Privacy Policy
BOOKING REQUEST FORM / CONTACT PRIVACY POLICY
Stin Ostria Village (efexís «emeís» í «i Epicheírisi»), anagnorízoume ti simasía tis prostasías ton prosopikón sas dedoménon. I paroúsa Politikí Aporrítou exigeí pós syllégoume, chrisimopoioúme kai prostatévoume ta dedoména pou mas paréchete méso tis fórmas aitímatos krátisis/epikoinonías ston istótopó mas. I epexergasía ton prosopikón dedoménon dienergeítai sýmfona me tis diatáxeis tou Genikoú Kanonismoú Prostasías Dedoménon (EE) 2016/679 (GDPR) kai tin ischýousa ellinikí nomothesía.485 / 5.000
At Ostria Village (hereinafter referred to as “we” or “the Company”), we recognize the importance of protecting your personal data. This Privacy Policy explains how we collect, use and protect the data you provide to us through the booking request/contact form on our website. The processing of personal data is carried out in accordance with the provisions of the General Data Protection Regulation (EU) 2016/679 (GDPR) and applicable Greek legislation.
2. Data Controller
The Data Controller of your data is Ostria Village (or the full name of the business), with address in Sivota, Greece. For any questions or requests regarding your personal data, you can contact us by email at ostriavillagesivota@gmail.com or by phone at +30 6970240320.
3. Data We Collect
Through the booking request/contact form on our website, we collect personal data that is necessary to respond to your request. This data includes: Identity and Contact Information (First Name, Last Name, Email Address, Phone Number) and Reservation Information (Accommodation Type, Arrival Date, Departure Date, Number of Adults and Children). We also collect Request Content through any additional comments or information you provide us in the message field.
4. Purpose and Legal Basis of Processing
​
We collect your personal data solely for the purpose of Managing and Responding to your booking request or inquiry and Contacting you to provide information regarding availability, pricing or completion of the booking. The legal basis for this processing is Article 6(1)(b) of the GDPR, as the processing is necessary to take pre-contractual measures at your request. In the event that your request does not result in a booking, we retain the data for Record Keeping purposes and to improve our services, based on our legitimate interest (Article 6(1)(f) GDPR) in handling your requests and customer service processes.
​
5. Recipients of the Data
​
Your personal data is not sold, exchanged or rented to third parties. Only authorized Ostria Village employees responsible for handling booking and communication requests have access to your data. We may disclose your data to third-party Processors (such as website hosting or booking management software providers), only to the extent strictly necessary to fulfill the purposes of the processing, and always under strict conditions of confidentiality and compliance with the GDPR.
​
6. Data Retention Period
​
We retain your personal data only for as long as necessary to fulfill the purposes stated in this policy. For requests that do not lead to a booking, we retain the data for a period of up to [Specify a period of time, e.g., 12 months] after the last communication. For requests that lead to a confirmed booking, the data is retained for the entire duration of the contractual relationship and for the period provided for by tax, insurance and other relevant legislation.
​
7. Your Rights
You have, at any time, the right to Access (to know what data we are processing about you), Rectification (to request the correction of inaccurate data), Deletion ("right to be forgotten") if there is no legitimate reason for their retention, Restriction of processing, Objection to processing and Portability of your data. You also have the right to file a Complaint with the Personal Data Protection Authority (PDPA). To exercise any of the above rights, please contact us at ostriavillagesivota@gmail.com.
​
8. Data Security
We take all appropriate technical and organizational measures to ensure the protection of your personal data against all forms of unlawful processing, such as accidental or unlawful destruction, loss, alteration, unauthorized disclosure or access.