In accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and the free movement thereof, more known as the General Data Protection Regulation (hereinafter GDPR), as well as the regulations that develop it, DESTINATION ONE MON. IKE informs you that the personal data obtained through the registration platform will be included in an automated file whose Responsible Party is DESTINATION ONE MON. IKE (hereinafter Destination One) with registered office at 5th Km Rhodes-Lindos Avenue, Rhodes 85100, Greece registered in the Dodecanese Chamber of Commerce, and fiscally identified by the Greek tax authorities with the T.I.N. of EL800604610, and with a Travel Agency License number granted by the Greek National Tourism Organization (GNTO): 1476E60000046901 .

 

1. Description

The acceptance of the privacy policy of Destination One (hereinafter "Privacy Policy"), is a required condition for the use of the Service.

This Privacy Policy governs the compilation, processing and use of the personal and non-personal information of the users of the Service, from the effective date established in the heading.

Destination One will always ask for the User’s consent before using its data for any different purpose than the ones established in this Privacy Policy.
 

In the processing of personal data from users, Destination One always complies with the current legislation, especially "Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and their free circulation", better known as the General Data Protection Regulation (hereinafter GDPR), as well as the regulations that develop it. To do that, Destination One adopts the required technical and organizational measures to avoid the loss, modification, improper use, non-authorized access and theft of personal data provided by the user. In any case, always taking into account the state of technology, the nature of data and the risks to which it is exposed.
 

2. Information collected 

The Service can be used by the users on different ways, from searching for info to booking a reservation. The information collected on every case is:
 

a) User without reservation

In this case the Service compiles (hereinafter the “Non-Personal Information”):

I) If the User has arrived at the Service from a link in another website.
II) The cookies stored in the User’s device, with prior consent from the User. Check out our Cookie Policy for more information
III) Specific data about the User’s device (IP from the connection originating, hardware model, operating system version, errors produced by the use of the Service, web browser, language, time and date of the request, reference URL or mobile network used, among others).
IV) In addition, Destination One uses Google Analytics, a web analytics service provided by Google, Inc., a Delaware company located at 1600 Amphitheatre Parkway, Mountain View (California), CA 94043, United States (“Google”). Google Analytics uses “cookies”, which are text files placed on your computer, to help the website analyze how users use the site. The information generated by the cookie about your use of the website (including your IP address) will be transmitted to and stored by Google on servers in the United States. Google will use this information for the purpose of evaluating your use of the website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. Google may also transfer this information to third parties where required to do so by law, or where such third parties process the information on Google's behalf. Google will not associate your IP address with any other data held by Google. You may refuse the use of cookies by selecting the appropriate settings on your browser, however please note that if you do this you may not be able to use the full functionality of this website. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above.
 

In any case, you can disable the Google Analytics cookies from here.
 

b) User with reservation

Destination One requires some specific data for the Service to be used by the User, having at least to provide the personal data marked in red and with a # (hereinafter the “Personal Information”).
If a User wants to book an activity through the Service, the area where the User is staying has to be provided, as well as the hotel’s address and name (if that’s the case), full name, country, phone number, email and any other personal data shared through the “Comments” field.

In addition, if the User books a reservation for another person through Destination One, the User agrees to obtain the consent of each affected person before providing the Service with their personal information and preferences.
 

3. Rights and purposes

According to what has been established by GDPR, you are informed that the completion of the forms is voluntary. In any case, the non completion of the required fields will limit the use of the Service.

The personal data provided by users will be collected and processed in the files controlled by Destination One. This way, the requests can be attended, the service provided and the users are informed through electronic means about the activity of the company and its services.

At any moment, the User can exercise its rights of access, limitation, rectification, cancellation and opposition, or revocation of its personal data through email at [email protected] or via postal mail at: 5th Km Rhodes-Lindos Avenue, Rhodes 85100, Greece. In those cases, the User should indicate name and surname, as well as inclusion of a copy of its national ID document.

Destination One commits to respect the confidentiality of the data collected, to use it according to the purposes established here, to fulfill its obligation of custody and to adopt all the required measures that could avoid the loss, alteration or unauthorized access and process of the data, according to the current regulations.

The period during which the personal data collected will be kept will be four years.

 

4. Children

The Service is created to be used by adults with full legal capacity. Children or minors are not authorized to use it.
 

5. Use of the Data

Destination One will use the data given by the users with a commercial purpose to manage and personalize the service offered to them, as well as to obtain statistics.

In this sense, we use the information collected to: offer the requested services; to confirm the reservation and to send updates about the activity booked; to communicate with you in general terms; to answer your questions and comments; to prevent forbidden or illegal activities and to apply our terms and conditions.

Destination One will use the email address from the User for the following purposes, that the User expressly consents:

I) To send news bulletins which the User can unsubscribe at any moment.
II) To send alerts and notices about the Service (for example, a temporal closure for maintenance).

Users accept, with express consent, to receive these email messages by using the Service. In any case, they will be able to unsubscribe from: a) the link included in every communication sent or; b) by sending an email to [email protected]

Nevertheless, the User won’t be able to unsubscribe from some specific communications, such as messages related to data security or updates to the terms and conditions of the Service.

Likewise, Destination One may use Personal Information from the users as aggregated and anonymous data to show it to third parties. Destination One can also share with third parties’ stats and demographic information about the users and its use of the Service. In any case, none of this information will allow these third parties to personally identify a User.
 

6. Service providers and more

There are third parties that manage part of the Service.

Destination One requires them to comply with this Privacy Policy on every applicable aspect, as well as to have their own privacy policy. However, Destination One won’t be responsible for the fulfillment of that policy.

Under some circumstances, Destination One could share, preserve or disclose Personal Information to third parties, in a non-aggregated form:

 

a)To provide the Service:

I) Suppliers such as hotel providers, transfer or supplementary services like WIFI connectivity to provide them with the reservation of your activity. Destination One describes and labels all the services provided by a third party as such. We recommend you to check the privacy policies of every third party from which you acquire any service or products through Destination One. Please, remember that the suppliers could also contact you if additional information is needed.
II) Providers that lend a service on our own name, including credits cards processing, commercial analytics, customer service or marketing. Service providers can collect and have access to information required to carry out duties. Nevertheless, service providers cannot share or obtain the information for any different purpose.
 

b) To collaborate with competent authorities:
 

I) If we believe that there is a reasonable necessity to comply with any law or legal process in any part of the world. Especially when we believe that by doing so we can reduce our responsibility or better defend our legal rights. In any case, we will only provide the required information.
II) If we believe that this action is appropriate to comply with our terms and conditions, including the investigation of a possible breach of them.
III) If we need it to detect, prevent or in any other way deal with or go after scams, the security or the technical aspects related to Destination One.
IV) If the action is appropriate to protect the rights, property or security of Destination One, its employees or users.
V) If we believe that there is a reasonable necessity to comply with any law. In addition, when we believe that we have a legitimate interest, or a third party is able to demonstrate it.
 

Likewise, if Destination One is part of a merger, acquisition or any transaction that supposes the sale of all or some of its assets or shares with voting rights, the information from the User, including the Personal Information obtained through the Service, can be included as one of the assets to be transferred. If that happened, the Personal Information of the User will still be subject to this Privacy Policy.
 

7. Security measures

Destination One adopts all the required technical and organizational measures to protect the security and integrity of the Personal Information against unauthorized accesses, as well as its accidental modification, loss or destruction.

This way, when the User sends data through the Service, for example at the time of the payment, the User is protected by electronic security measures in the network. In addition, the provided information that Destination One stores on its databases is equally protected by security systems that prevent the access to them by unauthorized third parties.

Destination One makes its best efforts to have the most up to date systems for the efficiency of the security systems. Besides, Destination One stores the Personal Information for as long as the law allows and requires. The information is destroyed periodically once when there is no need for it, anymore.

The User must be aware that the information is published under its responsibility. Destination One cannot guarantee that the published information won't be seen by unauthorized persons. The User understands and agrees that, even once the Personal Information has been deleted, it can be visible through cache or when some other users have copied or stored it.

 

8. Privacy Policy modifications

We may update this Privacy Policy in the future. We will inform you about its changes by sending you a notification to the provided email address and/or through a notice about it in our website.
 

9. Contact

If you have any questions about this Privacy Policy, do not hesitate to contact us at:
 

E-mail: [email protected] 
Phone: +30 22410 60375
Address: 5th Km Rhodes-Lindos Avenue,
Rhodes 85100, Greece.