Who we are

Our website address is: https://haciendaverde.gr.

What personal data we collect and why we collect it


When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service Privacy Policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.


If uploading images to the site, you should avoid uploading images with embedded location data (EXIF GPS). Visitors to the website can download and extract any location data from images on the website.

Contact Forms


If you leave a comment on our site you may opt in to saving your name, email address, and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Embedded content from other websites

Who we share your data with

The GDPR gives you the following rights in relation to the personal data we hold about you. You have the right to:

  • Request access to your personal information (commonly known as a “data subject access request”). This enables you to obtain a copy of the personal information we hold about you and to check that we are processing it lawfully.
  • Ask us to correct any information we hold about you that is inaccurate, incomplete or inaccurate.
  • Ask us to delete your personal information from our files and systems where there is no good reason for us to continue to hold it.
  • Ask us to delete your personal information from our files and systems where there is no good reason for us to continue to hold it.
  • Object to the use of your personal information to further our (or third parties’) legitimate interests or when we use your personal information for direct marketing purposes.
  • Ask us to limit or suspend the use of your personal information, for example, if you want us to find out its accuracy or why we use it. Ask us to transfer your personal information to another person or organization.

If you have given your consent to the processing of your personal information (for example, consent to receive information about our seminars and events), you have the right to withdraw your consent at any time. To withdraw your consent, contact info@haciendaverde.gr. Once we receive notification that you have withdrawn your consent, we will no longer process your personal information and, subject to our retention policy, we will dispose of your data securely (although in some cases we may need to continue to process your data , if so, then we will confirm the reasons for this). Request access to your personal information (commonly known as a “data subject access request”). This enables you to obtain a copy of the personal information we hold about you and to check that we are processing it lawfully.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

What rights you have over your data

If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

Where your data is sent

Visitor comments may be checked through an automated spam detection service.

Your contact information

We will collect the following personal information from you:

  • Certain information required to register on the Site, including your first and last name and email address, along with certain basic security information (“Registration Information”).
  • Details of any bookings you make or receive through the Website, including identification details (either through us or through third parties using the Website as a booking platform) (“Booking Information”).
  • Other technical information that you generate as a result of your Site interactions, including your visits to the Site, the resources and pages you access, and any searches you perform (“Technical Information”).

Your contact information

Transparency: When collecting and processing your personal data, we will share all information with you and inform you about the purpose and recipients of the data.

Lawfulness: We will only collect and process your personal data for the purposes described in this policy.

Relevance and accuracy: We only collect personal data that is necessary for data processing. We will take all reasonable steps to ensure that the personal data we hold is accurate and up to date.

Retention: We will retain your personal data for the period required to process it in accordance with the provisions of the law.

Access, rectification, opposition: You can access, modify, correct or delete your personal data. You can also object to the use of your personal data, in particular to avoid receiving sales and marketing information. This is done by sending an email to info@haciendaverde.gr.

Confidentiality and Security: We will ensure that reasonable technical and organizational measures are in place to protect your personal data from alteration or accidental or unlawful loss, or unauthorized use, disclosure or access.

Additional information

Although you are not required to provide us with this information, if you do not, then you cannot register as a member of the Website or book a stay at our villa.

How we protect your data

The following summarizes how we process your data and the legal basis for the processing:
Necessary for our legitimate interests (to obtain the necessary information to provide our services)

  • When you register on the website
  • When we help with a booking for accommodation
  • When you seek to amend or change a booking or ask a question in relation to a booking
  • To administer and protect our business, including troubleshooting, data analysis, testing, system maintenance, support, reporting and data hosting
  • To use data analytics to improve the website, services, marketing, customer relations and experiences
  • To store your contact information for marketing purposes and to send you marketing and other promotional communications.
  • Asks you to leave a review or take a survey
  • Sending relevant information about our products and services to you

What data breach procedures we have in place

  • We will take all reasonable steps to ensure that appropriate technical and organizational measures are taken to protect the information we collect from you and to protect against unlawful access and accidental loss or damage. These measures may include (if necessary):
  • Protecting our servers with software firewalls.
  • Locating data processing storage facilities in secure locations.
  • Encrypt all data stored on our server with an industry standard encryption method that encrypts the data between your computer and our server so that if your network is not secure no data is transmitted in a form that could easily deciphered.
  • When necessary, discard or delete your data to be done securely, regularly back up and encrypt all data we hold.

We will ensure that our employees are aware of their data privacy and security obligations.
We will take reasonable steps to ensure that employees of third parties working on our behalf are aware of their data privacy and security obligations.
This notice and our procedures for handling personal data will be reviewed as necessary.
Unfortunately, transmitting information over the internet is not completely secure. Although we will do our best to protect your personal data, we cannot guarantee the security of your data transmitted to the Site during the transmission stage. Once we receive your information, we will use the strict procedures and security features outlined in this clause to try to prevent unauthorized access

What data breach procedures we have in place

Data records/IP adresses. When you visit the website, our web server automatically records your IP address. This IP address is not linked to any of your personal information. We may also collect other non-personal information (from which we cannot identify you), such as the type of Internet browser we use to provide you with a more efficient service.
Cookies When you visit the Site, we may store certain information (commonly known as “cookies”) on your computer. Cookies are pieces of information that a website transfers to your hard drive to store and sometimes track information about you. Cookies are specific to the server that created them and cannot be accessed by other servers, which means they cannot be used to track your movements on the web. Passwords and credit card numbers are not stored in cookies. A cookie helps you get the most out of the Website and helps us provide you with a more tailored service. We use cookies for the following purposes:

  • Storing details about your website preferences (for example in which language you want to display pages).
  • Save details of any bookings you have shortlisted.
  • Enable our web server to track your session between website pages and provide a continuity of experience.

You can block or delete cookies from your computer if you wish (your browser’s help screen or manual will tell you how to do this), but some parts of the website rely on the use of cookies to function properly and may may not work properly if you have set your browser not to accept cookies.

When you use our website, there are many third parties that also need to store cookies for the basic functionality of the website. These include, but are not limited to, Google enabling Interactive Maps, helping us with Analytics, and providing remarketing campaigns tailored to your browsing using Google Advertiser Functions. If you wish, you can opt out of Google Advertiser Functions. If you have other concerns, please contact us