1 – INTRODUCTION
DEDA Maritime Company of Pleasure
Yachts (MCPY) acknowledges the importance of protecting the privacy and rights
of Users using its website and services and is committed to complying with the
regulations on personal data protection and security. This privacy statement
may be amended in the future to ensure ongoing compliance with all applicable
regulations in the event of their amendment or update.
When this policy mentions,
“we,” “us,” “our”, “the Website”,
“the Company” or “DEDA”, it refers to DEDA MCPY and “Users” refers to
users/clients of our Website and services.
This Privacy Policy describes the
methods applied by DEDA to collect and process the personal data of Users who
consult and use the Website and services. Users are hereby informed that their
personal data is stored and processed by DEDA for the methods and purposes
listed below in accordance with the General Data Protection Regulation (GDPR).
2 – WHAT TYPES OF PERSONAL DATA WE
COLLECT?
2.1. Personal data provided by
Users:
2.1.1. The personal data and
product preferences that Users share with us when they make an enquiry, request
a quotation, make a booking, subscribe to newsletters and any other services on
our Website, or the data included in Users comments, reviews or messages sent
via email or telephone. This data may include Users’ name, surname, e-mail
address, telephone number, invoice data and holiday preferences which is
necessary for the purposes of selecting and booking a sailing holiday and for
the additional purposes provided for in this Privacy Policy section 3.
2.1.2. Special categories of
personal data (for example, information concerning your health or revealing
religious or sexual orientation) that you might voluntary provide us in the
course of making a booking by requesting special transportation or need, by
requesting cancellation or by any other means. We will use the special
categories of personal data only as strictly necessary to fulfil your request.
2.1.3. Personal data of all
passengers, copy of their personal documents such as ID card, sailing license
and specific sailing certification when filling in the crew list etc.
2.2. Personal data you give us
about others: If you plan to submit someone else’s personal data to us, for
instance when booking on their behalf, you should only provide us with that
third party’s details with their consent and after they have been given access
to this privacy policy.
2.3. Personal data of children: Please
note, DEDA services are not directed at children under 16 years old. In limited
cases, as part of passengers’ data collection for reservation, we may collect
and use information of children (under 16 years old) only as provided by their
parent or guardian or with their consent. If we become aware that we have
processed information of a child without the valid consent of a parent or
guardian, we reserve the right to delete it.
2.4. Other personal data provided
by Users: Payment data. We do not store any payment data; we only process this
sort of information. Please check this Privacy Policy section 3 for further
details.
2.5. Personal data collected
automatically:
2.5.1. Information about your
visits to and use of our Website, via the computer systems and software
procedures used for the operation of the website in the course of their normal
operation as a result of the use of Internet communication protocols. This data
is used only to obtain anonymous statistical information on the use of the
website and to verify its proper operation.
2.5.2. Cookies Policy: Cookies are
small, encrypted text files that are stored on your computer or other device by
this Website. The Website uses cookies to collect information about you to
enhance your ‘browsing’ experience.
2.6. Personal data collected from
third parties: Some data are directly or indirectly collected from third
parties. For example:
Google Analytics – collects
information about how visitors use our Website.
Google AdWords – collects
information about how visitors use our Website.
3 – WHY DO WE COLLECT USERS
PERSONAL DATA?
Users personal data will be
processed by hand or by using electronic means in relation to the purposes for
which such data is communicated and collected and for the time strictly
necessary to achieve the purposes of its collection. Data will be processed
securely and confidentially at the legal and operational headquarters of DEDA
and at the offices of the parties to which such data may be communicated and we
will endeavor to prevent unauthorized access to such data.
In general terms, we use Users
personal data to provide Users with the services requested, process payment,
provide customer services, send marketing and promotional communications,
notify about important changes to the reservation or to our website and to
deliver our content and ads which we think may be of interest to you. More
specifically:
• For data collection, storage and
processing for the purposes of establishing and managing, in operational and
administrative terms, the contractual relationship connected to the supply of
the service requested.
• To send communications by email,
phone or SMS on the contractual relationship, including communications relating
to the good progress thereof.
• To comply with statutory or
regulatory obligations and requests.
• For data collection, storage and
processing to carry out anonymous and/or aggregate statistical analyses.
• To send by email, telephone,
mail, SMS or MMS, except where denied by the User, DEDA advertising material on
products or services that are similar or related to the services or products
offered on the Website.
Should the User refuse to supply
his personal data, he may not obtain the services required and DEDA may not be
able supplying the service correctly and be prevented from complying with its
contractual obligations set out in the terms and conditions.
4 – WHY DO WE NEED TO PROCESS
USER’S PERSONAL DATA?
We will process Users personal data
where it is necessary on the following legal basis:
4.1. To fulfill a contract, or take
steps linked to a contract in order to provide our offering, process your
payment and to respond to enquiries and bookings made by User.
4.2. To comply with the law and for
establishing, exercising our legal rights.
4.3. To pursue our legitimate
interest for improving our website, its features and our products, marketing,
improving our service and offerings and ensuring the security of the website.
4.4. Where you give your consent.
5 – WHO CAN ACCESS USERS PERSONAL
DATA?
MSL will make sure that all
personal data supplied is not disclosed and is processed in such a way as to
keep its secure and confidential as well as to prevent unauthorized access to
User data. All personal data and information provided by Users may be
communicated, for the purposes set out above, to the following categories of
parties:
5.1. The company’s employees and/or
collaborators who assist and advise on Administration, Products, Legal Affairs,
User Care, Information Systems.
5.2. The charter operators and all
other parties to whom data communication is necessary for contract performance.
5.3. The parties whose right to
access data is recognized by statutory provisions or by orders issued by the
competent authorities.
5.4. The parties that are delegated
and/or appointed by the Data Controllers to carry out activities related to
service supply.
6 – HOW LONG WE RETAIN YOUR DATA?
We will keep your personal data in
relation to the services we provide. In addition to the above, if you are
subscribed to our newsletters, we will keep your email address for this purpose
until you ask to be unsubscribed. Your personal data will generally be stored
for up to 5 years. We may, however, keep your personal data for longer than 5
years if we need it to fulfil our contractual obligations to you or the law
requires us to maintain it for a longer period or you have not withdrawn your
consent.
7 – WHAT ARE YOUR DATA RIGHTS?
Under the General Data Protection
Regulation (GDPR), the following rights are recognized in relation to the
processing of your personal data:
7.1. Right of access. Users have
the right to ask what personal data that we have collected and to get a copy of
such data and information.
7.2. Right of rectification. Users
have the right to ask us to update, amend errors, modify data that may be
inaccurate or incomplete.
7.3. Right to erasure. Users have the
right to ask us to erase the data or part of the data that we have collected
about Users in certain circumstances.
7.4. Right to object. Users have
the right to object to the processing of their data in certain circumstances.
7.5. Right to data portability.
Users have the right to ask to receive a copy of their personal data in certain
circumstances.
7.6. Right to withdraw. Users have
the right to withdraw any consent provided in respect of our processing of
personal data.
In order to exercise your rights,
please send an email or letter to the contact details shown below. In your
request please clearly state your personal identity, by indicating your
complete name and the email address you used to purchase or create an account
and the right or rights you are exercising.
The exercise of these rights is
free of charge. If you make a request, we have one month to respond to you.
8 – TO CONTACT OUR DATA CONTROLLER
This website and company are owned
and operated by DEDA MCPY Registered in Greece, Tax Identification Number EL997274300.
You can contact us:
By post: Argonauton 41,
38221, Volos, Greece
By telephone: +30 699 807 0028
By email: info@dedasailing.com