1. Corfu Senses Resort

Corfu Senses Resort is a Greece based hotel, located at the Agios Ioannis Persiteron, Corfu, Greece 49100. Our business operations are located in the Greece.

Corfu Senses Resort is committed to comply with all applicable Greek and European data protection laws and regulations.

Corfu Senses Resort (“Corfu Senses”) uses and maintains these terms for privacy (“Privacy Terms”) that summarizes when and how your Personal Information is collected, used, safeguarded and disclosed in connection with your access to, and use of, websites operated by Corfu Senses Resort and any micro-sites, mobile site or subdomains of such sites (collectively, the “Website”) and all features, functions, software and services offered through the Website. The Website and the features, functions, software and services offered through the Website collectively constitute the “Service.”

If you would like to make use of the Service, you will have to enter into an agreement with Corfu Senses Resort for use for the Service. After you have entered into the agreement (the “Agreement”) you are a customer of Corfu Senses Resort (“Customer”).

2. Data processing agreement

These Privacy Terms apply to the Service. By entering into the Agreement the Customer accepts these Privacy Terms. In this respect these Privacy Terms serve as a (one sided) data processing agreement between the Customer and Corfu Senses.

We reserve the right to change the provisions of these Privacy Terms from time to time. Customer will have to explicitly accept the amended Privacy Terms.

If Customer does not explicitly accept the amended Privacy Terms and this results in a situation in which Corfu Senses in its sole opinion is not willing or able to continue to provide the Service, Corfu Senses has the right to terminate the Agreement and this data processing agreement without being liable to Customer.

As long as Customer has not explicitly agreed to the amended Privacy Terms, the then current version of the Privacy Terms shall apply to the provision of the Service until the Agreement is terminated.

We encourage you also to periodically review the latest Privacy Terms.

3. Definitions

Definitions will be defined in this agreement. If a definition is not defined in this agreement, the definition will be defined by the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and appealing Directive 95/46/EC (the “GDPR”).

4. What is Personal Information?

“Personal Information” means any information relating to an identified or identifiable natural person (“data subject”) according to the definition of personal data as set out in GDPR.

An identifiable person is someone who can be identified, directly or indirectly, in particular by reference to a name, an identification number, location data, an online identifier or to one or more factors specific to his physical, physiological, genetic, mental, economic, cultural or social identity.

“Personal Information” is information that identifies an individual (such as a name, address, telephone number, mobile number, e-mail address, or other account number), and all information about that individual’s location or activities, such as information about his or her use of the Service, IP-addresses or mobile device identifiers, when this can be linked to any Personal Information.

“Personal Information” also includes demographic information such as date of birth, gender, geographic area and preferences when this information can be linked to any other Personal Information.

5. What Personal Information do we collect?  

A. Active Collection

Personal Information may be collected in a number of ways when Customer uses our Service.

When Customer make a reservation via webiste we will collect the registration information provided to us. This contains the name, address, e-mail address, and other contact and demographic information. From time to time we may change the information requested upon registration or with respect to certain features or Service.

B. Cookies 

By using the Website Customer agrees that we may automatically collect certain information through the use of “cookies”.

Cookies are small data files that are stored on a user’s hard drive at the request of our Website which enable us to recognize Customers who have previously visited the Website. Furthermore, the Cookies allow us, in conjunction with our web server’s log files, to calculate the aggregate number of people visiting our Website and which parts are most popular. This helps us gather feedback to improve our Website and better serve our Customers.

Cookies do not allow us to gather any Personal Information about Customer and we do not intentionally store any Personal Information that your browser provided us in your Cookies.

If Customer wishes to block, erase, or be warned of cookies, please refer to your browser or mobile device’s instructions or help screen to learn about these functions. However, if a browser or mobile device is set not to accept cookies or if a user rejects a cookie, some portions of the Website and Service may not function properly.

6. Controller of Personal Information

Customer will at all times be the data controller of the Personal Information for purposes of the Service and these Privacy Terms. Corfu Senses shall at all times remain the data processor. If Corfu Senses nevertheless processes Personal Information for its own purposes, Corfu Senses will be deemed to be a (joint) data controller with regard to the Personal Information. A ‘data controller’ and ‘data processor’ shall have the same meaning as in the GDPR.

Customer shall be responsible for compliance with its obligations as data controller under the applicable data protection law, in particular for justification of any transmission of Personal Information to Corfu Senses and for the decision concerning the processing and use of the Personal Information. This shall include providing any required notices and obtaining any required consents. If Corfu Senses is deemed to be a (joint) data controller in relation to the Personal Information, it shall also be responsible for compliance with its obligations as data controller under the applicable data protection law.

7. Purposes of processing Personal Information

Corfu Senses shall process Personal Information as stated in these Privacy Terms solely for the reasons mentioned below. Corfu Senses shall not otherwise

(1.) process and use Personal Information of Customer for purposes other than set third in the Privacy Terms, or as instructed by the Customer, or

disclose Personal Information to third parties other than the Subprocessors for the below mentioned purposes, or as required by law.

Processing necessary for the performance of a contract and providing the Service

(3.) for the provision of the Website's hotel bookings and the provision of the Service;

(4.) to process and/or respond to Customer’s requests, submissions, comments, complaints and any transactions;

(5.) to provide Customer with information or services requested;

(6.) to provide technical support and ensure the continued and smooth operation of the Service;

(7.) to facilitate Customer’s use and our operation of the Service;

(8.) for the purpose for which the information was provided;

If Customer objects to processing its personal information for the in this subsection mentioned purposes, Customer may be hindered in its use of the Service. We may block or limit your access to the Service and we reserve the right to end the agreement in accordance with the Agreement and/or the Terms of Use. The personal information mentioned in this subsection is required for the Service to function properly.

Processing necessary for compliance with a legal obligation

(10.) facilitate our administration of the Service;

(11.) to prevent or investigate actual or suspected fraud, hacking, infringement, or other misconduct involving our Services or Website. If Customer objects to processing its personal information for the in this subsection mentioned purposes, Customer will not or no longer be allowed to make use of the Service. We reserve the right to end the agreement in accordance with the Agreement and/or the Terms of Use.

8. How long do we store Personal Information?

We store Personal Information for as long as is required to provide the Service. Below you will find a specification of how long Personal Information is stored and processed.

a) Name – For as long as Customer makes use of the Service, and/or as long as a legal obligation requires Corfu Senses to store the Personal Information (e.g. tax related laws);

b) Address – For as long as Customer makes use of the Service, and/or as long as a legal obligation requires Corfu Senses to store the Personal Information (e.g. tax related laws);

c) E-mail address – For as long as Customer makes use of the Service;

e) Contact information – For as long as Customer makes use of the Service, and/or as long as a legal obligation requires Corfu Senses to store the Personal Information (e.g. tax related laws);

f) E-mail address – For as long as Customer makes use of the Service and up to one year after the Agreement and/or the Service has come to an end;

g) Demographic information and location data – For as long as Customer makes use of the Service, and/or Service has come to an end and/or as long as a legal obligation requires Corfu Senses to store the Personal Information (e.g. tax related laws);

h) Content of messages of Customer contact – For a year after the question and/or complaint and/or any other reason for contact has been dealt with;

j) IP address – For up to one year after the IP address has been collected.

9. Sharing of Personal Information

Unless otherwise described elsewhere in these Privacy Terms, we do not disclose, sell or trade any Personal Information about our visitors and users to any third parties.

We may share Personal Information with Subprocessors such as the credit card processor working with us in connection with the operation of the Website and/ or the Service and who need access to such information to carry out their work for us. Any credit card details collected are simply passed on in order to be processed as required.

We never permanently store complete credit card details.

We may disclose Personal Information in the good faith belief that we are lawfully authorized or required to do so, or that doing so is reasonably necessary or appropriate to comply with the law or with legal process or authorities, respond to any claims, or to protect the rights, property or safety of Corfu Senses, our users, our employees or the public, including without limitation to protect Corfu Senses or our users from fraudulent, abusive, inappropriate or unlawful use of the Service. Corfu Senses will promptly notify Customer of any request of an executive or administrative agency or other governmental authority that it receives and which is related to Personal Information of Customer, unless prohibited by applicable law. Corfu Senses will provide Customer with reasonable information in its possession that may be responsive to the request as stated above, and any assistance reasonably required for Customer to respond to the request in a timely manner. Customer acknowledges and agrees that Corfu Senses has no responsibility to interact directly with the entity making the request.

Please note that nothing herein restricts the sharing of aggregate information, which may be shared with third parties without your consent.

10. Customer’s instructions

Customer may provide Corfu Senses written instructions in addition to those specified in these Privacy Terms with regard to the processing of Personal Information. Corfu Senses will comply with all such instructions without additional charge to the extent necessary for Corfu Senses to comply with laws applicable to Corfu Senses as data processor in the performance of the Service. Customer and Corfu Senses will negotiate with respect to any change in the Service and / or fees resulting from such instructions.

11. Protection of Personal Information

Corfu Senses shall ensure it implements and maintains compliance with appropriate technical and organizational security measures for the processing of Personal Information. We follow generally accepted standards to protect the Personal Information submitted to us, both during transmission and once we receive it.

We have put in place physical, electronic, and managerial procedures that are designed to prevent unauthorized access, loss, or misuse. We restrict internal access to Personal Information to employees who need the information to perform their duties. The unauthorized access or use of such information by an employee is prohibited.

Our information management systems are configured in such a way as to block or inhibit employees from accessing information that they have no authority to access.

No method of transmission over the Internet, or method of electronic storage, is 100% secure, however. Therefore, we cannot guarantee its absolute security.

12. Cooperation and notification obligations

Corfu Senses and the Customer will – to the extent possible – co- operate with each other to promptly and effectively handle enquiries, complaints, and claims relating to the processing of Personal Information from any government official or authority (including but not limited to any data protection legislation enforcement agency), third parties or individuals (including but not limited to the data subjects).

Corfu Senses and the Customer are aware that applicable data protection legislation may impose a duty to inform the competent authorities or affected data subjects in the event of a data breach. In consultation with the Customer, Corfu Senses shall take appropriate measures to secure the Personal Information and limit any possible detrimental effect on the data subjects. Where obligations are imposed on the Customer as a data controller under applicable data protection legislation, Corfu Senses shall fully and at its own expense assist in meeting them.

13. What choices does Customer have regarding the use of its Personal Information?

Before sharing your Personal Information with third parties in ways not covered by these Privacy Terms, including any use for direct marketing purposes, you will be notified and required to opt-in to such sharing at the point at which such information is collected.

If you no longer want your information to be used by Corfu Senses for any specified or not specified purposes please contact us at This email address is being protected from spambots. You need JavaScript enabled to view it.

We will comply with the request of Customer as soon as possible after receipt.

14. How can Customer review, update, correct, or delete Personal Information

Customer may review, update, correct or delete its Personal Information collected through the Website and Service by e-mailing us at This email address is being protected from spambots. You need JavaScript enabled to view it.

Note that the deletion of Customer information data may lead to the termination of the use of the Service.

To have access to your Personal Information, you must provide sufficient proof of identification as we request, and we reserve the right to deny access to any user if we believe there is a question about your identity. We will respond to all access requests within 4 weeks.

Customer can request us to limit or stop the processing of its Personal Information in the future. We will meet the request of Customer, but Customer may be hindered in its use of the Service or may no longer be able or allowed to use the Service, as stated in Article 4 of these Privacy Terms.

Customer can request us with reasonable intervals to transfer the Personal Information we process about him or her to him or her or another third party as specified by Customer, as long as the requested information does not include Personal Information of other natural persons and as long as the requested information has been processed based on the legal grounds of Customer permission or necessity for providing the Service and performing the contract. We will meet the request of Customer within 4 weeks after we have received the request.

Customer has the right to file a complaint to the competent privacy authority.

If a data subject contacts Corfu Senses directly with a request as stated before, we will redirect the data subject to Customer and only after permission of the Customer shall we provide an overview of Personal Information of that data subject.

We reserve the right to retain your information in our files if we believe it is necessary or advisable to resolve disputes, enforce applicable terms of service, and for technical and legal requirements and constraints related to the Service.

15. Incident Management

Corfu Senses shall evaluate and respond to incidents that create suspicion of unauthorized access to or handling of Personal Information. The response will be to restore confidentiality, integrity and availability of the environment of the Service.

Corfu Senses shall inform Customer after a data breach has been noticed. Corfu Senses shall provide Customer with a description of the data breach, the type of data / Personal Information that was the subject of the breach and steps taken in order to cure the data breach and prevent further consequences of the breach. Corfu Senses will provide further information upon request of Customer. Corfu Senses and Customer shall coordinate in good faith any related (public) statements and / or notifications to any privacy authority and/or affected data subjects / persons.

Corfu Senses will inform the Customer immediately after it has become aware of the fact that (i) Corfu Senses and/or its personnel infringe applicable data protection legislation or obligations under this privacy statement, (ii) third parties have unauthorized or unintended access to the Personal Information.

Corfu Senses will keep the Customer duly informed on any new developments in relation to a data breach.

16. Termination

This data processing agreement between Customer and SmartHOTEL shall automatically terminate at the moment the agreement for making use of the Service is terminated. However, the terms of this data processing agreement shall continue to apply for as long as SmartHOTEL possesses Personal Information of Customer.

17. Governing Law

This data processing agreement shall be governed exclusively by the law of the Greece, unless mandatory law dictates otherwise.

The Customer agrees that any claim and/or dispute related to the execution of this data processing agreement, shall be referred to, according to the exclusive decision of Corfu Senses to:

(a)   mediation, by an independent person or, where applicable, by the supervisory authority in Greece; or

(b)   the courts of the Corfu, Greece unless mandatory law dictates otherwise.

Contact Us

If you have any questions, concerns, or comments regarding these Privacy Terms, please contact us via e-mail at This email address is being protected from spambots. You need JavaScript enabled to view it.