What personal information we might gather
“Personal Data” is any information that can either directly or indirectly identify you as an individual.
When you use our website, or our social media pages, or when you choose to reserve a room through our Website, by phone, e-mail or through a third party provider, or when you check-in, or during your stay at our property, we may gather personal or financial information, always in accordance with the law, such as your name, address, contact telephone number, email address, ID/passport number, credit card details (credit card number, credit card holder’s name and surname, expiration date, CVC security code), images and video recorded by security cameras located in common and public areas.
What we do with your information we gather
The processing of select personal data is necessary for us, to provide our services to you. If you do not provide the data that we request, we may not be able to provide the requested services to you.
Your personal data will only be used by us to contact with you, book and guarantee your reservation, manage your payment, manage, improve and keep this website safe and secure, protect our rights, our property and our guests and if we are required to by law.
We may disclose personal data to third-party service providers to provide services related to our Website and business, such as website hosting, web page design, data analysis, payment processing, email distribution. These third party companies will have access to your information only for providing the above services on our behalf, with their commitments to protect your personal data.
We are responsible for the use of your personal data as we set out here. We are not responsible for the privacy or security policies of third party service providers, Internet websites, search engine companies, software and hardware developers, social media and online advertising services.
We will not send you any promotional emails, SMS messages, or letters about special offers or other information and we will not not distribute any of your information to any third party advertisers or other marketing companies. Our contact with you will be only after your wish.
How do we protect and safeguard your online privacy
We try to process all your information with great care and respect to your trust. We use different security measures to protect and safeguard your confidential information from being accessed, used, or disclosed in an unauthorized way by users both inside and outside of our company. Your private information is accessed only by us when you choose to contact us.
Our server and network are protected by secure firewall and anti-spyware systems against unauthorized access, that are updated regularly.
We use the World standard for Web security, the SSL (Secure Sockets Layer) encryption protocol to ensure that personal information provided to us is not visible to anybody else. When making a reservation through our online reservation system, transmitting your credit card information to us, in order to make sure that all data is safely transferred, the system uses the SSL-128bit encryption protocol, a secure server protocol which encrypts all your personal and credit card details. Web pages that use and follow the standards of Extended Validation SSL certificates are distinguished in the browser programs in Internet, first from the https prefix in the address (url) (which means that secure information transmission via an SSL connection is enabled) and second by the appearance of a padlock icon somewhere in the browser’s window. By clicking (or double-clicking) on it you can see the identity of the verified certificate owner and the certificate authority and details of the site’s security.
However, the transmission of information via the internet is not completely secure against third-party access.. Although we do our best to protect your information, we cannot guarantee or warrant the security of any personal information you transmit to our website. Please be aware that any transmission is at your own risk. We are not liable for any unauthorized access, or interception, or for any direct or indirect damage suffered by a customer or user.
How long we keep your information
We will only keep your personal information for as long as we deem it’s necessary for the purpose for which it was gathered and there are no overriding legitimate grounds or any disputes that need to be resolved. All personal data we keep about you is covered by this Privacy Statement
Your personal data is protected in Greece by the European General Data Protection Regulation (GDPR), and the Greek laws 4624/2019, 2472/1997 and 3471/2006. This states among other things that the personal data we receive by you should be processed fairly and lawfully, and collected for specified, explicit and legitimate purposes. The information received should be kept up to date, where necessary, and not retained for longer than is necessary. It should also be kept securely to prevent unauthorized access by other people.
The supervisory authority in Greece is the Hellenic Data Protection Authority (HDPA)
You can learn about your rights, by visiting their web page.
You have certain data protection rights afforded to you by these Regulations and laws.
If you are a resident of California, you have certain data protection rights afforded to you by the California Consumer Privacy Act of 2018 (CCPA).
Right of Access
You have the right to be informed on the personal data we hold about you and right of access to your personal data: upon your request, we will provide you a copy of your personal data.
Right to rectification
You may request that we correct any inaccurate information concerning you.
Right to Erasure
You have the right to obtain from us the erasure of your personal data, if the personal data are no longer necessary in relation to the purposes for which they were collected and there are no overriding legitimate grounds.
Right to restriction of processing
You may request that we stop processing your information when you contest its accuracy or the lawfulness of the processing, or when we no longer need the personal data for the purposes of the processing, but they are required by you for the establishment, exercise or defence of legal claims.
Right to data portability
You have the right to receive the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format.
Right to object
You have the right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you. We shall no longer process the personal data unless we demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms of you or for the establishment, exercise or defense of legal claims.
Right to lodge a complaint with a supervisory authority
If you consider that the processing of your personal data infringes the Data Protection Regulation, you have the right to lodge a complaint with the competent supervisory authority, which for Greece is the Hellenic Data Protection Authority (HDPA) https://www.dpa.gr
Submitting a request
You can request to exercise your rights pursuant to the General Data Protection Regulation (GDPR), at any time, by contacting us at: firstname.lastname@example.org
To protect the confidentiality of your information, we will ask you to verify your identity before proceeding with any request you make under this Regulation.
30 October 2021