We have not enabled Google AdSense on our site but we may do so in the future.
California Online Privacy Protection Act
CalOPPA is the first state law in the nation to require commercial websites and
California to require a person or company in the United States (and conceivably the
world) that operates websites collecting personally identifiable information from
exactly the information being collected and those individuals with whom it is being
shared, and to comply with this policy.
According to CalOPPA we agree to the following:
Users can visit our site anonymously
minimum on the first significant page after entering our website.
the page specified above.
Users are able to change their personal information:
• By logging in to their account
How does our site handle do not track signals?
We honor do not track signals and do not track, plant cookies, or use advertising
when a Do Not Track (DNT) browser mechanism is in place.
Does our site allow third party behavioral tracking?
It's also important to note that we do not allow third party behavioral tracking
COPPA (Children Online Privacy Protection Act)
When it comes to the collection of personal information from children under 13, the
Children's Online Privacy Protection Act (COPPA) puts parents in control. The
Federal Trade Commission, the nation's consumer protection agency, enforces the
COPPA Rule, which spells out what operators of websites and online services must
do to protect children's privacy and safety online.
In order to remove your child's information please contact the following
We adhere to the following COPPA tenants:
• Parents can review, delete, manage or refuse with whom their child's
information is shared through contacting us directly or contacting us directly.
Fair Information Practices
The Fair Information Practices Principles form the backbone of privacy law in
the United States and the concepts they include have played a significant role in
the development of data protection laws around the globe. Understanding the
Fair Information Practice Principles and how they should be implemented is
critical to comply with the various privacy laws that protect personal information.
In order to be in line with Fair Information Practices we will take the
following responsive action, should a data breach occur:
We will notify the users via email
• Within 7 business days
We will notify the users via in site notification
• Within 1 business day
We also agree to the individual redress principle, which requires that individuals
have a right to pursue legally enforceable rights against data collectors and
processors who fail to adhere to the law. This principle requires not only that
individuals have enforceable rights against data users, but also that individuals
have recourse to courts or a government agency to investigate and/or prosecute
non-compliance by data processors.
CAN SPAM Act
The CAN-SPAM Act is a law that sets the rules for commercial email,
establishes requirements for commercial messages, gives recipients the right
to have emails stopped from being sent to them, and spells out tough penalties
To be in accordance with CANSPAM we agree to the following:
If at any time you would like to unsubscribe from receiving future emails,
you can email us and we will promptly remove you from ALL
using the information below.
Agia Irini, Pyrgos
Santorini, Cyclades 84700
Data We Collect
Online reservation procedure
Guests of third party websites are asked to give personal data in order to complete their online reservations. The data they are asked to give are upon the administrator – controller of the system.
Data given automatically
There are many instances that we get data automatically. Such data are: IP address, type of device, location, date and time of accessing our system, pages that are visited and clicked, from which website someone came to our system, browser that is used, software that is used in the device or computer.
Data given from other sources
Our booking engines are integrated with other websites (online wholesalers, Online Travel Agents, etc) who are giving data about completed reservations. The data are used from controllers (administrators) for managing purposes.
Data we share with others
We share the above personal data with third party systems for basic purposes of completing an online reservation. For example, we use a third party mail provider for security reasons (to avoid emails going to spam). Our systems are cloud and we use hosting services of Amazon.com (https://aws.amazon.com/security/) . In addition in some instances we share data with third party systems for managing or accounting purposes of the controller (administrator). Also we share data with banks and online payment gateways for successful secure transactions.