PRIVACY POLICY
Last updated: 8-8-2025
At Nymfes Corfu Apartments ("we", "us", "our"), accessible from https://www.nymfescorfutown.com, we are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, and protect your personal information in compliance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”).
1. Who We Are
Nymfes Corfu Apartments is a hospitality business located in Corfu, Greece, offering holiday apartments. For data protection purposes, we act as the data controller for personal data collected via our website or through direct communication.
2. What Information We Collect
When you interact with our website or contact us, we may collect the following personal data:
Contact Information: Full name, email address, phone number
Booking Details: Check-in/check-out dates, number of guests, preferences
Payment Information (if applicable): We may collect or facilitate the collection of payment details via secure channels
Technical Data: IP address, browser type, pages visited (via cookies and analytics)
We do not collect sensitive personal data unless voluntarily provided.
3. How We Use Your Information
We collect and use your information for the following purposes:
To manage and confirm bookings
To respond to inquiries or requests
To personalize your experience on our site
To comply with legal and tax obligations
To improve our services and website functionality
We will not use your data for marketing purposes unless you have explicitly opted in.
4. Legal Basis for Processing
We process your personal data based on one or more of the following legal grounds:
Performance of a Contract: To fulfill your booking or inquiry
Legal Obligation: To comply with tax, financial, or regulatory duties
Consent: For optional communications or marketing (only if you opt in)
Legitimate Interest: To improve our services and understand website usage
5. Data Sharing and Disclosure
We do not sell your personal data.
We may share your information with:
Trusted third-party service providers (e.g., email providers, booking tools)
Payment processors (if applicable)
Public authorities if required by law (e.g., tax or tourism authorities)
All third parties are required to respect your data and handle it according to GDPR.
6. Data Retention
We will retain your personal data only for as long as necessary:
For booking records: Up to 7 years (as required by Greek tax law)
For general inquiries: Up to 12 months
For marketing (with consent): Until you unsubscribe
You may request data deletion at any time (see Section 9).
7. Cookies and Tracking
We use cookies to enhance website performance, track analytics, and remember your preferences. See our full Cookies Policy for more details.
8. Your Rights Under GDPR
You have the right to:
Access your personal data
Correct inaccurate or incomplete data
Request deletion ("right to be forgotten")
Restrict or object to processing
Withdraw consent at any time
Data portability (in certain circumstances)
Lodge a complaint with your local data protection authority
To exercise these rights, email us at [Insert Email].
9. Data Security
We take appropriate technical and organizational measures to secure your personal data, including:
HTTPS encryption
Access control to personal data
Secure email and data storage systems
10. Contact Us
If you have any questions about this Privacy Policy or how your data is handled, please contact: