Privacy Policy

Who we are

ART HILL IKE (Single Member P.C.), Tax Number: 801242258, Tax Office: A’ Thessaloniki Address: 8, Venizelou General Commercial Registry Number: 152517004000 (Data Controller) and our website address is: and our Data Protection Officer (DPO) is Artemis Maletsikou, [email protected]. We take the security of your privacy and confidentiality very seriously, and we pledge to keep all details you send to us confidential. Our policy complies with the EU General Data Protection Regulation (GDPR), the applicable Greek Law on the protection of personal data (No 4624/2019, No 2472/1997, No 3471/2006, as applicable, etc.) as well as the opinions and guidelines of the Hellenic Data Protection Authority and the European Data Protection Board. It is important that you read this privacy policy, together with any other privacy notices we may show you from time to time, so that you are fully aware of how and why we are using your personal data.


Guest Reservations does not seek to collect personal information about children under 13, and you must be 18 or older to use the Site. We may collect information from parents or guardians about family reservations with their consent. If we learn and have actual knowledge of a child providing information through the Site, we will delete such information as soon as possible. We will honor requests by a parent or guardian to review or delete information about their child. This website is not intended for children and we do not knowingly collect data relating to children.


‘PERSONAL DATA’ means any information relating to an identified or identifiable natural person (‘data subject’). An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person, ‘SPECIAL CATEGORIES OF PERSONAL DATA’ are among others genetic, biometric, data concerning health, racial or ethnic origin etc., ‘PERSONAL DATA PROCESSING’ means any operation or set of operations which is performed on personal data, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction, ‘CONTROLLER’ means the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data, ‘PROCESSOR’ means a natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.

Basis for processing

We may proceed to the collection usage, storage and transfer of personal data provided for the following purposes: managing booking requests, sending the confirmation or documentation for the booking made, promotions, marketing & advertisement, managing subscription and/or unsubscription to the newsletter, analyzing website usage and checking user preferences and behavior ArtHill eco villas will process the following categories of user data:
  • Identifying data: name, surname, nationality
  • Contact details: email address, telephone number and billing address
  • Transactional data for goods and services: Products and services purchased or in which you show interest
  • Data in relation to invoicing (e.g. Tax Number, Tax Authority, number of the bank card used for payment)
  • Stay preferences
  • Financial data: bank account and payment card details
  • Browsing data: internet protocol (IP) address, zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website.
Upon departure, we will ask you to fill in an anonymous questionnaire to rate your experience at ArtHill eco villas. By agreeing to complete the guest review, you give your consent for the review to be uploaded on our website. We reserve the right to adjust or remove forms at our sole discretion. If you no longer wish to receive our newsletter and other promotional communications, you can simply click on the unsubscribe link or send us email at [email protected]. We collect and process your personal data each time you use our services (either those services are provided directly by us or by other companies or agents acting on our behalf), in general when you interact with us, when you use our sites, or when you use our call centers or our mobile and tablets apps. Also, information about you is collected by us:
  • Through the browser cookies that you use when navigating our Websites,
  • When you use contact forms to request more information or post a comment.
  • When we communicate with you.
  • When connecting to our Hotels wi-fi.
  • Directly from you
  • Legal purposes
  • Marketing
We do not ordinarily collect any Special Categories of Personal Data about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data) nor do we collect any information about criminal convictions and offences. The only exceptions to this are: (i) if you provide health data to us as part of a booking, we will use this to perform our contract with you, and we need your explicit consent to use your health data as part of that or (ii) you have made the special category data obviously public (iii)in case of extremely urgent and extraordinary circumstances (eg. health crisis) to ensure the public’s interest and public’s health.


When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection. An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: After approval of your comment, your profile picture is visible to the public in the context of your comment. If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue. Your data will be held for the duration of the contractual arrangement and for the duration of any civil proceedings that might arise from it after it is terminated. Data given for the purpose of sending out newsletters or promotional deals would be kept for as long as the user has not revoked their consent. Website administrators can also see and edit that information.

Where we send you data

Visitor comments may be checked through an automated spam detection service.

Social media

Our website may also contain plug-ins and other features that integrate third-party social media platforms into our website. You will be able to activate them manually. If you do so, the third parties who operate these platforms may be able to identify you, they may be able to determine how you use this website and they may link and store this information with your social media profile. Please consult the data protection policies of these social media platforms to understand what they will be doing with your personal data. If you activate these plug-ins and other features, you will be doing so at your own risk. Any data you provide to us when you visit our page on social media, such as comments, videos, images, „likes“, public messages, etc., are published on the platform of the social media of your choice and are not used or processed by us for purposes other than your information regarding our promotional activities, such as e.g. discounts, special offers, contests that we may organize, but also in the context of your service, when you wish to get in touch with us in this way. The processing of your personal data is carried out based on art. 6 par. 1 f GDPR, in the context of the provision of our services to you. For more information regarding the processing of your data by the providers of social media platforms and in general about your rights, please refer to the respective Privacy or Security Policies of each provider.

Links to other websites

Our website contains links to other websites. Guest Reservations is not responsible for the privacy practices of third parties or their websites, even if they link from the Site. This Privacy Policy applies solely to information collected by this Site. To the extent that you disclose your information to other parties, different rules may apply to their use or disclosure of information. We urge you to read the privacy and security policies of any external websites before providing any personal information while accessing those websites.


If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.


After you visit a website, your browser saves a small text file called a cookie to your computer’s hard drive. They allow information collected on one website to be saved before it is needed on another, enabling a website to provide you with a personalized experience and providing the website owner with statistics on how you use the site in order for it to improve. Cookies are used on our website. They are put by software that runs on our servers as well as software that runs on the servers of third-party vendors whose services we use. You will be asked whether or not you want to accept cookies. We can only record that you have not given your consent to their use for any other reason if you refuse to allow them. If you refuse to accept cookies, you will be restricted in your ability to use any of the features of our website. We use cookies in the following ways: to monitor how you use our website, to keep track of whether you’ve seen unique messages on our website, to keep track of your responses to surveys and questionnaires you complete on our website. If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year. If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

In order to process your bookings, provide information about personalized and individualized services/offers, we can share your personal information with third parties who provide us with booking and reservation management, payment related, data management, customer relationship management, marketing and advertisement, information technology services, or administration services.

How long we retain your data

We maintain your personal data solely as long as needed so that the purposes for which they have been collected are fulfilled (e.g. completion of legal/tax procedure). In addition, depending on the quantity, the nature and the sensitivity of the personal data, as well as the purposes for which we process them, we decide the appropriate time period of their storage.

We are entitled to anonymize your data, so that they cannot be associated with you, for the purpose of being used for research or statistical purposes, so we may use this information indefinitely, without further notice to you.


We use reasonable safeguards to protect personal information against loss and theft, including encryption technology, restricted access, “firewalls,” and Secure Socket Layers (SSL). However, security over the internet cannot be guaranteed. Guest Reservations does not assume any responsibility for any harm, loss, or damage you may experience or incur by the sending of personal or confidential information over the internet, and you should take your own measures to protect your sensitive information. If you have any questions about the security of our Site, contact us through our website.

What rights you have over your data

I. The right to be informed, announced and briefed about exercising your rights (Art. 12, 13, 14 GDPR), meaning your right to be informed on how your personal data are used (as it is thoroughly done in the present Briefing). II. The right to access the personal data that concern you and if the Company processes them, as a Data Controller (Art. 15 GDPR). The Company will provide a copy of the personal data after a relevant request is made from you. III. The right to rectify inaccurate data as well as to add data when they are incomplete (article 16 GDPR). IV. The right to erase your personal data (“The right to be forgotten”), subject to the obligations and legal rights of the Company over their preservation according to the current legislative and regulatory provisions (Art. 17 GDPR). V. The right to restrict the processing of your personal data if, either their accuracy is doubted, or the processing is illegal, or they lack the purpose of processing but their erasure is not applicable (Art. 18 GDPR). VI. The right to transfer your personal data to another Data Controller (data portability), if the processing is based on you consent and is conducted with automated means or to execute the contract between us (Art. 20 GDPR). VII. The right to object for reasons that concern your special condition in case your data are being processed for purposes of the Company’s legitimate interest (Art. 21 GDPR) and especially to object to the automated decision-making (Art. 22 GDPR). VIII. The right to withdraw the already given consent (article 7 GDPR) at any time, for processing conducted based on the consent. The legitimacy of the processing of your data is not influenced by the withdrawal of your consent up to the point you requested the withdrawal. IX. The right to lodge a complaint with the competent supervisory authority, that is to say the Hellenic Data Protection Authority (1 – 3 Kifisias Avenue, 115 23, Athens, +30 2106475600, [email protected]).

User liability

The user certifies that they are over the age of eighteen (18) and that the information they provide is accurate, specific, full, and up to date. They are responsible for any misleading or incorrect information they present on the Website, as well as any direct or indirect harm they cause ArtHill eco villas or third parties.

Our statements

By using our platform, you agree to use any information about any other user in a manner consistent with the Terms of Service and the Privacy Policy. The user of our website guarantees that the provided information is correct and accurate and is committed to disclose any changes or modifications thereof. We are not responsible for any damage (direct, indirect, positive, deponent) that may be caused to the visitor on account of the website or its use. The visitor is solely responsible for the protection of their system against viruses. We do not make decisions or proceed to profiling based on an automated processing of your data. Our policy is likely to be amended / updated at any time. You will be informed about all the significant changes, while, every single time, the updated version will be posted on the page. We declare that will not process the user’s/visitor’s personal data for any purpose not mentioned herein, without prior notice and, where required, his consent. We respect and esteem the users of our website and their privacy. If you have any questions, comments or complaints about our privacy practises, or if you want to update, delete or change any personal information, you can email us at[email protected].   Effective date:  13.12.2021