Oia, 84702, Santorini, Cyclades Islands, Greece

Privacy Policy

The company (hereinafter referred to as the “Company” or “we’) takes very seriously into consideration the privacy of users and undertakes to fully comply with the applicable law [Regulation (EU) 2016/679 – hereinafter “GDPR”].

This document (“Privacy Policy”) provides information on how the Personal Data collected by the Company through this Website (“Website”) are processed and constitutes a notice to the data subjects in accordance with Article 13 of the GDPR.

The Data that may be processed are the customary Personal Data you may provide when using the features of the Website, including Browser Data or Service Requests offered on the Website (e.g., registration in restricted areas, contests and other initiatives that may be on the Website, use of Applications, requests for information and reports also submitted via communication forms, etc.) and data collected by cookies, as defined in Cookies Policy.

The Company may process your usual Personal Data to ensure that you can take advantage of available services and features and optimize their performance, gather statistics on how to use it, manage requests and reports it receives through the Website and manage your registration in any restricted areas and initiatives that may be on the Website.

All your Data are processed by means that are appropriate to ensure full security and confidentiality.

If you simply visit the Website (i.e., without sending any message or using any of the services / functions available), your Data Processing is limited to the Browsing Data, that is, the Data that must be sent to the Website for the operation of the computers in which the Website operates and the Internet Protocols. This category includes, for example, IP addresses or computer domains used to visit the Website and other parameters related to the operating system used to link to the Website. Subject to this and the provisions of the Cookie Policy, the Browsing Data described above are stored only temporarily, in accordance with the law.

This Privacy Policy applies only to the Website defined above. Although the Website may contain links to other Websites (known as third-party Websites), we inform you that the Company does not have access to or use cookie tracking, web beacons or other user tracking technologies which may be active on third-party Websites, the content and material posted to them or the methods of Processing Your Personal Data. For this reason, the Company expressly disclaims any responsibility for such matters.

The programs used by the Company are created in such a way that the use of Personal Data and Identification Data is minimized. These Data are processed only to the extent necessary to achieve the purposes stated in this Policy and will be stored for as long as is strictly necessary to achieve the specific purposes pursued.

Persons belonging to the following categories are authorized to process User Data: technical and administrative staff, as well as other staff members who have to process the Data for the performance of their duties.

With regard to the transfer of Data outside the EU, even in countries whose laws do not guarantee the same level of Privacy as that provided by EU law, the Data Controller informs that the transfer will in any case be made in accordance with the methods allowed by GDPR, for example based on user consent, on the basis of the standard contractual clauses approved by the European Commission, selecting parties participating in international programs for the free movement of data or implemented in countries that are considered safe by the European Commission.

You may at any time exercise the rights provided by GDPR Articles 15-22, including the right to confirm the existence of Personal Data relating to you, to check their content, their source, their correctness, their location (also in relation to any Third Countries), request a copy, request a correction, and in cases provided by law, request that the restriction of their processing, their deletion, oppose to direct communication activities. Similarly, you can always withdraw your consent and / or make comments on specific issues regarding the processing of your Personal Data that you consider to be incorrect or unjustified in your relationship with the Company or to file a complaint with the Personal Data Protection Authority. You may contact the Controller (info@compassvilla.com) and / or the DPO at the addresses above to submit any claims regarding the processing of Personal Data by the Company, to exercise your legal rights and to receive an up-to-date list of parties that have access to your Data.