Last Updated: April 6, 2026

1. Introduction

Welcome to Thireos Consulting Group. We are committed to protecting your privacy and ensuring that your personal data is handled in a safe and responsible manner. This Privacy Policy outlines how THIREOS CONSULTING GROUP E.E. (“we,” “us,” or “our”) collects, uses, and protects your information when you visit https://thireosconsultinggroup.com (the “Website”) and interact with our services.

We operate as the Data Controller under the EU General Data Protection Regulation (GDPR), the UK GDPR, and the Greek Law 4624/2019.

2. Contact Details

For any questions regarding this policy or to exercise your data protection rights, please contact us:

• Company Name: THIREOS CONSULTING GROUP E.E.

• Address: Moschato Attika, 132, Platonos Street, Greece

• Email: thireos@thireosconsultinggroup.com

• Website: https://thireosconsultinggroup.com

3. Data We Collect

We collect personal data through the following methods:

A. Information You Provide Voluntarily

• Contact & Identity Data: Name and email address provided via contact forms, consultation requests, or newsletter sign-ups.

• Business Data: Information regarding your company or project shared during professional inquiries.

B. Email Marketing Data (ConvertKit)

If you subscribe to our newsletter, we collect:

• Subscription Details: Email address and name.

• Engagement Metrics: Data on email opens, link clicks, and timestamps, which help us improve our content.

C. Automatically Collected Data (Cookies)

As detailed in our Cookie Policy, we use cookies and similar technologies to collect:

• Technical Data: IP address, browser type, and device information (Functional Cookies).

• Usage Data: Information on how you navigate and interact with our Website (Statistics Cookies).

4. Purpose and Legal Basis for Processing

We process your data only when we have a valid legal basis:

5. Third-Party Service Providers

We share certain data with trusted third parties to maintain our operations:

• Infrastructure: WordPress, Elementor, and Polylang.

• Security: Google reCAPTCHA.

• Compliance: Complianz (Consent Management).

• Email Marketing: ConvertKit (our email service provider).

International Data Transfers

Some of our providers (including ConvertKit, Google, and LinkedIn) are located in the United States. We ensure these transfers are protected by Standard Contractual Clauses (SCCs) or the EU-U.S. Data Privacy Framework, ensuring a level of protection equivalent to European standards.

6. Email Marketing & Your Rights

We use ConvertKit to manage our mailing list. By subscribing, you acknowledge that your information will be transferred to ConvertKit for processing.

• Opt-Out: You can unsubscribe at any time by clicking the “Unsubscribe” link in the footer of any email we send.

• Double Opt-In: We utilize a double opt-in process to verify your email and confirm your explicit consent.

7. Your Rights Under GDPR (EU & UK)

You have the following rights regarding your personal data:

• Right of Access: Request a copy of the data we hold about you.

• Right to Rectification: Request correction of inaccurate data.

• Right to Erasure: Request that we delete your personal data.

• Right to Withdraw Consent: Revoke your consent for cookies or marketing at any time.

• Right to Portability: Request the transfer of your data to another controller.

• Right to Object: Object to processing based on legitimate interests.

To exercise these rights, please contact us at thireos@thireosconsultinggroup.com.

8. Data Retention

We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including legal, accounting, or reporting requirements. Marketing data is retained until you unsubscribe or request deletion.

9. Supervisory Authority

If you believe your data has been handled incorrectly, you have the right to lodge a complaint:

• Greece: Hellenic Data Protection Authority (www.dpa.gr).

• United Kingdom: Information Commissioner’s Office (www.ico.org.uk).