Slide toggle


When designing our website, we sought expert advice on how to implement “PRIVACY BY DESIGN”, as it was our primary objective in presenting a website built to safeguard YOUR individual rights as outlined by the GDPR Principles.

The following 12 steps were defined and acted upon:

  1. We implemented data protection issues as part of the design and implementation of systems, services, products and business practices.
  2. We made data protection an essential component of the core functionality of our processing systems and services.
  3. We anticipate risks and privacy-invasive events before they occur, and take steps to prevent harm to individuals.
  4. We only process the personal data that we need for our purposes(s), and that we only use the data for those purposes.
  5. We ensure that personal data is automatically protected in any IT system, service, product, and/or business practice, so that individuals should not have to take any specific action to protect their privacy.
  6. We provide the identity and contact information of those responsible for data protection both within our organisation and to individuals.
  7. We adopt a ‘plain language’ policy for any public documents so that individuals easily understand what we are doing with their personal data.
  8. We provide individuals with tools so they can determine how we are using their personal data, and whether our policies are being properly enforced.
  9. We offer strong privacy defaults, user-friendly options and controls, and respect user preferences.
  10. We only use data processors that provide sufficient guarantees of their technical and organisational measures for data protection by design.
  11. When we use other systems, services or products in our processing activities, we make sure that we only use those whose designers and manufacturers take data protection issues into account.
  12. We use privacy-enhancing technologies (PETs) to assist us in complying with our data protection by design obligations.


Further steps undertaken:

  1. We are registered with the international GDPR REGISTRAR.
  3. We provide the same level of respect and privacy to all individuals worldwide.
  4. We have appointed a VDPO (Virtual Data Protection Officer) via the GDPR REGISTRAR that keeps us informed and advises us on GDPR policies and procedures.
  5. We are always open to listen to YOU the individual on ANY privacy concerns you may have

Rest assured, we are not perfect and have no doubt that we may have not taken certain aspects into account, not because we have ignored them but because they have slipped our radar. Tell us, this is the only way we can improve our service and obligation to YOU.

Here at Ionian Art, Trust is Everything!

policy last updated 19th October 2018

Welcome to Ionian Art

GDPR Copyright Laws in Effect