Privacy Policy

This Privacy Policy explains how personal data is collected, used, and protected by rooms-thessaloniki.gr, operated by the accommodation provider located in Thessaloniki, Greece.

We value your privacy and are committed to protecting your personal information in accordance with the General Data Protection Regulation (GDPR). Our aim is to be transparent about the way we process your data and to ensure that you remain fully informed of your rights as a guest or website visitor.

1. Who We Are

This website is managed by the property management company of rooms-thessaloniki.gr, offering short- and long-term accommodation in Thessaloniki. 

2. What Personal Data We Collect

We may collect the following categories of data:

• Identification data: name, nationality, passport/ID number, date of birth

• Contact details: email, phone number

• Reservation data: arrival and departure dates, room preferences

• Payment data: payment method, transaction details (processed through secure third-party providers – we do not store card data)

• Communication history: messages via contact forms, email, or phone

• Health-related data: only where required by law (e.g. public health regulations)

3. Why We Collect Your Data

Your data is collected for specific, lawful purposes, such as:

• Processing your reservation and providing hospitality services

• Contacting you regarding your booking or inquiries

• Improving our services and website functionality

• Fulfilling legal or regulatory obligations (e.g. invoice retention, tax compliance)

• Ensuring security through CCTV monitoring (in shared areas, only where legally permitted)

4. Legal Basis for Processing

We process your data based on:

• Your consent (for marketing or optional data)

• The performance of a contract (e.g. reservation fulfillment)

• Legal obligations (e.g. recordkeeping, health protocols)

• Our legitimate interests (e.g. ensuring site security or preventing fraud)

5. Data Retention Privacy Policy

We retain your personal data only as long as necessary for the purposes described above or as required by law (e.g. 10 years for tax records). 

6. Your Rights about Private Policy

Under GDPR, you have the right to:

• Access your personal data

• Rectify inaccurate or outdated data

• Request erasure (“right to be forgotten”)

• Restrict or object to processing

• Withdraw consent at any time (if processing is based on consent)

• Data portability

• Lodge a complaint with the Hellenic Data Protection Authority (www.dpa.gr, tel. +30 210 6475600)

To exercise any of these rights, contact us at:
📧 [email protected]

7. Data Security

We take technical and organizational measures to ensure your data is secure, including encrypted communication, access control, and regular monitoring of our systems.

8. Cookies & Tracking

For details on how we use cookies, please refer to our Cookie Policy (link here). We use cookies to improve your experience, track performance, and offer personalized content. You may accept, adjust or reject cookies via our cookie consent banner.

9. Children’s Privacy

Our services are not intended for children under the age of 15. We do not knowingly collect personal data from minors without appropriate parental consent.

10. CCTV Use (if applicable)

We may use a CCTV system in public/shared areas of the accommodation for the sole purpose of safety and property protection. Footage is retained for a limited period (up to 15 days) and only accessed by authorized personnel. If an incident occurs, relevant footage may be kept longer and shared with competent authorities.

11. Changes to This Policy

We may update this Privacy Policy as required by law or internal processes. Updates will be posted on this page with the revision date.

Contact

If you have questions or concerns about how your data is handled:

📧 [email protected]
📍 Thessaloniki, Greece

or fill this contact form