PRIVACY POLICY
Legal Notice & Newsletter Information
This email is sent by Aigialos Luxury Traditional Settlement, Fira, Santorini, Greece.
You are receiving this communication because:
You may unsubscribe at any time by clicking the “Unsubscribe” link included in every email or by contacting us at hotel@aigialos.gr.
For full details on how we process personal data and protect your privacy, please refer to the Privacy Policy below.
Privacy Policy & Information Notice
Aigialos Luxury Traditional Settlement
Last updated: January 2026
This Privacy Policy explains how Aigialos Luxury Traditional Settlement (“we”, “us”, “our”) collects, uses, stores, and protects personal data, in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR) and applicable Greek data protection laws.
We respect the privacy of our guests, website visitors, and partners, and we are committed to handling personal data transparently, lawfully, and securely.
1. Data Controller
The Data Controller responsible for processing your personal data is:
Aigialos Luxury Traditional Settlement
Fira, Santorini, Greece
Email: hotel@aigialos.gr
Website: www.aigialos.gr
A formal Data Protection Officer (DPO) has not been appointed, as this is not required by law for our activities. Privacy-related requests are handled directly by management.
2. Personal Data We Collect
a) Data you provide voluntarily
We collect personal data when you:
In limited cases, you may voluntarily provide information relating to health (e.g. allergies or accessibility needs).
Such data is processed only to serve you during your stay and never for marketing or profiling purposes.
c) Data collected automatically
When you visit our website, we may collect:
3. Legal Bases for Processing
We process personal data only when permitted by GDPR, based on one or more of the following legal grounds:
4. How We Use Your Data
Your data may be used to:
5. Sharing of Data
We do not sell personal data.
We may share data with trusted third parties acting as data processors, including:
6. International Data Transfers
Some service providers may process data outside the European Economic Area (EEA).
In such cases, transfers are safeguarded using:
7. Data Retention
We retain personal data only for as long as necessary, depending on the purpose:
8. Your Rights
Under GDPR, you have the right to:
We may request verification of identity for security reasons.
You also have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA): www.dpa.gr
9. Cookies & Tracking Technologies
Our website uses cookies to ensure proper functionality and to improve user experience.
Cookie categories may include:
You may withdraw or modify your consent at any time through cookie settings.
For full details, please refer to our Cookie Policy.
10. Security
We apply appropriate technical and organisational measures to protect personal data.
However, no system is completely secure. We advise against sending sensitive data (e.g. credit card details) via email.
11. Links to Third-Party Websites
Our website may contain links to external websites. We are not responsible for their content or privacy practices. Please review their privacy policies separately.
12. Changes to This Policy
We may update this Privacy Policy from time to time.
The latest version will always be available on our website, with the revision date clearly indicated.
13. Contact
For any questions regarding this Privacy Policy or the processing of your personal data, please contact:
Email: hotel@aigialos.gr
Website: www.aigialos.gr
This email is sent by Aigialos Luxury Traditional Settlement, Fira, Santorini, Greece.
You are receiving this communication because:
- you have stayed with us,
- you have made an enquiry or reservation,
- or you have subscribed to receive updates from us.
You may unsubscribe at any time by clicking the “Unsubscribe” link included in every email or by contacting us at hotel@aigialos.gr.
For full details on how we process personal data and protect your privacy, please refer to the Privacy Policy below.
Privacy Policy & Information Notice
Aigialos Luxury Traditional Settlement
Last updated: January 2026
This Privacy Policy explains how Aigialos Luxury Traditional Settlement (“we”, “us”, “our”) collects, uses, stores, and protects personal data, in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR) and applicable Greek data protection laws.
We respect the privacy of our guests, website visitors, and partners, and we are committed to handling personal data transparently, lawfully, and securely.
1. Data Controller
The Data Controller responsible for processing your personal data is:
Aigialos Luxury Traditional Settlement
Fira, Santorini, Greece
Email: hotel@aigialos.gr
Website: www.aigialos.gr
A formal Data Protection Officer (DPO) has not been appointed, as this is not required by law for our activities. Privacy-related requests are handled directly by management.
2. Personal Data We Collect
a) Data you provide voluntarily
We collect personal data when you:
- Make a reservation or enquiry (directly or via third parties)
- Complete a contact form
- Subscribe to newsletters or promotional communications
- Communicate with us by email, phone, social media, or in person
- Stay at our property
- Submit reviews, feedback, or participate in surveys
- Name, surname, title
- Email address, telephone number
- Address, nationality, date of birth (where required)
- Reservation details (dates, room type, charges)
- Payment information (processed securely via payment providers)
- Passport or ID details (where required by Greek law)
- Guest preferences, special requests, dietary requirements, allergies
- Communications with our team
- Reviews or feedback
In limited cases, you may voluntarily provide information relating to health (e.g. allergies or accessibility needs).
Such data is processed only to serve you during your stay and never for marketing or profiling purposes.
c) Data collected automatically
When you visit our website, we may collect:
- IP address
- Browser and device type
- Pages visited and interactions
- Approximate location (city/country)
- Language preferences
3. Legal Bases for Processing
We process personal data only when permitted by GDPR, based on one or more of the following legal grounds:
- Contract performance – to manage reservations, stays, payments, and guest services
- Legal obligation – to comply with tax, accounting, and guest registration requirements
- Legitimate interest – to improve services, ensure security, prevent fraud, and manage operations
- Consent – for newsletters, promotional communications, and non-essential cookies
4. How We Use Your Data
Your data may be used to:
- Process reservations and provide accommodation services
- Communicate with you before, during, and after your stay
- Respond to enquiries and requests
- Provide personalised guest services
- Comply with legal and regulatory obligations
- Improve our website, services, and guest experience
- Send marketing communications (only where permitted)
- Ensure safety, security, and operational continuity
5. Sharing of Data
We do not sell personal data.
We may share data with trusted third parties acting as data processors, including:
- Booking engines and channel managers
- Property management systems (PMS)
- Payment service providers
- Email marketing platforms
- IT, hosting, and security providers
- Accounting, auditing, or legal advisors
- Public authorities, where legally required
6. International Data Transfers
Some service providers may process data outside the European Economic Area (EEA).
In such cases, transfers are safeguarded using:
- EU adequacy decisions, or
- Standard Contractual Clauses approved by the European Commission
7. Data Retention
We retain personal data only for as long as necessary, depending on the purpose:
- Reservation and financial data: retained according to Greek tax and accounting laws
- Guest registration data: retained as legally required
- Marketing data: until you withdraw consent or unsubscribe
- Enquiry data: for a reasonable period to manage follow-up
8. Your Rights
Under GDPR, you have the right to:
- Access your personal data
- Rectify inaccurate or incomplete data
- Request erasure (“right to be forgotten”), where applicable
- Restrict or object to processing
- Withdraw consent at any time
- Data portability, where applicable
We may request verification of identity for security reasons.
You also have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA): www.dpa.gr
9. Cookies & Tracking Technologies
Our website uses cookies to ensure proper functionality and to improve user experience.
Cookie categories may include:
- Strictly necessary cookies – essential for website operation
- Performance & analytics cookies – help us understand how the website is used
- Functionality cookies – remember preferences
- Marketing cookies – used only with your explicit consent
You may withdraw or modify your consent at any time through cookie settings.
For full details, please refer to our Cookie Policy.
10. Security
We apply appropriate technical and organisational measures to protect personal data.
However, no system is completely secure. We advise against sending sensitive data (e.g. credit card details) via email.
11. Links to Third-Party Websites
Our website may contain links to external websites. We are not responsible for their content or privacy practices. Please review their privacy policies separately.
12. Changes to This Policy
We may update this Privacy Policy from time to time.
The latest version will always be available on our website, with the revision date clearly indicated.
13. Contact
For any questions regarding this Privacy Policy or the processing of your personal data, please contact:
Email: hotel@aigialos.gr
Website: www.aigialos.gr
| SANTORINI HOTEL Fira, 84700 Santorini Tel. (+30) 22860 25191-5 Fax. (+30) 22860 22856 hotel@aigialos.gr |
COMPANY DETAILS AIGIALOS Tourism Enterprises PLC 35, Akadimias Street, 10672 Athens GCR# 001629401000 Tel. (+30) 210 3636637 & (+30) 210 3626102 |
