REQUEST FOR AVAILABILITY

Privacy Policy

PRIVACY AND PERSONAL DATA PROTECTION POLICY

 

 

Greek Luxury Holidays, hereinafter referred to as the “Company,” attaches great importance to the lawful processing, security, and protection of your personal data, regardless of your capacity in which you communicate or collaborate with us, such as, indicatively, prospective or active customers, website visitors, employees, professionals, individuals, or third parties working with any company.

Please read these terms carefully. By using our website and signing the relevant consent form, you unreservedly accept the practices described herein, the terms of which henceforth govern the contractual relationship between us and are incorporated into the terms of use of each of our services.

  1. What is your personal data?

Your personal data includes any information on paper or electronic media that can lead, either directly or in combination with other information, to your unique identification or to your identification as a natural person. This category includes, as applicable, information such as your name, tax identification number, social security number, physical and electronic addresses, landline and mobile phone numbers, calling and called telephone numbers, SMS/MMS message recipients, your bank/debit/prepaid card details, your email addresses, your equipment or terminal device identifiers, computer, smartphone, tablet, your internet search history (log files, cookies, etc.), and any other information that allows for your unique identification in accordance with the provisions of the General Data Protection Regulation (GDPR 2016/679), Law 4624/2019, the applicable Greek legislation, and the decisions of the Hellenic Data Protection Authority (HDPA).

  1. What personal data we collect

We process in accordance with the law and protect your personal data when you contact us or through our website with our contracted customers, when you call our numbers or short codes to provide you with information, value added services to the end user (B2C) or services on behalf of third parties (B2B), or to receive other services, informational, entertainment, e-government, mobile marketing, and information or services related to any other activity of the company.

  1. Lawful processing

The company will use your information for the following lawful processing purposes (pursuant to Article 6 of the GDPR), as applicable, with your explicit consent, which you can freely withdraw at any time, or to perform a contract or precontractual relationship with you, or to serve our legitimate interest or to protect your vital interest, namely:

  • To manage your contact details—specifically your name, contact telephone number, and email address—and to forward them, if necessary, to the customer you have indicated (advertiser) and only for the purpose of communicating with us or with the customer in order to reach a short-term rental agreement between the website user and the customer (advertiser).
  • To search for information in order to complete the communication requests you
  • To respond to your requests and questions about our services, as well as to inform you and respond to your suggestions and comments on improving our services.
  • To announce the results of surveys, sweepstakes, and contests in which you may have
  • To analyze traffic to our websites and improve your experience, as well as to provide you with information about services, special offers, and promotions.
  • For our internal operations and analysis, such as internal management, fraud prevention, use by management information systems, invoicing, accounting, billing, and auditing.

In any case, you can change your preferences at any time by sending an email to info@greekluxuryholidays.gr or by using the unsubscribe link at the bottom of every email you receive from us.

  1. What are the principles of collection and processing

This Privacy Policy aims to inform you about the terms of collection, processing, and transfer of your personal data that we may collect as Controllers or Processors. The Company and its trained staff apply the ten Processing Principles of GDPR 2016/679 (lawfulness, objectivity, transparency, purpose limitation, data minimization, accuracy, storage limitation, integrity, confidentiality, and accountability). The Company protects and ensures your eight Rights regarding the use of your Personal Data (information, access, rectification, erasure, restriction of processing, portability, objection, and non-automated decision-making based on profiling, as specified in Greek law). The above applies without any discrimination and applies to all processing we carry out and all services we provide, either independently or through our subsidiaries.

  1. How we collect your personal data

The Company collects your personal data when you accept the terms of use of each of our services, such as:

  • when you call our numbers or short codes, when you send us an email, or when you fill out an application, order, or contact form.
  • when you contact our offices or our customer service department staff, and our call center, either to make purchases or to express your opinion, complaints, or comments.
  • When you send us your mailing address for issuing or sending invoices or service
  • When you purchase a service so that we can verify your age and determine whether you are legally permitted to enter into a valid contract with us or whether the consent or signature of your parents or guardians is required.
  • When you voluntarily register in printed or electronic catalogs to receive printed, electronic or SMS informational material or other marketing material, or to update your preferences, or when you participate in contests, questionnaires, and surveys.
  • when you visit our websites through which we collect, with your express consent, information from your terminal device via cookies, such as your Internet Protocol (IP) address, the operating system you use, the type and version of your browser, etc.
  • When we receive documents, requests, orders, pleadings, warrants, from third parties, such as supervisory, prosecutors, courts, tax authorities, for the investigation of crimes and your protection against fraud or the fight against all forms of crime and the prevention of infringement of legal rights (e.g. protected intellectual property, software, music).
  1. Minimization, storage, and deletion of your data

The Company will always ask you for the minimum personal data required by law to connect to our electronic platforms and services, to purchase services, to communicate with other users via websites, or to participate in competitions and promotional activities.

Our Company retains your personal data only for as long as required by the contractual terms of each service, in accordance with applicable law, based on the purpose of processing, and then anonymizes or destroys it. You can ask us and find out what data we collect about you and correct or delete it by contacting us in any way, unless its retention is required by law for tax, evidentiary, or judicial purposes and for the prosecution of illegal acts.

  1. Cookies Policy

In accordance with European Directive E-Privacy 2009/136/EC and the Hellenic Data Protection Authority (HDPA) Guidelines of 25.2.2020, our website accepts the use of cookies. These are online tools for collecting and analyzing information from social media platforms or third-party partner websites in order to measure traffic, improve functionality, content, and overall appearance of our website, and to adapt it to the needs of our customers.

When you use our website, your personal data is processed by third parties, such as social networks and search engines, e.g. Google Analytics, Facebook social plugins, etc., without any involvement, influence, or control on the part of the Company, and is transferred either within or outside the European Economic Area (27 EU member states plus Iceland, Liechtenstein, and Norway), for which these third parties are solely responsible. If you do not want third parties such as Google, Facebook, Twitter, to receive information from your browser when you visit the Company’s websites, you can opt out of the terms provided by the respective Terms of Use available on each such third party’s website. Although most browsers automatically accept the use of cookies, you can always change the settings on your computer to choose not to accept cookies, or to be asked to accept each one separately. However, you should be aware that this will limit the range of browsing options available to you on each website and your user experience.

  1. Transfer of your data to third parties

As a rule, our Company does not transfer your personal data to third parties, except when we act as intermediaries and to the extent that this is necessary to fulfill requests related to the services provided by us at . Such third parties may be our contracted customers (advertisers), whether acting in a commercial capacity or not. Such third parties may be official state and supervisory bodies (e.g., law enforcement and prosecuting authorities, Cybercrime Prosecution, APDPCH, EETT, ADAE, supervisory authorities), when we are required to comply with the law and prevent illegal actions against us and our customers (e.g., telecommunications fraud, verbal abuse, defamation, etc.). Third parties may also be telecommunications companies, television stations, cloud providers, healthcare institutions, professional associations, audiovisual content providers, shipping companies, reservation systems, and other global distribution systems.

Our Company selects reliable providers and endeavors to impose contractual restrictions on third parties that receive your personal data to ensure its lawful use. However, we cannot guarantee that they will not use or disclose this data without your permission. For this reason, we recommend that you carefully review the privacy practices of any third- party providers/suppliers whose products or services you purchase through our websites.

In order to process your data, we may need to transfer your information to other countries, including countries within and outside the European Economic Area (EEA) based on EU adequacy decisions, binding corporate rules, standard contracts, and approved codes of conduct.

  1. Security of your personal data

In all cases, we take appropriate technical and organizational measures to ensure the confidentiality, integrity, and availability of your data. Our goal is to ensure that your personal information is transferred, stored, and processed in accordance with appropriate international standards and security procedures. At the Company, we recognize the importance of protecting your privacy and all your personal information. To this end, we have appropriate security policies in place and use appropriate technical and operational tools, such as anonymization, pseudonymization, data encryption, tokenization, use of firewalls, establishment of access levels, authorized employees, staff training, periodic audits, compliance with international security and business continuity standards.

Any of our partners who have access to the above information use it solely for the above purposes. We share the information you provide to us exclusively in the ways described in this Policy and in accordance with your express and specific consent for each type of processing, which you can freely revoke at any time by contacting us.

  1. Display of targeted advertisements

If you have given us your written consent, we may use your personal data together with other information we have collected, after human intervention by our sales department, to display advertisements relevant to your apparent preferences on our website or on another website.

However, we do not use automated tools to identify and evaluate your consumer profile and general preferences with other personal information (such as your email address) to display advertisements or send you personalized offers. Furthermore, we do not share your personal information with third parties so that they can send you relevant advertisements, unless you have expressly consented to this in writing. If you wish to stop receiving updates or offers from us, you can use the unsubscribe link at the bottom of any email you receive from us.

  1. Links to third-party websites

Our Company’s websites may contain links to other websites of third parties, independent entities, such as, indicatively, telecommunications companies, content providers, entertainment producers, professionals, transportation service providers, payment service providers, etc. which are operated and maintained exclusively by them and which we do not control, as mentioned above. Therefore, we bear no responsibility whatsoever for the content, actions, or policies of these websites. Please read the relevant data protection policies on the websites you visit carefully, as they may differ significantly from ours.

  1. Unsolicited commercial communications

The Company does not allow the use of our website or services for the transmission of bulk or unsolicited commercial email (spam). Furthermore, we do not allow the sending of messages to and from our customers that use or contain invalid or forged headers, invalid or non-existent domain names, techniques to conceal the origin of each message, false or misleading information, or violate the terms of use of websites. We do not allow the collection of email addresses or general information about our customers and subscribers through our website or services in any way. We do not permit or authorize any attempt to use our services in a manner that could damage, disable, overburden, or impair any part of our services or interfere with any other party’s lawful use of our services.

If we believe that any of our services are being used in an unauthorized or inappropriate manner, we may, without notice, at our sole discretion, take appropriate measures to prevent messages from a specific domain, an email server, or an IP address. We may immediately terminate any account using our services that, in our sole discretion, transmits or is connected with the transmission of any messages that violate this policy.

  1. Contact us with questions or comments

If you have any questions or comments about this privacy and security policy, or if you believe that we have not followed the principles set forth herein, please email us at info@greekluxuryholidays.gr or contact us at the following postal address: 23 Demokratias Street, 50100 Kozani, Greece.

  1. Validity of the Privacy Policy

This Policy was published by the Company on 2026.3.2 and is subject to periodic improvement and revision.

Cookies Policy

  1. What are cookies?

Cookies are small data files that a website you visit, such as ours, can install and store on your computer or mobile device (tablet, smartphone, laptop). Thanks to cookies, the website remembers your actions while you are browsing. The use of cookies as trackers is supported by various browsers, such as Google Chrome, Internet Explorer, Mozilla Firefox, Safari, and Opera. However, if you wish, you can disable them so that they are not accepted, or even delete them afterwards.

  1. Functions of cookies

Depending on their type, cookies perform functions such as measuring page traffic, recording the number of visitors, language, time of entry, geographical origin, device identifiers (e.g., operating system, screen resolution), keywords you used, login attempts, etc. Some cookies are personal data and others are not. Some cookies are technically necessary, while others serve commercial and advertising purposes.

  1. Types of cookies

There are various types of cookies: functional, technical, user identification, advertising, etc. The cookies of the website you are visiting are installed by the website/page you are visiting and can only be read by it. If the website uses external third-party services, then their own cookies, known as third-party cookies (Google Analytics, Facebook, etc.), are also installed on your device. Persistent cookies are those that are stored on your computer and are not automatically deleted when you close your browser. Session or session cookies are those that are deleted as soon as you close your browser. Each time you visit our website, you will be asked to accept or reject cookies. If you consciously choose to accept them, our website will remember your preferences (such as username, language) for a certain period of time. This way, you will not need to re-enter them when browsing our site during the same visit.

  1. Legal status of the use and storage of cookies

The installation and use of cookies is specifically regulated by law (Article 4(5) of Law 3471/2006, which transposed European Directive 2002/58/EC EC ePrivacy), which is expected to be replaced by the ePrivacy Regulation, in which case changes may be made to this policy. Each website is allowed to install such a cookie, provided that it constitutes protected personal data, only if you, as our user, give your explicit consent (opt-in) (in accordance with the terms of GDPR 2016/679) and the instructions of the Hellenic Data Protection Authority, after clear and comprehensive information about the installation, its usefulness, the consequences of refusal for the user experience, the purpose of the processing, the exercise of the right of access, and any recipients of the data. This consent may be given through appropriate settings in your web browser or through another application. For this purpose, we provide you with the following detailed information.

  1. How do we use cookies?

We use the following types of cookies:

Name Service Purpose Usefulness Duration Mandatory (storage of search history and visitor preferences, improvement of functionality, collection of analysis data, user authentication, security, load distribution, advertising)

Third-party providers

Our website displays content from external providers such as Google, Analytics, YouTube, Facebook, Twitter, etc.

To view third-party content, you must first accept the terms and conditions set by the external partners themselves. This includes the third-party policy on cookie collection, which is beyond our control. However, if you do not view the specific content, no third-party cookies will be installed on your device.

  1. Obtaining visitor consent

Mandatory acceptance of cookies is not a condition for accessing our website. You can freely navigate the website, checking and accepting or rejecting cookies, whether ours or those of third parties, whose use policy is determined solely by them, without our involvement or legal responsibility.

Next to the accept button for each cookie there is a link that leads to our website’s cookie policy, where each user can read all the necessary information that will help them decide whether or not to consent to the use of cookies. Disabling trackers is just as easy as accepting them, with the same number of clicks and the same font.

  1. Checking and deleting cookies

You can control and/or delete cookies as you wish. You can delete all cookies already on your computer and set most browsers to prevent them from being placed. However, in this case, you may need to adjust certain preferences yourself each time you visit a website, and some services may not work (e.g., stored login details, website preferences).

This policy will be reviewed regularly to comply with the guidelines of the Supervisory Authorities and the latest legislative and case law developments. Last review: 2026.3.2.