Privacy Policy

This page provides details of the privacy policy adopted by Kassandra Palace Hotel on its websites with reference to the processing of the personal data of visitors who access its websites. The following notice is also provided pursuant to Article 13 of European Regulation 679/2016 for persons who interact with the website services of Kassandra Palace Hotel, which are accessible online. This notice is also based on Recommendation no. 2/2001, which the European data protection authorities, assembled in the Data Protection Working Party that was established under Article 29 of Directive 95/46/EC, adopted on 17/05/2001 in order to identify the minimum requirements that needed to be adopted to protect the collection of personal data online, as well as the minimum measures that must be implemented in relation to persons who access web pages in order to guarantee the fairness and lawfulness of such processing.

Types of data processed

Browsing data

During their normal course of operation, the computer systems and software procedures used to operate this website collect some personal data, the transmission of which is implicit in the use of internet communication protocols. This data is not collected in order to be associated with identified data subjects. However, due to its very nature, it could, through processing and in combination with data held by third parties, enable users to be identified. This category of data includes the IP addresses or domain names of computers used by users to access the website, the URI (Uniform Resource Identifier) addresses of the resources requested, the time the request was made, the method used to submit the request to the server, the size of the files obtained in response, the numeric code indicating the status of the response given by the server and other parameters related to the user’s operating system and computing environment. This data is used for the sole purposes of extracting anonymous statistical information on the use of this website and for checking that it is working correctly. In addition, the data may be used to ascertain any liability in the event of hypothetical cybercrimes against the website: unless these circumstances apply, the personal data is stored for no more than thirty days.


Kassandra Palace does not collect and/or automatically extract any information of a personal nature about visitors to its websites. This website uses session cookies exclusively and for the sole purpose of enabling the website to be browsed securely. Cookies are also used to manage redirections to other websites. By using the website the user agrees to the processing of the data obtained through session cookies for the aforementioned methods and purposes, in accordance with the law.

Optional nature of providing the data

With the exception of what has been specified in relation to browsing data, the user is free to provide the personal data needed to request that information or other types of services offered by Kassandra Palace to be sent to him/her. Failure to provide the data may prevent the user from obtaining the service requested.

Processing Methods

Personal data is processed by automatic means for the time strictly necessary to achieve the purposes for which it was collected  and in any event, in accordance with the principles of necessity, purpose, relevance and avoiding excess set out under the Regulation. Specific security measures are followed to prevent data loss, unlawful or improper uses and unauthorised access.

Rights of Data Subjects

Lastly, please be informed that Articles 15 – 22 of the Regulation entitle data subjects to exercise specific rights. The Regulation establishes the right to obtain from the Data Controller confirmation of the existence or otherwise of their personal data and the right to have such data made available in a comprehensible manner, the right to know the data source and the reason and purpose for which it is being processed; the right to request its deletion, transformation into an anonymous form or to object to any unlawful processing of their data,  as well as to request that it be updated, corrected, or where applicable, supplemented; and to object, for legitimate reasons, to it being processed. Additionally, the European regulation gives the data subject the right to submit a complaint to the data protection authority, the right to withdraw consent at any time and the right to data portability. To exercise these rights, you may contact our company directly at Kriopigi, Kassandra P.O Box 63077, Halkidiki, Greece or via email: