top of page

Privacy Policy

AthenaGen AI I.K.E. (hereinafter “AthenaGen AI,” “we,” or the “company”) is committed to protecting your privacy and personal data. This policy clearly explains what data we collect, why, on what legal basis, for how long, and with whom we share it, in accordance with the General Data Protection Regulation (GDPR), Law 4624/2019, and the ePrivacy legislation (Law 3471/2006).

1) Who we are (Data Controller)
ATHENAGEN AI I.K.E.
 Registered office: Leoforos Kifisias 166A, 151 26 Athens, Greece
 Tax Identification Number (Α.Φ.Μ.): 802862390 · General Commercial Registry (Γ.Ε.ΜΗ.): 184162503000
 Contact email for personal data: info@athenagenai.com
If a Data Protection Officer (DPO) is appointed, their details will be posted here.

2) What data we process
Depending on your interaction with the company and our websites, we may process:
Identification & contact details (name, title/position, company, email, phone, postal address, country, language).


Communication content (messages, support requests, attachments).


Call recordings and call metadata (number, duration), only where we explicitly announce this at the start of the call.


Social profile details when you interact with us on social media platforms (profile name, image).


Website & device usage data via cookies/similar technologies (IP, device/OS/browser type, unique IDs, pages viewed/clicks, approximate city/country geolocation).


Marketing preferences (newsletter consent, cookie categories, opt-in/opt-out history).


Survey data (participation in satisfaction/market surveys).


We do not request or attempt to collect special categories of data unless explicitly required and with an appropriate legal basis.

3) How data is collected
Directly from you: contact forms/demo requests, email, phone, events, social media.


Automatically: via cookies/SDKs/pixels on the website (see §8 and the “Cookie Policy”).


From third-party providers/partners: where referrals, lead ads, or embedded widgets exist, always under an appropriate legal basis.


4) Change of purpose
We use data only for compatible purposes. For any material change we will provide clear notice and, where required, obtain new consent.

5) Who we share data with (processors/recipients)
We share data with providers/processors solely for the aforementioned purposes and under Article 28 GDPR processing agreements:

CRM/ERP: e.g., Zoho

Communications & collaboration: e.g., Google Workspace

Analytics & advertising: Google Analytics 4, Google Ads, Meta (Facebook/Instagram), LinkedIn

Automation/integrations: (e.g., Make/Zapier/n8n)

Support & telephony systems (incl. call recording)


Additional disclosures to public/regulatory authorities occur only where required by law or for establishing/exercising/defending legal claims. With your explicit consent, we may disclose data where requested.

6) International transfers outside the EU/EEA
Since we use providers such as Zoho, Google, Meta, etc., data may be transferred to countries outside the EU/EEA (e.g., USA, UK, India). In such cases, we apply Appropriate Safeguards under Article 46 GDPR, such as Standard Contractual Clauses (SCCs), and, where required, conduct Data Transfer Impact Assessments (DTIAs) and implement supplementary measures (e.g., encryption). A copy of the safeguards is available upon request.

7) Cookies & similar technologies
We use strictly necessary cookies for the website’s operation and—with your consent—analytics, functionality, and marketing/remarketing cookies (e.g., GA4, Google Ads, Meta Pixel, LinkedIn). You can give/withdraw consent per category at any time via the Cookie Preferences Center on the site.
Details (cookie names, providers, purpose, duration) are set out in our Cookie Policy, which forms an integral part of this policy and prevails with respect to cookies.

8) Information security
We implement technical and organizational measures: access controls (RBAC), data minimization, encryption in transit/at rest where supported, regular backups, periodic recovery tests, security logging/alerts, policies and staff training. We select providers with adequate assurances and certifications where available.

9) Your rights
Under Articles 12–22 GDPR you have the rights to: access, rectification, erasure, restriction, portability, objection (notably to direct marketing) and to withdraw consent at any time without retroactive effect.
To exercise your rights: info@athenagenai.com. We respond within 1 month (extendable by up to 2 months for complex requests). We may request reasonable information to verify your identity. Generally, no fee is charged unless a request is manifestly unfounded/excessive.
If you are not satisfied, you may lodge a complaint with the Hellenic Data Protection Authority (HDPA): Kifisias 1-3, 115 23 Athens, T: +30 210 6475600, contact@dpa.gr.

10) Automated decision-making & profiling
We do not make decisions producing legal effects solely by automated processing. We may carry out segmentation/profiling for analytics and targeted advertising/remarketing based on cookies/IDs and browsing behavior, only with your consent to marketing cookies and with the right to opt out at any time.

11) Minors
Our services are intended for adults. For minors over 15, Article 21 of Law 4624/2019 applies regarding consent. Parents/guardians must supervise use.

12) Retention periods
We retain data only as long as necessary for the purposes in §4 and to comply with legal/accounting obligations. When processing is no longer necessary, we anonymize or securely delete data. Specific retention periods are set out in the table in §4 and in the Cookie Policy.

13) Changes to this policy
This policy may be updated periodically. The current version is published with the “Last updated” date. For material changes, we will provide appropriate notice and, where required, seek renewed consent.

14) Contact
For questions, requests, or complaints regarding this policy:
ATHENAGEN AI I.K.E. — Data Protection Team
 Leof. Kifisias 166A, 151 26 Athens, Greece
 Email: info@athenagenai.com

bottom of page