Call. +30 694 9370971 Email. booking@lochospitality.com
Book Now

Privacy Policy

Privacy Policy

September 5, 2025 2025-12-18 9:48

Privacy Policy

1. Who We Are

This website is operated by LOC HOSPITALITY L.P.

  • Legal name: LOC HOSPITALITY L.P.
  • Tax Identification Number (TAX I.N.): EL 802382799
  • Business Registration Number (B.R.N.): 175380733000
  • Office address: 22 Agion Pateron Street, Corfu Old Town, 49100, Ionian Islands, Greece
  • Telephone: +30 26610 41044
  • Email: loc@lochospitality.com
  • Website: www.lochospitality.com

LOC Hospitality acts as the Data Controller for the personal data collected through this website and through our booking channels.

2. What Personal Data We Collect

We may collect and process the following categories of personal data:

  • Identity data: first name, last name, title, date of birth, nationality, ID/passport details (where required by law).
  • Contact data: email address, telephone number, postal address.
  • Booking data: stay dates, accommodation type, number of guests, special requests, arrival details, payment status.
  • Payment data: limited payment information (e.g. transaction ID, payment method). Full card details are processed securely by our payment providers and are not stored on our servers.
  • Communication data: messages sent via contact forms, email, messaging apps (WhatsApp, Viber, etc.), and call notes.
  • Technical data: IP address, browser type, device information, operating system, referral URLs, and basic analytics data.
  • Usage data: pages visited, time spent on the website, clicks, and navigation paths.
  • Cookie data: information stored via cookies and similar technologies (see “Cookies” section below).

3. How We Collect Your Data

We collect personal data in the following ways:

  • Directly from you
    • When you make a booking (via our website or external booking platforms).
    • When you complete a contact form or send us an email.
    • When you call our office or contact us via WhatsApp, Viber, or similar apps.
    • When you subscribe to newsletters or request information.
  • Automatically
    • When you browse our website, through cookies and analytics tools.
  • From third parties
    • From online travel agencies and booking platforms (e.g. when you book via their websites).
    • From channel managers or booking engines that synchronize reservations with our system.

4. Why We Use Your Data (Purposes)

We process your personal data for the following purposes:

  • To manage bookings and stays
    • Confirm, modify, or cancel reservations.
    • Communicate check-in instructions and stay details.
    • Provide customer support before, during, and after your stay.
  • To comply with legal obligations
    • Maintain records required by Greek law (e.g. tax, accounting, tourism regulations).
    • Verify identity where required (e.g. police or municipal regulations).
  • To improve our services
    • Analyze booking patterns and website traffic.
    • Improve our website, communication, and guest experience.
  • To send service-related messages
    • Reservation confirmations, important updates about your stay, check-in/check-out information.
  • Marketing (only with consent, where required)
    • Send newsletters or special offers if you have chosen to receive them.
    • You can unsubscribe at any time.

5. Legal Bases for Processing (GDPR)

We process your personal data under the following legal bases:

  • Performance of a contract
    When it is necessary to process your data so we can provide the accommodation and services you have booked.
  • Legal obligation
    When we must process data to comply with tax, tourism, or other legal requirements.
  • Legitimate interests
    When we use data for security, fraud prevention, internal analytics, or service improvements, provided that your rights and freedoms do not override these interests.
  • Consent
    When you explicitly agree to receive marketing communications or optional services. You may withdraw your consent at any time.

6. Cookies and Analytics

Our website uses cookies and similar technologies to:

  • Enable core website functions (e.g. language selection, session management).
  • Remember your preferences.
  • Measure website traffic and usage through analytics tools.

You can control or delete cookies through your browser settings. However, disabling certain cookies may affect website functionality.

If we use third-party analytics (e.g. Google Analytics), these providers may set their own cookies and process anonymized usage data in accordance with their privacy policies.

7. Embedded Content and External Links

Our website may include:

  • Embedded content (e.g. Google Maps, videos, social media widgets).
  • Links to external websites (e.g. booking platforms, partner services).

Embedded content and external sites may collect data about you, use cookies, and apply their own tracking. Their data processing is governed by their own privacy policies, not by this Privacy Policy.

8. Who We Share Your Data With

We do not sell your personal data. We may share it with:

  • Booking platforms and channel managers
    To manage and synchronize reservations (e.g. online travel agencies, booking engines, property management software).
  • Payment providers and banks
    To process payments and refunds securely.
  • IT and hosting providers
    Companies that host our website, email services, and booking systems.
  • Professional advisers
    Accountants, lawyers, or consultants where necessary for legal or business reasons.
  • Public authorities
    When required by law, regulation, or court order (e.g. tax authorities, police).

All third parties that process personal data on our behalf are required to comply with GDPR and to handle data securely.

9. How Long We Keep Your Data

We keep personal data only for as long as necessary for the purposes described above or as required by law. For example:

  • Booking and invoicing data: kept for the period required by tax and accounting laws (usually at least 10 years in Greece).
  • Communication data (emails, forms): kept for as long as needed to manage your request and for a reasonable period afterwards.
  • Marketing data: kept while you remain subscribed, or until you withdraw consent.
  • Technical and analytics data: kept for a limited period, usually in aggregated or anonymized form.

When data is no longer needed, it is deleted or anonymized.

10. Your Rights Under GDPR

As a data subject, you have the following rights, subject to certain conditions:

  • Right of access – to know whether we process your data and to receive a copy.
  • Right to rectification – to correct inaccurate or incomplete data.
  • Right to erasure (“right to be forgotten”) – to request deletion of your data where there is no valid reason for us to keep it.
  • Right to restriction of processing – to limit how we use your data in specific situations.
  • Right to data portability – to receive your data in a structured, commonly used, machine-readable format and transmit it to another controller where technically feasible.
  • Right to object – to object to certain types of processing, such as direct marketing or processing based on legitimate interests.
  • Right to withdraw consent – where processing is based on consent, you can withdraw it at any time.

To exercise any of these rights, please contact us at loc@lochospitality.com.

You also have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA) or your local supervisory authority if you believe your data protection rights have been violated.

11. Data Security

We take appropriate technical and organizational measures to protect your personal data against:

  • Unauthorized access or disclosure.
  • Accidental loss, destruction, or damage.

These measures may include encryption, secure servers, access controls, and internal policies. However, no method of transmission over the Internet is 100% secure, and we cannot guarantee absolute security.

12. International Data Transfers

Some of our service providers (e.g. cloud hosting or analytics tools) may be located outside the European Economic Area (EEA). When personal data is transferred outside the EEA, we ensure that adequate safeguards are in place, such as:

  • Standard Contractual Clauses approved by the European Commission, or
  • An adequacy decision by the European Commission for the destination country.

13. Children’s Data

Our services are not directed at children under 18 years old. We do not knowingly collect personal data from minors without appropriate consent from a parent or legal guardian.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in legislation, our services, or internal processes. The latest version will always be available on our website with an updated “Last updated” date.

15. Contact

For questions about this Privacy Policy or to exercise your data protection rights, please contact us:

  • LOC HOSPITALITY L.P.
  • Office address: 22 Agion Pateron Street, Corfu Old Town, 49100, Ionian Islands, Greece
  • Telephone: +30 26610 41044
  • Email: loc@lochospitality.com

Check Availability

Book your holiday here for surprising and satisfactory benefits.

1 Room, 1 Adult, 0 Children
Rooms
Adults
Childrens
Need Help? Call +30 694 9370971
Booking Rules Term & Privacy