loader image

Privacy Policy

Find out about our privacy policy

Privacy Policy

Privacy policy includes the means and procedures by which our business manages your personal data.

Its application is mandatory for the collection of your personal data.

For the purpose of our activity and our business operation, we collect and process personal data from guests, prospective guests, partners and others, in order to be able – on the one hand – to provide excellent services to our visitors and – on the other hand – to fulfill our obligations arising from our contracts and the law.

Our Privacy Policy follows the requirements of Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR).

In General

Domus Hospitality collects and processes personal data during its business activity and the operation of its rental apartments, in order to provide excellent services to its guests and to fulfill the obligations arising from its contracts and the law.

Purpose: The purpose of the business during this process is to collect the least possible personal data for the least possible period of time.

Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR) 

  • Data Controller: The person (natural / legal entity) that determines the means and purpose of processing personal data.
  • Data Processor: The person who processes data on behalf of the data controller. A data controller decides the manner and purpose of data processing, while data processors hold and process data, without having any responsibility or control over that data.
  • Data Protection Officer (DPO): The person who ensures, in an independent way, that an organization applies the laws that protect individuals’ personal data.
  • Data Subject: The person whose personal data is collected, held or processed.
  • Purpose Of Processing: The processing of a subject’s personal data in order to provide them with all the services and achieve the business purpose with security for their private life.
  • Consent GDPR : Any free, specific, informed and clear indication of the data subject’s desire, with which he declares the agreement to the processing of the personal data related to him.

Room reservations can be processed by phone, via email, through our website or through booking platforms partnered with us (e.g. booking.com, airbnb, etc.).

In some cases we collect the following data:

  • First and last name
  • Date of birth
  • Date of arrival and departure
  • Accommodation type
  • Address, area and postal code
  • Country
  • E-mail address
  • Credit/debit card data and/or bank account details

Purpose: The identification of our guests, the reservation and preparation of the appropriate accommodation and preferences, so that we can offer the corresponding amenities. In order to accept payment for the reservation/stay, we need to collect bank account, credit or debit card details, according to the terms of the agreement in cases where the guest makes a reservation or cancels the reservation or even does not arrive at the Domus HospitalityTo inform guests about any booking changes or about our services, we need to use their email address. In order to offer customers the convenience of our services and to justify the billing and benefits requested, we retain the relevant data with their particular preferences.

Legal basis: The reservation agreement between the business and the customer and the protection of the legitimate interest of our business, i.e. maintaining quality of service. In case of not providing all of the above, we will neither be able to book a room nor we will provide the guset with services they request nor to contact them if there is an update or any potential issue.

The company maintains a record of the reservation details and the date of arrival depending on the period of the guest’s stay and their preferences for special services. In case that the guest consents to the processing of address data for future communication, it is retained for as long as the guest has consented. Guest reserves the right to withdraw consent at any time, as this will not affect the lawfulness of the use based on consent prior to its withdrawal.

The law requires the retention of data due to receipts, invoices, tax audits and municipal or police ordinances, for at least 90 days. The retention of data due to the legitimate interest of the business could be up to 2 years.

(Articles 29, 30 2016/679)

In order for a guest to create a booking/reservation, they may be asked for their bank, credit or debit card account number.

Purpose: To provide the reservation to a guest and charge a deposit, part or the total amount thereof.

Legal basis: The execution of the contract concluded for the reservation. The provision of the data is mandatory as well as the requirement to provide the service and the security of the payment.

Regarding the room / apartment reservation, if the guest acknowledges the specific consent to retain data such as bank account numbers or credit / debit card details and for other transactions, the legal basis for the processing of their data will be their own consent to this processing.

Guest may withdraw their consent at any time, as this will not affect the lawfulness of the use based on consent prior to its withdrawal. Credit or debit card data processing period is for transactional purposes only and for authorized persons only. Upon the customer’s departure from Domus Hospitaity, this data is not disclosed and access to this data is avoided.

Bank account and credit or debit card data is deleted within 12 months of the transaction and if the payment process has been completed. In case the guest consents, this data is kept for as long as the guest’s account or credit/debit card is valid.

The company Domus Hospitality maintains a guest / customer database. Each record relates to information provided solely to the person making the booking and not to each person in the booking. The personal data recorded in this tab are:

  • First and last name
  • Address, city, region, zip code
  • Country
  • Identity or passport details
  • Date of birth
  • Phone, e-mail

Purpose: The registration file serves to manage the personal information of the customers, to prepare the appropriate space and preferences, so that the company is able to offer the corresponding services in time.

Legal Basis:

  • The law requires the retention of data due to receipts and invoices, tax audits and municipal or police regulations (at least 90 days).
  • The legal interest of the company (2 years).
  • Guest / customer contracts/agreements for the provision of accommodation services that allow for invoicing, bank payments and justification of charges in the event of a dispute.

Guest’s / customer’s data is entered on the tab to facilitate future bookings and services, without the need to re-enter data. Guest may withdraw their consent at any time, as this will not affect the lawfulness of the use based on consent prior to its withdrawal.

(Articles 29, 30 2016/679)

Website Policy

In order to ensure the communication of the company with the guest / customer and to better inform him, he may be asked to provide some information (name, email address, date of birth, etc.) for registration. Personal data declared by the guest/customer on this website are intended exclusively for securing the customer’s information and the reservation and cannot be used by third parties, without complying with the provisions of Law. 2472/1997 to protect the processing of personal data.

This website operates in accordance with the current Greek and European legislation and securely stores personal information for the relevant period based on the General Regulation of Personal Data. Personal data retained may be shared with the competent authorities upon their request and in accordance with applicable law.

Guest / customer has the right to information and objection, according to articles 11 to 13 of the Law. 2472/1997. If they are under 18 years old, before deciding whether or not to accept these terms, it should be read and fully understand them in the presence of a parent or a guardian. Acceptance of the terms of the copmpany by the parent or guardian will be considered acceptance of the terms and conditions by the guest / customer.

  • Personal Data: Navigation on this website is carried out without entering personal information. Information and personal data are entered exclusively and only if the guest is interested in information, reservations or sending information.
  • Booking Information: Necessary information for reservations are the guest’s and payment details (bank transfer / credit card / debit card), while personal details (address) are optional. In summary, the company requests as much information as is necessary for the immediate and excellent service of the guest/customer regarding the reservation and payment of their stay.

Recognizing the importance of the security of the guests’ personal data and their electronic transactions, Domus Hospitality company takes all the necessary measures, with modern and advanced methods, to ensure the security of the guests. All information related to personal information is secure, confidential and guaranteed by the following methods:

  • Privacy: To ensure the privacy of data transmission, this website uses the 256-bit SSL encryption protocol.
  • Secure Access: Access to the systems of this website (servers) is controlled by a firewall that allows the use of certain services by visitors / customers, while prohibiting access to systems and databases that contain confidential company information.
  • Encryption: Our database systems decrypt the information they receive with the same key and then process it. After this process, the visitor receives information following the same encryption process. Every part of the website where personal information can be entered (password, addresses, phone number, etc.) is encrypted.
  • Access To Information: Only authorized personnel have access to visitor/customer data and only when necessary.
  • Customer Information: The company does not disclose the details of its guests / customers and their transactions, unless it has written permission from them or is required by a court or authority decision.
  • Privacy Assurance: If the business uses third parties to support its systems, privacy is guaranteed.
  • Correction Request: The guest / customer can request and correct all the information that the company maintains about them if and as long as the guest / customer can justify the existence of an error.

If the guest / customer sends messages using the contact form of our website, they can choose to save name, email address and telephone number using cookies. This is for their convenience so the don’t have to fill in their details again when they leave another comment. These cookies will last for one year.

Domus Hospitality can communicate with the guest / customer through Social Media, such as facebook, instagram, etc. By clicking the “Like” and “Follow” buttons, Facebook users can subscribe to the company’s official page on these media. By clicking the “Like” button again they can be deleted. The company may have access to the registered profiles of the users, however, it does not record or process them in its system.

Purpose: The purpose is to share and promote our content through our page. The business and registered Social Media users share the latest news, offers and media content such as photos or videos to promote the business and promote its services.

Legal Basis: Consent can be revoked by unsubscribing at any time. The withdrawal of consent does not affect the lawful processing carried out before the withdrawal. If consent is revoked, the user will no longer receive notifications.

The processing period is valid for as long as the consent exists and is interrupted when it is withdrawn. No personal data is stored or processed.

Publications on this website may include embedded content (eg videos, maps, images, articles, etc.). Embedded content from third-party websites behaves in exactly the same way as if the guest had visited the third-party website.

These websites may collect data about guests / visitors, use cookies, incorporate additional third-party tracking, and track our website guests’ / visitors’ interaction with this embedded content, including tracking interaction with the embedded content if the visitor has an account and is linked to this website.

Cookies Policy

This website uses cookies to guarantee the correct operation of the processes, improving the use of the browsing experience and collecting the necessary information.

Some of the pages on this website use cookies to store information such as:

  • Name, date of birth, age.
  • Preferences in functional matters such as appearance, password, membership registration (only if this option is selected), if the visitor agrees to use cookies on this website.
  • Demographic data, unique identifiers such as phone number, mobile identification data, GPS data. This website does not collect sensitive personal data without the guest’s / visitor’s consent.

The guest can control and / or delete cookies according to their wishes.

  • Details can be found here: aboutcookies.org. The guest can delete all existing cookies on their computer by selecting the installation settings of the browser they use, therefore not allowing the installation of cookies.
  • However, in this case the visitor may need to adjust certain preferences each time they visit a website.
  • In this case some services of the website may not work properly.

Some of the website’s external links may use different cookies than the above. In this case, guest / visitor can find details about cookies on the relevant information page of the third-party websites.

Guest / visitor may be asked to agree to the storage of these cookies. Some of these cookies may be placed on the guest’s / visitor’s computer and used by third parties for marketing purposes. This happens when the website includes content displayed by a third party or when the guest / visitor clicks on the share button on this website and their computer receives cookies from this third party. These include social network providers such as Google, Facebook, etc. that provide services both to the guests / visitors of this website and to us.

Note: We cannot control third party cookies and therefore we assume no responsibility.

  • Privacy: To ensure the privacy of data transmission, the 256-bit SSL encryption protocol is used.
  • Secure Access: Access to this website is controlled by a firewall that allows the use of certain services, while prohibiting access to systems and databases that contain confidential company information.
  • Encryption: The database systems of this website decrypt the information they receive with the same key and then process it. After this process, the visitor receives information following the same encryption process.

Select Language

Select Language