PRIVACY POLICY & COOKIE POLICY — ANNAKARAOGLOU.COM

This Privacy & Cookie Policy explains how personal data is collected and processed on annakaraoglou.com, in full compliance with the GDPR (EU Regulation 2016/679), the Belgian data protection law, and the applicable policies of our hosting provider EX2 in Canada. By browsing this website, you agree to the terms described below.

1. Data Controller

Anna Karaoglou
Brussels, Belgium
Email: info@annakaraoglou.com

Webmaster: CDF-Studio.com
Hosting provider: EX2 – Canada
(Servers managed according to Canadian and international security standards)

Although the hosting provider is located in Canada, all data transfers are protected by appropriate safeguards and meet GDPR adequacy requirements through compliant security protocols.

2. Personal Data Collected

The website collects only minimal and strictly necessary data.

Data provided voluntarily

When you contact the artist via the contact form or by email:

  • Name
  • Email address
  • Any message or information you choose to provide

Data collected automatically

During navigation, certain technical data may be collected:

  • IP address (anonymised whenever possible)
  • Browser and device type
  • Date, time and pages visited
  • Cookies essential for site functionality
  • Anonymous analytics (if activated with consent)
  • Security logs generated by the firewall or anti-spam protections

No sensitive data (health, political beliefs, financial information, etc.) is ever collected.

3. Purpose of Data Processing

Data is processed exclusively to:

  • Respond to messages sent via the contact form
  • Ensure security and protection against malicious attacks
  • Maintain website performance and stability
  • Generate anonymised statistics to improve the user experience
  • Comply with technical, legal and security obligations

No personal data is used for profiling, advertising, or commercial resale.

4. Legal Basis

Data processing is based on:

  • Consent, for the contact form and optional cookies
  • Legitimate interest, for site security, spam protection and anonymised analytics
  • Legal obligation, when minimal archiving is required

5. Data Retention

Data is retained for the shortest period necessary:

  • Contact requests: up to 12 months
  • Cookies: duration depends on each cookie type (see cookie section)
  • Security logs: short-term storage required for protection
  • Anonymous analytics: long-term retention allowed as they contain no personal data

Data is deleted or anonymised once it is no longer needed.

6. Data Sharing

Personal data is never sold or shared for marketing purposes. Limited access may be granted to:

  • EX2, the Canadian hosting provider, for technical maintenance
  • CDF-Studio.com, the webmaster, for updates and security
  • Security plugins, such as anti-spam or firewall tools
  • Analytics tools, only if you consent to them

All partners adhere to GDPR-level security and confidentiality standards.

7. Transfers Outside the EU

Since the site is hosted by EX2 in Canada, some data may technically transit outside the EU. EX2 applies strict security measures, encrypted connections, and high-level compliance frameworks that align with GDPR requirements. No data is shared outside EX2 unless required for technical functioning or security.

8. Security Measures

The site uses industry-standard security practices:

  • HTTPS encryption
  • Firewall and intrusion protection
  • Anti-spam filters
  • Access limitation
  • Secure hosting infrastructure managed by EX2

Despite best efforts, no system can be guaranteed 100 % secure, but all reasonable measures are in place.

9. Your Rights (GDPR)

You can exercise the following rights at any time:

  • Right of access
  • Right to rectification
  • Right to erasure (“right to be forgotten”)
  • Right to withdraw consent
  • Right to restrict processing
  • Right to object
  • Right to data portability

To exercise these rights, simply email: info@annakaraoglou.com

You also have the right to file a complaint with the Belgian Data Protection Authority (APD).

COOKIE POLICY

1. What Are Cookies?

Cookies are small files stored in your browser to ensure the website works properly, improve your experience, and allow basic analytics when permitted.

2. Cookies Used on This Site

Essential cookies (always active)

These ensure the site functions correctly:

  • Security cookies (firewall, anti-spam, bot protection)
  • Technical cookies (session, navigation, language)
    These do not require consent.

Analytics cookies (optional)

Used to analyse anonymous traffic statistics.
Activated only if you accept them through the cookie banner.

Third-party cookies

The site does not use advertising, tracking, or social media profiling cookies.

3. Cookie Consent

When you visit the site for the first time, a banner allows you to:

  • Accept all cookies
  • Refuse non-essential cookies
  • Manage individual preferences

Refusing optional cookies does not affect navigation.

4. How to Manage or Delete Cookies

You can manage or delete cookies at any time via:

  • Your browser settings (Chrome, Safari, Firefox, Edge)
  • The cookie banner (reopening it if available on the site)

Updates to This Policy

This policy may be updated to reflect changes in the law, hosting provider practices, or website functionality. The latest version will always be available on this page.