firebit
ΕΛ / EN
Legal

Privacy Policy

Last updated: April 2025

1. Who we are

firebit is a Greek technology and AI services company. The data controller for the purposes of the GDPR is firebit. You can reach us at hello@firebit.gr.

2. What data we collect and why

2.1 Contact form

When you fill in our contact form, we collect:

  • Name — so we can reply personally.
  • Email — so we can send you our response.
  • Message — the content of your enquiry.
  • Business / role (optional) — to understand your context better.

This data is transmitted via the Resend email service (processor) and delivered to our inbox. It is not stored in any database. We use it solely to respond to your enquiry. Legal basis: performance of pre-contractual steps / legitimate interests (Article 6(1)(b)/(f) GDPR).

2.2 Website analytics (Umami Analytics)

We use Umami Analytics, a privacy-respecting traffic analysis tool. Umami:

  • Does not use cookies of any kind.
  • Does not collect personal data and does not build user profiles.
  • Records only anonymous, aggregate statistics (e.g. number of visits, popular pages).
  • Is GDPR-compliant without requiring a consent banner.

Legal basis: legitimate interest in improving the website (Article 6(1)(f) GDPR).

3. Cookies

This website does not use cookies — not technical, analytical, or marketing ones. No cookie consent banner appears because there are simply no cookies to consent to.

4. Sharing data with third parties

We do not sell, rent, or trade personal data with third parties for marketing purposes. We use the following processors:

  • Resend (resend.com) — sends email from the contact form. Resend acts as a data processor and is bound by a data processing agreement.
  • Vercel (vercel.com) — website hosting. Vercel may temporarily log access records (IP, timestamp) for security and reliability purposes.
  • Umami Cloud (umami.is) — anonymous traffic analytics.

5. Data retention

Messages received via the contact form are retained in our email for as long as necessary to serve your enquiry and for lawful record-keeping purposes — typically up to five (5) years.

6. Your rights under GDPR

Where your data is being processed, you have the following rights:

  • Access — request a copy of the data we hold about you.
  • Rectification — request correction of inaccurate information.
  • Erasure — request deletion of your data ("right to be forgotten").
  • Objection — object to processing based on legitimate interests.
  • Portability — receive your data in a structured, machine-readable format.
  • Lodge a complaint — with the Hellenic Data Protection Authority (HDPA, www.dpa.gr) or the supervisory authority in your country of residence.

To exercise any of these rights, contact us at hello@firebit.gr. We respond within 30 days.

7. Security

We take reasonable technical and organisational measures to protect your data, including HTTPS encryption for all communication with the site.

8. Third-party links

Our website may contain links to external sites. We are not responsible for the privacy practices of those websites.

9. Changes to this policy

We may update this policy periodically. Any changes will be posted on this page with an updated date. We recommend checking it occasionally.

10. Contact

For any questions about this policy or how we handle your data, please contact us:

firebit
hello@firebit.gr