This privacy policy applies to exchangelogin.gr.com, an independent reference site about Exchange Bank. This policy is the site's own policy and is not the official Exchange Bank privacy notice. It describes the minimal data the site collects, what cookies it sets, the third-party services it uses, and the rights visitors have.
This privacy policy covers the web pages hosted at exchangelogin.gr.com. The site is an independent, educational reference about Exchange Bank that does not host sign-in forms, does not process payments, and does not collect personal financial information. When a reader follows a link to Exchange Bank's own domain or to any other third-party website, that destination is governed by its own privacy policy rather than this one. This reference site is not affiliated with Exchange Bank, does not act on Exchange Bank's behalf, and does not receive or transmit any data on its behalf.
The site collects the minimum data needed to serve content. That set includes web server access logs — IP address, timestamp, user agent string, requested URL, and referrer — and the cookies listed below. No sign-up, account, or payment data is requested or stored because no such forms exist on the site. Logs are retained for a short operational window and then rotated out. The site does not profile individual visitors, does not run behavioral advertising, and does not sell data to third parties.
The site sets only functional cookies required for baseline operation and caching. There is no analytics cookie, no advertising pixel, and no cross-site tracking tag. Visitors can clear cookies in their browser at any time without affecting the content they see. Because the site is read-only content, a visitor who blocks cookies entirely will still reach every page of the reference.
This policy covers exchangelogin.gr.com only. The official Exchange Bank privacy notice is a separate document maintained by the bank on its own domain. Customers who want to understand how Exchange Bank itself handles personal financial information should read that bank-issued notice directly.
One third-party service is in use: Google Fonts, which delivers the Work Sans typeface referenced on every page. The visitor's browser loads the font file directly from Google's font servers, which means Google receives the request metadata for that font file. No other analytics, advertising, tag-management, or social-media embed is used. The site does not embed videos that load tracking cookies and does not run third-party comment systems.
Visitors can request access to the limited server-log data associated with their IP address, request deletion of any such data, or ask questions about the policy by writing to the contact address published on the contact reference. Because the site does not collect identifying personal data beyond IP-based server logs, most access and deletion requests can be answered by confirming that no identifying data exists to return or delete. Rights described in this section exist under applicable consumer-privacy frameworks and apply regardless of the visitor's jurisdiction.
The site is directed at adults and is not designed for children under 13. The site does not knowingly collect data from children. If a parent or guardian believes a child has interacted with the site in a way that left identifying data in the logs, they can contact the address on the contact reference to have those records removed.
| Data category | Purpose | Retention |
|---|---|---|
| IP address (server log) | Abuse prevention and rate limits | 30 days |
| User-agent string | Troubleshooting layout issues | 30 days |
| Requested URL | Operational analytics in aggregate | 30 days |
| Referrer URL | Link-health diagnostics | 30 days |
| Functional cookies | Caching and display preferences | Session |
| Google Fonts request | Load Work Sans typeface | Handled by Google |
| Form submissions | None collected | Not applicable |
| Payment data | None collected | Not applicable |
The site uses HTTPS for every page and keeps the underlying web server patched on a normal cadence. No user accounts exist on this site, which removes a large class of credential-related risks. Visitors who encounter anything that looks like a security issue can report it through the contact reference.
This policy can change as the site evolves. When a material change occurs, the revision date on this page is updated and the previous version is kept in the site's revision history. Readers who want to verify the policy status on a given day can check the date shown in the eyebrow.
Questions about this policy can be sent through the channel on the contact reference. Questions about Exchange Bank itself — account access, statements, fraud on an account — should go to the bank's own customer service line published in that reference; this reference site cannot answer them.
General federal guidance on reading privacy policies is at the FTC consumer advice on protecting personal information, which is a useful companion read when evaluating any website's privacy posture.
The reference home is index, with the access hub at the exchange bank login reference and the login help-guide. Legal siblings include terms of service and the accessibility statement. Security lives at the security center. Overview pages include about Exchange Bank and exchange bank overview.
No. This is the privacy policy for the independent reference site at exchangelogin.gr.com. The official Exchange Bank privacy notice is published by the bank on its own domain and covers the bank's handling of customer account data.
No. The site does not host sign-in forms, does not process payments, and does not request account numbers. The only data collected is standard server log data and functional cookies as described in the data-category table above.
Write to the address on the contact reference. Because the site does not store identifying data beyond short-lived server logs tied to an IP address, most deletion requests resolve by confirming no long-term records exist to remove.