PERSONAL DATA PROTECTION POLICY OF ELECTRA ORESTIADA HOTEL
ELECTRA ORESTIADA Hotel GP (controller) in application of the requirements of the
2016/679/EU General Data Protection Regulation (hereinafter the “GDPR”) and the
Greek legislation in force, kindly informs you that it will process and keep a file of
your following personal data in order to serve you during your stay at our Hotel, as
well as in order to invoice our services which you may evaluate.
In particular, we collect and process your following personal data: ID card
particulars: First and last name, nationality, date and place of birth, ID card or
passport number and issue authority, e-mail if you make an on-line reservation;
Data relevant to your reservation and stay: Room number, length of stay,
information on goods and/or services consumed.
Contact particulars: Home address (postal address), e-mail, mobile phone.
Invoicing data: TIN and Tax Office, in the event that an invoice is issued.
Image data, i.e. photos or videos from the cameras legally operating in our premises
for security purposes (e.g. central gate, lobby, and cash desk guard).
When visiting our website, our webserver automatically records data relevant to
your visit (such as your IP address, your browser, the pages of the website you visit,
dates and length of your visit, location information, etc.).
Optional data relevant to your preferences: for example non-smoking room, bed
type, preferred floor, specific meal preferences.
Optional data relevant to your health, such as allergies, mobility problems, which are
collected upon your request and provided that you grant your consent.
Your above personal data are collected and processed for the following purposes:
– Room reservation and provision of relevant room and board services;
– Planning and organization of events by the Hotel;
– Charging services and item consumption;
– Issue of tax documents and payment finalization.
Your personal data are kept and processed exclusively for the purposes described
above and/or for those you have granted your consent in accordance with the
special consent form you have filled in and to the extent necessary for their
fulfillment. Our Hotel does not use personal data for profiling purposes, in the sense
of the GDPR.
The collection and processing of your compulsory personal data during your stay at
our Hotel, as well as all the services we provide to you are based on the customer-
hotel relation, in accordance with the legal and regulatory provisions in force, as well
as on the room renting and service provision agreement entered into between you
The collection and processing of your optional personal data is based on your written
consent for the purposes described herein above and therefore these data are
legally processed since all customers have already been sufficiently informed.
Furthermore, the collection and processing of your personal data is legal if made for
general legitimate interest reasons or in order for the operation of our Hotel to
comply with the Greek and/or European legislation.
We collect the above personal data directly from you when you make your
reservation, on your arrival, departure, payment or when you use the services
provided by our Hotel, as well as when you make any registration (written or
electronic) within the framework of our room renting agreement or your expression
of interest for any reservation. Moreover, we collect information from third parties,
i.e. travel agencies, tour operators, electronic and web-based reservation systems.
We will keep and process your Personal Data for the purposes mentioned herein
above and only for the period of time required for the purpose they have been
collected or for the period of time required under our agreement or the legislation in
force. To define the appropriate time period for keeping these data, we take into
consideration the volume, the nature and the sensitivity of the personal data, as well
as the periods of time over which it may be necessary to keep these data to respond
to any inquiries/disputes/checks and to protect our legal rights in the event that
claims are raised. The image data (photos or videos) are kept over a period of 48
hours and then they are automatically erased.
The personal data that you produce us are recorded in computerized systems which
provide sufficient security and are used by specially trained and authorized
personnel. The security and protection of all data is increased thanks to the use of
additional security software so that the protected files could be hidden from
unauthorized users. Only specific members of our personnel, depending on their
role and duties, have access to our IT systems. All users make use of strong
Our Hotel may be bound to produce personal data to Public, Judicial, Police etc.
Authorities in case we will be required to protect our business and our personnel, as
well as to our attorneys in the event that actions are lodged or claims raised.
Moreover, we cooperate with third parties, such as service providers for managing
our website, technicians responsible for the maintenance of our telephone
exchange, technicians checking and managing our IT systems, accountants, etc., who
ensure the confidentiality of the data and have signed confidentiality agreements
According to the 2016/679/EU General Data Protection Regulation and Law
4624/2019, you have the right of information, access to and rectification or erasure
of personal data, the right to restriction of processing, the right to data portability,
the right to object processing of personal data including the right to object
automated decision-making and profiling, as well as the right to lodge a complaint
with the Hellenic Data Protection Authority (www.dpa.gr.)
To withdraw your consent, to exercise your rights or in the event you have any
inquiry regarding the protection of your personal data, please contact Mrs. Ismini
Diamandi, Hotel Manager, and send her your relevant request at:
Mob. (+30) 6978-187605
Tel. (+30) 2552022111