1. Data Controller
Sea Dream Diving is the Data Controller responsible for processing your personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (GDPR).
Contact: [email protected]
2. Personal Data We Collect
We may collect:
- Full name
- Email address
- Phone number
- Passport/ID details (if required for certifications)
- Health information relevant to diving
- Payment information
- IP address and browsing data
3. Purpose of Processing
We process your data to:
- Manage bookings and provide services
- Ensure safety compliance
- Process payments
- Communicate regarding reservations
- Comply with legal obligations
- Improve website functionality
4. Legal Basis
Processing is based on:
- Performance of a contract
- Legal obligations
- Legitimate business interests
- Your consent (where required)
5. Data Retention
Personal data is retained only as long as necessary to fulfill legal, contractual, and safety requirements.
6. Data Sharing
We may share data with:
- Payment processors
- Certification agencies (e.g., diving organizations)
- Insurance providers (if required)
- Authorities when legally required
We do not sell personal data.
7. Your Rights Under GDPR
You have the right to:
- Access your personal data
- Request correction
- Request deletion
- Restrict processing
- Data portability
- Withdraw consent at any time
To exercise your rights, contact: [email protected]
You also have the right to lodge a complaint with the Hellenic Data Protection Authority.
8. Cookies
Our website may use cookies to:
- Improve user experience
- Analyze website traffic
- Support marketing activities
You may disable cookies via your browser settings.
9. Data Security
We implement appropriate technical and organizational security measures to protect personal data from unauthorized access, loss, or misuse.
10. Changes to This Policy
We reserve the right to update this Privacy Policy at any time. Updates will be posted on this page.
