Privacy Statement

We consider the security of your personal data a top priority and are committed to securing it at all times.

1. What is personal data?

Your personal data includes any information, on paper or electronic media, which can lead, either directly or in combination with other data, to your unique identification / identification or to your identification as a natural person according to the provisions of the General Personal Protection Regulation of Data 2016/679 (hereinafter “GDPR”), the currently applicable Greek legislation and the decisions of the Personal Data Protection Authority (PDPA).

 

2. What personal data we collect

We collect the following personal information from you or third parties:

(a) Information we receive through our websites when you simply visit them.

IP address and cookies. See the relevant Cookies Policy below.

(b) Information we receive when you use the services offered by our websites, such as for example the contact forms:

Name, basic details of physical or electronic communication, as well as any additional information you provide us.

 

3. Why we collect personal data

Your personal data is collected in order to: (a) Respond to the requests you make to us and provide you with information about our Company, as well as our services that you have consented to receive, e.g. newsletters, industry updates, invitations, surveys, etc.

(b) To serve our Company’s legitimate business interests. In certain cases, we process data in a way that can reasonably be expected as part of the operation of our business and that does not materially affect your rights, freedom or interests, e.g. for internal operations and analysis such as reasons to ensure the quality of our services, internal management, fraud prevention, security, use by management information systems, as well as to send newsletters related to our Company’s products and services that we believe may be of interest to you are of interest.

(c) Due to legal obligation, e.g. compliance with applicable legislation.

We do not use your personal data for any other purpose.

 

 

4. Your rights regarding your personal data

(a) You have the right to access your personal data.
This means that you have the right to be informed by us if we are processing your personal data.

(b) You have the right to correct inaccurate personal data about you.
If you find that there is an error in your personal data, you can submit a request to us to correct it.

(c) You have a right to erasure/right to be forgotten.
You can ask us to delete your personal data if it is no longer necessary for the aforementioned processing purposes or you wish to withdraw your consent in the event that this is the only legal basis.

 

(d) You have a right to portability of your personal data.
You can ask us to receive the data you have provided in readable form or ask us to pass it on to another controller.

(e) You have the right to restrict processing.
You can ask us to restrict the processing of your personal data pending the consideration of your objections to the processing.

 

(f) You have the right to object and withdraw consent to the processing of your personal data.
You can object to the processing of your personal data and we will stop processing it, unless there are other compelling and legitimate reasons that override your right. If you have given your consent to the processing of your personal data, you can withdraw your consent at any time with future effect.

(g) You have the right not to receive marketing communications.
You may choose not to receive direct marketing communications from the Company.

(h) Where we rely on our legitimate business interest.
In cases where we process your personal data based on our legitimate business interest, you can ask us to stop for reasons related to your personal situation. We must then do so unless we believe we have a compelling legal reason to continue processing your personal data.

 

We will always ask for the minimum required by law of your personal data for the implementation of our services and the best possible service for you.

The processing of your personal data lasts as long as necessary to fulfill our contractual and other legal obligations.
Your personal data may be retained for up to 20 years after the end of our relationship and longer if it cannot be deleted for legal, regulatory or technical reasons or if it is kept anonymous for research or statistical purposes.

 

6. Cookies Policy

Cookies are small pieces of files in text format, which are stored in the browser of the website visitor.

Our websites use the following types of cookies:

The necessary, in other words, absolutely necessary cookies, essential for the proper functioning of our websites. These cookies do not recognize your individual identity. Without these cookies, our websites are not functional.

 

7.Transmission of your data to third parties

Access to your personal data is given to the absolutely necessary staff of our Company, who are committed to maintaining confidentiality.

As a rule, we do not transmit your personal data to third parties except when clearly required by the Legislation / Regulatory Framework or to the extent that this is required to complete one of our services and to fulfill requests related to the services provided on our behalf.

Such third parties may be providers of various services such as consultants, IT-software services, internet-email providers and administrators, telephone-telecommunications providers, companies with which we have a joint venture or cooperation agreement, companies with which you request to share your data, as well as supervisory / government bodies.

When we use third party service providers we try to enter into agreements that oblige them to implement appropriate technical and organizational measures to protect your personal data.

 

We may also share your personal information if the Company’s corporate structure changes in the future. We may choose to sell, transfer or merge some of our operations, or our assets, or we may seek to acquire or merge with other businesses. During such processing, we may share your data with other parties. We will only do this if the other parties agree to keep your data secure and private. If there is such a change in the Company’s corporate structure, then other parties may use your data in the same manner as included in this Privacy Statement.

Τα προσωπικά δεδομένα σας κατά βάση αποθηκεύονται στην Ελλάδα, αλλά ίσως χρειαστεί να τα μεταφέρουμε σε άλλη χώρα. Αν τα προσωπικά δεδομένα σας μεταφερθούν σε χώρα εκτός του Ευρωπαϊκού Οικονομικού Χώρου (Ε.Ο.Χ), αυτό θα συμβεί βάσει αποφάσεων επάρκειας της Ε.Ε., εταιρικών δεσμευτικών κανόνων, τυποποιημένων συμβάσεων και εγκεκριμένων κωδίκων δεοντολογίας.

8. Security of your personal data

Recognizing the importance of the security of your personal data, we take appropriate organizational and technical measures to secure and protect your data from accidental or unlawful processing. We use modern and advanced methods, in accordance with the appropriate standards and in accordance with the terms of this Privacy Statement to ensure maximum security.

For this purpose we have appropriate security policies and use appropriate technical and operational tools, such as anonymization, pseudonymization, cryptography, firewalls, physical security, access control, staff training, internal / external audits, software security updates), following international standards security and business continuity.

 

9. Automated decision making and profiling

We do not make decisions based solely on automated processing. In some cases, we process your personal data to assess your preferences and provide you with targeted information and advice related to products and services of our Company that we believe may be of interest to you.

10. Exercising your rights

For your questions regarding this Privacy Statement, as well as any issue related to the processing of your data and the exercise of your rights, you can contact the designated Data Protection Officer of our Company at Parlama Emm. 4 , Limenas Hersonissos 70014 T.K. or to the email address info@kings-hotel.gr.

We respond to your requests without delay, and in any case within (1) one month of receiving your request. However, if your request is complex or there are a large number of your requests we will inform you within the month if we need to obtain an extension of another (2) two months within which we will respond to you.

If your requests are manifestly unfounded or excessive in particular due to their repetitive nature, the Company may impose a reasonable fee, taking into account the administrative costs of providing the information or carrying out the requested action, or refuse to proceed with the request .

11. Applicable law when processing your data

Applicable Law is Greek Law, as formulated in accordance with the GDPR, and in general the applicable national and European legislative and regulatory framework for the protection of personal data. Competent courts for any arising disputes related to your data are the Courts of Athens.

12. Complaints

You have the right to submit a complaint to the Personal Data Protection Authority (postal address Kifisias 1-3, P.O. 115 23, Athens, tel. 210. 6475600), if you consider that the processing of your personal data violates the applicable national and regulatory legal framework for the protection of personal data.

13. Validity of Privacy Statement

This Privacy Statement was published by our Company on 20/06/2024 and is subject to periodic improvement and revision.