Conctact us: info@sailing4fun.comRequest Booking

Menu

Privacy Policy

Personal Data Protection Policy – Compliance with the Regulation (EU) 2016/679 of the European Parliament and the Council of 27th April 2016

1.Scope of Activity

“Sailing4Fun”, with the distinctive title “Sailing4Fun” . We choose to charter boats that are for charter only from Paros and boats that are strictly owner’s boats so we can have a personal contact with the boats and their owner’s in a way to guarantee you are going to charter a boat, top serviced and maintained

We are looking forward meeting you and helping you to have a wonderful sailing experience and vacation with us

 

 

2.Personal Data – Definition

Personal data means, in accordance with the legislation in force, any information that either independently or in combination with other, can lead to identifying an individual. This information includes name, date of birth, gender, age, profession, financial status, address or email. Also, specific categories of information fall under the concept of personal data. Such data may occur within the context of a mandate given to the Firm, (e.g. health data, genetic data, biometric data, data related to racial or ethnic origin, political opinions, religious or philosophical beliefs, participation in a trade union, data relating to sexual life or sexual orientation, as well as information on criminal prosecutions and/or criminal convictions or relevant security measures). Data subjects are individuals and in particular: a) Clients and/or individuals associated with them (i.e. legitimate representatives, members of a legal entity management, employed personnel) witnesses, experts and other individuals, who may be involved in a case (judicial or not), b) partners, staff, associates and suppliers of the Firm, the data of which the Firm maintains.

3.Purpose of collecting personal data

The Firm handles the personal data with particular care and respect for privacy, in order to execute the mandate given and for as long it is necessary to complete each case. Execution of the mandate given to the Firm to the benefit and in the interest of the client, depending on the nature of each case, may require the disclosure of the data to a competent authority, judicial or administrative, or third party (lawyers, Firm staff, consultants, mediators, notaries, bailiffs etc.) or opponent (lawyers and other parties involved). Personal data may be processed by the Firm and if such processing is required by its overriding legitimate interest. The Firm may process personal data that it has received or collected in the course of its professional activity in any case this is required by applicable law, ensuring that the safeguards for the security and protection of such data are met. Any other processing of personal data by the Firm requires the consent of the data subject. The Firm also processes personal data of its partners, employees, associates and suppliers, in order to fulfill its contractual obligations towards them (payroll, fee payments, etc…) Any processing of personal data by the Firm is subject to the principle of minimization and is carried out only if it is necessary and to the extent that it serves its purpose.

4.Types of personal data

The personal data processed by the Firm depend on the nature of the relationship with the subject and the object of each case and may belong to the following categories:

  1. Simple contact data: e.g. name, surname, phone number, email, fax.
  2. Demographics: gender, age, occupation, place of residence, marital status, nationality.
  3. Special data: health data, data relating to criminal prosecutions/ convictions/ security measures, biometric and genetic data, sexual preferences, sexual life, racial or ethnic origin, political opinions, religious or philosophical beliefs, participation in a trade union.

5.Data retention time

The Firm retains the personal data of its clients and the individuals involved with any assignment for up to one (1) year after the conclusion of the case, unless a longer retention period is mandatory from other applicable provisions. At the end of the above period, anonymized file data may be retained for purposes of scientific research and follow-up of case law. The Firm reserves the right to retain personal data for a longer period of time, or to use it for other legitimate purposes in the context of its professional activity, provided it informs and receives the consent of the subject.

Personal data of personnel, associates, suppliers etc. are retained for as long as necessary to meet the Firm’s contractual obligations and for as long as required by applicable law.

6.Data receivers

The Firm does not in principle transmit personal data to third parties, inside or outside the EU for processing purposes, other than the use of e-mail services, storage and management of data received from third party providers (e.g. Google, Dropbox) which ensure data security and meet GDPR’s criteria. Disclosure or notification of data to competent authorities, judicial or other, in the context of the mandate assigned to the Firm, shall not be deemed as data transmission. During handling a case the Firm may transmit data to its staff and its associates required, solely for the purpose of carrying out the assignment.

7.Return or deletion of data.

If the client does not retrieve the file of the assigned case until the end of the personal data retention period, the Firm will safely erase/ destroy the personal data.

8.Rights of the data subjects

For as long as the Firm maintains personal data, the subjects have the rights provided by the GDPR (under the conditions of the relevant GDPR articles and following the possibilities of exercising them set forth therein)

  • Right of access
  • Right to information
  • Right of data correction and completion
  • Right to delete
  • Right to limit processing
  • Right to data portability
  • Right to oppose further processing
  • Right to withdraw consent if personal information has been collected with the consent of the subject.

For the exercise of his / her rights the subject is entitled to submit a written request to the Firm either in person or by a document in which the subject identity is certified.

9.Security

The Firm applies physical, technical and organizational measures to protect personal data against loss, theft, unauthorized access or unauthorized modification.

10.Complaint management – Supervisory authority

For any complaint you can contact the Firm by sending an email to info@sailing4fun.com or by calling 210 3605358 and then file a complaint with the Data Protection Authority. Τhe Greek supervising authority to monitor the implementation of GDPR is the data protection authority. [ www.dpa.gr Kifisias Avenue 1-3 / 11523 tel. +30210 6475600, fax: +302106475628 email: contact@dpa.gr ]

11.Review/ Update

This Personal Data Protection Policy may be revised in the future by the Firm. Any changes will be posted on the website www.sailing4fun.com

@Instagram