Data Policy

Personal Data Protection Policy


The scope of this policy is to provide information about how GEFYRA SA and GEFYRA LITOURGIA SA jointly and as joint data controllers handle, or are intending to handle, personal information, as defined herein and in the legislation in force (GDPR 2016/679, Law 4624/2019).

If you are aged 15 or under, please get your parent/guardian’s permission before you provide any personal information to us or enter into any agreement with us.]


The concession company GEFYRA S.A. (hereafter “GEFYRA”) established in 1995 is responsible for the design, construction, financing, maintenance and operation of the Rion-Antirion Bridge “Charilaos Trikoupis” during the Concession Period, in accordance with the Concession Agreement which was ratified by the law 2395/1996. GEFYRA has subcontracted the operation of the Bridge to GEFYRA LITOURGIA SA (hereafter “GEFYRA LITOURGIA”) which operates the Bridge and is responsible for the toll & traffic management, as well as the routine maintenance of the Bridge. Moreover GEFYRA LITOURGIA collects, for the account of GEFYRA, tolls through monetary transactions with drivers, owners or operators of vehicles.

GEFYRA and GEFYRA LITOURGIA are committed to jointly and in their capacity as joint data controllers protect and respect your privacy in accordance with the principles of the General Data Protection Regulation 2016/679 (GDPR) and the relevant Greek data protection laws (L. 4624/2019).

Please read the following carefully to understand our views and practices regarding your personal data and how we will process it.

Collection of personal data

GEFYRA and GEFYRA LITOURGIA collect or otherwise obtain and process the following information and subscription data about you such as:

Uses made of your information and the basis of processing

GEFYRA will use your personal information for lawful purposes (according to Articles 5 and 6 of the GDPR) i.e. to:

Our company will not use any of the personal information we collect from you to make automated business decisions that affect you as data subjects.

Legal basis of personal data processing

The legal basis on which we collect and process the personal data described above depends on the personal information concerned and the specific context in which we collect it. However, we will only use your personal information where we:

If we ask you to provide personal information to comply with a legal requirement or to conclude a contract with you, we will make this clear at the relevant time, and advise you whether the provision of your personal information is mandatory or not (as well as the possible consequences if you do not provide your personal information).

Information security

GEFYRA will take all steps reasonably necessary including policies, procedures and security features to ensure that your data is treated securely and protected from unauthorized and unlawful access and/or use, and in accordance with this Policy. Unfortunately, the transmission of information via the internet is not completely secure and, although we will do our best to protect your personal data transmitted to us via the internet, we cannot guarantee the security of your data transmitted to our website from your device(s). Consequently, it is to be noted that such transmission(s) is at your own risk. 

Where we have given you (or where you have chosen) a password which enables you to access certain parts of the website, you are responsible for keeping this password confidential. We ask you not to share such a password with anyone. You are exclusively liable for any loss or misuse of such password.

Where any payments are being collected on our behalf, we require our payment providers to be compliant with the Payment Card Industry’s Data Security standards (PCI-DSS).

Recipients of personal data

We will share information about you with our suppliers who process data on our behalf to help us to provide services to you.  We undertake this data sharing on the basis of our legitimate interests in accordance with the terms of the GDPR Regulation and Law 4624/2019.

Categories of organizations and purpose

International transfer of personal data

GEFYRA does not envisage transferring any information about or relating to individuals to anyone who is located outside of the European Economic Area (EU27 and Lichtenstein, Norway and Iceland).

However, on some occasions, the information we collect may be transferred to organizations which may store and use such data at premises in other countries. Where we allow an organization to process your personal information outside of the European Economic Area, we will ensure that we create and maintain appropriate safeguards with those organizations so that your personal information is subject to the same standards and protections as when we are processing your personal information inside the European Economic Area.

If you choose to sign-up with social networks (e.g. Facebook/Twitter)  when you post personal data on our website, our company may access your personal data in your social media account, depending on your settings, and we may post information submitted on our websites to social network storing such information in the United States. These are certified under the EU:US Privacy Shield Agreement.

Data retention period

We will hold information about you in our data processing systems only, in electronic and printed files, for as long as we need it by the law and for the purpose for which we collected it. In particular we will retain and process information about:

Your rights as the data subject

The European General Data Protection Regulation (GDPR 2016/679) and Greek applicable law (L. 4624/2019) grant you, as a Data Subject, certain rights, which are summarized below:

Changes to our Privacy Policy

Any changes we may make to our Privacy Notice in the future will be posted on this page and, where appropriate, notified to you.

How to contact us

If you wish to contact us about your personal data or exercise any of the rights described above please contact:

2 Rizariou str., 15233 Chlandri, Greece
Attn.: Data Protection Officer
Tel. +30 210 6858196


Administration Building, Antirio, Greece
Attn.: Data Protection Officer
Tel. +30 26340 39010 & -011


Last update: March 15, 2020


Bridge News

Visit us

There’s a walk between sky and sea. There’s a visitors’ hall. And there’s “I’ve been at the Bridge” lasting forever…

see more

Photo / Video