PRIVACY POLICY

Privacy Policy

1. Introduction

Our company respects and protects your privacy. The present Privacy Policy applies each time you visit our website, surf through our pages or use our services, regardless of whether you make any use of our services. We are committed to ensuring that your privacy is protected. 

The protection of your personal data is governed by the EU General Data Protection Regulation (EU) 2016/679 (hereinafter referred to as the “GDPR”) as well as with the National Data Protection legislation (Greek Law n. 4624/2019), and any other decisions – recommendations of the Hellenic Data Protection Authority.

For the purposes of the applicable law, the Data Controller is the company under the name CHRISTIANOS AGIANOZOGLOU of Epameinondas, based in Agistri Island, Greece (hereinafter referred to as Rosy’s or Rosy’s Little Village or us, ours, we), which sets out the purposes and methods of processing your personal data, as well as the proper implementation and compliance with the security procedures so as to ensure privacy, integrity and availability of such data.

By accepting this Privacy Policy, the user accepts and gives unconditionally his consent to us to use the personal data that he / she provides only when necessary and of course in the context of achieving the purposes described below.

2. Optional or compulsory communication of personal data

Communicating your personal data to us when requested in any instance when you use our website may be essential or mandatory in order to achieve the corresponding purpose (i.e. booking a reservation, subscription to our newsletter etc.).

The compulsory or optional nature of the data communication is specified each time – with reference to the specific data requested – at the point of input for each data collection, by marking compulsory information with an asterisk (*).

If you refuse to communicate the information marked as compulsory to us, we will not be able to offer our services or answer any of your questions in several cases.

Communicating additional data to us, other than those marked as compulsory is optional and will not produce any consequences with regard to the main purposes of the collection (such as using the website itself).

3. What type of data we collect

Any information within the meaning of personal data, the collection of which is not based on the law or the execution of a contract, is collected only under your explicit consent.

We may collect the following personal data:

Data related to your ID (name and surname, country of origin)
Information/ Data related to your stay (duration of stay, number of adults, number of children, age of children),
Information / Data related to your preferences / desires (special requests),
Contact details (postal address – email address -  phone number) and
Information/ Data regarding payment method (IBAN number of your bank account)

4. How we use your personal data

4.1. For the performance of a contract: In order to carry out our obligations with respect to any contractual agreements between us (reservation of a room or other premises and provision of relevant services, supply of additional services, charging for services and consumptions and payment processing etc)

4.2. To process the financial transactions between us (e.g. confirmation of a payment, issuance of invoice or receipt).

4.3. In order to comply with a legal obligation or when necessary to protect our and your interests (e.g. help us prevent and identify fraud or loss).

4.4. For sending you informational and promotional messages (provided that you expressly consent to the specific purpose)

4.5. To contact you in order to improve our services or manage your reservation requests, and/or ascertain your identity.

5. Transfer of your personal data to third parties

We undertake not to make any unlawful or unauthorized use of your personal data and do not in any way and for any reason transfer to any third party personal data and information of users/ visitors.

Your personal data will be disclosed to third parties only when you give your explicit consent, except where such disclosure is required by law or required for lawful purposes, for which individual’s consent is not required (for example when we process your personal data to fulfill our contractual obligations, such as booking your reservation). In such cases the personal data may be transfered only to our employees, who will process the data independently and solely for these purposes. 

It is likely that we process third-party’s personal data, which is communicated directly to us by the users of the website themselves, such as when the user making a reservation is different from the actual visitor to our premises.

Under these circumstances, it is the user's responsibility to obtain consent from this person before disclosing his/her personal data to us and to inform him/her of this Privacy Policy, otherwise the user will be solely responsible for the communication of personal data and information of a third party who has not given his consent or when such data is used illegally or inappropriately. In any event, any third party whose personal data is processed by us under these circumstances has the same rights as those described in the section under the title "Your Rights".

 
6. Security measures

We adopt technical and organisational security measures that are sufficient to reduce the risks of destruction or loss of data – even if accidental – to a minimum, to impede unauthorised access, illicit types of processing and processing that is not in accordance with the purposes of collection as indicated in the present Privacy Policy.


However, we cannot guarantee to its users that the security measures adopted to protect the website, data transmission and information on the website in general, limit or exclude any risk whatsoever of unauthorised access or dispersion of data via users’ devices: we advise you to ensure that your computer is equipped with appropriate software to protect data transmission on the network, both incoming and outgoing (such as up to date antivirus systems) and that your Internet service provider has also adopted adequate security measures to protect network data transmission (such as a firewall and antispamming filters).

7. Internet Access

7.1. If you contact us through the Internet, then we may occasionally use e-mail to contact you regarding our services and offers. We shall bear no responsibility whatsoever for any unauthorised access or loss of your personal information which is beyond our reasonable control (i.e. virus on your internet device etc.).
7.2. Privacy Policy and Children: This website has been designed and is intended to be used by adults. If you are under-age below the age limit for which parental consent is required in your country, you must check the terms of this Policy along with your parent or guardian to ensure that you comprehend and accept these terms. If it is found that we have collected the information of a minor without the consent of their parent or guardian when such consent should have been obtained, we will delete the information in question as soon as possible. We may use your personal data to conduct age verification checks and to apply these age restrictions.
7.3. Contact through the platform website: Should users contact us through the contact form or any other manner, they provide personal data voluntarily and exclusively of their own free will. We will process the personal data in question solely to the extent that it is necessary for the specific purpose.
7.4. Automatic technologies or interactions: While interacting with the website, we may automatically collect technical information on equipment, browsing procedures etc. We collect this information through cookies, server records and other similar technologies.

7.5. Special Categories of Data: We ask that you do not send us sensitive personal data via e-mail or disclose such data through the contact platform. The processing of personal data of this category does not serve the processing purpose set forth above in any event.

8. Your rights

You may freely exercise the following rights as per the processing of your personal data:

  • The right to have your Personal Data corrected or erased,
  • The right to limit the processing of your Personal Data,
  • The right to object to the processing of your Personal Data including objection to automated decision-making and profiling
  • The right to data portability 
  • The right to withdraw your consent (any withdrawal of consent shall not affect the lawfulness of processing based on consent before it was withdrawn by you).
  • The right to file a complaint to the Hellenic Data Protection Authority.

You may freely exercise your rights at any time by sending a written request to us to the mailing address This email address is being protected from spambots. You need JavaScript enabled to view it. and we will reply promptly to satisfy your request.

8.1. Time period for a reply

We make our best efforts to respond to all legitimate customer requests within a month. Occasionally it may take more than a month if your request is particularly complex or you have submitted a series of requests. In this case, we will notify you and let you know accordingly.

To ensure that your personal data are always accurate, up to date, pertinent and complete, please let us know about any variations by sending an email at This email address is being protected from spambots. You need JavaScript enabled to view it.

9. Data Storage

We store your personal data solely for the time required to provide a service you requested or approved, without prejudice to any legal provisions to the contrary, as is the case with issues governed by commercial and/or taxation legislation, the various applicable provisions, etc. If the data collection was based on your consent it may be deleted at any time upon the withdrawal of your consent.

10. Links to web sites of third parties 

Our site under the section “Workshops”  includes links to other websites that may have no relation to us solely to facilitate and inform users when navigating. We do not control or monitor such websites or their contents. We may not be held responsible for the contents of such websites and the rules they apply, even with regard to your privacy and processing of your personal data during your navigation on their pages. We therefore invite you to be careful when you enter these sites via links on our website and to read their privacy policy and conditions of use very carefully. Our Privacy Policy does not apply to the websites of other companies.

11. Cookies Policy 

We use cookies on this website. Cookies are small text files that are stored on our browser when you browse the web so as to improve the experience of using our website, make browsing faster and easier for you.

The operation of the website will be severely affected if you disable or refuse to use the cookies. For example, you may not be able to load site images and / or you may not be able to make a reservation.

If you would like to get more information on how to manage certain types of cookies, including how to check or delete them, please visit: www.aboutcookies.org

Types of Cookies

The basic types of cookies that the website may use are described below:

• Functional Cookies

These are cookies that remember the choices you made on our website making the website more user-friendly and enhancing your navigation experience. Our Functional Cookies are cpnb_cookiesSettings.

• CookiesDirective

This cookie is stored to detect if you have accepted our cookies policy. If this cookie is stored, it means that you have already accepted our cookies policy and you have allowed also other cookies to be loaded on your computer.

• Google Analytics cookies

Google Analytics cookies are performance analysis / record cookies that allow us to collect anonymous information on how visitors use our website www.hempoilshop.gr. Such cookies can inform us of how many visitors are using the website, the time and duration of use, and also provide us with information on how visitors navigate the various parts of the website (i.e. menu options). Such information helps us improve the way our website operates and our services to you as well. They are also anonymous information and do not contain any personal data.

Information collected from Google Analytics cookies about our website are transferred and stored on Google's servers in accordance with Google's privacy policy. For more information about Google Analytics, please visit this link. You may disable tracking by Google Analytics service by clicking here.

• Managing Cookies 

Most web browsers allow you to control and configure cookies through your browser settings. You can see how, by clicking on your browser:

• Microsoft Internet Explorer

• Google Chrome

• Safari

• Mozilla Firefox

If your browser is not listed or if you are using a mobile phone please visit: www.aboutcookies.org and consult it for the necessary actions. Moreover, all the aforementioned browsers are owned by other companies and we are not responsible for their content and accuracy.

12. Variations and updates of Privacy Policy

We may modify or simply update this site’s Privacy Policy, in part or completely, even owing to variations of the laws and regulations that govern this matter and protect your rights. Such variations and updates of the Privacy Policy will be posted on the top of these terms and in such way notified to the users, and will be binding as soon as published herein. We therefore invite you to visit this section often and read the most recent and updated version of this Privacy Policy.

13. Contact us

For any questions or clarifications, please contact:

Tel. Number: +30 22970 91610

Address: Agistri Island, Greece

Data Protection Officer Email: This email address is being protected from spambots. You need JavaScript enabled to view it.