Hotel Consulting
Hotel Consulting

Data Protection Policy

Data Protection Policy

This document provides the policy framework through which effective management of Data Protection matters can be achieved. The General Data Protection Regulation (“GDPR”) is the new legal framework for the protection of individuals from the processing of personal data which will be enacted on 25th of May 2018.

  1. Scope of the Policy

The purpose of this policy is to ensure that Chnaris Hotel Management, Development & Consulting S.A. complies with the provisions of the GDPR when processing Personal Data. Chnaris Hotel Management, Development & Consulting S.A. establishes, maintains and implements appropriate technical and organizational measures to ensure the security of Personal Data. Our company collects the Personal Data in a transparent way and only with the full cooperation and knowledge of interested parties. The Company expects all its employees, and Third Parties Providers (i.e. agents, hotels, contractors, external business partners, suppliers, visitors) to comply with the Regulation. Any serious infringement of the Regulation will be treated seriously by Chnaris Hotel Management, Development & Consulting S.A.

  1. Data Protection Principles

Chnaris Hotel Management, Development & Consulting S.A. sets the principles of collecting, organizing, retaining, modifying, forwarding, transmitting, keeping, managing, sharing and using of Personal Data according to the Regulation:

  1. Procedures by Company
  1. Third Parties Data Processors
  1. Data Protection breaches

Where a Data Protection breach occurs, or is suspected, it should be reported immediately in accordance with the GDPR to Chnaris Hotel Management, Development & Consulting S.A.. Confirmed or suspected data security breaches should be reported promptly to Chnaris Zacharias, Ceo as the primary point of contact on 2810 263664, email: or Mpoumpoulinas 1, Gazi, Heraklion. The report should include full and accurate details of the incident including who is reporting the incident and what classification of data is involved.

  1. Contact

Queries regarding this policy or the General Date Protection Regulation at large should be directed to

  1. Implementation

This policy will be updated as necessary to reflect best practices in Data management, security and control and to ensure compliance with any changes or amendments in the law.

Contactat your service


1 Eleftheriou Venizelou & Mpoumpoulinas str. 714 14, Gazi, Crete, Greece


Tel.: +30 2810 263664
Mobile: +30 6978 339094
Fax +30 2810 261254
Subscribe to our newsletter
Name is required
Email is required
is required