Privacy
Policy

When we refer to “we”, “us”, or “our” in this Policy, we refer to the company under the name “PETIT-O P.C.” and the trade name “Petit-o”, the company that provides the Application and the Services.

For the purposes of applicable data protection law, our company, headquartered in Mykonos, Agios Stefanos, Cyclades, Postal Code 84600, Greece, is the Data Controller and is responsible for your personal data. This means that we determine the purposes and means of processing your personal data.

For general questions about this Privacy Policy, you may email us at info@petit-o.gr or contact us through the contact form on our website at https://www.petit-o.gr.

A) When you visit and navigate the Application

When you visit and navigate our Application, we automatically collect certain data so that the Application can operate properly and so that we can provide a secure and optimized user experience. This data may include:

• Technical device information, such as device type, IP address, and system language.
• Device identifiers or similar technologies used to ensure basic Application functions, such as sending notifications, maintaining your login session, and analyzing usage to improve our services.
• Usage data, such as menu navigation, feature usage, time spent on screens, and performance data.
• Data related to searches for pet sitters or services, as well as filters you use, such as service type, location, dates, and similar search criteria.

This data is collected automatically and used exclusively for the technical operation of the Application, easier navigation, and improvement of our services.

B) When you sign in to the Application

When you sign in to the Application, your authentication, account creation, and account access are carried out through third-party services, specifically Google and Apple authentication.

During this process, we never receive your Google or Apple account password. We only receive the necessary information allowed by the relevant authentication provider, such as:

• Your name, where permitted.
• Your email address or relay email in the case of Apple.
• The unique user identifier associated with your account in that service.
• The login token confirming that authentication was successfully completed.

In addition, our Application allows account creation through an invitation from an existing user. In this case, you receive a link that redirects you to a webpage where you can register or sign in to the Application through third-party providers, such as Sign in with Apple or Sign in with Google.

If you choose to sign in through these services, we receive from the relevant provider the necessary identification information described above. This data is used exclusively to create and manage your account and to provide any benefits or discounts connected with the invitation.

C) When you register and use our services

When you register and actively use the Application, we collect information that you provide directly, as required by our services.

When you register as a Pet Owner, we collect:

• Identification details, such as your profile photo, full name, date of birth, and gender.
• Location details, including your address and home details.
• Contact details, such as your phone number, which may be used for identity confirmation through OTP or SMS verification.
• Basic information about your pet, such as species and information related to the requested service.

When you register as a Pet Sitter, we collect:

• Identification details, such as your profile photo, full name, date of birth, and gender.
• Professional information related to pet sitting and pet care services.
• Data relating to your professional profile, such as description, experience, and services offered.
• Verification data, such as photos of identity documents, passport, and selfie image.
• Billing profile information depending on the billing profile type you select.

Verification data is initially stored only locally on your device until the final step of your registration process, where it is transferred encrypted to Azure cloud storage. This data is collected and stored only for completing your profile, identity verification, and managing pet sitting services.

If you select an Individual billing profile, we collect your first name, last name, billing email address, and tax identification number. If you select a Professional billing profile, we collect your first name, last name, billing email address, business name, VAT/TIN, country code, city, address, and postal code.

Billing information is collected and processed exclusively for invoicing, tax and accounting compliance, payment settlement, and fulfillment of obligations arising from applicable law.

D) When you use Application features

If you are a Pet Owner, when you use Application features, we collect data such as:

• Service information that you enter when booking a pet sitter, such as service type, dates, times, and location.
• Pet details, such as name, photo, selected pets for the service, and unavailable dates.
• Payment information and transaction details when completing a booking.
• Booking history and service requests.
• Ratings and reviews that you leave after service completion, including sitter and pet names, service type, booking duration, rating from 1 to 5 stars, selected feedback tags, and written review text, whether manually written or generated through an AI suggestion.
• Interaction data with pet sitters, including notifications, referral URLs and statuses, and conversations or messages through the Application.

If you are a Pet Sitter, when you use Application features, we collect data such as:

• Requests from Pet Owners that you receive and manage.
• Acceptance or rejection choices for requests and related details.
• Service completion details.
• Payment and payout information relating to transfers to your account.
• Ratings and reviews received from Pet Owners.

E) Communication and support data

When you communicate through Messaging or Support, we collect data necessary for safe communication and support.

• The Conversations feature allows communication between Pet Owners and Pet Sitters inside the Application.
• When using this feature, we collect personal data such as user names, profile photos, text messages, images, videos, audio recordings, and metadata such as timestamp, service type, and read status.
• This data is used exclusively for secure, booking-bound conversations and is not shared with third parties for commercial purposes.
• Through Support, we collect information you provide in your support request and any attachments you choose to add.

F) Profile settings and notifications

We collect data when you update your profile, such as photo, personal or professional information, notification preferences, language, account settings, and other choices related to Application use.

G) Data used for advertising measurement

We may use limited data to measure the effectiveness of our advertising activities and to attribute registrations or bookings to Petit-o marketing campaigns.

For this purpose, we may disclose identifiers and event-related information to advertising and measurement partners, such as Meta, in connection with certain actions completed in the Application or through our services.

• hashed or encrypted user identifier (external ID),
• hashed or encrypted email address, where available,
• hashed or encrypted phone number, where available,
• event type, such as completed registration, completed pet sitter onboarding, or completed booking,
• event date and time, as well as basic booking or transaction details such as value, currency, and order or booking identifier, where applicable.

This data is used solely for attribution, campaign effectiveness measurement, analytics, and optimization of our advertising activities and is not used by us to make automated decisions that produce legal or similarly significant effects concerning you.

Log files

When you use our Application, certain information is automatically collected through the server or backend and recorded in log files.

The information collected includes:

• Device type and operating system.
• IP address and, where applicable, general user location.
• Actions in the app, such as screen openings, feature usage, and API requests.
• Errors or crash logs.

This data is collected to ensure the security of the Application and its services, investigate technical issues or malicious attacks, and support any legal claims or requirements.

Log files are retained for 12 months and may be shared with third parties for technical support of the Application or with competent authorities if necessary for investigating incidents or cyberattacks. Data under investigation or used in connection with legal claims is retained for the period required for those purposes.

The legal basis for this processing is Article 6(1)(f) GDPR, our legitimate interest in ensuring the security and operation of the Application.

Similar technologies

When using the Application, data may be automatically collected through technologies such as local storage, shared preferences, device identifiers for notification functions, and push notification tokens for sending notifications.

Strictly necessary storage technologies and related data are critical for the proper operation of the Application. They are used exclusively to provide basic functions, such as storing your preferences and settings, maintaining login status, and supporting technically necessary functions, such as basic notifications.

These technologies are not used to identify you as an individual, nor for analytics or advertising purposes. Without them, the Application cannot function properly or provide basic services.

The stored data is considered strictly necessary because it:

• Allows your choices regarding acceptance or rejection of non-essential data to be retained.
• Allows the display of the information message or consent mechanism.
• Keeps you signed in to protected Application functions.
• Supports basic technical elements of Application operation.

This data is stored only for as long as required for the operation of the Application or until the end of the relevant session.

The Application and our services are not intended for use by minors under the age of 15. Petit-o does not knowingly collect personal data from minors under the age of 15 without the consent of a parent or guardian.

In any case, Petit-o deletes any personal data of minors under the age of 13. If you are a parent or guardian of a child under 13 and are concerned that your child may have provided personal data to us, please contact us at info@petit-o.gr.

We use your data in order to:

• Ensure the operation and improvement of the Application, including technical functionality, user experience optimization, easier navigation, and usage and performance analysis for continuous service improvement.
• Ensure your account authentication and security, including identity verification during sign-in through third-party services such as Google and Apple.
• Manage Pet Owner and Pet Sitter services, including user profiles, requests, bookings, service history, payments, and reviews.
• Provide communication and support, including secure conversations between Pet Owners and Pet Sitters and responses to support requests.
• Ensure safety and protection by preventing, detecting, and addressing fraud or illegal activities and protecting our rights, property, and those of third parties.
• Conduct statistical analysis and business improvement, including market research, service improvement, marketing strategy, and business decisions.
• Respond to your requests for information about the services we provide.
• Manage, process, and handle your payments.
• Handle complaints, requests, disputes, or claims.
• Satisfy your rights regarding your personal data.
• Ensure transaction security.
• Detect, prevent, and address fraud or other illegal activities.
• Protect rights and property belonging to us or third parties.
• Measure the effectiveness of our advertising activities, attribute registrations, onboarding completions, or bookings to marketing campaigns, and optimize the promotion of our services.

We may also use your data in other ways. In such cases, we will provide specific notices when collecting the data and will obtain your consent before processing where required.

For these purposes, we will collect and process only data that is compatible with the purpose of processing.

The personal data we collect may be disclosed to third parties. In particular, your data may be disclosed to third-party services for authentication and account login, such as Google Sign-In, Sign in with Apple, or other authentication providers, in order to ensure secure access to the Application.

Your transactions are processed through Stripe, which acts as a payment and financial services provider for processing payments and issuing invoices.

We also use cloud services for the secure storage of encrypted personal data and profile data, as well as services for Application support and management.

We may disclose limited event data and identifiers to advertising and measurement platforms, such as Meta Platforms Ireland Limited and its affiliated companies, in order to measure the effectiveness of our advertising activities, perform event matching, and optimize our campaigns.

The data disclosed for this purpose may include hashed user identifier, hashed email address, hashed phone number, event details, and basic booking or transaction data, only to the extent necessary for that purpose.

Some of these recipients may process data outside the European Economic Area. In such cases, we implement appropriate safeguards and measures required by applicable data protection law for the lawful transfer of your data.

Your data may also be disclosed to competent authorities or lawyers in cases of legal obligation, for the protection of rights, prevention or investigation of violations, and enforcement of the law, as well as to other partners for specific purposes only where you have been informed and have provided the relevant consent.

We do not disclose your personal data to third parties outside the European Union in countries that do not provide an adequate data protection regime. However, if such a transfer is required, we will take all possible measures to ensure that your data is treated securely, for example through the use of Standard Contractual Clauses adopted by the European Commission.

Petit-o relies on four legal bases when processing your personal data:

• Performance of a contract: when processing your personal data is necessary to fulfill our obligations arising from the contract.
• Legal obligation: when we are required to process your personal data to comply with a legal obligation, such as keeping records for tax purposes or providing information to a public body or law enforcement authority.
• Legitimate interest: when we process data about you because we have a legitimate interest in carrying out lawful activity, provided that this does not override your interests, rights, and freedoms.
• Consent: where we specifically ask for your consent to process certain personal data. Processing will take place only if you agree.

You may withdraw your consent at any time, without retroactive effect, by contacting Petit-o at info@petit-o.gr.

Your rights under Regulation (EU) 2016/679, the General Data Protection Regulation, are the following:

• Right of access to the personal data we process about you.
• Right to rectification of incomplete or inaccurate data held by Petit-o.
• Right to erasure of your personal data.
• Right to restriction of processing of your data.
• Right to data portability to you or to a third party, under the legal conditions, in a structured, commonly used, machine-readable format.
• Right to object to the processing of your personal data at any time. Petit-o may refuse to satisfy this right where it demonstrates compelling legitimate grounds for processing that override your interests, rights, and freedoms, or for the establishment, exercise, or defense of legal claims.
• Right to lodge a complaint with the Hellenic Data Protection Authority if you believe that your request was not adequately and lawfully satisfied or that your right to personal data protection is affected by processing carried out by us.

For any additional information and to exercise the above rights, please contact us at info@petit-o.gr.

As a rule, your request will be satisfied within one month from receipt. Information, communications, and actions taken under Articles 15 to 22 and 34 GDPR are provided free of charge.

We retain your personal data only for the period required for the purposes of processing, namely for as long as our contract lasts, for as long as your consent applies, for as long as our legal obligations require, such as retention for tax purposes, and for as long as our legitimate interest applies in each case.

Personal data processing is carried out in a way that ensures confidentiality. Our company applies appropriate technical and organizational measures to ensure an appropriate level of security for your data against risks such as accidental or unlawful destruction, accidental loss, alteration, unauthorized disclosure or access, and any other form of unlawful processing.

The data you provide is protected with appropriate information security techniques to ensure both secure transfer and secure storage in information systems.

We require all third parties that may receive your personal data to maintain appropriate technical and operational security measures to protect your personal data in accordance with Greek and EU data protection law.

This Policy was last updated on May 8, 2026.

This Policy may change from time to time. If we decide to change our Policy, we will inform you through notifications.

If we decide to materially change the processing of your personal data, you will receive prior notice or, where required, your consent will be requested before the new policy is applied.

For any question or comment regarding this Policy and the practices we follow, please contact us at info@petit-o.gr.