PRIVACY POLICY

1. Data Controller

The Data Controller responsible for the processing of personal data collected through the website www.dontaki.gr is:

Maria Moutafidou
Dental Surgeon
Clinics:
• 20–22 Vyronos & Demokratias Avenue, Keratsini
• 56 Chelmou & Hydras, Agios Stefanos

Contact email for data protection matters:
📩 maria@dontaki.gr

2. What Data We Collect

Through the contact form, we collect:

  • First Name

  • Last Name

  • Phone Number

  • Email (if provided)

  • Clinic Selection

  • Type of Appointment

  • Preferred Date

  • User Message

No medical health data is collected through the contact form.
If a user voluntarily includes health-related information in the message field, such information is used solely for evaluating the request and managing the appointment.

3. Purpose of Processing

The data is used exclusively for:

  • Communication with the individual

  • Appointment scheduling

  • Handling requests

The data is not used for marketing purposes and is not shared with third parties.

4. Data Retention

Personal data is retained only for as long as necessary to fulfill the request or in accordance with the clinic’s legal obligations.

5. Your Rights

You have the right to:

  • Access your personal data

  • Request correction

  • Request deletion

  • Restrict processing

  • Object to processing

To exercise your rights, please contact:
📩 maria@dontaki.gr

6. Data Security

The website implements appropriate technical and organizational measures to safeguard your personal data.

7. Cookies

The website may use essential technical cookies necessary for its proper operation.

8. Imaging Examinations (CBCT & Panoramic X-ray)

At the Agios Stefanos clinic, imaging examinations such as panoramic X-rays and Cone Beam Computed Tomography (CBCT) scans are performed.

Imaging data collected as part of medical services constitutes health data and is subject to enhanced protection under the General Data Protection Regulation (EU 2016/679).

Such data:

  • Is used exclusively for diagnostic and therapeutic purposes

  • Is maintained under strict confidentiality

  • Is not disclosed to third parties without legal basis or patient consent

  • Is retained in accordance with applicable medical and tax obligations

9. Data Processors

For the operation of the website and its services, trusted third-party providers may act as data processors, such as:

  • Web hosting providers

  • Email service providers

  • Technical support providers

These partners are contractually bound to protect personal data and comply with the General Data Protection Regulation (GDPR).

Where required by law (e.g., tax obligations), data may be shared with authorized professionals (e.g., accountant).

10. File Transfers

If medical files or imaging examinations are sent via file transfer services (e.g., SwissTransfer, WeTransfer, etc.), processing is carried out solely for evaluating the request and providing medical services.

Users are advised to send only the strictly necessary data.

Privacy Policy