Privacy Policy

Last Updated: 11/4/2026

At Anassa40, we take your privacy seriously. This Privacy Policy explains how we collect, use, and protect your personal data when you use our website and booking services.

1. Data Controller

The “Controller” responsible for your personal data under the General Data Protection Regulation (GDPR) is:

  • Company Name: ANASSA VILLAS SARANDARI ETERRORYTHMI ETAIRIA (TAX No 802306293)
  • Address: Ionias Street, Hersonissos
  • Email: anassa40villa[at]gmail.com
  • Phone: 6944445439

2. Data We Collect and Why

We collect personal information to provide you with a seamless booking experience and to respond to your inquiries.

A. Contact Form

When you reach out via our contact form, we collect:

  • Name: To address you personally.
  • Email Address: To respond to your inquiry.
  • Telephone Number: To contact you regarding your request if email is unsuccessful or if urgent.

Legal Basis: Processing is based on our legitimate interest (Art. 6(1)(f) GDPR) in responding to your requests or taking steps prior to entering into a contract.

B. Online Bookings (Smoobu)

To facilitate real-time bookings, we use the Smoobu Channel Manager (Smoobu GmbH, Falckensteinstraße 48, 10997 Berlin, Germany). When you book, Smoobu collects:

  • Contact details (Name, address, email, phone).
  • Stay details (Dates, number of guests).
  • Payment information (processed securely via our chosen payment gateway).

Legal Basis: This data is necessary for the performance of a contract (Art. 6(1)(b) GDPR) between you and [Your Business Name].

3. Data Processors (Third Parties)

We do not sell your data. However, we share your data with trusted service providers to run our business:

  • Smoobu: Our software partner for managing bookings and synchronizing calendars.
  • Hosting Provider: Our website is hosted by [Provider Name], which may log technical data (IP addresses) for security purposes.
  • Payment Providers: (e.g., Stripe/PayPal) If you pay online, your data is handled directly by these providers.

4. How Long We Keep Your Data

  • Inquiries: We keep contact form data for as long as necessary to resolve your request, or up to [e.g., 6 months] if no booking is made.
  • Booking Records: We are legally required to keep financial and contract data (invoices, booking history) for [e.g., 10 years] to comply with tax and commercial laws.

5. Your Rights

Under the GDPR, you have the following rights:

  1. Right to Access: You can request a copy of the data we hold about you.
  2. Right to Rectification: You can ask us to correct inaccurate information.
  3. Right to Erasure (“Right to be Forgotten”): You can request that we delete your data (unless we have a legal obligation to keep it).
  4. Right to Restriction: You can ask us to temporarily stop processing your data.
  5. Right to Object: You can object to processing based on legitimate interests.

To exercise these rights, please contact us at anassa40villa[at]gmail.com .

6. Security

We implement industry-standard technical and organizational security measures (such as SSL encryption) to protect your data from unauthorized access or loss.

7. Right to Lodge a Complaint

If you believe we are mishandling your data, you have the right to lodge a complaint with your local Data Protection Authority.

8. Cookies and Tracking Technologies

Our website uses cookies to ensure basic functionality and to provide a secure booking experience. We do not use marketing, profiling, or third-party tracking cookies (such as Google Analytics or Meta Pixel).

What are cookies?

Cookies are small text files placed on your device to help the website provide a better user experience.

Cookies we use:

  • System/WordPress Cookies: These are strictly necessary for the technical operation of the website (e.g., security features or, if applicable, logging into an admin account).
  • Booking Cookies (Smoobu): When you interact with the Smoobu booking widget, “functional” cookies are used to process your booking request, remember your selected dates, and ensure the booking session remains secure. Without these, the booking engine cannot function.
  • Anti-Spam Cookies: If we use hCaptcha to prevent spam on our contact form, these providers may set a cookie to distinguish humans from bots.

How to manage cookies:

Most web browsers allow you to refuse or delete cookies through your browser settings. Please note that if you block functional cookies, the booking engine (Smoobu) may not work correctly, and you may be unable to complete a reservation.

Scroll to Top