PRIVACY POLICY
1. IMPORTANT INFORMATION AND WHO WE ARE
Purpose of this Privacy Notice : This privacy notice aims to provide you with clear information on how Mykonos Hospitality Group collects and processes your personal data when you use our website or services. We only collect data that is strictly necessary to deliver the services you request. Please note that this website is not intended for use by children. You should read this privacy notice together with any other privacy or fair processing notices we may provide on specific occasions when collecting or processing personal data. This notice supplements those other notices and is not intended to override them.
Data Controller : Mykonos Hospitality Group is composed of various legal entities. When you use our website or services, the data controller responsible for your personal data is the owner of this website. In this notice, the terms “Mykonos Hospitality Group,” “we,” “us,” or “our” refer to the website, which is solely owned and operated by the data controller responsible for managing personal data in connection with this site and the services offered through it.
2. HOW WE COLLECT YOUR PERSONAL DATA
We collect personal data through various methods, including:
• Direct interactions – You may provide personal information by filling in forms, or by corresponding with us via phone, email, or otherwise. This includes when you inquire about or request our services.
• Automated technologies – As you interact with our website, we may automatically collect technical data through cookies, server logs, and similar technologies.
• Third parties and public sources – We may receive personal data from publicly available sources or trusted third-party partners.
3. THE DATA WE COLLECT ABOUT YOU
We collect only the personal data necessary to deliver our services. This may include:
• Identity Data – such as first name, last name, and date of birth.
• Contact Data – such as email address and telephone number.
• Service Data – information related to the services you have requested or inquiries submitted.
• Technical Data – such as IP address, browser type, operating system, and device identifiers.
• Usage Data – such as how you interact with our website. • Communication Preferences – your indicated choices regarding how we contact you.
We do not collect or process payment data (such as credit card numbers or bank account details), as no transactions are conducted via this website.
4. HOW WE USE YOUR PERSONAL DATA
We use your personal data exclusively to provide the services you have requested. Primary purposes include:
• Responding to inquiries and managing bookings.
• Communicating with you regarding services and updates.
• Improving our website and service experience through analytics.
• Maintaining security and operational integrity of our website.
The legal bases we rely on include the performance of a contract, compliance with legal obligations, and our legitimate interests in running a secure and efficient business.
5. DISCLOSURE OF YOUR PERSONAL DATA
We may share your personal data with the following parties:
• Internal entities – Other companies within Mykonos Hospitality Group acting as joint controllers or processors.
• Service providers – External vendors who process data on our behalf to support our operations.
• Business partners – Affiliates or third parties involved in service delivery.
• Corporate transactions – In the event of a merger, sale, or reorganization, personal data may be transferred to new entities subject to the same privacy protections.
All third parties are contractually obligated to protect your data and only process it in accordance with our instructions.
6. INTERNATIONAL TRANSFERS
Your personal data may be transferred outside the European Economic Area (EEA). Where such transfers occur, we ensure a similar level of data protection by implementing appropriate safeguards, including:
• Transfers to countries deemed to provide adequate protection by the European Commission.
• Use of standard contractual clauses approved by the European Commission.
You may contact us to obtain further information about the specific safeguards we use.
7. DATA SECURITY
We implement appropriate security measures to prevent unauthorized access, disclosure, alteration, or loss of your personal data. Access is limited to individuals who require it for legitimate business purposes and are bound by confidentiality obligations. We also have procedures in place to address any suspected data breaches and will notify affected parties and relevant authorities as required by law.
8. DATA RETENTION
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including compliance with legal and regulatory obligations.
Retention periods are determined based on the type of data, its sensitivity, and the purpose of processing. In certain cases, we may retain anonymized data for statistical or research purposes without further notice.
9. YOUR LEGAL RIGHTS
Under applicable data protection laws, you have the following rights:
• To request access to your personal data.
• To request correction of inaccurate or incomplete data.
•To request erasure of your personal data.
• To object to or request restriction of processing.
• To request data portability.
• To withdraw consent, where processing is based on your consent.
There is no fee for exercising these rights unless a request is manifestly unfounded or excessive. We may request verification of your identity before responding. We aim to respond to all legitimate requests within one calendar month.
10. GLOSSARY
• Legitimate Interest – Our interest in managing our business to deliver quality service, provided it does not override your rights and freedoms.
• Performance of Contract – Processing necessary to perform a service agreement with you.
• Legal Obligation – Processing required to comply with applicable laws and regulations.
• Internal Third Parties – Other companies within Mykonos Hospitality Group acting as joint data controllers or processors.
• External Third Parties – Trusted service providers or partners processing data on our behalf
