PRIVACY POLICY

Yacht Services is committed to protecting Users’ personal data. We take all reasonable steps to ensure that the information Users share with us is held securely and processed in accordance with our data privacy obligations.

This Privacy Policy applies to information collected on our website www.yachtservices.gr (hereinafter, the “Website”) and its purpose is to outline how we collect, process and store personal data received as well as to whom we may disclose same.

We encourage Users to review this Privacy Policy from time to time in order to stay informed of how we use personal data. By visiting our Website, Users are acknowledging, accepting and consenting to the practices described in this policy.

Definitions

In this Privacy Policy, the below terms have the following meaning in accordance with Article 4 of the EU General Data Protection Regulation 2016/679 (“hereinafter “GDPR”):

‘’Personal Data’’: refers to any information relating to an identified or identifiable natural person (“data subject/User”);

‘’Processing of Personal Data’’: refers to any operation or set of operations performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction;

 ‘’Controller of Personal Data’’: refers to any natural person or legal entity, public authority or service, that jointly or separately define the purpose and means of processing the personal data;

‘’Processor of Personal Data’’: refers to any natural person or legal entity, public authority or service that processes personal data on behalf of the controller;

“Consent of the Data Subject/User”: refers to any freely given, specific, informed and unambiguous indication of the data subject’s/User’s wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her;

For the definition of the terms, “Yacht Services or Service Provider”, “We”, “User”, “Listing”, “Service”, “You”, please refer to our Terms and Conditions of Use.

1. Status of this Privacy Policy

Yacht Services reserves the right to modify this Privacy Policy at any time without any prior notice and at our discretion. The updated version of the Privacy Policy will be uploaded on our Website.

This version is dated 03/01/2023.

2. Legal Framework

The collection and processing of personal data are subject to the provisions of this Privacy Policy, the GDPR, Law 4624/2019 (Government Gazette A’ 137) as well as any other applicable National, European and International Law on the protection of natural persons with regards to the processing of personal data.

3. Data Controller / Data Processor

Yacht Services, with its offices located in Glifada, 22 Iras Str., 166 74, Greece processes personal data as a Data Controller for the purposes of the GDPR and is responsible for deciding how those are to be handled.

On certain occasions, we may use Processors to process Users’ personal data but will generally not disclose any personal information to third parties unless necessary.

4. Personal Data Collected

In order for us to provide Users with our services, we collect, retain and process personal data which come from a variety of sources, including information that we automatically collect (Usage Data) and information that Users provide directly to us (Registration Data) either through the form on our website or via email and/or telephone.

Registration Data: This is necessary information provided directly to us in order to meet Users’ requests and carry out the provision of the requested services. Such data may include but are not limited to the following:

• Identification information such as Full Name, Email, Phone Number, Address (i.e. Province, ZIP/Postal code, City, Country), Gender, Date of Birth, Nationality, any form of identification such as ID, Passport, Driver’s Licence etc;
• Skipper’s CV and Licence;
• Any data Users may choose to include in their text message; same may be shared with relevant parties within our organisation which are responsible to address any issues and/or complaints;
• Users’ Username and password while signing up and creating an account.

Yacht Services and our third party service providers may also collect financial information such as bank account details, credit & debit card details in respect of online payments.

Usage Data: While using the Website, Users’ device (PC, Ipad or mobile) is automatically providing information enabling us to meet Users’ requirements and customize our provision of services. The type of data collected generally includes technical information of the device such as:

• The device in use;
• The device’s Internet Protocol (IP) address or other device identifier;
• The browser type and language;
• The operating system type and version;
• Information about Users’ movements and actions on our Website, i.e. access times, referring / exit URLS, length of visit, the date/time of access etc.
• Geographic location if location access has been enabled on the device in use;
• The internet address of the website through which our Website is accessed;
• Other diagnostic data.

5. Database

As and when we consider necessary, some of the Registration Data mentioned above may be stored in our database/files which are to be password-protected at all times.

6. Cookies

We use cookies to improve and enhance Users’ experience while navigating through our Website. Cookies are files stored on Users’ hard drive for a variety of reasons including record-keeping purposes, statistics, analytics, security matters (i.e. authentication), maintenance of user login information (permanent cookies), automatic recognition of the device at the next visit and the adjustment of our Website based on Owners’ and Guests’ use.

Out of these, the cookies that are categorized as necessary are stored on Users’ browser as they are essential for the working of basic functionalities of the Website. We also use third-party cookies that help us analyze and understand how this Website is used. These cookies will be stored on Users’ browser only with their consent. There is also the option to opt-out of these cookies but opting out of some of these cookies may affect the browsing experience.

In more detail, the cookies we use are as follows:

Necessary: Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.

Functional: Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.

Performance: Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.

Analytics: Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.

Advertisement: Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.

Others: Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.

Please note that cookies are only used as far as it is necessary for the Website and that no personal data are being collected. This considers the fact that no overriding interests on your part preclude Article 6 of GDPR.

You can learn more about cookies and the following third-party websites: 

All About Cookies: 

http://www.allaboutcookies.org/   

Cookiepedia: http://cookiepedia.co.uk/

7. Google Analytics

We use Google Analytics to measure website traffic and improve our Website in terms of content and functionality by processing anonymous data. Google Analytics, which is a web analysis service provided by Google, is the most popular traffic measurement service, which is technically based on the use of cookies. The service concerns the collection and analysis of data on the behaviour and browsing of Users to the websites of the network, providing us with an insight into their preferences.

The information collected relates to the duration of the visit, the frequency of each User’s visit, the type of browser used, the location from which the visit originated etc. Google Analytics does not collect Users’ name or any other identifying information; it collects only the IP address which is assigned to the Users on the date of their visit to our Website.

More information about the data processing policy from Google can be found in the Google Privacy Policy (https://policies.google.com/privacy) and for the use of cookies under the Analytics service in the Google Analytics Terms of Service (https://policies.google.com/terms).

8. Use of Data (Personal & Non-Personal)

Yacht Services and our third party service providers use any data collected for the purposes outlined below (please note the list is indicative and non exhaustive):

• To process Users’ registration and payments;
• To provide the services and products requested;
• To improve our services and products;
• To communicate with Users. This may include responding to emails or calls from Users;
• To develop our Website and ensure that the use is efficient (it is reiterated that this information is by no means personal data);
• To allow us identify Users’ preferences and develop relevant marketing, advertising;
• To ensure security and protect against fraud which includes monitoring, risk assessment, addressing System integrity and security issues;
• To ensure compliance with any applicable law, law enforcement, government agencies, or a governmental mandate;
• To enable us verify Users’ identity, age and/or payment details, handle any complaints regarding our products and/or services and provide customer support;
• To engage in any other activities mentioned under this Privacy Policy or by Yacht Services at our discretion.

9. With Whom Do We Share the Data Collected – Data Disclosure

Yacht Services is committed to protecting Users’ personal data and in this respect, we ensure that only the minimum data are disclosed in each case depending on the specific purpose and that such data are processed lawfully.

We shall not sell, lease or in any way publish and/or disclose Users’ personal data to any third party, natural or legal person, for commercial, promotional or other purposes unless disclosure of data is required in any of the cases described below.

9.1. Disclosure to Third Parties providing services to Yacht Services

If disclosure of data to natural persons or legal entities that provide services to Yacht Services is necessary for the fulfillment of Users’ requests within the scope of the services offered, i.e. IT service providers, third parties providing marketing and advertising services, professionals such as lawyers, auditors, banks etc.

9.2. Disclosure to our Employees

If said disclosure is necessary to be made to our employees and administration so that Users are provided with the requested services.

9.3. Further reasons for Disclosure

We may also disclose Users personal data if this is required by the law and to the competent authorities, by the order of a competent public, administrative or judicial authority and in order to protect our legitimate rights and interests and comply with our legal obligations.

10. Legal Ground

Yacht Services collects, retains and processes personal data relying on the following legal grounds:

10.1. Users’ Consent

We process data when we have Users’ express consent to do so.

10.2. The performance of the Services

Processing is necessary for the performance of the booking of each User or for each User’s request prior to proceeding with the booking and/or cancellation of a listing.

10.3. Vital Interests

Yacht Services may process data in order to protect Users’ vital interests.

10.4. Compliance with the Service Provider’s legal obligations

Processing might be necessary for compliance with a legal obligation to which we are subject and for the defence of our legal rights under the conditions set out by Law.

11. Retention of Data

We shall retain Users data for as long as it is necessary for the purposes set out in this Privacy Policy, unless a longer retention period is permitted or required by law (such as tax, accounting, or other legal requirements).

12. Data Subjects’ Rights – Users’ Rights

Subject to Articles 12 to 21 of the GDPR and with regards to the personal data provided to us, Users’ retain, inter alia, the following rights:

12.1. Right to Information

Users have the right to know who is processing their data, what data are being processed, for what purpose and for how long the processing takes place.

12.2. Right of Access

Users have the right to receive confirmation as to whether or not their personal data are being processed, what data are being processed, for what purpose, how long they are stored and to whom they can be disclosed.

12.3. Right to Rectification

Users have the right to request the correction of inaccurate or irrelevant personal data and to fill in incomplete information.

12.4. Right to Erasure (‘right to be forgotten’)

Users have the right to request the deletion of their personal data under certain conditions set by the Regulation, such as when the data are no longer necessary, Users have withdrawn their consent, the data have been processed illegally, etc.

12.5. Right to Restriction of Processing

Users have the right to request that the processing of their personal data be restricted when their accuracy is contested, the processing is unlawful, the data are no longer needed by the Controller, or Users have objections to processing by automated means.

12.6. Right to Portability

Users have the right to receive the personal data that concern them and that they have provided, in a structured, commonly used and machine-readable format and the right to transmit those data to another company without hindrance from the Service Provider to which the personal data have been provided, where: (a) the processing is based on consent or a contract; and (b) the processing is carried out by automated means. When exercising the right to data portability, Users have the right to request the direct transmission of personal data from one controller to another where this is technically feasible.

12.7. Right to Objection

Users have the right to oppose at any time to the processing of their personal data, which is based on the processing being necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the Controller or such processing being necessary for the purposes of the legitimate interests pursued by the Controller or by a third party, including profiling.

If you, as a User, wish to exercise any of the above rights or have any questions, please contact us via email at: dataprotection@yachtservices.gr

We must respond in writing within one (1) month.

If you, as a User, believe that the protection of your personal data is threatened in any way, you have the right to file a complaint to the Hellenic Data Protection Authority: 1-3 Kifisias Ave., 115 23, Athens, Greece. Detailed information regarding the Authority’s competency and the complaints procedure may be found at www.dpa.gr.

13. International Data Transfers

We may need to transfer Users’ data to third party providers or other Users who are located outside of the European Economic Area (EEA). Those transfers shall always be made in compliance with the GDPR provisions and only when necessary, as for example for the performance of our services, for ensuring the best quality of customer support etc.

14. Automated Decision-Making

We do not engage in any automated decision-making as a part of our services.

15. Data Protection Officer

Should Users have any concerns or questions regarding the handling of their personal data or wish to exercise any of their rights outlined above, they are encouraged to contact our Data Protection Officer using the below details:

Contact Details: 

Email: dataprotection@yachtservices.gr

Tel: +30 210 5151090

Address:  38, Ermou st., 166 74 Glyfada, Athens – Greece

This Notice updates and supersedes previous versions. We may change this Notice at any time. The “LAST UPDATED” section at the bottom of this page lists when this Notice was last revised. Any changes to this Notice will become effective when we make the revised Notice available on or through the Sites.