In accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and the free movement thereof, more known as the General Data Protection Regulation (hereinafter GDPR), as well as the regulations that develop it, DESTINATION ONE MON. IKE informs you that the personal data obtained through the registration platform will be included in an automated file whose Responsible Party is DESTINATION ONE MON. IKE (hereinafter Destination One) with registered office at 5th Km Rhodes-Lindos Avenue, Rhodes 85100, Greece registered in the Dodecanese Chamber of Commerce, and fiscally identified by the Greek tax authorities with the T.I.N. of EL800604610, and with a Travel Agency License number granted by the Greek National Tourism Organization (GNTO): 1476E60000046901 .
In the processing of personal data from users, Destination One always complies with the current legislation, especially "Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and their free circulation", better known as the General Data Protection Regulation (hereinafter GDPR), as well as the regulations that develop it. To do that, Destination One adopts the required technical and organizational measures to avoid the loss, modification, improper use, non-authorized access and theft of personal data provided by the user. In any case, always taking into account the state of technology, the nature of data and the risks to which it is exposed.
2. Information collected
The Service can be used by the users on different ways, from searching for info to booking a reservation. The information collected on every case is:
a) User without reservation
In this case the Service compiles (hereinafter the “Non-Personal Information”):
I) If the User has arrived at the Service from a link in another website.
III) Specific data about the User’s device (IP from the connection originating, hardware model, operating system version, errors produced by the use of the Service, web browser, language, time and date of the request, reference URL or mobile network used, among others).
In any case, you can disable the Google Analytics cookies from here.
b) User with reservation
Destination One requires some specific data for the Service to be used by the User, having at least to provide the personal data marked in red and with a # (hereinafter the “Personal Information”).
If a User wants to book an activity through the Service, the area where the User is staying has to be provided, as well as the hotel’s address and name (if that’s the case), full name, country, phone number, email and any other personal data shared through the “Comments” field.
In addition, if the User books a reservation for another person through Destination One, the User agrees to obtain the consent of each affected person before providing the Service with their personal information and preferences.
3. Rights and purposes
According to what has been established by GDPR, you are informed that the completion of the forms is voluntary. In any case, the non completion of the required fields will limit the use of the Service.
The personal data provided by users will be collected and processed in the files controlled by Destination One. This way, the requests can be attended, the service provided and the users are informed through electronic means about the activity of the company and its services.
At any moment, the User can exercise its rights of access, limitation, rectification, cancellation and opposition, or revocation of its personal data through email at firstname.lastname@example.org or via postal mail at: 5th Km Rhodes-Lindos Avenue, Rhodes 85100, Greece. In those cases, the User should indicate name and surname, as well as inclusion of a copy of its national ID document.
Destination One commits to respect the confidentiality of the data collected, to use it according to the purposes established here, to fulfill its obligation of custody and to adopt all the required measures that could avoid the loss, alteration or unauthorized access and process of the data, according to the current regulations.
The period during which the personal data collected will be kept will be four years.
The Service is created to be used by adults with full legal capacity. Children or minors are not authorized to use it.
5. Use of the Data
Destination One will use the data given by the users with a commercial purpose to manage and personalize the service offered to them, as well as to obtain statistics.
In this sense, we use the information collected to: offer the requested services; to confirm the reservation and to send updates about the activity booked; to communicate with you in general terms; to answer your questions and comments; to prevent forbidden or illegal activities and to apply our terms and conditions.
Destination One will use the email address from the User for the following purposes, that the User expressly consents:
I) To send news bulletins which the User can unsubscribe at any moment.
II) To send alerts and notices about the Service (for example, a temporal closure for maintenance).
Users accept, with express consent, to receive these email messages by using the Service. In any case, they will be able to unsubscribe from: a) the link included in every communication sent or; b) by sending an email to email@example.com
Nevertheless, the User won’t be able to unsubscribe from some specific communications, such as messages related to data security or updates to the terms and conditions of the Service.
Likewise, Destination One may use Personal Information from the users as aggregated and anonymous data to show it to third parties. Destination One can also share with third parties’ stats and demographic information about the users and its use of the Service. In any case, none of this information will allow these third parties to personally identify a User.
6. Service providers and more
There are third parties that manage part of the Service.
Under some circumstances, Destination One could share, preserve or disclose Personal Information to third parties, in a non-aggregated form:
a)To provide the Service:
I) Suppliers such as hotel providers, transfer or supplementary services like WIFI connectivity to provide them with the reservation of your activity. Destination One describes and labels all the services provided by a third party as such. We recommend you to check the privacy policies of every third party from which you acquire any service or products through Destination One. Please, remember that the suppliers could also contact you if additional information is needed.
II) Providers that lend a service on our own name, including credits cards processing, commercial analytics, customer service or marketing. Service providers can collect and have access to information required to carry out duties. Nevertheless, service providers cannot share or obtain the information for any different purpose.
b) To collaborate with competent authorities:
I) If we believe that there is a reasonable necessity to comply with any law or legal process in any part of the world. Especially when we believe that by doing so we can reduce our responsibility or better defend our legal rights. In any case, we will only provide the required information.
II) If we believe that this action is appropriate to comply with our terms and conditions, including the investigation of a possible breach of them.
III) If we need it to detect, prevent or in any other way deal with or go after scams, the security or the technical aspects related to Destination One.
IV) If the action is appropriate to protect the rights, property or security of Destination One, its employees or users.
V) If we believe that there is a reasonable necessity to comply with any law. In addition, when we believe that we have a legitimate interest, or a third party is able to demonstrate it.
7. Security measures
Destination One adopts all the required technical and organizational measures to protect the security and integrity of the Personal Information against unauthorized accesses, as well as its accidental modification, loss or destruction.
This way, when the User sends data through the Service, for example at the time of the payment, the User is protected by electronic security measures in the network. In addition, the provided information that Destination One stores on its databases is equally protected by security systems that prevent the access to them by unauthorized third parties.
Destination One makes its best efforts to have the most up to date systems for the efficiency of the security systems. Besides, Destination One stores the Personal Information for as long as the law allows and requires. The information is destroyed periodically once when there is no need for it, anymore.
The User must be aware that the information is published under its responsibility. Destination One cannot guarantee that the published information won't be seen by unauthorized persons. The User understands and agrees that, even once the Personal Information has been deleted, it can be visible through cache or when some other users have copied or stored it.
Phone: +30 22410 60375
Address: 5th Km Rhodes-Lindos Avenue,
Rhodes 85100, Greece.