Privacy Policy

PERSONAL DATA PROTECTION POLICY

Welcome to olympusriviera.com.gr, a website, which is owned and managed by the organization called “Pierian Organization of  Tourism Development and Promotion” and the distinctive title “Olympus Riviera Greece“, established in Katerini (40, 28th October Street, 40, P.O. Box 601 00) with VAT number 997334698.

Your use of our website [hereinafter the “Website”] is subject to the Terms of Use and this Privacy Policy. The Privacy Policy has been updated to ensure compliance with the General Data Protection Regulation [Regulation (EU) 2016/679, GDPR] and Law 4624/2019.

By using the Website, you unconditionally declare that you have reviewed, understood and accepted all the terms contained in the Terms of Use and Privacy Policy. If you do not agree with any of the terms contained in the Terms of Use and/or the Privacy Policy, you should refrain from visiting and using the Website and its services.

Olympus Riviera Greece is committed to respecting and protecting your privacy. This Privacy Policy describes how Olympus Riviera Greece, as a controller within the meaning of the GDPR, collects and processes personal data and other information about you, the users of the Website, and how our Website uses cookies and other identification technologies.

PERSONAL DATA

Any information relating to an identified or identifiable natural person (“data subject”) (e.g. name, surname, email address).

Special categories of personal data are personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, as well as genetic data, biometric data, data concerning health, sex life or sexual orientation of an individual.

PROCESSING OF PERSONAL DATA

Processing of personal data is any operation or set of operations which is performed, whether or not by automated means, on personal data or on sets of personal data, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

WHAT PERSONAL DATA WE PROCESS

The personal data we process is strictly necessary for the purpose we are pursuing. More specifically, we may collect, indicatively and not restrictively, the following:

Identity data: e.g. name, surname
Contact data: e.g. telephone number, email address
Information that you further declare in the contact form
Data collected through the use of cookies: e.g. IP address

FOR WHAT PURPOSE WE PROCESS PERSONAL DATA

We process your personal data only for the purpose we are seeking. By way of example and not limitation, we use your personal information to contact you in order to answer any questions you may have asked us or to fulfil any requests you may have made.

WHAT IS THE LEGAL BASIS FOR US TO PROCESS YOUR PERSONAL DATA

We process your personal data only if there is a relevant legal basis, such as:

Consent: where required, we may process your personal data if you have given us your consent for the purpose. You can withdraw your consent at any time.

Legitimate interest of the Agency: the Agency may sometimes have a legitimate interest in processing your personal data if the pursuit of the legitimate interest does not have a serious impact on the fundamental rights and freedoms of the data subjects.

Contract performance: we may process your personal data in order to fulfil contractual obligations.

Legal obligation: in some cases we need to process your personal data to comply with a legal obligation.

Vital interests: the processing of personal data is necessary to protect the vital interests of the data subject or another natural person.

Public interest: processing is necessary for the performance of a task carried out in the public interest.

WHO IS THE RECIPIENT OF YOUR DATA

Your personal data are processed internally in the Agency by the staff absolutely necessary for this purpose, who respect confidentiality conditions.

If we use a third-party supplier or commercial partner who will process personal data on our behalf and in accordance with our instructions, we will ensure that the third party performing the processing for us will have appropriate security and privacy measures in place as required by law and will process the personal data only for the performance of their contractual obligations to us and always in accordance with the instructions we have given them and for no other reason.

In some cases, your personal data may be transferred to the competent police or judicial authorities for the defence of our legitimate claims and only in cases where required by applicable law.

PERSONAL DATA SECURITY

We take care to take all necessary technical and organisational measures and procedures to prevent unlawful access and misuse of information and personal data. The measures we take include preventive security procedures, technical and physical mechanisms to restrict access and control the granting of access rights to authorised personnel.

FOR HOW LONG YOUR DATA IS STORED

We process your personal data only for as long as necessary to fulfil the relevant purpose, unless there is a legal provision for further retention or we need it to meet and fulfil our legal claims.

MEANS OF SOCIAL NETWORKING

Our organisation has its own social media pages (Facebook). We remind you that these pages are publicly accessible and any content, comments, personal information you provide will be visible to the general public and for this reason we recommend you to be careful with the content of the information you provide.

Information on the processing of personal data by the relevant social media can be found in their privacy terms.

COOKIES

Cookies are small text files that are stored on your computer or mobile device when you visit a website.

The cookie policy provides further details on the use of cookies and the ways in which you can delete or prevent the storage of specific cookies on your computer or mobile device.

WHAT ARE YOUR RIGHTS

As a data subject of personal data, you have the following rights:
Right of access: you can find out from us if and how we process your personal data, for what purpose we use your data, what data we keep about you, for how long, whether automated decision making takes place.

Right to rectification: you can ask us to correct inaccurate information or to fill in incomplete information.

Right to erasure: You may request us to delete your data if there is no reason to justify our non-performance.

Right to portability: You can ask us to receive the data you have given us in a readable format or request that we transfer it to another controller.

Right of restriction: You can ask us to restrict the processing of your personal data for as long as any objections to the processing are pending.

Right to object: you can object at any time to the processing of your personal data or withdraw your consent, in which case we will stop processing if there are no legitimate and compelling reasons to justify our further use of your data.

In the event of the exercise of one of the above mentioned rights, we will take all possible measures to satisfy your request within a reasonable period of time, but no later than one (1) month from the submission of the request and its identification. This period may be extended by a further two months if necessary, if the request is complex or if there are a large number of requests. In this case, the Olympus Riviera Greece is obliged, within one month of the identification of the request, to inform you of the delay and the reasons for it. Within the above period, the Olympus Riviera Greece must inform you of any refusal to comply with all or part of the request submitted and the reasons for the refusal.

Olympus Riviera Greece may refuse to comply in whole or in part with a request received from the data subject only where this possibility is provided for by the General Data Protection Regulation (EU 2016/679).

Where the Olympus Riviera Greece processes personal data as a processor, it shall transmit the relevant requests to the controller, who is responsible for examining and complying with them.

To exercise any of the above rights, you can contact us at the following e-mail address: info@olympusriviera.com.gr and telephone number: + 30 2351 351 250.

PERSONAL DATA PROTECTION AUTHORITY

You have the right to lodge a complaint with the Personal Data Protection Authority (www.dpa.gr), which is the supervisory authority responsible for protecting the fundamental rights and freedoms of natural persons with regard to the processing of their personal data, if you consider that your rights are infringed in any way.

COMMUNICATION AND DISCLOSURE OF PERSONAL DATA

The website undertakes not to sell, rent or in any way publish and/or disclose the personal data of the users of the website to any third party.

AMENDMENTS TO THE PRESENT POLICY

From time to time it is necessary to adapt the content of this data protection information. Therefore, we reserve the right to change it at any time for the future. We will also publish the amended version here. If you visit us again, you should therefore read the data protection information again.

Explore Events