For ATHILIA (hereinafter referred to as Hotel), the respect for and the protection of your personal data is a commitment. We understand and take seriously into consideration the fact that you are aware of and interested in your personal data.
This Personal Data Protection Statement describes the personal data the Hotel collects about you, how we use and protect your personal data, the options you have about the way we use this data.
We acknowledge that the protection of personal data is an ongoing responsibility and therefore we will update and amend this Statement from time to time.
Information provided directly by you
For example:
• Several of our Services allow users to create accounts or user profiles. Along with these Services, we may ask you to provide personal details to set up your account or profile. For example, you can submit details such as your name and email address.
• When ordering a service from us, we may ask for certain additional details to process your order, such as your name, room details, and billing data.
• When participating in an online or offline contest or promotional action, we may ask you for your name, contact details, email address, age and gender, personal and occupational interests, other personal characteristics, and your opinion of our products and/or services.
• Some of our Services allow you to communicate with other people. This communication will be stored on our systems.
We are obliged to request the following details about you and/or your family members:
• Contact details (e.g. surname, given name, father’s name, passport number, ID-card details, telephone, home address, email)
• Personal data (e.g. date of birth, nationality, place of birth)
• Billing details (e.g. credit card number, VAT number)
• Loyalty programme member number (member number for loyalty programmes of ATHILIA or other parties, such as airline operators)
• Date of arrival and departure, flight number, and room number
• Preferences and interests (e.g. non-smoking room, preferred floor, type of bed, sports, cultural interests)
• Data about your health, such as medicine reports and certifications, medical test results, data on pathological diseases, etc.
• Questions and comments submitted during or after your stay in ATHILIA.
The data we collect on persons under the age of 16 are restricted to given name, surname, nationality, passport/identity number and date of birth. This data can only be provided by an adult or guardian. We thank you for your efforts to ensure that children do not send us personal data without your consent, especially through the internet. Should any information of this type be sent to us, you can communicate with the Data Privacy department (see section “Questions and contact”) to arrange for the deletion of such information.
Moreover, information such as your passport number, recreational activities, hobbies, health issues, or whether you are a smoker or not can be described as sensitive. We retain such information only if we are obliged to do so by applicable law or if you have explicitly given us your consent (e.g. to provide you with an appropriate Service, such as a special diet).
Information on your use of our Services
Apart from the information you provide directly, we may collect information on your use of our Services through the software of your device or by other means. For example, we may collect:
• Device information, such as hardware model, International Mobile Equipment Identity (IMEI), and other unique device identity data, MAC address, IP address, operating system issue, and setting of the appliance you use to access our Services.
• Connection information, such as the time and duration of use of the Service, search commands entered in the Services, as well as information that may be stored in cookies we have placed on your device.
• Location information, such as GPS signal of your appliance or information on WiFi access points that may be transmitted to us when you use our Services (e.g. WiFi, Guestportal, mobile apps).
• Audiovisual information, such as voice recordings (which may be stored on our servers) when you use voice commands to use a Service or audiovisual information collected through closed circuit television (CCTV) for security reasons.
• Other information that relates to your use of our Services, such as the applications that you use, the websites that you visit, and the way in which you interact with content offered through a Service.
Information from third parties
We may receive information about you from available public and commercial sources. This, we may combine with other information that we receive directly from you or in relation to you. We may also receive information about you from third party social networking services when you choose to connect to such services.
Other information we collect
We may collect other information about you, your device, or your use of services in manners described at the point of collection or otherwise with your consent.
You may choose not to provide certain types of information, but this may limit your access to certain Services.
We collect personal data in various cases, such as:
a) Hotel activities
• Room reservation
• Check-in and payment
• Reservation or use of hotel services
• Various requests, complaints, and/or disputes
b) Participation in marketing programmes or events
• Registration in loyalty programmes (e.g. Privilege)
• Participation in online and offline surveys (for example, customer satisfaction survey)
• Participation in contests and games
• Subscription to mailing lists in order to receive offers and other promotions by email
c) Transmission of information from third parties
• Tourist agencies, tourist offices, GDS reservation systems, online reservation systems (e.g. booking.com, expedia.com, etc.), and other reservation systems
d) Actions through electronic devices
• Login on our websites
• Connection to our WiFi network of our hotel
• Completion of online forms (e.g. reservation forms, precheck-in forms, satisfaction survey forms, etc.)
We may disclose your information to the following entities:
• Business associates. We may ashare your information with trusted business partners. These entities may use your information to provide you with services you have requested, make provisions relating to your interests, and offer you promotions, advertisements, and other material.
• Service providers and/or any third parties that may process information on our behalf. We may also share your information with companies that provide services on our account or behalf, such as IT contractors, bulk mailers, banks, credit card institutions, law firms, mail service companies, printing services companies, etc.
Credit approval: Upon submission of a credit approval claim, personal data are utilized and disclosed to designated third parties according to applicable legislation in order to decide on the credit approval and its subsequent level.
• Other third parties, if so required by law or in order to protect our Services. Situations may arise in which we share your information with other third parties:
o To comply with the law or mandatory legal procedure (such as search warrants or other court orders)
o To confirm or implement our compliance with the policies governing our Services
o To protect the rights, ownership or security of ATHILIA, business partners, or customers
• Other third parties in relation to corporate transactions. We may share your information with third parties within the context of a merger or transfer, or in the event of bankruptcy.
• Other third parties with your consent or at your command. In addition to the disclosures described in this Privacy Policy, we may share information about you with third parties if you give your consent or if you request us to do so.
To provide you the best possible service, we allow access to your personal data or to certain categories to competent, authorised members of our personnel.
We may transfer your personal data to internal or external recipients who may be located in countries that offer different levels of protection for personal data.
Please note that data protection and other laws in the countries to which your information may be transferred may not be as protective as those in your country. To protect your privacy, the transfer will take place according to the legislation governing the processing of personal data.
ATHILIA takes all reasonable measures to safeguard the transfer of personal data to an external recipient in a country that offers a different level of privacy than the country where the personal data is collected.
We have taken measures to protect the information that we collect in relation to our Services, especially sensitive personal data. We implement international standards and practices to ensure the safety of networks and the encryption of data.
However, please bear in mind that despite the reasonable measures that we take to protect your information, no website, internet transmission, computer system or wireless connection is ever completely safe.
We take reasonable measures to ensure that your personal information will be stored no longer than needed for the purpose which it has been collected and no longer than required by the contract or the applicable legislation.
In addition to existing lawful user rights, according to the legislation in certain jurisdictions, you may also be entitled to request details on the information that we collect and to correct any inaccuracies that may be contained in such information. If permitted by law, we may charge you a small fee for the provision of this possibility. We may refuse to handle requests that are repeated to an unreasonable degree, require disproportional technical effort, jeopardise the privacy protection of others, are extremely impractical, or involve access that is not otherwise required by domestic law. If you wish to submit a request for access to your data, please contact us.
Υου have the right to obtain the erasure of your personal data from the controller.
This policy may be amended from time to time. To ensure that you are aware of any changes, please check this policy on a regular basis, especially before submitting a reservation request. By accessing or using our Services after we have posted an updated version of the Privacy Policy, you agree with the new practices contained in the update. The most recent version of the privacy policy will always be available here.
A printed version of this Privacy Policy can be found at the reception desk.
If you have any questions regarding this policy or the protection of data at ATHILIA, please contact us at the following address:
ATHILIA NIKIANA LEFKADA 31 100
Email: info@athilia.gr
ATHILIA
NIKIANA
LEFKADA 31100
Tel.: +30 6973237811
info@athilia.gr
