Privacy Policy

TL;DR

We collect data via Google Analytics, LinkedIn, and whatever you manually enter into our contact form. Our site is hosted on Webflow (using Cloudflare).

Scope

This Privacy Policy outlines how Rational Data P.C. collects, uses, and processes personal data (referred to as “Personal Data”) from visitors to the website https://rationaldata.dev (hereinafter the “Website”), in accordance with the General Data Protection Regulation (GDPR).

This Privacy Policy applies to all visitors and describes how Personal Data is collected when you visit or interact with the Website. We process your Personal Data in accordance with this Privacy Policy unless specific requirements of applicable law override it, in which case such requirements will take precedence.

Rational Data P.C. (hereinafter “we”, “our”, or “us”) is headquartered in Thessaloniki, Greece, with VAT number 800772131 and Business Registry number 140396506000.

Types of Personal Data Collected

When you visit or interact with the Website, we may collect and process the following categories of Personal Data.

  • Contact data: Information you provide via email or forms, including name, email, company, and message content.

  • Technical data: Automatically collected info including IP address, browser/device type, pages visited, timestamps, referral sources, and approximate location.

How We Collect Personal Data

We may obtain your Personal Data in the following ways.

  • Directly from you: When you contact us through email, forms, or other communication channels available on the Website.

  • Automatically: Through server logs and third-party tools, specifically Google Analytics for traffic and behavior tracking, and LinkedIn for measuring theperformance of marketing activities. For a full breakdown of these tools and opt-out details, visit our Cookie Policy.

Why We Process Your Personal Data

We collect and process Personal Data for the following purposes:

  • Website operation & security: To ensure the Website functions correctly, maintain stability, and protect against malicious activity or unauthorized access. This includes using technical logs to monitor site health and prevent misuse.

  • Communication: To process and respond to inquiries, support requests, or business proposals submitted via our contact forms.

  • Analytics & optimization: To understand how visitors interact with the Website. We use this data to analyze traffic and usage, and improve content, navigation, and site performance.

  • Marketing performance: To evaluate the effectiveness of our professional outreach and marketing campaigns, specifically measuring how visitors arrive at our Website via external platforms like LinkedIn.

We do not use your Personal Data for profiling or automated decision-making that results in legal or similarly significant effects.

Legal Basis for Processing

We process Personal Data under the following legal bases:

  • Performance of a Contract (Art. 6(1)(b) GDPR): To take steps at your request prior to entering into a contract, such as responding to inquiries about our services or providing quotes.

  • Legitimate Interest (Art. 6(1)(f) GDPR): To maintain the security of our Website, prevent fraud, and optimize our site's performance and user experience.

  • Consent (Art. 6(1)(a) GDPR): For the use of non-essential cookies (Analytics and Marketing). You may withdraw this consent at any time via our cookie settings.

Disclosure to Third Parties

We share data only with necessary service providers bound by confidentiality:

  • Infrastructure: Webflow (Hosting) and Cloudflare (CDN & Security)

  • Analytics & marketing: Google Analytics and LinkedIn

  • Public authorities: Only if strictly required by law

International Data Transfers

We use service providers (Webflow, Cloudflare, Google, LinkedIn) that may process data in the United States. We rely on appropriate safeguards such as the EU-U.S. Data Privacy Framework and Standard Contractual Clauses (SCCs) to ensure compliance with EEA standards.

Data Retention Period

We do not store data indefinitely. Our retention schedule is as follows:

  • Inquiries: Contact form data and related correspondence are retained for 5 years from the date of the last interaction, unless a contractual relationship is established.

  • Analytics Data: Google Analytics data is set to expire after 14 months.

  • Marketing Data: According to LinkedIn, data collected through the LinkedIn Insight Tag is pseudonymized by removing direct identifiers within 7 days, and the remaining pseudonymized data is deleted within 180 days.

  • Server Logs: Technical logs used for security purposes are typically purged within 6 months.

Data Protection Measures

We implement appropriate technical and organizational measures designed to protect Personal Data against accidental loss, unauthorized access, misuse, or disclosure. Access to Personal Data is limited to individuals who have a legitimate need to process it for the purposes described in this Privacy Policy. Third parties processing data on our behalf are subject to confidentiality obligations and appropriate safeguards.

Your Privacy Rights

Under EEA data protection laws, you have several important rights regarding your Personal Data.

These include:

  • Right to be informed about the collection and use of your Personal Data

  • Right of access to obtain a copy of your Personal Data and details of its
    processing

  • Right to rectification to request correction of inaccurate or incomplete data

  • Right to erasure to request deletion of Personal Data where appropriate

  • Right to restrict processing in certain circumstances

  • Right to data portability to receive your Personal Data in a structured, commonly
    used, machine-readable format

  • Right to object to processing based on legitimate interests

  • Right to withdraw consent at any time where processing is based on consent

You also have the right to lodge a complaint with your national Supervisory Authority. In Greece, this is the Hellenic Data Protection Authority (HDPA) at: https://www.dpa.gr

Exercise Your Rights

Due to the limited nature of our data processing, we are not required to appoint a Data Protection Officer (DPO) under Article 37 of the GDPR. All privacy-related inquiries are handled directly by our management team.

To exercise your rights or submit a privacy-related request, you may contact us using the details below.

  • E-mail: info@rationaldata.gr

  • Company: Rational Data P.C.

  • Address: Dimitrakopoulou 2, 54655, Thessaloniki, Greece

  • Telephone: +30 2310427210

  • Contact person: Paschalis Tsopanoglou

We will respond within a reasonable period as required by law.

To process your request, we must verify the identity of the requester. Only you or an authorized representative can make requests related to your personal information. We will use the personal information provided solely for verification purposes. If we cannot verify your identity or authority, we cannot respond or grant access. Requests may be declined if deemed excessive, repetitive, or clearly unfounded.

Rational Data will not discriminate or retaliate against you for exercising your privacy rights under applicable law.


Last updated March 2026