PERSONAL DATA PROTECTION

Purpose
Protecting your personal data is important. This policy informs you of personal data collection practices through our website, including the categories of data you may collect, maintain, process, the purpose for which they are collected, the categories of persons to whom your data is disclosed, and the rights you have. We make every effort to protect your personal data, provided that the personal information you provide to us is accurate and true.
Legal and regulatory framework
For the purposes of the present, “ERODIOS HOTEL SA” is the “Processing Manager” within the meaning of article 4 no. 7 of the General Data Protection Regulation. The management and protection of the personal data of the visitor / user of this website, owned by “HOTEL ERODIOS SA”, is subject to these terms, as well as the relevant provisions of European Regulation 2016/679 on Personal Data Protection (GDPR) and Law 4624/2019. These terms are formulated taking into account both the rapid development of technology, and in particular the internet, and the existing set of legal regulations on these issues. This website will not be used in any unlawful and unauthorized manner by you, in accordance with the principles of personal data protection provided by applicable laws and international conventions. This website in no way discloses, publishes, exchanges personal data and information that you trust. In addition, it does not transmit personal information and data of its users to any other organization or partner that is not connected to it, the email addresses or generally any other information concerning its users.
What kind of data do we collect through this website
Any information that is included in the meaning of the personal data of the Privacy Policy and their collection is not based on the Law or the conclusion or execution of a contract, is collected through this website, only in case you choose to expressly consent.
We collect the following personal data:
Identification Data:
Name, nationality, ID / passport number, date of birth, telephone number.
Contact Information:
Mailing address, e-mail address, telephone number.
Transaction Data:
VAT number, type, place, time of products or services provided.
Contract Relationship Data:
Contractual documents, information and consent forms, electronic declarations of will.
Transaction Behavior Data:
Information regarding interests, preferences and participation in events, competitions, surveys.
We have no liability to customers or third parties for any provision and / or processing of sensitive data, due to acts or omissions of customers in violation of the above obligation. A visit to our website does not necessarily imply the provision by you of any kind of personal data. In many cases, however, it is necessary for you to provide some of your personal data, which is indicated in the corresponding data entry sections on our website.
We may collect and store the following personal information about you from the following restricted sources:
contact information when you contact us to ask questions or request information about the services we provide.
– identification, communication, transaction, contractual and transactional data when booking a room or restaurant or cafe regardless of the medium through which it takes place (electronically, by telephone through customer reception, etc.).
– data of identification, communication, transactions, contractual relationship and transactional behavior, when you enter into a contract with us for the provision of any services.
– Identification, communication, transaction, contractual and transactional data when you make online purchases of the products or services we provide. The data we collect through this website may also be combined with data provided in other cases, for example, when you call its call center, or participate in contests and promotions. The personal data provided in these cases may be integrated into existing databases and stored for the purpose of simplifying your data management systems. We do not store or collect payment details for electronic or online payments by credit, debit or prepaid cards. Specifically, with the registration of the number, the security code, the name and surname of the holder and the expiration date of the debit or credit card and the completion of the payment, these data are automatically transmitted to the competent Bank. The Bank collects the data and makes the payment and then confirms the completion of the transaction.
Collection and purposes of personal data
The use of personal data serves the following purposes:
Transactions: We may use the personal data of visitors / users to process any transactions with them, such as credit card payments, etc.
Advertising / Marketing: We may use the personal contact information of visitors / users for informational purposes and promotions regarding contests, gifts, discounts on products and services and its affiliated companies and sponsors with their express consent.
Website Improvement and Customization: We will use this information only for the purposes for which it was collected and to provide you with information. We will also use them to adapt the content of the website to your needs and to improve its composition, changes and dynamics.
Provision of electronic services, through a user identification process: We are going to use this information for the purpose of processing your electronic application and more specifically: For registration or identification in its applications.
Credit check: In some cases, we may carry out some credit checks with the competent bodies, when you request to enjoy a service or receive a product. If this is the case, then it will refer to the terms and conditions of the activity between you and our hotel or the company that will perform the processing.
Legal use: We may collect, store, disclose and generally process the personal data of visitors / users, when required by the Privacy Policy and / or the Law, or when necessary, in order to protect the interests of both parties, as they derive from their transactional and contractual relationship or business-consumer relationship.
Data Retention-Storage : We store personal data only for the time required to perform a service that you have requested or for which you have given your approval, subject to the contrary provisions of the Law, as in the case of matters which governed by commercial and / or tax legislation, the various relevant provisions, etc. In any case, the personal data you provide to us and are recorded in written agreements, contracts and e-mail related to the execution of the contract or the execution of a commercial transaction, are stored for a period of 20 years in a physical and electronic file in the legal department, in the sales department / contracts and in the accounting department or any other third party provides directly or indirectly the above services or assists these departments in the execution of their work or provides management services to us.
Clear data:Your data is deleted as the case may be and always in accordance with the provisions set by the relevant Legislation.
Transfer of personal data: We do not transfer personal data to third parties, unless required to do so for lawful purposes, in order to respond to your requests and / or if required or permitted by law. In any case, access to your personal data is allowed only to authorized persons, who are required to have access in order to be able to complete the purposes of their collection, use and processing, as disclosed in this Statement. In some cases, we may forward your personal data to the competent Public Authorities or to natural or legal persons entrusted with the execution of any processing, provided that we inform you in advance and obtain your prior consent, provided that required for the respective processing. Individuals who have access to the data are required to maintain their confidentiality.
Log files: We use IP (Internet Protocol) addresses to analyze trends in the use of the Internet, to manage the resources of our computers and network, to monitor any unauthorized illegal or malicious activities (attacks) and to collect general demographic information (country origin) for aggregate use.
IP addresses:The IP address, through which the Computer (PC) of the visitor / user / member has access to the internet and then to the Website / Application, is stored and can be used by the page, if necessary, in case of violation of Terms of Use of the Website / Application by the visitor / user / member. IP addresses are not personal data.
Data security : The Internet, like any medium used to transmit information, cannot be considered 100% secure. Internet security is a sensitive issue and is based primarily on trustworthy organizations and businesses that respect the confidentiality and security of its Users’ information. We strive to maintain strict security and control measures to protect your personal information, in order to ensure compliance with all applicable legal requirements. We apply security measures, at technical and organizational level, in order to secure the data we collect from you, against any intentional or unintentional attempt, manipulation, loss, destruction or generally access by an unauthorized person. Access to your personal data is restricted to those authorized to provide you with products and services who come into contact with such data. Physical, electronic and procedural safeguards have been activated, which are harmonized with the regulations of protection of your personal data. We take all possible precautions to ensure that your personal data is secure. However, due to the nature of the internet, we can not guarantee the protection of communications or data stored in its browsers from any arbitrary third party access. 
Internet access: If you contact us online, then we may occasionally use an e-mail or telephone number to contact you, provided you have provided them to us voluntarily.
Privacy policy and children: This website is designed and intended for use by adults. If you are a minor under the age limit required by parental consent in your country, you should check the terms of this statement, together with your parent or guardian, to make sure you understand and accept these terms. . If it is found that we have collected information from a minor without the consent of the parent or guardian, while such consent should have been obtained, we will delete the information as soon as possible. 
Communication through the website platform: In the event that a user communicates with us, through the contact form or in any other way, the provision by the user of his personal data is done voluntarily and exclusively at the free will of the user. We will process such personal data provided only to the extent necessary for that purpose.
Surveillance of communications: All our communications with you are not monitored and are not recorded.
Revisions of the Declaration: Διατηρούμε το δικαίωμα να τροποποιούμε ή να αναθεωρούμε περιοδικά την παρούσα δήλωση. Σε περίπτωση που πραγματοποιηθούν αλλαγές, θα καταγράφουμε την ημερομηνία τροποποίησης ή αναθεώρησης στην παρούσα δήλωση και η επικαιροποιημένη δήλωση θα ισχύει για εσάς από την ημερομηνία αυτή.
Applicable law and Jurisdiction: For any dispute that arises between a user and the “Hotel Erodios” the applicable law is the Greek and the competent courts for resolving the dispute are the competent Courts.
What are your rights?

According to the Privacy Policy, as in force, you have the following rights:
a) the right of access,
b) the right of correction,
(c) the right of deletion, under certain conditions, such as when processing is no longer necessary for the purpose for which it was originally collected and there is no compelling reason to continue processing (or storing) it;
(d) the right to restrict processing;
(e) the right to the transmission of data;
(f) the right to object and the right not to be subject to a decision taken solely on the basis of automated processing, including profiling;
(g) the right to complain to the supervisory authority.
That is, you have the right to receive, upon request, free information about the stored personal data concerning you, to raise, upon request, objections to the processing of the data concerning you, with effect for the future and revocation of your consent , as well as, in accordance with the provisions in force, the right to correct, restrict processing, transmit data, delete such data and to report to a supervisory authority.
Contact
We would like to inform you that we have appointed Personal Data Protection Officers with an email address: info@hotel-erodios.gr. If you have any questions or recommendations regarding this Policy, please contact the above address.
What if you do not want cookies? 

If you do not want cookies, you can use the special banner that appears, each time to choose which of the settings you want for your computer ACCEPT, MORE SETTINGS, DO NOT ACCEPT.
Processor Details:
headquarters Lithotopos of Serres
T: 2325028070,
E: info@hotel-erodios.gr