Last updated: 29 January, 2026 12:42
Privacy Policy (GDPR – Greece)
Last updated: 29/1/2026
At Prelab (“we”, “us”, “our”), we respect your privacy and are committed to protecting your personal data in accordance with Regulation (EU) 2016/679 (GDPR), Greek Law 4624/2019, and relevant guidance of the Hellenic Data Protection Authority (Αρχή Προστασίας Δεδομένων Προσωπικού Χαρακτήρα – ΑΠΔΠΧ).
1. Data Controller
Data Controller:
Prelab
Address: Tzortz 11 10682 Athens Greece
Email: info@prelab.gr
Phone: 2111117214
2. Personal Data We Collect
a) Data You Provide
Full name
Email address
Phone number
Billing and payment information
Company name (if applicable)
Identification details (where required for access or security)
b) Automatically Collected Data
Website usage data (IP address, browser type, pages visited)
Access control logs (entry/exit where applicable)
c) CCTV Data (Security Purposes)
Video recordings from CCTV cameras located in common and access-controlled areas only
No cameras are installed in private offices, meeting rooms, restrooms, or areas where privacy is reasonably expected.
3. Purposes of Processing
We process personal data for the following purposes:
Membership management and bookings
Access control and security
Payment processing and invoicing
Communication related to services or legal obligations
Improvement of our services
Protection of people, property, and facilities
4. Legal Basis for Processing (Article 6 GDPR)
Processing is based on:
Performance of a contract (Article 6(1)(b))
Legal obligation (Article 6(1)(c))
Legitimate interest (Article 6(1)(f)) – especially for security and CCTV
Consent (Article 6(1)(a)), where required
5. CCTV-Specific Information (Security Notice)
CCTV surveillance is used exclusively for security and protection of persons and property, in accordance with:
GDPR
Greek Law 4624/2019
Decisions and guidelines of the ΑΠΔΠΧ
Key Points:
CCTV operation is clearly signposted on the premises
Footage is not used for performance evaluation or monitoring of behavior
Access to recordings is strictly limited to authorized personnel
Recordings are retained for up to [e.g. 15 days], unless required longer due to an incident or legal investigation
Footage may be disclosed to law enforcement authorities only when legally required
6. Data Sharing
We do not sell personal data.
Data may be shared only with:
Payment service providers
Accounting and tax advisors
IT and hosting providers
Public authorities, when legally required
All third parties are contractually bound to comply with GDPR.
7. Data Retention
Personal data is retained only for as long as necessary:
Membership and billing data: as required by Greek tax and accounting laws
Communication data: for operational purposes
CCTV footage: limited retention, unless an incident occurs
8. Data Security
We implement appropriate technical and organizational measures, including:
Access controls and role-based permissions
Secure storage systems
Encrypted payment processing
Regular system updates and reviews
9. Your Rights Under GDPR
You have the right to:
Access your personal data
Rectify inaccurate data
Request erasure (“right to be forgotten”)
Restrict or object to processing
Data portability
Withdraw consent at any time
Lodge a complaint with the Hellenic Data Protection Authority (www.dpa.gr
)
Requests can be submitted to: info@prelab.gr
10. Cookies
Our website uses cookies to ensure proper functionality and collect anonymized analytics data. You may manage cookies through your browser or cookie banner settings.
11. Changes to This Policy
We may update this Privacy Policy from time to time. Updates will be published on our website with the revised date.
12. Contact
For any questions regarding this Privacy Policy or your personal data refer to Prelab contact details
