The website https://www.menalia.gr is the website of “K. PARASKEVOPOULOS & CO OE “and the distinctive title” MENALIA VILLAS & SUITES “(hereinafter the” Company “) and becomes” Responsible for Processing “for the purposes of processing referred to in this policy. The content of the website is mainly informative, while the possibility of reservations regarding the services of the Company is provided.

1. This Policy

This Policy applies to the operation of the Company and the Hotel MENALIA VILLAS & SUITES (hereinafter the “Hotel”) it manages.

The Company is the exclusive administrator of the website https://www.menalia.gr is responsible for the personal data you submit to us and is responsible for managing your personal data in accordance with the applicable General Regulation 679/2016 on personal data protection.

This Policy applies to any service or function provided by us and relates to or refers to the Policy (hereinafter referred to as our “Services”), for this website, for any website or online application, any promotional Energy of the Company for the Hotel online and offline, for access to our Services, whether any electronic means or other device is used, as well as during the provision of our Services without the use of the above electronic means.

The Company has appointed a Data Protection Coordinator.

1. Definition of Personal Data:

“Personal data” means any information relating to an identified or identifiable natural person (“data subject”). An identifiable natural person is one whose identity can be ascertained, directly or indirectly, in particular by reference to an identity identifier, such as name, identity number, location data, online identity, or one or more physical identifiers. , physiological, genetic, psychological, economic, cultural or social identity of that natural person).

III. Processing Purposes – What Personal Data do we collect and on what legal basis?

The Company may process personal data through its website for the following purposes:

1. In case you voluntarily provide personal data (eg name, address, telephone number or e-mail address) through the forms:

Α. contact ( https://www.menalia.gr/el/epikoinonia/ )

Β. satisfaction questionnaire (https://www.menalia.gr/el/guest-questionnaire-el/ )

The legal basis for such processing is your consent.

2. In case of booking a room and other related services (such as keeping the required documents in accordance with current legislation, requests related to accommodation) and accommodation at the Hotel (access to a room, use of mini bar services, room phone, etc.), we can process , based on the legal basis of the execution of the contract between us, the following personal data:

Α. Basic information of a natural person (eg name, surname, address, phone, e-mail, dates of residence, dates of birth, etc.)

Β. Unique IDs (eg ID number, passport number, etc.)

C. Financial data (card number, CVV, IBAN)

D. Health data (eg allergies)

E. Social welfare data (eg disability, etc.)

F. Preference data (eg vegetarian, room type, etc.)

G. Identification data (reservation number)

We emphasize that in the case of receipts from bookings when using online booking platforms (On Line Agents), the information for the remote debit of the credit card is provided by the respective online platforms.

In case of remote billing of your card, in order to manage the transaction between us and optimize our services, we provide you with a special form to fill in your card details, which are used exclusively for the agreed billing between us. This personal data is processed only by our absolutely necessary staff, who are bound by confidentiality clauses.

3. For organizational reasons (eg list of customers with arrival / departure within the day, customers with special offers) we may process the above mentioned personal data, based on the legal basis of the execution of the contract between us.
4. In order to comply with the current Greek and European legislation, we may process the above mentioned personal data, based on the legal basis of our compliance with legal obligations.

IV. Recipients of your personal data

This personal data is accessible only to the absolutely necessary staff of the company, which is bound by confidentiality clauses.

We process the personal data we collect ourselves, while recipients of your data may be cooperating with us companies such as booking companies and website support companies. Finally, the recipients of your data may be third parties, ie official state and supervisory bodies (eg prosecutors and prosecutors, supervisors, etc.), when we are called to comply with the law.

Please note that all our partner companies have taken care to take the appropriate technical and organizational measures to protect your data.

1. Time of keeping personal data

Your personal data is kept by us only for as long as required by the terms of our contractual relationship.

1. Transfer of personal data outside E.O.X.

Any transfer of personal data to third countries (ie countries outside the EEA) will be made with your prior knowledge and, if necessary, with your consent. personal data to countries other than those for which there is a decision of adequacy regarding the level of data protection by the European Commission, is done following the use of standard contractual clauses approved by the European Commission or through other safeguards in accordance with applicable law.

VII. Your rights

We protect and safeguard your rights to use your personal data. Specifically, you have the option:

1. be informed by us if we process your personal data and receive a copy of it,
2. to correct the personal data you have provided to us,
3. restrict the processing of your personal data (a) when you dispute the accuracy of the personal data and until we have verified it, (b) when you object to the deletion of personal data but do not wish to delete it, (c) when personal data is not necessary for processing purposes, however, are necessary for the establishment, exercise, support of legal claims, and (d) when you object to the processing and until it is verified that there are legitimate reasons that apply to us and outweigh the reasons why you oppose the processing.
4. request the transfer of your personal data to another Processor,
5. object at all times to the processing of your personal data when necessary for the purposes of a legitimate interest, as well as to automated individual decision-making, including profiling,
6. delete your personal data (note when if it is impossible to delete them to meet regulatory obligations, we will inform you accordingly)
7. revoke the consent you have given us at any time, without prejudice to the legality of the processing based on your consent, before revoking it.

You can exercise your rights by applying to the following address: info@menalia.gr

Our response to your request will take place within (1) one month of receipt. If we need an extension of two (2) months to respond to your request, due to its complexity or due to the large number of requests we will inform you as soon as possible.

You have the right to appeal to the Personal Data Protection Authority for issues related to the processing of your personal data. For the competence of the Authority and the way of submitting a complaint, you can visit its website (www.dpa.grð My rights ð Submitting a complaint), where there is detailed information.

VII. Other information

We do not do automated individual decision making including profiling.

Our website is not intended for minors under 16 years of age. In case of use of products or services that we offer to you from a minor under 16 years of age, we require the explicit consent of the parent, before the processing of the personal data of the minor.

This Privacy Policy was posted on the company’s website on 12/13/2019 and replaces an earlier post / issue.

Regarding the cookies that we collect through our website, we have posted a relevant Cookies Policy.

Cookies policy

1. What are cookies?

Cookies are small files that are installed on a computer or other device when you visit a website. They are used to operate the website you are visiting as well as to provide additional functionality (such as user identification, memorization of preferences).

1. Why are cookies used on this website?

The website places cookies for the following functions:

• basic functionalities such as
  • web page display and save user preferences (eg language / color selection, search results presentation)
  • visitor security (eg cookies that detect repeated failed login attempts on a user’s account,
  • load balancing,
• identifying and / or retaining content entered by the user during a session throughout the connection (eg when completing an online booking form).
• user authentication in services that require authentication (eg when conducting an online banking transaction)
• providing multimedia content, such as cookies that are installed when viewing a video
• sharing content through social networks (social media)

Also third parties place on behalf of this website cookies for the following functions:

• collection of statistics on website traffic and how visitors use it
• display ads (inside or outside the website).

1. Which cookies does this website install?

This website uses the following categories of cookies:

1. How can I manage cookies?

All web browsers allow you to manage cookies in order to either delete the cookies as soon as you complete your visit to the website or to set your preferences regarding the use of cookies before you start browsing the website. Please note that deleting or rejecting Cookies may adversely affect the experience of using the Website (eg some features may not be fully available). You can find more information about your browser at the following links:

• Google Chrome
• Microsoft Edge
• Microsoft Internet Explorer
• Mozilla Firefox
• Apple Safari (Mac OS)
• Apple Safari (iPhone, iPad)
• Opera

If you want to turn off Google Analytics altogether, for every page you visit and not just this one, visit the first page.

1. Where can I find out more about cookies?

Detailed information on the use of Cookies, as well as how to block or restrict them can be found on the websites:

• https://cookiepedia.co.uk/all-about-cookies
• http://www.allaboutcookies.org/
• https://www.aboutcookies.org/

1. Could this policy change?

This policy may be amended at any time and the most recent amendment is always considered valid. We suggest you to refer regularly to this page, which came into force on 13/12/2019.

Note

The Company is not responsible for the references from this policy to external websites, for their content and services, which it does not control or adopt, and any damage arising from their use, as the visitor has access to them on his own responsibility.

The Company “K. PARASKEVOPOULOS & CO OE “with the distinctive title” MENALIA VILLAS & SUITES “(hereinafter” Hotel “) offers its customers high quality services in a familiar and hospitable environment, ensuring their safe and comfortable stay, in order to provide them with a unique hospitality experience.

Respect for privacy is our main concern and for this reason we take all necessary technical and organizational measures in order to protect your personal data and to provide you with assurances for the safe and legal processing of them, applying the existing disorders that govern the provision of hotel our services and the protection of personal data.

Please read this Privacy Policy carefully, which is intended to inform you in full and in a transparent manner about the type of data we collect, how it is collected and the purposes for which it is processed, its retention time, and any recipients to whom it is transmitted.

Data controller.

The above company with the name “K. PARASKEVOPOULOS & CO OE “with the distinctive title” MENALIA VILLAS & SUITES “is responsible for personal data, in accordance with the law of personal data protection, as well as the General Regulation of Personal Data Protection no. 679/2016.

What personal data do we collect?

According to the relevant legal definition, “personal data” means any kind of information concerning an identified or identifiable natural person (“data subject”). An identifiable natural person is one whose identity can be ascertained, directly or indirectly, in particular by reference to an identity identifier, such as name, identity number, location data, online identity, or one or more physical identifiers. , physiological, genetic, psychological, economic, cultural or social identity of that natural person). In addition, “specific categories of personal data” are specifically defined as those relating to health, racial, ethnic origin, political views, religious or philosophical beliefs, membership in a trade union, genetic, biometric data, data relating to sexual life or sexual orientation.

This Policy applies to the services we provide in any way, such as through our official website www.menalia.gr, our online activities and applications eg when filling out a contact form or through third parties, including these websites, with whom we cooperate (such as travel agencies), whether they concern the reservation system by phone, fax or in person “walk in” registration, as well as the service of our business relationship with the provision of hospitality services to you throughout the duration of your stay at the Hotel. Your use of these services implies the necessary collection of your personal data in accordance with the applicable tourist legislation with respect to the protection of personal data.

Specifically, we collect legally and to the extent necessary the following appropriate and necessary data for the purposes analyzed below:
1) Your ID (such as name, nationality, ID or Passport, date of birth, etc.)
2) Date of arrival and departure, in combination with the room number
3) Financial data (such as VAT number, Tax Office, credit card information) and
contact details (such as postal address, telephone, email) which you state on the booking form
4) Possibly and in accordance with applicable law, personal data of special categories, such as allergies, nutritional needs, health data, the need to provide access to people with disabilities which you voluntarily transmit to us upon your statement and with your explicit consent, for safe, comfortable stay and your optimal service.
5) Preferences and interests: eg, rooms with view, non-smoking room, purpose of travel (business or leisure)
6) In case of participation in any of our competitions or our promotional activities, you may be asked for your name, contact details, email, personal or professional interests, etc.
7) Device information (eg unique device IDs, IP address, device settings for accessing our Services, etc.)
8) Location information (eg GPS of your device etc.
9) Information entered for ordering a product or service during your service inside and outside the hotel (eg transportation, participation in activities, consumption, purchases of products inside the hotel)

Also, when entering the website www.menalia.gr, personalized information about the device from which you gained access to the website may be recorded, such as the internet protocol address (IP address), geographical access data, access device uniqueness detectors, information for the browser, browser language and / or related information. In no case is the use of the website disclosed by personal protocol addresses, while this data (web server logs) is deleted periodically.
Please note that we do not collect information about people under the age of 18 other than that provided to us only by their guardian.

Purposes of data collection. In order to serve our business relationship, in accordance with our legitimate interests and to improve your hosting experience through the optimization of our services, we collect the absolutely necessary personal data for the following purposes:
1. The management of the room reservation system (such as, compliance with the documents provided in the current legislation and the service of your requests throughout your stay at the Hotel.
2. For pricing purposes of services
3. In order to comply with the current Greek and European legislation.
4. For the purposes of commercial communication, promotion of our services, conducting customer satisfaction surveys,
5. To serve our legal interests
6. To comply with our legal obligations arising from tourism, tax, accounting and administrative legislation

Retention time of Personal Data. The Hotel keeps your personal data in written and / or electronic form only for the necessary period of time required to fulfill our legal obligations and the legal purposes for which we collected them.
For this reason we maintain your personal data during our contractual relationship e.g. for the fulfillment of a tax obligation or after its expiration for the completion of e.g. the legal limitation period of any claims.

Third party access to your personal data. We ensure that your personal data is processed legally, which is restricted within the Hotel, while ensuring their confidentiality. They may be passed on to our partners, who act as processors on our behalf, to the extent that the aforementioned processing purposes are served and subject to confidentiality to protect them under our contractual commitments, to serve our legitimate interests. with the right to control them. In this way we may disclose your personal data specifically, in the competent departments of the Hotel, to our trusted partners natural or legal persons. Also in the context of our compliance with the legislative and regulatory framework we will transfer your personal data to Supervisory Authorities, Public Services and Organizations or in case of corporate reorganization in any way we may share it with the persons involved, natural or legal.

Information about your rights.

The Hotel ensures that you can exercise the following rights, which are provided and regulated in the General Regulation of Personal Data Protection.
Right of access and information about your personal data, such as for processing purposes, retention time, any recipients
Right to correct incorrect or incomplete data so that it is accurate.
Right to delete data from our files, if their preservation is not necessary, subject to the existence of legal reasons for their preservation
Right to restrict the processing of data in the following cases: the accuracy of the personal data is disputed by you, the processing is illegal and you are opposed to the deletion of personal data, personal data is no longer necessary for the purposes of processing, but is required by you for substantiation, exercise or support of legal claims, until the reasons for further processing are verified
Right to object in the cases defined by article 21 of the General Regulation of Personal Data Protection, including the preparation of a profile.
Right to portability: You have the right to obtain your personal data in electronic form, in a structured commonly used and machine-readable format, as well as the right to transfer your data to another controller.

The Hotel will comply with the terms and conditions set out in the General Regulation for the Protection of Personal Data for the satisfaction of your rights. In order to practice them, you can at any time send a free application / letter or contact us. We will make every effort to respond within thirty (30) days to your request, in order to satisfy it or to justify the legal reasons that do not allow us.

Withdrawal of consent. We inform you that you can revoke your consent at any time, in cases where your consent is the legal basis for the processing of personal data. Withdrawal of consent may result in termination of the services provided, as we will not be able to process your personal data.

Contact the Personal Data Protection Authority. You can also contact for any complaint or complaint to the Personal Data Protection Authority at the following information: email contact@dpa.gr, phone 210 6475600, fax 210 6475628, postal address: Kifissias Ave. no. 1-3, T.K. 115 23, Athens.

This Privacy Policy, which complies with the conditions set out in the General Regulation for Personal Data Protection no. 679/2016, may be updated at intervals at the free discretion of the Hotel.