ENPLOMARE_logo
Check availability
Instagram
ENPLOMARE_logo

PRIVACY POLICY

This privacy policy explains how Enplomare uses your personal data when you visit our website, when you stay with us as a guest, or when you contact us. Additionally, the General Data Protection Regulation 2018 (GDPR) outlines your rights and how you are legally protected. When we refer to “we,” “us,” or “our” in this policy, we mean Enplomare.

Please read this privacy policy carefully, along with any other notices we may provide over time, so that you are fully aware of how and why we use your personal data. The services provided via this website are not directed at children, and we do not knowingly collect personal information from children.

Data and Information We Collect
Personal data or information means any information that can be used to identify an individual. It does not include data where the identity has been removed (anonymous data). We collect a wide range of personal information from visitors to our website.

Categories of Personal Data:

  • Contact Information: including email addresses and phone numbers.

  • Technical Data: including IP address, login details, browser type and version, usage time, location, operating system and software platform, and other technologies on devices used to access this website.

  • Usage Data: information about how you use our website and services.

  • Tracking Data: information collected via cookies and similar tracking technologies, such as web beacons, pixels, and unique device identifiers.

  • Marketing and Communication Data: your preferences regarding direct marketing from us or third parties.

We also collect, use, and share Aggregate Data, such as statistics and demographic data, for any purpose. Aggregate Data, even when derived from your personal data, is not considered personal data under the law as it does not directly or indirectly reveal your identity. For example, we may aggregate Usage Data to calculate the percentage of users accessing a particular feature of our website. However, if we combine Aggregate Data with your personal data to identify you directly or indirectly, we treat the combined data as personal data in accordance with this privacy policy.

We do not collect Special Categories of Personal Data (information about your race, ethnicity, religious or philosophical beliefs, sexual orientation, political opinions, trade union membership, health information, or genetic and biometric data), nor do we collect information regarding criminal offenses—except in the following cases:

  1. If you share medical information with us for relevant purposes, we will contact you and require your consent to use this information.

  2. If you have voluntarily shared Special Category Personal Data.

How We Collect Data
We may collect your data automatically when you interact with us via this website, by mail, telephone, email, chat, or social media, for example:

  • When you subscribe to our newsletters or other marketing communications.

  • When you make inquiries or gather information, or communicate with us generally.

  • When you engage with us on social media.

  • When you participate in surveys, contests, or promotions.

  • When you leave comments or reviews.

We may also collect data automatically about your equipment, browsing activity, or usage of this website. This includes clicks on our website, pages you visit on third-party sites, or social media interactions. Our systems can automatically collect such data to create visitor profiles to help us improve your experience.

We may also receive personal data from:

  • Our technology partners who help manage the website and third-party registrations.

  • Analytics providers, advertising networks, and search information providers.

  • Data management partners.

  • Feedback and reviews from partners.

  • Publicly available sources.

  • Social media, according to publicly available privacy settings.

  • Third parties where you have consented to share personal data with us, or where permitted by law.

How and Why We Use Your Personal Data
We use your personal data to provide and personalize the services you request, to offer high-quality hospitality, and for direct marketing and promotion of new products and services. We may process your personal data based on your consent as allowed under applicable law.

We may use your personal data for marketing purposes, such as newsletters, promotions of new products and services, or offers we believe may interest you, based on your preferences. This can include email, postal mail, online advertising, social media, telephone, SMS/MMS messages, app notifications, and other channels.

We may also combine your personal data with third-party data to enhance our services and provide more personalized experiences. For example, if you log in to our services via social media, we may use that information to personalize your experience or share and use it as described elsewhere in this policy.

We may process your personal data on multiple legal bases depending on the purpose. Whenever we process your data, we ensure your rights are respected.

Legal Basis for Using Personal Data
We process personal data only when legally permitted. This may include:

  • Protecting our legitimate interests (or those of third parties) and yours, provided your rights do not override those interests, e.g., keeping the website secure.

  • Compliance with legal obligations.

When relying on legitimate interests, we ensure no adverse effect on you and take measures to protect your rights. We do not process personal data in ways where our interests override your rights without consent or legal authorization.

Consent is required where GDPR mandates it. Consent is documented, including how and when it was given. Personal data collected to fulfill a contract does not require consent. Personal data collected to comply with the law also does not require consent.

Sharing Personal Data
We may share personal data with:

  • Technology and media service providers.

  • Auditors and professional advisors (lawyers, accountants, insurers).

  • Government, authorities, and law enforcement.

All third parties must respect your data security and are not permitted to use it for their own purposes. We do not share personal data outside Europe.

Cookies Policy
Our website uses cookies—small files sent from the website to your browser. Cookies help ensure we do not show you unnecessary information or content you have already seen, and allow us to provide a more personalized experience. By using the website, you consent to the use of cookies and other tracking technologies.

Types of Cookies:

  • Strictly Necessary: required for website functionality, login, booking, and secure payments.

  • Functional: recognize returning users to tailor content.

  • Analytics/Statistics: track visitors and behavior to improve the website.

  • Targeting/Advertising: track visited pages and clicked links for marketing, including third-party sharing.

Only strictly necessary and functional cookies are used without consent. For others, you will be asked via a consent banner. You may disable cookies via your browser settings, though some website features may not function.

Advertising and Marketing
You may see our ads on other websites. These may not target you personally, but are part of advertising agreements. You may choose to receive newsletters or marketing communications, including invitations, offers, and phone calls. Preferences may be recorded to ensure you receive relevant communications.

We work with partners for advertising and retargeting using analytics and tracking cookies to deliver relevant ads based on browsing history. We do not control third-party cookies used by advertising networks.

Data Security
Paper records are stored securely, electronic devices are password-protected, and digital data is encrypted or secured with regular backups. Staff have unique logins and must regularly update passwords. Email containing sensitive data is password-protected if transmitted via insecure servers. All systems are continuously monitored.

Data Retention
We retain personal data only as long as necessary to fulfill the purposes of collection, comply with legal and accounting obligations, and for reporting to authorities. By law, basic visitor information (including contact data) is kept for six years. After this period, personal data is deleted.

For statistical purposes, identifying data may be anonymized indefinitely.

Your Rights
Under certain conditions, you have rights regarding your personal data:

  • Access: request a copy of your data.

  • Rectification: correct inaccurate information.

  • Erasure: request deletion when there is no reason to continue processing.

  • Objection: object to processing based on legitimate interest or marketing.

  • Restriction: temporarily suspend processing under specific circumstances.

  • Withdrawal of Consent: withdraw consent at any time; this does not affect prior processing.

You may be asked to verify your identity when exercising these rights. We aim to respond within 30 days; complex or multiple requests may take longer, and we will keep you informed.

Contact Us
For questions about this privacy policy or to exercise your rights, please email us at info@enplomare.gr