The Engineer on Your Side of the Table

Privacy Policy

Last updated: [DATE]

KG Nordic Advisory respects your privacy and is committed to protecting personal data handled through this website and through direct client enquiries.

This Privacy Policy explains what personal data we collect, why we collect it, how long we keep it and what rights you have.

1. Who we are

This website is operated by:

KG Nordic Advisory ΜΟΝΟΠΡΟΣΩΠΗ Ι.Κ.Ε.
Legal entity / business name: KG Nordic Advisory ΜΟΝΟΠΡΟΣΩΠΗ Ι.Κ.Ε.
Business form: Single Member Private Company (Ιδιωτική Κεφαλαιουχική Εταιρεία)
VAT / Tax number: 803285149
GEMI No.: 193798529000
Country: Greece
Email: info@kgnordic.com
Website: https://www.kgnordic.com

For data protection purposes, KG Nordic Advisory is the data controller for personal data submitted through this website, by email or in connection with an enquiry or engagement.

2. What personal data we collect

We may collect and process the following types of personal data:

• Name

• Email address

• Phone number, if provided

• Company or organisation, if provided

• Property location and property-related information

• Acquisition, renovation or project details

• Documents, drawings, reports, photographs or other material you choose to send us

• Email correspondence and communication history

• Basic technical website data generated when visiting the website

We do not ask you to submit unnecessary sensitive personal data through the website.

3. How we collect personal data

We collect personal data when you:

• Submit a contact form

• Send us an email

• Request a review, inspection, quote or advisory discussion

• Provide documents or information for a potential or active engagement

• Communicate with us during or after an engagement

• Visit the website

4. Why we process personal data

We process personal data for the following purposes:

• To review and respond to enquiries

• To assess whether KG Nordic Advisory can assist with a property, project or advisory need

• To prepare proposals, scopes, quotes and engagement terms

• To deliver advisory services

• To communicate with clients, prospective clients, partners and professional advisers

• To manage project documentation and delivery

• To comply with legal, accounting and tax obligations

• To protect our legal rights and professional position

• To maintain internal business records

• To understand basic website performance and improve the website

5. Legal basis for processing

We process personal data on the following legal bases:

• Contract or pre-contractual steps: when you ask us to assess an enquiry, prepare a proposal or provide services.

• Legitimate interests: to operate and develop our advisory business, respond to enquiries, maintain business records, manage professional relationships and protect our legal position.

• Legal obligation: where we must retain records for accounting, tax, regulatory or legal reasons.

• Consent: where consent is specifically requested, for example for optional analytics or marketing tools if introduced in the future.

6. Contact forms and enquiries

When you submit a contact form, we use the information you provide to assess your enquiry and respond to you.

Do not submit highly sensitive personal information, passport copies, tax numbers, bank details or unrelated private documents through the contact form unless specifically requested through a secure channel.

7. Website analytics

This website currently uses Framer Analytics to understand basic website performance, such as page visits, traffic sources and general usage patterns.

We do not currently use Google Analytics or third-party advertising tracking.

If additional analytics or marketing tools are introduced in the future, this Privacy Policy will be updated and, where required, cookie consent will be requested before such tools are activated.

8. How long we keep personal data

We keep personal data only for as long as necessary for the purpose for which it was collected, or where required to comply with legal, accounting, tax, contractual or professional obligations.

Our general retention approach is:

• General enquiries that do not become engagements: up to 36 months after the last meaningful contact.

• Business correspondence: up to 36 months after the last meaningful contact, unless it relates to an active or past engagement.

• Client and project files: for the duration of the engagement and up to 10 years after completion where necessary for contract administration, professional records, legal claims, dispute handling, insurance, tax, accounting or legitimate business protection.

• Accounting and tax records: retained for the period required by applicable Greek law and accounting obligations.

• Website analytics data: retained according to the settings and retention structure of the analytics provider.

We may retain limited records for longer where necessary to establish, exercise or defend legal claims, comply with legal obligations or maintain essential business records.

9. Who we share personal data with

We do not sell personal data.

We may share personal data only where necessary with:

• Local engineers, architects, energy inspectors, lawyers or other professional advisers involved in an enquiry or engagement

• Accountants, tax advisers and administrative service providers

• Website, email, hosting and business software providers

• Legal, insurance or regulatory advisers if needed

• Public authorities where required by law

Where appropriate, we limit the information shared to what is necessary for the relevant purpose.

10. International transfers

Some service providers may process data outside Greece or outside the European Economic Area.

Where personal data is transferred outside the EEA, we rely on appropriate safeguards where required, such as standard contractual clauses, adequacy decisions or other legally recognised mechanisms.

11. Security

We take reasonable organisational and technical measures to protect personal data against unauthorised access, loss, misuse or disclosure.

These measures may include controlled access to files, secure email and cloud tools, restricted document sharing and internal data minimisation practices.

No online transmission or storage system is completely secure, and clients should avoid sending unnecessary sensitive information unless requested through an appropriate channel.

12. Your rights

Subject to applicable law, you may have the right to:

• Request access to your personal data

• Request correction of inaccurate personal data

• Request deletion of personal data

• Request restriction of processing

• Object to processing based on legitimate interests

• Request data portability where applicable

• Withdraw consent where processing is based on consent

• Lodge a complaint with a data protection authority

To exercise your rights, contact:

info@kgnordic.com

We may need to verify your identity before responding to certain requests.

13. Complaints

If you believe your personal data has been processed unlawfully, you may contact us first at:

info@kgnordic.com

You also have the right to lodge a complaint with the competent data protection authority. In Greece, the supervisory authority is the Hellenic Data Protection Authority.

14. Changes to this Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our business, website, tools, legal obligations or processing activities.

The latest version will always be available on this page.