The website “www.santa-marina.gr” (hereinafter referred to as the “Website”), belongs to the legal entity under corporate name SANTA MARINA AXETEE, with its registered office located at 5 Xenias Street, Kifissia, 14562, Greece, under reg.no 122971501000 (hereinafter referred to as the “Company”).
This Privacy Statement describes the personal information which we collect, how the personal data is collected, the purpose for collection and processing personal data and your rights according to data protection legislation.
“Personal data” means any information relating to natural persons whose identity is or may be identified directly or indirectly, or characteristics identifying the physical, genetic, psychological, economic, cultural or social identity of that natural person.
The Company collects Personal Data in accordance with legal provisions such as name, surname, identity no or passport no, tax registration number, home or work address, telephone number, e-mail address, date and place of birth, nationality, gender, credit and debit card number or other payment data, travel itinerary, tour group or activity data, prior guest stays or interactions, goods and services purchased, special service and amenity requests, social media account ID, profile photo and other data publicly available, or data made available by linking your social media and loyalty accounts, data about family members, guest preferences, inquiries and comments and any other personalized data, such as your interests, activities, hobbies, food and beverage choices, services and amenities of which you advise us or which we learn about during your stay.
“Sensitive personal data” means personal data relating to racial or ethnic origin, political opinions, religious or philosophical beliefs, genetic data, biometric data for the undeniable identification of a person, health-related data. We do not collect sensitive personal data, unless specifically requested for certain purposes, such as for the purpose of your treatment at the spa facilities and in order to comply with our various legal obligations.
“Processing of personal data” means any act or series of act carried out with or without the use of automated means in personal data or in sets of personal data, such as collection, registration, organization, structure, storage, adaptation or alteration, retrieval, information search, use, disclosure, spreading, otherwise making available, the association or combination, restriction, deletion or destruction of personal data, whether in electronic form (electronic file) or in printed form (physical file).
How we collect Personal Data
The Company collects Personal Data when you make a reservation, purchase services from our website, communicate with us or otherwise connect with us or post to social media pages, or sign up for a newsletter or participate in a survey, questionnaire, contest or promotional offer. Furthermore we collect Personal Data when you visit our hotel premises, complete certain forms (i.e. Guest Registration and Information Form) or use services such as restaurants, concierge services, child care services and spa treatments. We may also collect Personal Data when you attend an event that we host or you organize an event at our premises. Furthermore the Company collects Personal Data from other sources such as travel agents and authorized licensor.
Cookies are small files saved to the user’s computers hard drive that track, save and store information about the user’s interactions and usage of the website. This allows the website, through its server to provide the users with a tailored experience within this website.
Users are advised that if they wish to deny the use and saving of cookies from this website on to their computers hard drive they should take necessary steps within their web browsers security settings to block all cookies from this website and its external serving vendors.
Other cookies may be stored to your computers hard drive by external vendors when this website uses referral programs, sponsored links or adverts. Such cookies are used for conversion and referral tracking and typically expire after 30 days, though some may take longer. No personal information is stored, saved or collected.
Purpose for collecting Personal Data
The Company asks you to provide us with personal information for the purposes of assisting us in improving the hotel’s administration and management, particularly our reservations procedures and guest services and in order to comply with our various legal obligations. We use Personal Data to provide services you request, including to facilitate reservations, payment, send administrative information, confirmations or pre-arrival messages, to assist you with meetings and events and to provide you with other information about the area and the property at which you are scheduled to visit, to complete your reservation and stay, for example, to process your payment, ensure that your room is available and provide you with related customer service. In addition we use Personal Data to personalize the services rendered to you, according to your preferences and personal needs. Furthermore with your consent we use your personal data for direct marketing or market research and in order to notify you of new services and offers, to offer and manage your participation in our global loyalty programs and with your consent to communicate your personal data to third party business partners for direct marketing.
Transfer of Data
The Personal Data is stored to our central computer database/ local database. In addition this information will be shared with our Authorized Licensor (Starwood EAME License and Services Company BVBA/Marriott Ιnternational, Inc.) for the purposes described in this Privacy Statement.
The Company may also disclose Personal Data to the extent required by the rules of any law, court order or any governmental or regulatory authority.
To ensure the confidentiality of all information you provide, we have various security measures in place such as limited and computer passwords and we seek to use organizational and technical measures to protect Personal Data.
The Company does not request from individuals under the age of eighteen to provide with Personal Data.
How you can request to have access, change, delete or withdraw your consent
You are welcome to see the information held about you at any time, to request us to make any necessary amendments to keep it up to date, rectifications of inaccurate personal data, erasure or restriction of processing of personal data, or if you would like to receive an electronic copy of your Personal Data. You may also withdraw your consent at any time. Please send your relevant request to the email address email@example.com
We will retain your Personal Data for a specific period of time in order to fulfill the purposes as described in this Privacy Statement, unless a longer retention period is required by law.
Updates to the Privacy Statement
The Company may revise this Privacy Statement in order to comply with its various legal obligations. Any changes will become effective when we post the revised Privacy Statement to our website.