no
Brown Hotels PRIVACY POLICY

PRIVACY POLICY

The protection of your Personal Data is our primary concern and for that reason the collection and processing of the Personal Data is carried out according to the provisions of the General Regulation of Data Protection [2016/679/EU] and the applicable Greek legislation.

The Privacy Policy of the Website of the International Chain of Hotels: «Brown Hotels» in Greece is compliant with GDPR and Greek law. Please read carefully and if you accept its terms and conditions, then use our website. If you do not agree, please do not use our website and do not provide personal data.

  1. DATA CONTROLLER OF PERSONAL DATA

    Data Controller: “BHE GREECE SINGLE MEMBER P.C.”, Athens, 28 Geraniou Street, GCR: 150429701000, TIN: 801158405, website: https://brownhotels.com/.

  2. WHAT PERSONAL DATA WE COLLECT

    We collect only necessary data for our business aims, including:

    • Full name
    • Address (upon arrival at the Hotel)
    • Email address
    • Phone number
    • Date of birth
    • Nationality
    • Language preference
    • Credit card details
    • Optional information (pets, etc.)
    • Reservation details (dates, rooms, people, preferences)

    Sensitive data (e.g., health data) are collected only if legally required and relevant to specific services.

    Processing is legal for confirming reservations, contracts, compliance with law, safeguarding interests, marketing, and competitions.

    Website use may involve data collection via cookies and Google Analytics.

  3. PURPOSE OF PROCESSING PERSONAL DATA

    • Identification and reservation management
    • Adapting services to preferences
    • Contract execution
    • Legal and tax obligations
    • Safeguarding legal interests
    • Newsletters, offers, competitions
    • Video surveillance for safety

    Data access limited to employees bound by confidentiality, and to third parties only when required by law or via processors under contract. Transfers to non-EU countries (e.g., Israel) may occur with safeguards.

  4. DATA STORING PERIOD

    Personal data is kept as long as necessary for processing purposes, legal/tax obligations, contract duration plus a necessary period after termination, and for legal claims. For marketing, data is kept until consent is withdrawn.

  5. YOUR RIGHTS UNDER GDPR

    • Right of Access
    • Right to Update
    • Right to Correct
    • Right to Portability
    • Right to Restrict Processing
    • Right to Withdraw Consent
    • Right to be Forgotten
    • Right to File a Complaint (Hellenic Data Protection Authority, Athens, tel. +30-210 6475600, email: contact@dpa.gr)
    • Right to Object to processing

  6. DATA STORAGE SECURITY

    We apply lawful processing and appropriate organizational and technical measures, including encryption, to protect data against unauthorized access, modification, disclosure, or destruction. However, users accept the inherent risks of internet use.

  7. AMENDMENTS

    We reserve the right to amend this Privacy Policy. Please review regularly for updates.

  8. This Privacy Policy refers to the personal information collected on our website, and not to your use of the Simple Booking platform through which reservations are made, which has a separate Privacy Policy.

  9. CONTACT

    For questions or exercising your rights, contact our Data Protection Officer: dpo.greece@brownhotels.com (Mrs. Afroditi Th. Makedona, Attorney at Law, ELEFTHERIOU & ASSOCIATES LAW FIRM).