Privacy and data protection
We collect and process your personal data only when absolutely necessary.
We will never sell, rent, distribute or otherwise disclose your personal data unless the law so requires.
If you are under 16, you MUST have your parents’ consent before using the services of this site.
Along with our company’s internal IT systems, this site is designed to comply with the following laws / regulations regarding the protection of user’s personal data:
1. EU Data Protection Directive 1995 (DPD)
2. General Data Protection Regulation 2018 (GDPR)
Personal information collected by this site and why we collect it
This site collects and uses personal information for the following reasons:
Perform online booking
In order to complete a reservation, customer details such as name, surname, address, etc. are necessary. These figures are left to us and us only and will not be distributed to third parties.
Forms of communication and email links
If you choose to contact us using a contact form or an email link, none of the data you provide will be stored from this site or transferred or processed by any third party data processor as defined below in the section “Our third-party data processors”. Instead, these data will be sent to you via an SMTP protocol (Simple Mail Transfer Protocol). Our SMTP servers are protected by a TLS security protocol (sometimes known as SSL), meaning that email content is encrypted before being sent over the Internet. The content of the email is decrypted by our local computers and devices.
About the server of this site
All web traffic (file transfer) between this site and your browser is encrypted and transferred via the HTTPS protocol using Secure Sockets Layer (SSL).
Our third-party data processors
We use a number of third parties to process personal data for us. These entities have been carefully selected to comply with the legislation mentioned in this document.
For any of your personal information stored in our database, all necessary steps will be taken to secure them.
We will report any unlawful violation of the database of this third party data processing site or database to anyone and to all relevant stakeholders as well as authorities within 72 hours of the violation if it is obvious that the personal data that is stored in recognizable form, have been stolen.