At Royal Paradise Beach Resort & Spa (hereinafter “we”, “us”, or “the Hotel”), we are committed to protecting the personal data of our website visitors at www.royalparadise.gr. This Policy explains how we collect, use, and safeguard your information in compliance with the General Data Protection Regulation (GDPR).

1. Data We Collect
We collect information that you provide directly to us through the following actions:

Request an Offer: Full name, email address, phone number, preferred stay dates, number of guests, and any special requests.

Newsletter Subscription: Your email address.

Airport Transfer Request: Flight details (flight number/time), number of passengers, and contact information.

Bookings: Essential information required to complete and manage your reservation.

2. Purpose of Processing & Use of Data
We use your data exclusively for the following purposes:

Management of Offer Requests: To process your inquiry and provide you with a personalized financial proposal for your stay.

Marketing Communications (Newsletter): To keep you informed about news, special offers, and hotel packages, only if you have provided your explicit consent via our subscription form.

Transfer Services: To coordinate and execute your transportation from/to Thessaloniki (SKG) or Kavala (KVA) airports.

Customer Support: To respond to your questions and improve our services.

3. Legal Basis for Processing
Consent: For sending newsletters and processing offer requests.

Contract Performance: For managing reservations and transfer services.

Legitimate Interest: For improving our website functionality and ensuring its security.

4. Data Sharing with Third Parties
The Hotel does not sell or rent your personal data. We share information only with:

Authorized transportation partners (strictly for the execution of Airport Transfers).

Technical support providers and email marketing platforms (newsletter), who are also bound by GDPR compliance.

5. Data Retention
Offer Request data is retained for as long as necessary to service the request and potential booking.

Newsletter emails are stored until you choose to opt-out. You can click the “Unsubscribe” link found in any of our emails at any time.

Transfer & Booking data is kept in accordance with Greek tax and tourism legislation.

6. Your Rights
Under the GDPR, you have the following rights:

The right to access, correct, or delete your personal data (“right to be forgotten”).

The right to restrict or object to the processing of your data.

The right to withdraw your consent at any time.

To exercise any of these rights, please contact us at: [email protected].

7. Data Security
We implement advanced security protocols (SSL encryption) to ensure your privacy and protect the information you enter into our online forms from unauthorized access or loss.