Privacy Policy

Personal information collected by this website and why we collect it

This website collects and uses personal information for the following reasons:

• Contact forms and email links
  In case you choose to contact us using our contact form, none of the data you provide (email, full name and telephone, if you desire so) will be stored on this website or will be transferred or processed by any third party data controller.You can send an email at info@thecovemykonos.com at any time and request the deletion of all your information.
• Ensuring Privacy
  To ensure confidentiality in data transfer, we use the SSL encryption protocol.
• Monitoring site traffic
  Like most websites, this one uses Google Analytics (GA) to track user activity. We use this data to determine the number of people who use our website, to better understand how they find and use our web pages and to see their progress within the site.Although GA records data such as your geographical location, your device, your web browser and your operating system, none of this information can make you personally known to us.GA also records your computer’s IP address, which could be used to identify you, but Google does not give us access to this. Additionally, on this site, Google Analytics code is completed with “gat._anonymizeIp();” to ensure anonymized collection of IP addresses (also called IP-masking). We also consider that Google is a third party data controller.

COOKIES POLICY

We use cookies on our website, as explained in detail below.

What is a cookie?

The term “cookie” refers to a small data file consisting exclusively of a set of textual information, which the website transfers to the web browser on the hard disk of your computer or mobile phone or smart TV, either temporarily throughout your visit, or sometimes for longer periods, depending on the type of cookie.

When you use a web browser (Chrome, Firefox, etc.) to access Services, you can configure your browser to accept, reject cookies, or notify you when they are sent.

Why do we use cookies?

Our primary goal is to continuously upgrade the navigation experience of our site visitors. To achieve this and meet your every need, we use elements that relate exclusively to your preferences when browsing our site.

No attempt is made to trace the identity of those who visit the website. No information collected from this website will be correlated with any personally identifiable information from any source.

Types of cookies:

The basic types of cookies that websites may use are described below:

• Necessary Cookies: These are Cookies that are absolutely necessary for the operation of a website. Without these cookies, the website cannot function properly. As a result, we do not ask for your special consent for these Cookies. All other Cookies require your consent.
• Functionality Cookies: Functionality cookies help make a website easy-to-use, allowing basic functions such as navigation and access to secure areas of the website. The website cannot function properly without these cookies.
• Preference Cookies: Preference cookies allow a website to remember information that changes the way the website behaves or looks, such as your preferred language or region you are located in.
• Cookies Analytics: They enable us to evaluate the effectiveness of various functions of our site, so that we can continuously improve the experience we offer you.
  More specifically we use:
  Google Analytics: _ga | _gid | _gat
  _ga – This cookie collects information about how users use the website, for analytical purposes. – Duration 2 years
  _gid – This cookie collects information about how users use the website, for analytical purposes. – Session duration
  _gat – This cookie restricts the collection of data if too many user requests are received on one page. Some user requests have been blocked and results are displayed. – Duration 10 minutesThese cookies are used to collect information about how visitors use our website. We use the information to compile reports and help improve the website. Cookies collect information in an anonymous form, including the number of visitors to the website, where the visitors to the website came from, and which pages they visited.More information: Google Policy. To opt out of Google Analytics’ detection on all web pages, visit: Opt Out Google Analytics
• Unclassified: Unclassified cookies are cookies that are in the process of being classified, together with the providers of individual cookies.

CHANGES IN THE USE OF COOKIES BY US

We may from time to time change our Cookies Policy, in whole or in part, at our sole discretion. Any changes hereto will take effect as soon as the updated Policy is posted on our Website.

1. Who are we (Data Controller)

We consider the management of your personal data a very serious matter, which is why we make every effort to fully comply with all rules on their processing, as they arise from Greek and European law.

We collect certain information about the visiting users of our website, which may lead to their direct or indirect identification.

According to the applicable legal framework, this information constitutes personal data, you, as visitors – users, are the “data subjects” and we, as a company, are the “data controller” of your data.

Our Company is committed to processing your data in a fair and transparent manner, always in accordance with the applicable legal framework, as reflected mainly in the General Data Protection Regulation (GDPR) and Law 3471/2006.

What does this mean in practice:

• We collect and process your data only for specified, explicit and legitimate purposes.
• We collect and process only the data that is necessary for the purposes we set.
• We make every effort to ensure that your data is accurate, giving you, if applicable, the possibility of correction/deletion.
• We retain your data for the period of time required for the purposes we set.
• We make every effort to protect the security of your data from unauthorized or illegal processing and accidental loss, destruction or damage.

In the context of protection of the data we process, we implement a series of appropriate technical and organizational measures, we adopt internal security policies, we properly train our company staff, which is committed to maintaining confidentiality and secrecy.

As required by the principles of information security and data protection, technical and organizational security measures are regularly monitored and, if necessary, updated and adapted to new best practices.

2. What data do we process and for what purpose

As a rule, we collect and process data of visitors/users of our website, only when they provide it directly and voluntarily, therefore a simple visit to the website does not necessarily mean that we process your data.

However, this rule may not apply completely in the following cases:

1. Data we collect automatically
   Due to the nature and mode of operation of the Internet, as soon as you visit our website, our server records your IP address, which is personal data, even if as a website we cannot identify you on our own based on this element. The reasons (legal basis and purpose) for which we collect your IP address, together with the date and time of connection and keep them in special files (log files) are the following:On the one hand, we have a legitimate interest in processing this data in order to ensure the security of networks, information and services from accidental events or illegal or malicious actions that endanger availability, authenticity, integrity and confidentiality of stored or transmitted data (e.g. control of “denial of service” attacks), but also to establish, exercise or support legal claims.On the other hand, we have a legal obligation to keep this information, as the protection of your data from malicious users is our priority but also our duty. In addition, under the current framework, we may be required by police or judicial authorities to provide information, which we should be able to provide, always under strict terms and conditions.
2. Data you provide to us
   • Identification data (name, surname)
   • Business relationship related to your person (company name, e-mail address, business postal address, telephone number)
   • Information about the use of our services, including information in your requests for services
   • Information from our personal, telephone and electronic communication with you
   • Information from the Internet browser you use or mobile applications
   • as well as any information processed by the Company in relation to the fulfillment of the contract, the legal obligation and for the purposes of its legal interest
3. Contact Form
   We provide visitors to our website with the opportunity to contact us through a contact form. The details that are necessary to communicate with us:Full name and emailPurpose of processing – Legal basisWe process the data based on your consent, which you provide with positive action before sending your message, in order to provide you with a reply. You have the right to withdraw your consent at any time, without prejudice to the legality of the processing based on the consent prior to its revocation.Sending a single email or submitting a contact form is not in itself a sufficient reason to include you in our database or retain your information for marketing purposes.Caution: Messages sent using the contact form are not covered by any kind of privacy, legal or other.Therefore, you MUST NOT include sensitive information about you or third parties in your messages.
4. Cookies

3. Information for managing newsletters

Our Company sends newsletters to its users at regular intervals, depending on their capacities.

By using our website and contact form, you are automatically included in the list of recipients of newsletters to the email you declare. In each newsletter you receive you have the opportunity to unsubscribe, with a relevant link at the end of the email.

Our Company reserves the right to delete any recipient from the newsletter lists without justification.

The administrators of our website make every effort for the smooth operation of the newsletters; however, it is always possible for problems of a technical or organizational nature to occur. For any issue that may arise, as well as for any relevant information regarding the operation of the newsletters, please contact us at info@thecovemykonos.com.

4. Where and for how long do we store your data?

As a general rule, we retain your data exclusively for a period of time, which is necessary for the respective processing purpose.

The rules for determining the retention period result from safeguarding the rules for data protection, the best practices of the field and ensuring the smooth operation of the Company. However, in addition to the parameters set by the Company itself, there are conditions set by the competent authorities that must be taken into account.

Please note that even if you request the deletion of your data, we may retain some of it solely for the purpose of legal obligations or for establishing, exercising and supporting legal claims.

5. Who we share your data with

With absolutely no one for direct marketing purposes. We use third party services (data processors) for very specific and absolutely necessary services, such as hosting or web analytics. In some cases. we may be required to share data with judicial or police authorities, under strict terms and conditions.

6. What are your data rights and how can you exercise them?

Based on the General Data Protection Regulation, you have a number of rights in relation to the processing of your data by the Company.

Specifically, regarding our website, you have the:

• Right of access, i.e. to submit a request to be informed if we are processing data and, if so, what it is, and some other information, such as e.g. the purpose of processing, recipients etc.
• Right to erasure, i.e. to request, under certain conditions, deletion of your data.
• Right to restrict processing, i.e. to ensure, under certain conditions, restriction of the processing of your data by us.
• Right to object, i.e. to oppose at any time the processing of your data based on our legal interest (commercial promotion).

Finally, in the event of a data breach, which may seriously jeopardize your rights and freedoms, and if it does not fall within one of the exceptions provided for in the GDPR, we have an obligation to notify you without undue delay.

Compliance with the legal framework for data processing and, in this context, the exercise of your rights, is a priority for the Company. For this reason, we have the right to request the provision of additional information, which is necessary to confirm your identity before exercising your rights.

In principle, we are obliged to respond to your request immediately, and within one month at the latest. If necessary, taking into account the complexity of your request and the number of requests pending for processing, this deadline may be extended by another two months. In any case, we will inform you as soon as possible and, in any case, within one month from the submission of your request, about its development and the reason for a possible delay in its satisfaction.

In case your requests are manifestly unfounded or excessive, especially due to their repetitive nature, the Company may either impose a reasonable fee, taking into account the administrative costs for providing the information, notifying or executing the requested action, or refuse to follow up on your request.

In case you consider that we do not comply with the legislation on personal data protection, you have the right to file a complaint to the competent supervisory authority, i.e. the Personal Data Protection Authority.

7. Cookies

Like most websites, we use cookies and similar technologies when you access and browse our website.

Weighing our obligation to protect your data and the needs of our website, we use these technologies sparingly, in order to make your browsing easy and effective, and to receive some anonymized information in relation to your visits.

By continuing to use this website, without changing the default settings, you agree to the use of cookies.

8. Minors

Our content and services are aimed solely at people over the age of 18 and we do not knowingly collect any information about people under this age limit. If you are under 18 years old, you are not allowed to submit your information to us in any way.

As it is not technically possible to control your age effectively in all cases, we undertake, in the event that the submission of personal data concerning minors is reported and verified, to delete all relevant information immediately. This deletion is without prejudice to the need to keep data in case of establishment, exercise or support of our legal claims, or the provision of consent by a guardian.

9. Policy and information changes

Effective protection of your personal data requires a systematic monitoring of our policies and procedures. At the same time, our desire to provide better services means that we are constantly striving to improve our practices and adopt new ones, always with respect to your personal data.

Therefore, this Privacy Policy is subject to change at any time without notice. Guided by the principle of transparency, we are committed to informing you of any significant changes in our policy. In any case, however, you should check our policy at regular intervals, as the use of our services implies your acceptance of it.

10. Questions

If you have any questions about our Policy or how we process your data in general, you can contact info@thecovemykonos.com.

Legal framework for the protection of personal data

Greece: Law 2472/1997, Law 3471/2006

Regulatory acts of the Personal Data Protection Authority

European Union: General Data Protection Regulation, Directive 2002/58/EC, Directive 2009/136/EC