BOOK NOW

Privacy Policy

At CAR-AKAS, your privacy matters. We are committed to handling your personal data with care, transparency, and in full compliance with data protection laws.

Car-Akas O.E., located at Agkaliasma Farou – Ikarias, Ikaria 833 00 (hereinafter “Company”), fully recognizes the fundamental importance of protecting personal data and complies with its obligations as Data Controller under Regulation (EU) 2016/679 (GDPR) and Greek Law 4624/2019.

This Privacy Policy, in accordance with Article 13 of the GDPR and the applicable Greek legislation, informs you about the personal data the Company and its branches collect and process, the legal basis, the purpose of processing, how the data is used and protected, and your rights under the legal framework.

This statement is addressed to individuals receiving or interested in receiving products and services from our Company, as well as to employees or prospective employees, providing accurate and comprehensive information. It may be updated occasionally to remain compliant with applicable laws. Please regularly visit our website https://carakas.gr to stay informed about any changes. The latest version will also be available at our physical locations.

I. What is Personal Data?

I1. “Personal data” means any information relating to an identified or identifiable natural person (data subject), such as name, ID number, location data, online identifier, or characteristics of physical, genetic, psychological, economic, cultural, or social identity.

I2. “Processing” refers to any operation performed on personal data, whether by automated means or not, including collection, recording, storage, alteration, retrieval, use, disclosure, deletion, etc.

I3. “Data Controller” refers to the natural or legal person determining the purposes and means of processing personal data.

I4. “Processor” refers to a natural or legal person who processes personal data on behalf of the Data Controller.

I5. “Consent” means any freely given, specific, informed, and unambiguous indication of the data subject’s wishes to allow the processing of their personal data.

I6. “Health data” refers to personal data related to the physical or mental health of an individual.

1. What personal data do we collect?

We collect and process only the personal data that is strictly necessary to fulfill our purposes and only with your prior explicit consent. This may include:

  • Name and contact details
  • Mailing address
  • Telephone number
  • Email address
  • Any comments or instructions you provide

2. Why do we process your personal data?

We process your personal data for the following purposes:

  • To improve the quality of our services
  • To contact you for updates, offers, promotions, and competitions via SMS, phone calls, or emails
  • To comply with legal obligations (e.g., tax, labor laws)
  • To respond to legal proceedings or public authorities
  • To protect our legal interests and rights, and ensure the security of our services and data

3. How do we collect your data?

Your data may be collected:

  • Directly from you through phone, email, or online forms
  • Automatically via your browser or device when visiting our website
  • From cookies, only if you have provided consent

4. Legal basis for processing

We process your data based on:

  • Your explicit consent
  • Our legitimate interest to fulfill our corporate purpose and provide services
  • Our obligation to comply with legal requirements

5. Data retention

Your data is retained only as long as necessary for the processing purposes or as required by law. Specific retention periods may apply depending on the type of data and legal obligations.

6. Data security measures

We implement appropriate technical and organizational measures to ensure the security of your personal data, including:

  • Use of secure servers
  • Restricted access to data
  • Staff confidentiality agreements\
  • Encryption and data minimization
  • Regular system updates and audits

7. Who receives your personal data?

Authorized staff and partners (e.g., accountants, legal advisors) who act under confidentiality agreements may access your data. We do not disclose your data unless required by law or regulatory authorities.

8. Your rights under GDPR

You have the right to:

  1. Access your personal data
  2. Request correction of inaccurate or incomplete data
  3. Request deletion of your data
  4. Restrict or object to data processing
  5. Data portability
  6. File a complaint with the Data Protection Authority

You can exercise these rights by submitting a written request to our company. We will respond within 30 days.

9. Consequences of not providing your data

If you do not provide the required data, we may not be able to offer our services or fulfill our obligations.

10. Contact us

For any questions or to exercise your rights, contact us at:
📧 info@carakas.gr📍 Agkaliasma Farou – Ikarias, Ikaria 833 00

11. Policy updates

This policy was last updated on 27/05/2025. We reserve the right to modify it at any time. Please check https://carakas.gr regularly for updates.