Privacy Policy & GDPR Compliance
GENERALLY
The use of the electronic pages and services provided to the visitor / user by the website https://www.bellavita.gr, hereinafter referred to as “the Company”, implies your unreserved agreement with the Privacy Policy of this site. Therefore, the visitor / user must carefully read the contents of this page before using the services of our website. If he does not agree, he must abandon him and NEVER make use of his services and content.
This privacy policy may change from time to time according to legislation or developments in the industry. We will not explicitly notify our customers or users of our site about these changes. Instead, we encourage you to occasionally review this page for any changes to this privacy policy. Continuing to use the https://www.bellavita.gr site even after any changes to the Privacy Policy implies the unconditional acceptance of these terms on your behalf.
Privacy and data protection
We collect and process your personal data only when absolutely necessary.
We will never sell, rent, distribute or otherwise disclose your personal data unless the law so requires.
If you are under 16, you MUST have your parents’ consent before using the services of this site.
Relevant legislation
Along with our company’s internal IT systems, this site is designed to comply with the following laws / regulations regarding the protection of user’s personal data:
1. EU Data Protection Directive 1995 (DPD)
2. General Data Protection Regulation 2018 (GDPR)
Personal information collected by this site and why we collect it
This site collects and uses personal information for the following reasons:
Perform online booking
In order to complete a reservation, customer details such as name, surname, address, etc. are necessary. These figures are left to us and us only and will not be distributed to third parties.
Forms of communication and email links
If you choose to contact us using a contact form or an email link, none of the data you provide will be stored from this site or transferred or processed by any third party data processor as defined below in the section “Our third-party data processors”. Instead, these data will be sent to you via an SMTP protocol (Simple Mail Transfer Protocol). Our SMTP servers are protected by a TLS security protocol (sometimes known as SSL), meaning that email content is encrypted before being sent over the Internet. The content of the email is decrypted by our local computers and devices.
About the server of this site
All web traffic (file transfer) between this site and your browser is encrypted and transferred via the HTTPS protocol using Secure Sockets Layer (SSL).
Our third-party data processors
We use a number of third parties to process personal data for us. These entities have been carefully selected to comply with the legislation mentioned in this document.
Data breaches
For any of your personal information stored in our database, all necessary steps will be taken to secure them.
We will report any unlawful violation of the database of this third party data processing site or database to anyone and to all relevant stakeholders as well as authorities within 72 hours of the violation if it is obvious that the personal data that is stored in recognizable form, have been stolen.