PRIVACY POLICY

Effective Date: 25/05/2018

This Privacy Policy applies to www.mendi-hotel.gr owned and operated by company HOTEL & TOURISM ENTERPRISES MENDI S.A. with Address: 63077 Kalandra, Halkidiki, Greece. This Privacy Policy describes how we collect and use the information, which may include personal data, you provide on our web site: www.mendi-hotel.gr. It also describes the choices available to you regarding our use of your personal data and how you can access and update this data.

 

Data Collection

The types of personal data that we collect include:

You may always choose what personal data (if any) you wish to provide to us. If you choose not to provide certain details, however, some of your transactions with us may be impacted.

 

Data we collect automatically

When using our website, we also collect information automatically, some of which may be personal data. This includes data such as language settings, IP address, location, device settings, device OS, log information, time of usage, URL requested, status report, user agent (information about the browser version), operating system, result (viewer or booker), browsing history and type of data viewed. We may also collect data automatically through cookies. For information on how we use cookies, click here.

 

Processing Purposes

We use your personal data for the following purposes:

If we use automated means to process personal data which produces legal effects or significantly affects you, we will implement suitable measures to safeguard your rights and freedoms, including the right to obtain human intervention.

 

Legal Bases

 

Data Sharing

Third-party service providers: We use service providers to process your personal data strictly on our behalf. This processing would be for purposes as included in this Privacy Policy such as facilitating reservation payments, sending out marketing material or for analytical support services. These service providers are bound by confidentiality clauses and are not allowed to use your personal data for their own purposes or any other purpose.

Competent authorities: We disclose personal data to law enforcement and other governmental authorities insofar as it is required by law or is strictly necessary for the prevention, detection or prosecution of criminal acts and fraud.

 

International Data Transfers

The transmission of personal data as described in this Privacy Policy may include overseas transfers of personal data to countries whose data protection laws are not as comprehensive as those of the countries within the European Union. Where required by European law, we shall only transfer personal data to recipients offering an adequate level of data protection. In these situations, we make contractual arrangements to ensure that your personal data is still protected in line with European standards. You can ask us to see a copy of these clauses using the contact details below.

 

Security

Our company observes reasonable procedures to prevent unauthorised access to, and the misuse of, information including personal data. We use appropriate business systems and procedures to protect and safeguard information including personal data. We also use security procedures and technical and physical restrictions for accessing and using the personal data on our servers. Only authorised personnel are permitted to access personal data in the course of their work.

 

Data Retention

We will retain your information, which may include personal data for as long as we deem it necessary to provide services to you, comply with applicable laws, resolve disputes with any parties and otherwise as necessary to allow us to conduct our business including to detect and prevent fraud or other illegal activities. All personal data we retain will be subject to this Privacy Policy. If you have a question about a specific retention period for certain types of personal data we process about you, please contact us via the contact details included below.

 

Your choices and rights

We want you to be in control of how your personal data is used by us. You can do this in the following ways:

We rely on you to ensure that your personal data is complete, accurate and current. Please do inform us promptly of any changes to or inaccuracies of to your personal data by contacting info@mendi-hotel.gr. We will handle your request in accordance with the applicable law.

 

Questions or Complaints

If you have questions or concerns about our processing of your personal data, or if you wish to exercise any of the rights you have under this notice, you are welcome to contact us via info@mendi-hotel.gr. You may also contact your local data protection authority with questions and complaints.

 

Changes to the Notice

Just as our business changes constantly, this Privacy Policy may also change for time to time. If you want to see changes made to this Privacy Policy from time to time, we invite you to access this Privacy Policy to see the changes. If we make material changes or changes that will have an impact on you (e.g. when we start processing your personal data for other purposes than set out above), we will contact you prior to commencing that processing.