The company Laconia Travel, a company incorporated under the laws of Greece having its registered office at Othonos Amalias 69 street 23100, with contact info firstname.lastname@example.org and +30 698 665 9226, under the capacity of a data controller (hereinafter “the Company”), ensures the secure processing of the personal data that are submitted, fully complied with the current legal framework for the protection of personal data and in particular the General Regulation of Data Protection (EU) 2016/679 and the L. 4624/2019.
In this context, the Company collects and further processes your personal data to the extent that it is absolutely necessary for lawful purposes, as they are described in detail below.
This Policy aims to inform the users of the website https://www.laconiatravel.gr about the processing of their personal data.
For the purposes of the present, the following terms have the following meaning:
For the purposes of the present, the Company acts as a Controller.
While browsing and using the website, we collect and further process the following personal data for the following purposes:
Data such as IP address, location, browser type and version, operating system, referral source, visit duration, number of web page views, web navigation paths, information about the time, frequency and pattern of service usage, Contact and booking details, such as name, e-mail address, postal address, mobile phone, date of birth
Data analysis to control and improve services through the website and user support. Expression of interest and reservation of services provided
Processing is necessary for the purposes of the legal interests pursued by the Company (article 6 par. 1f of the Regulation). Processing is necessary for the execution of the contract or for measures to be taken at the request of the data subject before the conclusion of the contract (Article 6 par. 1b of the Regulation)
One (1) month. Up to five (5) years after the completion of the provided services, unless special legal provisions require otherwise
In principle, we do not directly or indirectly collect and further process personal data of minors (persons under the age of 18 years). However, as it is impossible to cross-check and verify the age of people browsing or otherwise using our site, it is recommended that parents and guardians of minors contact us immediately if they find any unauthorized disclosure of personal data of the minors for whom they are responsible, in order to exercise the rights granted to them, such as deleting their data. In case the Company realizes that personal data of a minor has been collected, the Company undertakes to delete such data without delay and to take all necessary measures for their protection.
We transfer the above personal data to third parties, to whom we have entrusted part or all of the processing of personal data on our behalf as well as to companies with whom we cooperate. Specifically, the data are transferred to the following:
In any case, the third parties to whom your personal data are transferred are contractually bound to us with a confidentiality clause and are subject to all the obligations provided by the current Legislation for the protection of the data subjects’ rights.
In principle, we do not transfer your personal data to third countries or international organizations. In case of such transfer, e.g. through the use of Microsoft email and Google analytics services, we confirm in advance that one of the legal bases of Article 6 of the Regulation is used and that one of the following conditions is met:
If any of the above conditions is met, we will not transfer your personal data to a third country, unless one of the special derogations provided by the Regulation applies (eg if you have given your express consent after being informed of the risks involved in such transmission or if the transmission is necessary for the performance of the contract at your request or if the transmission is necessary to support legal claims, etc.).
Your personal data is collected and stored for a predetermined and limited period of time, depending on the purpose of processing, after which the data is deleted from our files.
When processing is necessary for the purposes of the legitimate interests we pursue, your personal data will be stored until you object to such processing.
When processing is required as an obligation by provisions of the Applicable Legislation or a specific retention period is provided by law, your personal data will be stored for as long as the relevant provisions require.
When processing is necessary for the performance of the contract, your personal data will be retained for as long as it is necessary for the execution of the contract and for the establishment, exercise and / or support of legal claims under the contract.
Your personal data processed for promotional purposes with your consent (eg data from the Newsletter subscription) will be kept until the withdrawal of consent, without such withdrawal affecting the legality of the processing carried out until the withdrawal.
In the event of a breach incident, we apply a specific Personal Data Breach Case Management Policy. If you become aware or suspect that a personal data breach has occurred or has occurred, please let us know without delay at email@example.com.
Considering the latest technological developments, implementation costs and nature, scope, context and purposes of processing, as well as the risks of occurrence and severity of varying intensity and severity for your rights and freedoms from the processing of personal data We take all necessary technical and organizational measures to protect your rights and freedoms. Although no internet transmission method or electronic storage method is completely secure, we take care to take all necessary digital data security measures (eg antivirus) in full compliance with our obligations under Applicable Legislation.
We ensure that we are able to respond promptly to the requests of data subjects to exercise their rights in accordance with Applicable Legislation.
In particular, each data subject has the following rights:
and if the conditions of the Applicable Legislation are met.
In case of exercise of any of the above rights we will respond immediately and in any case within one month from the submission of the request informing you in writing of the progress. For the exercise of your rights or for any question regarding the protection of your personal data you can contact us at firstname.lastname@example.org. For any complaint regarding this Policy or personal data protection issues you can also contact the Hellenic Data Protection Authority (HDPA) (https://www.dpa.gr/el/polites/gkpd).
In this website there are social media buttons – social media widgets (eg Facebook, Instagram, etc.) with the use of which, after the user connects to the social network, a special digital fingerprint is created, for which we and the social network we act as jointly responsible for the processing of your personal data.
For us, the purpose of processing this data is to improve the functionality of the website and the services provided as well as the analysis of its traffic. The legal basis for this processing of your personal data is the fulfillment of purposes of our legal interest and specifically the interoperability with applications that we use.
We do not control or are responsible for any subsequent processing performed on them.
This Policy may be amended / revised in the future in the context of our compliance according to the Applicable Legislation as well as the optimization and upgrade of the services of the website. We therefore recommend that you always refer to the updated version of the Policy for your information.