Privacy Policy
Last updated: 1st April 2026
1. Introduction
At Experience Authentic Greece, we respect your privacy and are committed to protecting your personal data.
This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services.
By using our website, you agree to the practices described in this policy.
2. Data Controller
The data controller responsible for your personal data is:
Experience Authentic Greece
Email: contact@experienceauthenticgreece.gr
3. What Personal Data We Collect
We may collect the following categories of personal data:
a. Information you provide directly
- Full name
- Email address
- Phone number
- Billing details
- Booking information (dates, preferences, number of participants)
- Special requests (e.g. dietary requirements, accessibility needs)
b. Automatically collected data
- IP address
- Browser type and device
- Pages visited
- Date and time of access
c. Communication data
- Messages sent through contact forms
- Emails or inquiries
4. How We Use Your Data
We use your personal data to:
- Process and manage bookings
- Communicate with you regarding your reservation
- Provide customer support
- Improve our website and services
- Send updates or marketing communications (only if you have consented)
- Comply with legal obligations
5. Legal Basis for Processing (GDPR)
We process your data based on:
- Contractual necessity (to complete bookings)
- Legitimate interests (to improve services)
- Consent (for marketing communications)
- Legal obligations
6. Sharing of Data
We may share your data with:
- Local partners / suppliers (hosts, guides, service providers)
→ Only when necessary to deliver your experience - Payment providers
- IT and hosting providers
All partners are required to respect data protection laws.
7. International Transfers
If your data is transferred outside the EU, we ensure appropriate safeguards are in place in accordance with GDPR.
8. Data Retention
We retain your data only as long as necessary:
- Booking data: for legal and tax obligations
- Contact data: until no longer needed or upon request
9. Your Rights
Under GDPR, you have the right to:
- Access your personal data
- Request correction
- Request deletion ("right to be forgotten")
- Restrict processing
- Data portability
- Object to processing
- Withdraw consent at any time
10. Cookies
We use cookies to improve your browsing experience.
For more details, please refer to our Cookies Policy.
11. Data Security
We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, loss, or misuse.
12. Third-Party Links
Our website may contain links to third-party websites. We are not responsible for their privacy practices.
13. Updates to this Policy
We may update this Privacy Policy from time to time. Changes will be posted on this page.
14. Contact Us
If you have any questions about this Privacy Policy, please contact:
Experience Authentic Greece
