DATA POLICY
PERSONAL DATA PROTECTION POLICY
This Policy was updated on 14/3/2024
Purpose of this policy
The protection of your personal data is important for “P & L AGENCY AND HOTEL MANAGEMENT PC”. This policy informs you about the personal data collection practices of “P & L AGENCY AND HOTEL MANAGEMENT PC”, through its website, including the categories of data it may collect, maintain, process, the purpose of their collection, the categories of persons to whom your data is disclosed, as well as the rights you have. “P &L HOTEL MANAGEMENT PC” makes every effort to protect your personal data, provided that the personal information you provide to us is accurate and true. It also outlines some of the security measures the company takes to protect data privacy and provides certain guarantees for things the company won’t do.
Commitment of “P & L AGENCY AND HOTEL MANAGEMENT PC”
At “P &L AGENCY AND HOTEL MANAGEMENT PC” we believe that the protection of our customers’ privacy and data is of paramount importance and we are committed to providing the latter with personalized services that meet their requirements, in a way that ensures their privacy. Personal information (personal data) is used exclusively by “P & L AGENCY AND HOTEL MANAGEMENT PC” and its employees, in order to respond to your requests and serve you better, in accordance with this policy. Individuals who manage personal information are trained to use appropriate procedures. The representatives and service providers of “P & L AGENCY AND HOTEL MANAGEMENT PC” keep your personal information confidential and do not use it for any purpose other than those serving the provision of specific services to us.
In addition, you may in some cases be asked by “P & L AGENCY AND HOTEL MANAGEMENT PC” if we could share information with other trusted third parties. We will inform you at the time of collection of the information if such sharing of information with third parties is expected. “P &L HOTEL MANAGEMENT PC” will define the types of businesses at the relevant information collection point, describe the type of information it will transmit (such as your address or e-mail) and transmit the data to other parties only if you consent.
Legal and regulatory framework
The Private Capital Company under the name “P & L AGENCY AND HOTEL MANAGEMENT PC” and with the distinctive title “ANGEL HOLIDAYS”, based in Symi, Dodecanese, (Ierou Lochou Street, no. 2 T: 2246071077 E: info@angelholidays.gr), for the purpose of hotel services, collects and processes personal data for the exercise of its responsibilities, the processing of its electronic services and the fulfillment of its legal obligations. For the purposes hereof, “P & L AGENCY AND HOTEL MANAGEMENT PC” is the “Data Controller” within the meaning of article 4 no. 7 of the General Data Protection Regulation. The management and protection of the personal data of the visitor/user of this website www.angelholidays.gr, owned by “P & L AGENCY AND HOTEL MANAGEMENT PC”, is subject to these terms, as well as to the relevant provisions of European Regulation 2016/679 on the Protection of Personal Data (GDPR) and Law 4624/2019. These terms are formulated taking into account both the rapid development of technology, and in particular the internet, and the existing network of legal regulations on these issues. This website www.angelholidays.gr will not make any unlawful use without your prior approval, following the principles of personal data protection provided by the relevant laws and international conventions. The website www.angelholidays.gr in no way discloses, publishes, exchanges the personal data and information you entrust to it. In addition, it does not transmit personal information and user information to any other organization or partner that It is not linked to it, its e-mail addresses or generally any other information concerning its users.
What is “GDPR” – Applicable Legislation.
The GDPR (General Data Protection Regulation General Data Protection Regulation, Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, hereinafter referred to as “the Regulation”) concerns the formation of a single legislative framework for the processing of personal data in the Member States of the European Union and replaces the previous Legislation (Directive 95/46/EC). The protection of individuals with regard to the processing of personal data is a fundamental right. Article 8(1) of the Charter of Fundamental Rights of the European Union (‘the Charter’) and Article 16(1) of the Treaty on the Functioning of the European Union (TFEU) provide that everyone has the right to the protection of personal data concerning him or her. The Regulation is binding in its entirety and directly applicable in all Member States (i.e. no specific adaptation of national legislation is required, Article 83 of the Regulation).
What is personal data?
The term “personal data” refers to information of natural persons, such as name, postal address, e-mail address, telephone number, etc., which identify or may identify you, hereinafter referred to as “Personal Data or Data”.
What is Personal Data Processing?
Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available; association or combination, restriction, deletion or destruction.
What is the controller?
The controller is the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of processing personal data;
What is a processor?
Processor is the natural or legal person, public authority, agency or other body that processes personal data on behalf of the controller.
Is it mandatory to provide your Data?
The provision of personal data to “P & L AGENCY AND HOTEL MANAGEMENT PC” through this website may be necessary to achieve the purposes specified in this Policy or optional. If you refuse to provide the information marked as mandatory on the Website (www.angelholidays.gr), it will be impossible to achieve the main purpose of collecting the specific Data, and may, for example, make it impossible for “P & L AGENCY AND HOTEL MANAGEMENT PC” to provide the services available on the Website (www.angelholidays.gr).
What kind of data does “P & L AGENCY AND HOTEL MANAGEMENT PC” collect through this website?
Any information included in the concept of personal data of the Personal Data Protection Regulation and its collection is not based on the Law or on the conclusion or performance of a contract, is collected by “P & L AGENCY AND HOTEL MANAGEMENT PC”, through this website, only if you choose to explicitly consent.
We collect the following personal data:
| Identification Data: | Full name, nationality, ID/passport number, date of birth, telephone number. |
| Contact Data: | Postal address, email address, telephone number. |
| Transaction Data: | VAT number, type, place, time of products or services provided. |
| Contractual Relationship Data: | Contractual documents, information and consent forms, electronic declarations of will. |
| Trading Behavior Data: | Information regarding interests, preferences and participation in events, contests, surveys. |
| Health Data | Due to the COVID 19 pandemic, health data may be collected. |
We do not collect or access in any way special categories of (“sensitive“) personal data (except during the COVID 19 pandemic, due to strict instructions of the Ministry of Health) or data relating to criminal convictions and offenses of our customers. The customer has the obligation to refrain from providing such data concerning his person or third data subjects (except during the COVID 19 pandemic, due to strict instructions of the Ministry of Health)In case a customer provides such data to “P & L AGENCY AND HOTEL MANAGEMENT PC”, they will be deleted as soon as they come to our attention (except during the COVID 19 pandemic, due to strict instructions of the Ministry of Health). At “P & L AGENCY AND HOTEL MANAGEMENT PC” we bear no responsibility towards customers or third parties for any provision and / or processing of sensitive data due to acts or omissions of customers in violation of the above obligation. The visit to the website of “P & L AGENCY AND HOTEL MANAGEMENT PC” (www.angelholidays.gr) does not necessarily require you to provide any kind of personal data. In many cases, however, it is necessary for you to provide some of your personal data, which are indicated in the respective data entry sections on the website of “P & L AGENCY AND HOTEL MANAGEMENT PC”.
At P & L HOTEL MANAGEMENT PC, we may collect and store the following personal information about you from the following limited sources:
– contact data, when you contact us to ask questions or request information about the services provided by “P & L AGENCY AND HOTEL MANAGEMENT PC”.
– data of identification, communication, transactions, contractual relationship and transactional behavior, when you make a room reservation or a place in the restaurant, regardless of the means through which it is made (electronically, by telephone through the reception of customers, etc.).
– identification, communication, transactions, contractual relationship and transactional behavior data, when you conclude a contract with us for the provision of any services by “P & L AGENCY AND HOTEL MANAGEMENT PC”.
– identification, communication, transactions, contractual relationship and transactional behavior data, when you make online purchases of products or services provided by “P & L AGENCY AND HOTEL MANAGEMENT PC”.
– health data from questionnaires that need to be completed due to the COVID 19 pandemic and following instructions from the Ministry of Health.
The data we collect through this website www.angelholidays.gr, may also be combined with data provided in other cases, for example, when you call its call centre, or participate in competitions and promotions. The personal data given to “P & L AGENCY AND HOTEL MANAGEMENT PC”, in these cases, may be integrated into existing databases and stored, in order to simplify your data management systems.
“P &L HOTEL MANAGEMENT PC” does not store or collect payment information during electronic or online payments via credit, debit or prepaid cards. Specifically, upon entering the number, security code, holder’s name and expiration date of the debit or credit card and completing the payment, these data are automatically transmitted to the competent Bank. The Bank collects the data and makes the payment and then confirms to “P & L AGENCY AND HOTEL MANAGEMENT PC” the completion of the transaction.
Collection and purposes of use of personal data
The use of personal data collected by “P & L AGENCY AND HOTEL MANAGEMENT PC” from you serves the following purposes:
Transactions: “P & L AGENCY AND HOTEL MANAGEMENT PC” may use the personal data of visitors/users to process any transactions with them, such as credit card payments, etc.
Advertising/Marketing: “P & L AGENCY AND HOTEL MANAGEMENT PC” may use the personal contact data of visitors/users for informational purposes and promotions regarding competitions, gifts, discounts on products and services of “P & L AGENCY AND HOTEL MANAGEMENT PC” and its affiliated companies and sponsors upon their explicit consent.
Improvement and adaptation of the website: “P & L AGENCY AND HOTEL MANAGEMENT PC” will use this information only for the purposes for which it was collected and to provide you with information. It will also use them to adapt the content of the website to your needs and to improve the composition, its changes and dynamics.
Provision of electronic services, through user identification process: This information is going to be used by “P & L AGENCY AND HOTEL MANAGEMENT PC” for the purpose of processing your online application and more specifically: For registration or identification in its applications.
Credit check: At “P & L AGENCY AND HOTEL MANAGEMENT PC”, in some cases, we may carry out certain credit checks with the competent bodies when you request to receive a service or receive a product. If this is the case, then it will be mentioned in the terms and conditions of the activity between you and “P &L AGENCY AND HOTEL MANAGEMENT PC” or the company that will perform the processing.
Lawful use: At “P & L AGENCY AND HOTEL MANAGEMENT PC” we may collect, store, disclose and generally process the personal data of visitors/users, when required by the Personal Data Protection Regulation and/or the Law, or when this is necessary, in order to protect the interests of both parties, as they arise from the transactional and contractual relationship between them business-consumer.
COVID 19: for public health prevention (case tracing) and public interest purposes, due to the COVID 19 pandemic.
IMPORTANT NOTICE: For the collection of personal data, which does not take place electronically, through the websites owned by “P & L AGENCY AND HOTEL MANAGEMENT PC” and concerns the processing of personal data of employees, prospective employees, partners, contractors, suppliers, individuals, customers and, in general, natural persons, data subjects are provided with separate written and detailed information during the collection of the above data, based on the relevant obligation set by the requirements of Articles 13 and 14 of the GDPR.
Data Retention-Storage
At “P & L AGENCY AND HOTEL MANAGEMENT PC” we store personal data only for the time required to perform a service that you have requested or for which you have given your approval, subject to the contrary provisions of the Law, as is the case with regard to matters governed by commercial and/or tax legislation, the various relevant provisions, etc. In any case, the personal data you provide to us and are reflected in written agreements, contracts and electronic correspondence related to the execution of a contract or the execution of a commercial transaction, are stored for a period of 20 years in a physical and electronic file in the legal department, in the sales/contracts department and in the accounting department of “P & L AGENCY AND HOTEL MANAGEMENT PC” or any other third party providing directly or indirectly the above services or assists these departments in carrying out their work or provides management services to us.
Health data that may be collected during the COVID 19 pandemic will be deleted immediately after the end of the pandemic and following the instructions of the Ministry of Health.
Delete Data
Your data is deleted on a case-by-case basis and always on the basis of the provisions set out in the relevant Legislation.
Transfer of personal data
“P &L AGENCY AND HOTEL MANAGEMENT PC” does not transmit personal data to third parties, unless this is required for legitimate purposes, in order to respond to your requests and / or if required or permitted by law. In any case, access to your personal data is allowed only to authorized persons, who are required to have access in order to be able to complete the purposes of their collection, use and processing, as disclosed in this Statement. In some cases, “P & L AGENCY AND HOTEL MANAGEMENT PC” may transmit your personal data to competent Public Authorities or to natural or legal persons entrusted with the execution of a processing, provided that we inform you in advance and obtain your prior consent, if required for each processing. The persons who have access to the data are obliged to maintain their confidentiality.
Log files
We use IP (Internet Protocol) addresses to analyze trends in internet use, to manage our computer and network resources, to monitor any unauthorized illegal or malicious activities (attacks), and to collect general demographic information (country of origin) for aggregate use.
IP addresses
The IP address, through which the visitor/user/member’s computer has access to the internet and then to the Website/Application, is stored and may be used by the page, if necessary, in case of violation of the Terms of Use of the Website/Application by the visitor/user/member. IP addresses are not personal data.
Data security
The Internet, like any medium used to transmit information, cannot be considered 100% secure. Internet security is a sensitive issue and relies mainly on reputable organizations and businesses that respect the confidentiality and security of its Users’ data. “P &L AGENCY AND HOTEL MANAGEMENT PC” strives to maintain strict security measures and controls to protect your personal information in order to ensure compliance with all applicable legal requirements. At “P & L AGENCY AND HOTEL MANAGEMENT PC” we apply security measures, at a technical and organizational level, in order to secure the data we have collected from you, against any intentional or unintentional attempt, manipulation, loss, destruction or generally access by an unauthorized person. Our security measures are subject to constant rechecks and reforms, according to the latest technological developments. “P & L AGENCY AND HOTEL MANAGEMENT PC” uses the latest encryption and information protection tools (128-bit encryption, secure pages, firewall, digital signatures, etc.). Access to your personal data is limited only to employees authorized to provide you with products and services and who come into contact with such data. Physical, electronic and procedural safeguards have been activated, which are in line with the regulations for the protection of your personal data. “P & L AGENCY AND HOTEL MANAGEMENT PC” takes every possible precaution in order to keep your personal data safe. However, due to the nature of the internet, it cannot guarantee the protection of communications or data stored in its browsers from any unauthorized access by third parties.
Internet access
If you contact “P & L AGENCY AND HOTEL MANAGEMENT PC” via the internet, then we may occasionally use an e-mail or telephone number to contact you, if you have provided them to us voluntarily. You should know that communications over the internet, such as emails, etc., are not secure unless they are encrypted. “P &L HOTEL MANAGEMENT PC” bears no responsibility for any unauthorized access or loss of your personal information that is beyond its control.
Privacy Policy and Children
This website is designed and intended for use by adults. If you are a minor under the age limit from which parental consent is required in the country (in Greece this limit is over 15 years old – Law 4624/2019), you should check the terms of this Statement, together with your parent or guardian, to ensure that you understand and accept these terms. If we are found to have collected information from a minor without the consent of their parent or guardian, when such consent should have been obtained, we will delete the information as soon as possible.
Social Networks
Our Website may offer the possibility of sharing on Social Networks and other related tools that allow you to share your actions within the Website with other applications, websites or mass media, and vice versa. The use of such features allows the exchange of information with your friends or the general public, depending on the settings you have specified in your personal profile. Please refer to the Privacy Policies of these social networking services for more information on how they handle your data.
Special Categories of Data
We ask you not to send us via e-mail and not to disclose to us, through the use of the communication platform, your sensitive personal data. The processing of personal data of this category does not serve in any way the purpose of processing, as defined in this Policy.
The interception of communications
All communications of “P & L AGENCY AND HOTEL MANAGEMENT PC” with you (including telephone conversations, e-mails, etc.) are not monitored or recorded.
Links
Our website may contain links to other websites. This Privacy Statement applies only to the user’s access to this website, but also to other websites managed exclusively by “P & L AGENCY AND HOTEL MANAGEMENT PC”. Under no circumstances is the administrator of this web portal responsible for the terms of protection of personal data of other networks sites, which are under the responsibility of third parties (natural or legal persons).
Revisions to the Statement
“P & L AGENCY AND HOTEL MANAGEMENT PC” reserves the right to modify or periodically revise this Statement, at its sole discretion. In case changes are made, “P & L AGENCY AND HOTEL MANAGEMENT PC” will record the date of amendment or revision in this Statement and the updated Statement will apply to you from that date. We encourage you to periodically review this Statement to see if there are any changes to the way we handle your personal data.
Applicable Law and Jurisdiction
For any dispute arising between the user and “P & L AGENCY AND HOTEL MANAGEMENT PC” the applicable law is the Greek law and the competent courts for the resolution of the dispute are the competent Courts of the Prefecture of Dodecanese.
What are your rights?
According to the EU General Data Protection Regulation (GDPR) 2016/679, as in force, you have the following rights:
(a) the right of access;
(b) the right to rectification;
- c) the right to erasure, under certain circumstances, such as when processing is no longer necessary for the purpose for which it was originally collected and there is no compelling reason for us to continue processing (or storing it);
(d) the right to restriction of processing;
(e) the right to transfer the data;
(f) the right to object and the right not to be subject to a decision based solely on automated processing, including profiling;
(g) the right to lodge a complaint with the supervisory authority.
That is, you have the right to receive, upon request, free information about the stored personal data concerning you, to object, upon request, to the processing of data concerning you, with effect for the future and withdrawal of your consent, as well as, in accordance with the applicable provisions, the right to rectification, restriction of processing, transmission of data, deletion of such data and complaint to a supervisory authority. In these cases, please contact in writing with a relevant original letter or by fax or e-mail to the competent Department of Personal Data Protection of the Company, mentioned below.
Right to lodge a complaint
If you consider that the processing of your data violates Regulation (EU) 2016/679, you have the right to lodge a complaint with a supervisory authority. The competent supervisory authority for Greece is the Data Protection Authority, Kifisias 1-3, 115 23, Athens, https://www.dpa.gr/, tel. 2106475600.
Communication
“P &L AGENCY AND HOTEL MANAGEMENT PC” informs you that it has appointed Personal Data Protection Officers with an e-mail address: info@angelholidays.gr If you have questions or recommendations regarding this Policy, you can address them to the above address. The constant developments on the Internet in general make it necessary to adapt our rules on network data protection from time to time. OR AGENCY AND HOTEL MANAGEMENT PC” reserves the right to make any appropriate changes to these rules at any time.
Cookies Policy
“Cookies” are data files that a website sends to your computer when you browse the website. These data files include data that allows our website to remember important information that will make it more efficient and useful for you to use the website. Our website uses cookies for various purposes. We use cookie technology and IP addresses to obtain non-personal information about website visitors and to provide our registered visitors with the best possible personalized online experience.
How do we use cookies? The visitors of the website of “P & L AGENCY AND HOTEL MANAGEMENT PC” use different internet browser software and different computers. In order to make your visits easier with the technology you use, we automatically record the type of browser and operating system a visitor uses, as well as the name of the visitor’s internet service provider. We also record the total number of website visitors in a cumulative manner so that we can update and improve our website. No personal information is exported through this process. This data shows us whether more visitors prefer certain features or parts of the site than others, which helps us keep our site updated with new material that is interesting to the majority of our visitors. In particular, the cookies we use are:
Strictly necessary for the operation of the website and user identification (necessary): The necessary, otherwise, absolutely necessary cookies, are essential for the proper functioning of our Website, allow you to browse and use their features, such as access to secure areas or use of the shopping cart. These cookies do not recognize your individual identity. Without these cookies, we cannot offer effective operation of our Site.
How do we use cookies to personalize your experience on our website? Cookie technology helps us provide material that suits a visitor’s interests and allows us to facilitate for the sake of our visitors registration and participation in sweepstakes and competitions and access to other features available on our website. Where permitted, we may associate personal information with a cookie file in such cases.
What happens if you don’t want cookies? If you do not want cookies, you can choose each time which of the settings you want for your computer through the special banner that pops up.
The rejection of cookies may affect your ability to use any of the products/services on the website of “P & L AGENCY AND HOTEL MANAGEMENT PC”.
