ENGLISH
PRIVACY POLICY

Last update: February 2022
 
The Website https://www.eratohotel.gr, hereinafter the "Website", is under the management of the Greek company under the name "XETE TOURISTIKI KARLOVASOY SA (Kanari 115), hereinafter "the Company" or ", Which is obtained by the Data Controller that we collect from you during your visit to our Website, ie all information that identifies you as a person or can identify you directly or indirectly.
 
The Company takes the protection of your privacy and personal data very seriously and has taken all necessary measures in order to preserve the security and confidentiality of the information concerning the visitors / users of the Website.
 
Please read this Privacy Policy of our Website carefully in order to be informed about the information collected by you, when you visit it and when you use its internet services, the information posted on it, its use and the rights your.
 
This Policy is for the information of the data subjects in accordance with articles 13-14 of the General Regulation for Data Protection 679/2016 regarding the personal data collected by the hotel through its Website. If you have any questions about this Policy and in general about the way the 
hotel collects and processes your personal data, please contact the Company's Personal Data Manager at: gm@shr.gr
 
 
WHAT INFORMATION DOES OUR WEBSITE COLLECT
1. Information that is automatically collected during your visit and interaction with our Website
Our Website has eminently informative content about the activity and the services provided by the Hotel. Therefore, the simple browsing of our Website does not require the visitor to provide / enter personal data. However, by just visiting and browsing the Website, some information can be automatically collected which can identify you directly or indirectly, such as:
 
• the Internet Protocol (IP) address of your computer,
• browser type and operating system,
• the connection speed
Basic server connection information and
• Website display language preferences
 
2. Information collected if you accept the use of Cookies:
Access to this website involves the use of cookies, even though it would work without them. We use cookies and similar tracking technologies, such as pixels and web beacons to gather information about the visitors to our websites (as they enable us to improve our websites and deliver a better and more personalised service). Please note that we do not collect any personal information using cookies nor do we install any application on your device by the use of cookies. The only way in which a user’s personal details can be included in a cookie file is if the user personally supplies this information to the server. When you access our websites you will receive a clear notice advising you that the website you are visiting intends to use cookies and that: a) by continuing to use the website you consent to their use or b) you must click an “I accept” box in order for cookies to be placed.
 
Unless you have adjusted your browser setting so that it will refuse cookies from our websites, our system will issue cookies. Most browsers will tell you how to stop accepting new cookies, how to be notified when you receive a new cookie, and how to disable existing cookies. You can find out how to do this for your particular browser by clicking "help" on your browser's menu. Please note, however, that without cookies you may not be able to take full advantage of all our websites features. 
 
What is a cookie?
 
A cookie is a small piece of data that a website asks your browser to store on your computer or mobile device. The cookie allows the website to "remember" your actions or preferences over time and generally improve the user experience. It can also help to ensure that adverts you see online are more relevant to you and your interests. 
Cookies may be used on this website
A list of all the cookies may be used on the Website by category is set out below.
    • Session Cookies:  Session cookies last only for the duration of your visit and are deleted when you close your browser. These facilitate various tasks such as allowing a website to identify that a user of a particular device is navigating from page to page, supporting website security or basic functionality.
    • Persistent Cookies: Persistent cookies last after you have closed your browser, and allow a website to remember your actions and preferences. Sometimes persistent cookies are used by websites to provide targeted advertising based upon the browsing history of the device. We use persistent cookies to allow us to analyse customer visits to our site. These cookies help us to understand how customers arrive at and use our site so we can improve the overall service.
    • Essential Cookies: Cookies essential in order to enable you to move around the website and use its features, and ensuring the security of your experience. Without these cookies services you have asked for, such as applying for products and/or managing your accounts, cannot be provided. These cookies don’t gather information about you for the purposes of marketing. 
    • Performance cookies: These cookies collect information about how visitors use a web site, for instance which pages visitors go to most often, and if they get error messages from web pages. All information these cookies collect is only used to improve how a website works, the user experience and to optimise our advertising. 
    • Functionality cookies: These cookies allow the website to remember choices you make (such as your username). The information these cookies collect is anonymized (i.e. it does not contain your name, address etc.) and they do not track your browsing activity across other websites. 
    • Targeting Cookies: These cookies collect several pieces of information about your browsing habits. They are usually placed by third party advertising networks. They remember that you have visited a website and this information is shared with other organisations such as media publishers. These organisations do this in order to provide you with targeted adverts more relevant to you and your interests.
    • Third Party Cookies: Please note that third parties (including, for example, advertising networks, social media networks, and providers of external services like web traffic analysis services) may also use cookies, over which we have no control. These cookies are likely to be analytical/performance cookies or targeting cookies. We recommend that you check the relevant third party's privacy policies for information about any cookies which may be used.
 
Using browser settings to manage cookies
 
The Help menu on the menu bar of most browsers will tell you how to prevent your browser from accepting new cookies, how to delete cookies, how to have the browser notify you when you receive a new cookie and how to disable cookies altogether. You can also disable or delete similar data used by browser add-ons, such as Flash cookies, by changing the add-on's settings or visiting the website of its manufacturer. However, because cookies allow you to take advantage of some of the Website's essential features, we recommend you leave them turned on.
 
 
3. Information you provide to us directly:
In case the visitor / user of the Website wishes to express his interest in contacting the hotel through it, he is invited to fill in the corresponding contact form, during the submission of which and after his consent to this Privacy Policy, the Website collects and processes the following personal data of the visitor / user:
 
Contact Form
• Email (required)
• Name
• Telephone
• Message (free text of the interested party) (mandatory)
• Consent for Acceptance of this Privacy Policy (mandatory)
 
Room reservation
You can book a room online by selecting the "Book Now" icon. You will be taken to the hotel's "booking engine" which is supported by Web Hotelier. The privacy policy of this service can be found at the link https://eratoseasidehotel.reserve-online.net/privacy-policy
CONSENT
By using this Website and without prejudice to the provisions of any particular legislation, such as the privacy policy in the context of electronic communications as applicable, you provide your explicit consent to all of the above cases of processing your personal data. You are free to revoke your consent at any time.
 
If you wish to revoke your consent, please address your request to the Company's Personal Data Manager at: gm@shr.gr Any revocation of your consent does not invalidate the legality of the processing of your personal data until then.

 
FOR WHAT PURPOSES DO WE USE THE INFORMATION WE COLLECT?
 
1. For Communication with you:
With your consent, which is provided by your submission of the respective contact form and your acceptance of this policy, we may use the information we collect to contact you in order to inform you of the matter, of which you have expressed a corresponding interest.
 
2. For Statistical analysis:
To learn more about how our Website is used by its visitors, we collect and analyze the data we collect. We may use this information, for example, to monitor and analyze the use of the Website, to enhance its functionality and to better tailor its content and design to the needs of our visitors.
 
3. For Marketing
Providing targeted ads related to our services.

 
MINORS
When collecting information directly from you, we take due care to verify, as far as technically possible, which of the personal information collected relates to minors. In any case, if we find that we have collected any personal information from a minor under the age of 16 without verifiable parental consent in accordance with Article 8 of the EU General Data Protection Regulation 679/2016), we will delete the information from our database as soon as possible. If you believe that we may have collected information from a minor under 16 years of age, please contact the Company's Personal Data Manager at: gm@shr.gr

 
USE AND EXCHANGE OF INFORMATION
The Company respects your right to protect your privacy and the information that concerns you and for this reason uses the information collected through its Website for the aforementioned purposes. For this reason, it does not disclose, market or make any information available to you accessible to third parties, nor does it transmit this information outside the European Union.
We may make information about you available to other companies, applications or persons in the circumstances listed below:
• We may disclose aggregate information or information that does not directly identify you to third parties, so that we can develop the content and services of our Website.
• We may or may not use third parties to provide services related to our Website, such as database management, maintenance, analytics, marketing, data processing, and email and text messaging. These third parties will have access to the absolutely necessary information that identifies you only for the performance of their above duties on our behalf and with explicit contractual commitments regarding the protection of your privacy and personal data.
 
    • We may disclose information about you to investigate, prevent or take action in connection with illegal activities if there is a suspicion of misconduct or criminal activity against the rights and legitimate interests of any natural or legal person in the event of a breach of the Terms of Use of the Website. or if required by law, as well as in other cases in which we consider the disclosure of information necessary
 
    • We may disclose information about you to respond to subpoenas, search warrants, litigation, court orders, legal proceedings or other law enforcement measures by any competent authority, including the Data Protection Authority and other Data Protection Supervisors. Member States of the European Union, as well as to safeguard and defend our legal rights or to challenge claims against us
• We can provide access to information that concerns you for the service of the above described processing purposes to the competent staff of the Company, always in full compliance with the requirements of the GCC for the safeguarding of the security and confidentiality of your personal data.
 
Please note that third parties may independently collect data about you, including your IP address and information about the websites you visit and the links you click through, through cookies, link clicks or other media. during your visit.
 
TIME OF KEEPING THE INFORMATION
 
The Company will keep the personal data collected through its Website for the absolutely necessary period of time for the fulfillment of the above processing purposes and for its compliance with its legal obligations, in accordance with the requirements of the legislation. If you revoke your consent to the collection and processing of your personal data, we will delete your data from our electronic and physical files, unless compliance with them becomes necessary in accordance with our legal obligation in accordance with the above or for the exercise, foundation or defending our rights or legitimate interests before the judiciary or other authorities.
 
The company keeps the personal data from the Contact Form for a period of two years or until the interested party himself requests to be deleted.

 
INFORMATION SECURITY
 
The security of your personal data is our absolute commitment. To achieve this, we apply all modern and appropriate for the purposes of processing technical and organizational measures, the response and adequacy of which we check at regular intervals, such as:
 
-Transport Layer Security (TLS) protocol: Transport layer security, or TLS, is a cryptographic protocol that protects the data exchanged over a computer network. TLS has become popular as S in HTTPS. More specifically, TLS is used to protect web user data from network attacks. This protocol uses both asymmetric (public key) and symmetric (password / phrase based) encryption. This means that it uses only public keys, so that clients and servers can exchange a symmetric key securely. This key can then be used to encrypt all subsequent communications.
 
Additionally TLS 1.3 offers an extension that encrypts SNI information. Used properly, this extension prevents intruders from leaking the remote server domain name, so they have no HTTPS history tracking method. This feature gives Internet users more privacy than previous versions of TLS.
-Personal data collected from the contact forms are sent encrypted and stored in the e-mail of the company or in the special program available on our website to maintain the history of communications made through the respective form.

 
YOUR RIGHTS
You may exercise, as appropriate, the following rights:
• the right of access, to find out what data we process for you, for what purpose and its recipients,
• the right to be corrected, in order to correct any deficiencies or inaccuracies in your data,
• the right to delete (right to be forgotten), in order to delete your personal data from our files, but if their processing is no longer necessary or the retention of your data is no longer required in order to comply with our legal obligations or for the defending our legal interests before the Courts,
 
• the right to restrict processing, in case the accuracy of your data is questioned
• the right to portability, to receive your data in a structured and commonly used format
• the right to object if you do not wish to use your data for the purpose of direct marketing of our services, including opposition to profiling. However, we inform you that the Company does not create a profile based on the personal data you provide to us through this Website for any purpose.
 
To exercise your rights, please send a corresponding request to the Company's Personal Data Manager at: gm@shr.gr
The Company will make every effort to respond to any relevant request within thirty days of receipt. However, if due to the complexity of your request or due to the volume of information it is not possible to satisfy your request within thirty days,
the Company undertakes to inform you within the above deadline in writing of the reasons for the delay and to make every effort to satisfy your request as soon as possible and in any case within two additional months.
The Company reserves the right not to satisfy your request, in case it is deemed manifestly unfounded or excessive, informing you about the reasons for its non-satisfaction.
 
In any case, you have the right to file a complaint to the Personal Data Protection Authority (www.dpa.gr). Call Center: +30 210 6475600, Fax: +30 210 6475628, E-mail: contact@dpa.gr

 
 CONTACT
If you have any questions regarding this Policy or in general, regarding our activities related to your privacy, you can contact the Company's Personal Data Manager at: gm@shr.gr

 
CHANGES IN THE CURRENT POLICY
The Company reserves the right to modify this Policy, always in accordance with the applicable rules of law on protection of privacy and personal data. The visitors of our Website should read from time to time the present Privacy Policy and the Policy of use of cookies in order to be informed about any change that takes place, while the Company undertakes to make the necessary updates of its visitors and users with every appropriate instrument, in compliance with the conditions set by the EU General Data Protection Regulation 679/2016
ERATO SEASIDE HOTEL
115, Kanari Str.
Samos, Greece
Tel +30 2273 200 210
e-mail: reservation@shr.gr
greenkey
TUV
JOIN US IN
© 2024 ERATO SEASIDE HOTEL. All rights reserved. ΜΗΤΕ: 0311Κ012Α0062900