process data on our behalf:
- Google Analytics — anonymous website usage tracking (Google LLC, USA)
- WordPress — website platform and hosting
- Hostinger — website hosting provider
All third-party processors are bound by appropriate data processing agreements and comply with GDPR requirements.
8. International Data Transfers
Some third-party services (such as Google Analytics) may transfer data outside the European Economic Area (EEA). Where this occurs, we ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) as approved by the European Commission.
9. Your Rights Under GDPR
As a data subject, you have the following rights:
- Right of access — request a copy of the personal data we hold about you
- Right to rectification — request correction of inaccurate or incomplete data
- Right to erasure — request deletion of your personal data
- Right to restriction — request that we limit how we use your data
- Right to data portability — receive your data in a structured, machine-readable format
- Right to object — object to processing based on legitimate interests
- Right to withdraw consent — withdraw consent at any time without affecting prior processing
To exercise any of these rights, contact us at info@growthprojects.eu. We will respond within 30 days.
10. Data Security
We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, accidental loss, destruction, or disclosure. Our website uses SSL encryption for all data transmitted between your browser and our server.
11. Complaints
If you believe your data protection rights have been violated, you have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA):
🌐 www.dpa.gr 📧 contact@dpa.gr 📞 +30 210 6475600
12. Contact
For any data protection enquiries or to exercise your rights, please contact: