Terms of website use and personal data protection policy statement
The use of the electronic pages and services of the website www.stygaresort.gr (hereinafter referred to as the “Website”) belonging to the company STYGA MOUNTAIN RESORT, FAILADIS EE (hereinafter referred to as the “Company,” “We,” “Us”) by the visitor/user presupposes their unconditional agreement with the terms stated herein.
Please read carefully the terms of use of our Website before using it. These Terms of Use govern your access to and use of the Website.
By accessing or using the Website, you declare that you accept these Terms of Use.
1. Website User Eligibility
The Website is provided by the Company and is available both to legal entities and natural persons over the age of 16 who are able to enter into legally binding agreements under applicable law.
If you do not meet these requirements, you are not allowed to use the Website.
2. Personal Data Protection Policy
The security and privacy of Personal Data is a high priority for the Company.
The purpose of this Personal Data Protection and Security Policy Statement is to explain how and why we use and process your Personal Data, and to inform you about our privacy practices. Please read it carefully.
This Personal Data Protection Policy has been created in accordance with the provisions of Regulation (EU) 2016/679 (hereinafter the “Regulation”) of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data. Through this Personal Data Protection Policy, we inform you about which information (hereinafter “Personal Data”) we collect from you, for what purpose it will be used, with whom we will share this information, and what security measures we have implemented to protect your Personal Data.
Personal Data is considered to be information that can be connected to your identification as a natural person.
Processing is the performance of any operation or set of operations on Personal Data, including:
a) collection, registration, or retention of data,
b) organization or modification of data,
c) retrieval, search, or use of data,
d) disclosure of data to a third party (including publication),
e) deletion or destruction of data.
Your Personal Data is processed for specified, explicit, and legitimate purposes and is not subject to further processing in a manner incompatible with those purposes (Article 5(1)(b) of Regulation (EU) 2016/679).
3. Processing Principles We Follow
With the fundamental concern of protecting Personal Data and the information we manage, we adopt a detailed Security and Personal Data Protection Policy with the aim of:
- Safeguarding the trust of our customers, employees, and suppliers
- Protecting the information and Personal Data we process
- Complying with the Regulation on matters of security and data protection
In this context, when processing Personal Data we follow these basic principles:
3.1 Lawfulness, Fairness, and Transparency
We collect your Personal Data solely in a fair, lawful, and transparent manner. We subject your Personal Data to lawful and fair processing and maintain full transparency with you regarding how we handle it.
3.2 Purpose Limitation
We collect and process your Personal Data only for specified, explicit, and legitimate purposes, as stated in this policy, and do not subject it to further processing in a manner incompatible with these purposes.
3.3 Data Minimization
We limit the collection of your Personal Data only to those elements that are directly related and necessary for the purposes for which they were collected. We process your Personal Data only to the extent appropriate and relevant to the above purposes, limiting such processing to what is strictly necessary.
3.4 Accuracy
We make reasonable efforts, with your assistance, to ensure that the Personal Data being processed is accurate and, where necessary, kept up to date with regard to the purposes of the processing, taking all reasonable measures for its immediate deletion or correction in case of inaccuracies.
3.5 Storage Limitation
We keep your Personal Data in accordance with applicable laws and regulations regarding the protection of Personal Data, and not for longer than is necessary for the purposes for which it was collected.
3.6 Integrity and Confidentiality
We process your Personal Data in a way that ensures its security, including its protection against unauthorized or unlawful processing and accidental loss, destruction, or damage, using appropriate technical or organizational measures.
3.6.1 We do not intend to process your Personal Data further for purposes other than those for which it was collected.
3.6.2 Subject to what is stated in this policy, we do not disclose or transfer Personal Data to further third parties without your consent, unless permitted by law or by our contract.
3.6.3 We inform you that we do not transfer Personal Data to a third country or international organization for which there is no adequacy decision by the European Commission according to the GDPR.
3.6.4 We do not process your Personal Data using automated means, including profiling.
3.7 Accountability
We fully comply with the applicable legislation and all our obligations deriving from it, as the legally defined “data controller” of Personal Data.
For the protection and security of your data, our company has established specific roles and responsibilities internally in order to achieve maximum possible protection of Personal Data.
4. What Personal Data We Collect and Process
For the operation of the Company and the provision of our services, we process the following Personal Data:
From the website booking form:
- Full name
- Email address
- Phone number
- Number of adults
- Number of children
- Age of children
- Date of arrival/departure
- Other comments/requests
5. Purposes for Which We Collect and Process Personal Data
Specifically, we will use your Personal Data for the following general purposes, provided that you have given us your explicit consent:
The Company uses:
- the data from the website booking form for the purpose of making a reservation and communicating regarding the reservation.
6. With Whom We Share Personal Data
We keep the Personal Data we collect from you confidential. We will not sell, rent, trade, or lease your Personal Data to others. We do not disclose Personal Data collected about you except in the cases described in this Personal Data Protection and Security Policy Statement or in separate notices provided in connection with specific activities.
We may disclose Personal Data concerning you:
6.1) if required by a legal provision or legal procedure
6.2) to law enforcement authorities or other government officials based on a lawful disclosure request
6.3) when we believe that disclosure is necessary or appropriate to prevent physical harm or financial loss, or in connection with an investigation of suspected or actual fraudulent or illegal activity
6.4) to the Data Protection Authority in the event of a Personal Data breach incident
6.5) we also reserve the right to transfer Personal Data we hold about you in the event we sell or transfer all or part of our business or assets (including cases of reorganization, dissolution, or liquidation)
6.6) we may share Personal Data with partners, employees, or our representatives who perform services on our behalf under our instructions, with appropriate confidentiality obligations to protect the Personal Data
7. How Long We Store Personal Data
Our policy focuses on minimizing the time we process Personal Data. In other words, we make sure to delete your data once the processing purpose has been fulfilled. However, existing legislation and our legitimate interests sometimes require us to keep such data. In any case, we ensure the security and protection of Personal Data.
- We will retain your Personal Data collected through the website booking form for 2 years.
8. Your Rights Regarding the Protection of Personal Data
The Regulation grants you the following rights, which you may exercise free of charge and according to the legal framework:
8.1 Right of access: to be informed about what Personal Data we have collected from you and are processing, its origin, its purposes, the legal basis for its processing, and any recipients or categories of recipients of the Personal Data.
8.2 Right to rectification: to correct any inaccurate Personal Data so that it becomes accurate.
8.3 Right to completion: to complete any incomplete Personal Data so that it becomes complete.
8.4 Right to erasure of Personal Data in the following cases:
8.4.1 When the Personal Data is no longer necessary for the purposes for which it was collected or otherwise processed
8.4.2 When you withdraw your consent on which the processing was based and there is no other legal basis for the processing
8.4.3 When the Personal Data has been processed unlawfully
8.4.4 When deletion is required by law
8.5 Right to restriction of processing of Personal Data in the following cases:
8.5.1 When you contest the accuracy of the Personal Data and until we verify its accuracy
8.5.2 When instead of deletion, you request the restriction of the processing of Personal Data
8.5.3 When we no longer need the Personal Data for the purposes of processing, but you require it for the establishment, exercise, or defense of legal claims
8.6 Right to object to the processing of Personal Data, unless there are compelling and legitimate reasons for the processing which override your interests, rights, and freedoms, or for the establishment, exercise, or defense of legal claims by us.
8.7 Right to data portability: to receive the Personal Data we have collected from you in a machine-readable format and to transmit it to another data controller.
8.8 Right to withdraw consent (without retroactive effect) at any time that you have given.
For more information on the conditions for exercising your rights, as well as your right not to be subject to automated decision-making, you can contact the Data Protection Officer directly at [email protected], both to exercise your rights and for any other information. Exercising your rights is free of charge, unless the request is manifestly unfounded or excessive.
9. How You Can Submit a Complaint
If you believe that the protection of your Personal Data is in any way infringed, you can contact the Hellenic Data Protection Authority: Kifisias 1-3, P.C. 115 23, Athens, www.dpa.gr, Tel.: +30 2106475600, email: [email protected]
You also have the right to appeal to the competent judicial authorities for the protection of your Personal Data.
10. Contact
You may contact us at the following address:
STYGA MOUNTAIN RESORT FAILADIS EE, ZAROYCHLA AKRATA P.C.25006, TEL+30 2696031431, email [email protected]
If you have any questions regarding the processing of your Personal Data, if you wish to exercise any of your rights, or to submit any complaint regarding your Personal Data, you can contact our Data Processing Officer either by phone or by letter to our address with the indication “To the attention of the Data Processing Officer,” or by email at [email protected]
11. Use of Cookies
The Website may collect identifying elements of its users by using relevant technologies, such as cookies and/or tracking of Internet Protocol (IP) addresses.
Cookies are small text files stored on each visitor’s/user’s hard drive and do not gain knowledge of any document or file from the user’s computer. They are used to facilitate visitor/user access regarding the use of specific services and/or pages, for statistical purposes, and to determine which areas are useful or popular.
These elements may also include the type of browser the visitor/user uses, the type of computer, their operating system, internet service providers, and other similar information. In addition, the Website’s information system automatically collects information about the locations visited by the visitor/user and about third-party websites that the visitor/user may select via the Website’s use.
The visitor/user may configure their web browser in such a way as to either warn them about the use of cookies in certain services or not to allow the acceptance of cookies at all. If the visitor/user of these specific services and pages does not wish the use of cookies for identification, they cannot have further access to these services.
The Website includes links to other websites that are under the responsibility of third parties (natural or legal persons). Under no circumstances is it responsible for the terms of protection of personal data followed by these websites.
12. Limitation of Liability – Disclaimer
The content of the Website is provided “as is” and no guarantee is given, explicit or implicit, regarding its completeness, accuracy, timeliness, merchantability, non-infringement, or suitability of this content for any use, application, or purpose.
The Company, under any circumstances, including negligence, is not responsible for any form of damage suffered by the visitor/user of the pages, services, options, and contents of the Website which they use on their own initiative and with knowledge of these terms. Likewise, it does not guarantee that the pages, services, options, and contents will be provided uninterrupted, without errors, that errors will be corrected, or that all questions submitted to it will be answered. Similarly, it does not guarantee that any other related website or servers through which the content is made available to visitors/users is provided free of “viruses” or other harmful components.
13. Use of Links to Third-Party Websites (Links)
The Website provides the possibility to access third-party websites through appropriate links. These links have been placed solely for the convenience of visitors/users of the Website, while the websites to which they refer are subject to their own terms of use. The placement of these links does not constitute an endorsement or acceptance of the content of the respective websites by the administrator, who bears no responsibility for their content nor for the privacy practices or accuracy of the materials contained therein. If the visitor/user decides to use, through these links, any of the third-party websites, they accept that they do so at their own risk.
14. Applicable Law and Other Terms
The above terms and conditions of use of the Website, as well as any modification or change thereof, are governed by national law, Community law, and relevant international treaties. If any provision of these terms is found to be contrary to the above legal framework or becomes invalid, it automatically ceases to apply and is removed from the present, without affecting the validity of the other terms in any way. These terms constitute the entire agreement between the Website administrator and the visitor/user of its pages and services and are binding only on them. No modification of these terms will be considered and will not be part of this agreement unless it has been formulated in writing and incorporated herein.
For any communication with the Website administrator or if you identify any problems in the content related to legal or ethical issues, especially regarding reproduction and use of intellectual property rights, please contact us at the address:
STYGA MOUNTAIN RESORT FAILADIS EE, ZAROUCHLA AKRATAS , P.C 25006, tel.+30 2696031431 or by email at [email protected]
15. Other Information You Should Know
These Terms of Website Use and Personal Data Protection Policy were reviewed and published by the Company on 28/05/2019.
We may, at our sole discretion, revise the Terms of Use and the Personal Data Protection Policy at any time (the respective version takes effect as soon as it is published). Changes to the Personal Data Protection Policy will apply to the information collected as well as to existing information that we hold from the date the revised version is published.
