This “Privacy Policy” explains and describes how and why we Tsiatsios Tours company collect, process, protect and share data that we collect from the Users (hereinafter “Users”) who visit and use our Website www.tsiatsiostours.gr (hereinafter “Website”).

This Privacy Policy also applies to all text, email, SMS, and other messages that we exchange with our Users or Clients as well as for the data that we collect and exchange through our social network accounts such as Facebook, Instagram, Behance, Youtube and more or services and applications such as Google Forms and others.

The processing and protection of your personal data are governed by the terms of this Privacy Policy and the relevant provisions of both Greek and International Laws for the Protection of Individuals from the Processing of Personal Data.

This Privacy Policy is an integral part of our “Terms of Use” and as long as you continue to use our Website and our services, you will be deemed to accept it.

CHANGES IN THIS PRIVACY POLICY
We reserve the right to modify this Privacy Policy in our sole discretion. Any amendment shall become effective as soon as the modified Privacy Policy is posted on our Website.

In any case, if you continue to use our Website, you will be deemed to accept these modifications unreservedly.

If you do not agree to the terms of this Privacy Policy, you must stop using our Website immediately.

THE DATA WE COLLECT:
Non-Personal Data:
We collect Non-Personal Data whenever a User interacts and uses our Website.

The Non-Personal Data we collect may include:

The operating system, the internet service provider, the browser, the type of device used, the language of the browser, the pages visited by a User on our Website and other similar information about the Users who visit our Website.

Personal Data:
We collect Personal Data from Users in a variety of ways but ONLY when they submit them voluntarily.

The User Data we collect may include the following:

The name, surname, address, age, e-mail address, mailing address, telephone number and other similar Personal Data.

Users may always deny the collection of their Personal data but this may sometimes prevent them from engaging in certain activities and from receiving the services/products we offer.

HOW WE COLLECT THESE DATA:
Non-Personal Data:
We may collect Non-Personal Data using:

Services, apps and software such as Google Analytics, Google Webmaster Tools, Google Adwords, Facebook Pixel, Google Remarketing Tag and more.

We also use the so-called “Cookies” in our Website for which you can learn more about at our “Cookies Policy“.

Personal Data:
We may collect Personal Data when and if Users:

⦁ Fill in and submit a form to our Website.
⦁ Communicate or interact with us by phone, email, sms or other similar services and provide us with their Personal Data (for example, phone, name, address, etc).
⦁ Take part, fill in and submit a form about a contest.
⦁ Interact with a promotional campaign we may run in Facebook, Instagram, Google, Youtube, Twitter and others, and provide us with their Personal Data (for example, phone, name, address, etc.).
⦁ Fill in and submit a form or request we have sent to them using services or applications like Google Forms etc.
⦁ Fill in and submit a form that was appeared to them on Facebook using Facebook Lead Ads.
⦁ Interact and communicate with us through social networks like Facebook, Instagram, Youtube and others and provide us with their Personal Data (for example, phone, name, address, etc.).
⦁ Provide us their Personal Data after a meeting or appointment we may have.
⦁ Provide us their Personal Data after any communication we may have using teleconferencing services like Skype, Viber and so on.
⦁ Fill in and submit a proposal, offer, contract, etc. that we have sent to them via email, sms or via services or applications like Better Proposals and more.

At this point we must repeat that we collect Personal Data ONLY when Users/Individuals submit them voluntarily.

WHY DO WE COLLECT THESE DATA AND HOW DO WE USE THEM?
We collect Personal or Non-Personal Data to:
⦁ Improve users’ experience on our Website and make their browsing easier and more enjoyable.
⦁ Personalize the experience of each User.
⦁ Understand how users interact with our Website.
⦁ Collect and Analyze Statistics as regards the use of our Website.
⦁ Improve our Website and correct problems that may arise.
⦁ Provide and improve the services or products we offer.
⦁ Analyze and Understand the content and the sections that are most popular to a specific audience.
⦁ Serve and support our Users and Customers.
⦁ Fulfill our accounting, tax and legal obligations towards our clients.
⦁ Identify and address issues related to the security of our Website and its Users.
⦁ Fulfill our commitments to our Users/Customers.
⦁ Communicate with Users via email, telephone and so on, so that we can provide them with information about our services/products and request their comments on our Website and on our services/products.
⦁ Perform, personalize and analyze promotions, marketing and advertising campaigns.

Specifically:
a) To create Retargeting Campaigns and Custom Audiences on Facebook and Adwords using Facebook Pixel and Google Remarketing Tags respectively.
b) To send Newsletters to Users who agreed to receive them on topics that we believe will be of great interest in them. If at any point and time a User wishes to be deleted from receiving future Newsletters, he/she may follow the instructions at the bottom of the E-mail Newsletters or contact us to unsubscribe.
c) To analyze our campaigns using tools and services such as Google Adwords, Google Analytics, Google Webmaster Tools, Facebook, Instagram and others.
d) To display ads which are as personalized as possible to each user’s interests.

FOR HOW LONG DO WE MAINTAIN THE DATA?
We retain Personal or Non-Personal Data only for as long as it is required to fulfill the purpose of collection or further processing.

As long as Personal Data are collected for the acquisition of our services/products they are retained for as long as necessary to meet all our accounting and legal obligations, to resolve disputes and enforce our agreements.

HOW DO WE PROTECT THESE DATA?
We make a huge effort to protect the Personal or Non-Personal Data that we collect from unauthorized access, alteration, disclosure or destruction.

We apply appropriate and strick practices to collect, store and process these data and we apply strict security measurements to protect them such as:

1) Encryption using Secure Sockets Layer (SSL)
2) Use of the HTTPS protocol (Hypertext Transfer Protocol Secure) throughout our Website.
3) Two Level Authentication, Firewall, Malware Scans, Backups, Brute Force Protection and other at the Hosting level of our Website.
4) Strict customizations, Direct Updates, Firewall, Malware Scans, Backups, use of security software (ithemes Security, Word fence or similar) and other at the level of the WordPress content management system.
5) Strict customizations, Firewall, Malware Scans, Backups, Security Software (McAfee, Norton, Avast or similar) and others at the level of our computer network.
6) In cases that it is necessary to export the data for example in a document, a usb drive etc. they are always stored and protected in places accessible only by our
trusted employees or partners.

NOTIFICATION IN CASE OF DATA BREACH
As mentioned above, we do everything possible to prevent the breach of the Personal or Non-Personal Data we have collected.

However, no system or practice is inviolable and therefore in case of a Data Breach we owe and will proceed as far as possible in the following notification actions within 72 hours of identifying the Breach:

1) We will notify the Breach to the Competent Authorities.
2) We will immediately notify (If we have the necessary contact information) Users that their data was breached.
3) If we do not have the required Users contact information, we will notify and disclose that occurred Data Breach by displaying a text at a prominent point on our Website’s Homepage.

USAGE OF COLLECTED DATA
We do not sell, market, or rent Personal or Non-Personal Data that we collect.

We may share non-identifiable, aggregate data with our business partners, our trusted partners, and our advertising partners for the purposes outlined above.

We may share data with 1) third-party providers who can provide on our behalf promotional, advertising and marketing services 2) third party suppliers or affiliates
who provide us with technical services such as hosting and technical support services.

We emphasize that the above categories of recipients of Personal or Non-Personal Data are processors on our behalf and therefore they do not process the data any
further beyond the above sharing goals.

We may also share Personal or Non-Personal Data with Competent Authorities if we deem it necessary to comply with relevant laws and ordinances, as well as to protect our property and other rights from frauds and unlawful actions.

DATA COLLECTION FROM UNDERAGE INDIVIDUALS
We do not knowingly collect Personal or Non-Personal Data from individuals under the age of 18.

If we find out that we have collected data from an individual under the age of 18 we will delete/destroy them directly.

YOUR RIGHTS TO YOUR PERSONAL DATA
You have at any point and time the right to request access, modification or deletion of the data we have collected from you.

We will respect your request and fulfill it as soon as we can.

We may though not be able to fulfill your request if the Personal or Non-Personal Data that we have collected from you have already been destroyed or deleted or
when they are necessary to 1) comply with our accounting or legal obligations 2) resolve disputes 3) put into effect our agreements.

REQUESTS – CONTACT
In case you have a request or you just want to ask something about this Privacy Policy, please contact us in one of the following ways:

1) Contact Form: www.tsiatsiostours.gr
2) Email: info@tsiatsiostours.gr
3) Phone Number: +30 24320 24144

TSIATSIOS TOURS: Plateia Riga Ferraiou & Kondili G. 22 Street, Kalampaka, Greece

DATA PROTECTION OFFICER: Nektarios Tsiatsios