Newsletter
Subscribe to our updates
[contact-form-7 id="77bed9f" title="Newsletter 1"]
Valid from: May 31, 2025
Privacy Policy & Cookies
Promarine Innovation (hereinafter referred to as “Company”, ‘we’, “us”) based in Greece, manages the website https://promarineinnovation.com (hereinafter referred to as the “Website”) and is responsible for protecting any personal data it collects from you, the users of the Website (hereinafter referred to as ‘User’ or “you”). This Privacy Policy describes in detail:
- Who is the Data Controller
- What data we collect and for what purpose
- The legal basis for processing
- The transfer of data to third parties
- The use of cookies and similar technologies
- Your rights as a data subject
- Data retention
- Security policy
- How to contact us
- Procedure for informing and accepting changes
Please read the Privacy Policy carefully before using the Website or registering/submitting any information. By accessing and using the Website, you agree that you understand and fully accept the terms of this policy.
1. Data Controller
- Promarine Innovation
- Address: Okeanidon & Kanellopoulou
Location Kalyvaki – Kronos 24
Tel.: +30 210 4095042
Email: dpo@promarineinnovation.com
The Data Controller is Promarine Innovation. If you have any questions, wish to exercise your rights, or require clarification regarding the processing of your personal data, please contact us using the above details.
2. Data Categories & Processing Purposes
When you visit or use the Website, we may collect – either directly or automatically – the following categories of data:
2.1. Contact details
First and Last Name
Email
Telephone
Company details (if applicable to a legal entity)
Purpose of collection:
Responding to requests for information, offers, or support (e.g., via a contact form).
Information about our services and sending newsletters (provided you have given your explicit consent).
Conclusion of an agreement for the provision of services or products (corporate/consulting services, technical support, etc.).
2.2. Technical Data & Navigation Data
IP address
Browser type and version
Operating system
Referrer URL
Pages you visit
Date and time of access
Cookies and similar information storage devices
Purpose of collection:
Safe operation and optimization of the website.
Statistical traffic analysis (analytics) to improve services, measure traffic, and investigate technical issues.
Detection of malicious or unwanted activity (e.g., DDoS attacks, hacking attempts).
2.3. Professional & Additional Information (optional)
History of collaborations/projects
Special technical specifications for ships or projects
Preferences regarding services
Purpose of collection:
Personalization of offers and solutions.
Support for the consulting and technical services we provide.
3. Legal Basis for Processing
Depending on the category of data and the relevant purpose, the legal bases for processing may be:
Consent (Article 6(1)(a) GDPR):
Receive newsletters.
Consent to the use of cookies beyond those strictly necessary (see Cookies section below).
Contractual Obligation (Article 6(1)(b) GDPR):
Processing of data of individuals or companies for the purpose of executing a service contract, offer, or technical support.
Legal Obligation (Article 6(1)(c) GDPR):
Keeping accounting and tax records in accordance with applicable legislation.
Legitimate Interest (Article 6(1)(f) GDPR):
Optimization, maintenance, and security of the Website.
Prevention and detection of fraud or malicious activities.
Statistical analysis of traffic (analytics).
In any case, the data we process is strictly limited to what is necessary to fulfill the specific purpose (data minimization principle).
4. Use & Transfer of Data to Third Parties
Technical Support & Hosting Providers
Technical data (e.g., IP, logs, server details) is stored on servers of third-party hosting providers. All providers are located within the EU and/or hold relevant certifications for GDPR compliance.Software Development Companies & Analytics Service Providers
Analytics applications, CRM platforms, or email marketing services (e.g., Google Analytics, MailChimp, HubSpot) may process technical data or contact details under our explicit instructions and always with Data Processing Agreements (DPAs) compliant with the GDPR.Legal & Tax Consultants
For the preparation of offers, contracts, invoicing, and tax documentation, your data may be shared with external partners supporting our accounting/tax operations.Customs, Public Administration Authorities, Judicial or Administrative Authorities
When provided by law, in the context of legal proceedings, or following a relevant request, data may be shared with competent authorities (e.g., Port Authority, Hellenic Police, Data Protection Authority).Third-Party Marketing Promotions
Only with your explicit consent may we transfer data for targeted promotions or ad campaigns through partners (e.g., social media advertising platforms).
Summarizing, the above third parties have access only to strictly necessary data and are obligated to process it in accordance with our instructions and the GDPR, without independent use beyond the agreed purposes.
5. Cookies & Similar Technologies
The Website uses “cookies” and similar technologies (e.g., local storage, web beacons) for the following general purposes:
| Cookie Category | Description | Usage Example | Duration | |
|---|---|---|---|---|
| Strictly Necessary | Cookies required for the operation of the Website (e.g., session management, login). No consent required to ensure core functionality. | User session detection, saving security preferences (e.g., CAPTCHA tokens). |
| |
| Functional | Cookies that enhance user experience, e.g., remembering language choices, displaying personalized settings. | Saving display language, appearance mode (e.g., night/dark mode). | Up to 12 months (can be deleted at any time via browser settings). | |
| Performance & Analytics | Cookies collecting statistical data on Website use to help optimize content (e.g., Google Analytics).. | Tracking visit counts, high/low retention pages, traffic sources. | Up to 24 months (see 3rd-party policy) or per the analytics provider’s settings. | |
| Marketing & Targeting | Third-party cookies remembering visited pages to help deliver personalized ads (e.g., Facebook Pixel, Google Ads, LinkedIn, YouTube). | Showing ads based on your interests and past visits. | Up to 24 months or more (depending on ad provider settings). You may choose to accept or opt-out. |
5.1. Cookie Consent Management
On your first visit, a “Cookie Notice” banner appears with detailed descriptions of cookie categories. You are asked to select which categories you accept.
Strictly Necessary Cookies: No consent required. They are essential for the Website to function properly.
Functional, Analytics & Marketing Cookies: Explicit consent (opt-in) is required. If you refuse, the Website will operate with limitations (e.g., no traffic analytics, no personalized ads).
You can change or withdraw your consent at any time:
Click the “Cookie Settings” icon at the bottom-right of the Website.
Adjust your preferences by category (Functional, Analytics, Marketing).
Save your new settings.
5.2. Browser Cookie Settings
Alternatively, you can control and delete cookies via your browser settings:
Google Chrome: Settings → Privacy & security → Cookies and other site data → See all site data and permissions → Delete or block.
Mozilla Firefox: Options → Privacy & Security → Cookies and Site Data → Manage Data → Delete or Block.
Microsoft Edge: Settings → Privacy, search, and services → Cookies and site data → See all cookies and site data → Delete or Block.
Safari: Preferences → Privacy → Manage Website Data → Find and delete cookies.
Disabling all cookies may affect usability and provided functions of the Website (e.g., login, contact forms, analytics).
6. Data Subject (User) Rights
According to the General Data Protection Regulation (GDPR – Regulation (EU) 2016/679) and Greek Law 4624/2019, you have the following rights:
Right of Access (Article 15 GDPR)
You may request confirmation of whether we process your personal data and, if so, access to that data and related information (e.g., purpose, categories, third-party transfers, retention periods).Right to Rectification (Article 16 GDPR)
You may request correction of inaccurate data or completion of incomplete data.Right to Erasure (“Right to be Forgotten”, Article 17 GDPR)
You may request deletion of your data if:It is no longer needed for the original purpose.
You withdraw consent and there is no other legal basis.
You object to the processing and there is no overriding legitimate interest.
The data is processed unlawfully.
Note: This right does not apply where legal/tax obligations or legal claims require us to retain data
Right to Restriction of Processing (Article 18 GDPR)
You may request restriction if:You contest the accuracy.
Processing is unlawful and you prefer restriction over deletion.
We no longer need the data but you need it for legal claims.
You object and a final decision is pending.
Right to Object (Article 21 GDPR)
If processing is based on our legitimate interest (Article 6(1)(f) GDPR), you may object. We will cease processing unless we demonstrate compelling legitimate grounds or need it for legal claims.Right to Data Portability (Article 20 GDPR)
You may request to receive the personal data you have provided to us in a structured, commonly used and machine-readable format, as well as their further transfer to another controller, provided that the processing is based on explicit consent or on a contract.Right to Data Portability (Article 20 GDPR)
You may request to receive your data in a structured, commonly used, machine-readable format and transfer it to another controller, where processing is based on consent or contract.Right to Withdraw Consent (Article 7 GDPR)
You may withdraw consent at any time (e.g., newsletter subscription). This does not affect the lawfulness of processing prior to withdrawalRight to Lodge a Complaint with the Data Protection Authority (DPA):
If you believe your data is not processed in compliance with the GDPR, you may file a complaint with the Data Protection Authority (www.dpa.gr).
6.1. Exercising Your Rights
To exercise your rights, send a written request to dpo@promarineinnovation.com. Please include
Full name
Residential address or email
Clear description of the right you wish to exercise
Attached copy of ID or passport (to confirm your identity).
We will respond within 1 month from receiving your request. For complex or multiple requests, we may extend the response period by one additional month, informing you of the delay.
7. Data Retention Period
We retain personal data depending on its category, purpose of collection, and our legal obligations:
| Data Category | Processing Purpose | Retention Duration | Notes |
|---|---|---|---|
| Contact Information | Handling requests, newsletter sending | Until consent withdrawal or 3 years | If you consented to newsletters, data is kept until revoked. |
| Technical Navigation Data | Analytics, security, technical support | Up to 2 years from last visit | Maximum retention for statistical logs. |
| Professional Data | Preparing offers, service contracts, accounting/tax | As long as required by tax law (typically 10 yrs) | Includes accounts, invoices, contracts. |
| Cookies & Related Data | User preferences, functionality, analytics, marketing | According to the respective cookie category | You may revoke/delete at any time. |
After the standard retention period, data is either permanently deleted or anonymized in a way that prevents re-identification.
8. Security Policy
Promarine Innovation takes all necessary technical and organizational measures to ensure the integrity, confidentiality, and availability of personal data:
Encryption (SSL/TLS)
All data transferred between your browser and our servers is encrypted via SSL/TLS.Intrusion Detection Systems
We use IDS/IPS and firewalls to protect against malicious attacks, DDoS, hacking.Secure Data Storage
Personal data is stored in data centers with security certifications (ISO 27001, GDPR compliant). Regular backups, patching, antivirus/anti-malware are applied.Controlled Access
Only authorized personnel can access personal data based on the “need-to-know” principle.Staff Training
All employees and partners receive regular training on cybersecurity, data protection, and cyberattack response.Incident Management
In case of a data breach, there is an approved action plan: immediate management notification, incident assessment, notification of the Data Protection Authority (within 72 hours if required), and, if necessary, affected data subjects are informed.
9. Contact & Data Protection Officer (DPO)
For any question or to exercise your data protection rights:
Send an email to:
dpo@promarineinnovation.com
Alternatively, you can contact or submit a complaint directly to the Data Protection Authority (https://www.dpa.gr).
10. Changes to the Privacy Policy
Promarine Innovation reserves the right to unilaterally revise this Privacy Policy at any future time, due to legislative amendments, technical, or operational changes. Each update is posted on the Website with the indication “Effective from: [date of update]”.
Whenever a material change occurs, we will clearly notify you via an informational banner or email (provided you have subscribed to the mailing list). We recommend periodically reviewing the text of the policy to stay informed about how your data is protected.
Thank you for your trust in Promarine Innovation. The protection of your personal data is our highest priority.