GDPR

GDPR

Information on the processing of personal data by MisaTour Travel Agency in accordance with Articles 13 and 14 of Regulation No. 2016/679 of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95 / 46 / EC (General Data Protection Regulation) (hereinafter referred to as the "GDPR Regulation")

1. Personal data controller

All rights and obligations of the Administrator, as well as you as affected persons, are regulated in the Personal Data Protection Act in accordance with the EP Regulation on GDPR, which the Administrator strictly observes. The controller of personal data is a person who defines the purpose and means of processing personal data and processes personal data in his own name. The administrator of your personal data is Travel Agency MisaTour (hereinafter referred to as "Administrator")

Contact information:

Marcela Skovroniová Stavropoulou
E-mail: This email address is being protected from spambots. You need JavaScript enabled to view it.
Phone: +30 6974 783127

The controller does not have an authorized person responsible for personal data protection, he is himself the controller who supervises the proper processing of personal data and which you can contact at any time in writing at MisaTour, 640 02 Limenaria, Thassos (Greece) or electronically This email address is being protected from spambots. You need JavaScript enabled to view it.

2. Scope and categories of personal data processing

The scope or list of processed personal data is determined by the relevant legal regulations, it also follows directly or indirectly from the concluded accommodation contract, as well as other contractual documentation or is stated in the consent to the processing of personal data. The Administrator processes personal data to the extent necessary to fulfill the purpose of their processing. These are, in particular, identity and contact details, i.e. title, name, surname, residential address, e-mail and telephone number.

For marketing purposes, the Administrator processes the following categories of personal data:

  • a) basic identification data - title, name, surname and address of residence
  • b) Contact details - e-mail address and telephone number
  • c) Where applicable, photographs from the trip, if any
  • d) Information on the use of products and services - what services you have shown interest in with us in the past
  • e) Information from records of telephone calls or other interactions with you, for example by e-mail or SMS messages.

3. Sources of personal data

We obtain the personal data listed in the previous point No. 2 directly from you as the person concerned. In the event that personal data obtained directly from you as the person concerned are not, the source of this personal data is in most cases your fellow passenger or family member. Personal data resp. You provide some of the personal data when subscribing to the newsletter, in the accommodation contract, or in other places in the online environment or other documents. Personal data may also in some cases come from publicly available sources, registers and records, such as the Commercial Register, or may exceptionally come from third parties who have been qualified to provide them to the Administrator.

4. Purpose of processing

If personal data are processed in connection with the performance of the contractual obligations of the Administrator, the legitimate interest of the Administrator or pursuant to a special regulation or international agreement. The purpose of processing is mainly related to the following activities:

  • conclusion, registration and administration of travel contracts, including client care
  • provision of all services resulting from the travel contract
  • fulfillment of contractual obligations in connection with the provision of visas
  • processing of personal data within accounting
  • processing of personal data in connection with the fulfillment of obligations arising from the employment relationship
  • record-keeping and archiving
  • resolving any complaints and active and passive lawsuits
  • performance of internal audit, performance of verification of compliance with legal regulations, etc.

If personal data is processed on the basis of consent for marketing purposes, the main purpose of this processing is to offer the latest information about the current products and services of the Administrator, or about offers and services of business partners of the Administrator.

  • offer of products and services, while the offers may be provided by the Administrator in electronic form, especially in the form of e-mail messages or messages sent to mobile devices via telephone
  • automated processing of personal data, including the use of applications for remarketing, retargeting and segmentation users in order to adapt the offer to your individual needs
  • satisfaction surveys of used products and services
  • for the purpose of organizing social events organized by the Administrator

Consent given for marketing purposes is voluntary. However, it is necessary for the Administrator to be able to send individual offers of products and services, ensure consumer competitions, etc., and without the consent provided in this way, the Administrator is not entitled to provide the services in question.

5. Legal basis

The legal basis for the processing of personal data is, by default, the fulfillment of legal obligations, conclusion, administration and fulfillment of contractual obligations under the accommodation contract, legitimate interest, which is protection of rights and legally protected interests of the Administrator and consent of the person concerned (especially for marketing, consumer competitions, etc. ). If you refuse to provide the Administrator with the personal data required for the purpose of fulfilling the contractual obligations of the Administrator or by law, the Administrator is not obliged to enter into an accommodation contract or provide any other services.

6. Time of processing and storage of personal data

The controller is entitled to process the personal data of the persons concerned for a period determined in accordance with the relevant legal regulations. The processing of personal data on the basis of consent is only possible during the period for which the consent was granted. The consent is granted to the Administrator for the duration of the contractual relationship and for the following 10 years from the termination of the contractual relationship or until the moment of withdrawal of the consent. If you are not or become a Client of the Administrator, the consent will be valid for 10 years from the granting or revocation of the consent. After the relevant period, the personal data will be deleted, unless their storage is required in accordance with the relevant legal regulations.

7. Access to personal data and categories of recipients of personal data

In addition to the Administrator and its employees, other persons who process personal data as intermediaries may have access to personal data for the processing of personal data. With regard to the scope of services provided by the Administrator, this is a very wide range of intermediaries, while personal data is also transferred to third countries, mostly countries of destination and transit in the sense of the concluded accommodation contract. Below are the different categories of intermediaries:

  • accommodation providers
  • transport companies
  • conductor
  • embassies, councils
  • accounting service providers
  • public authorities
  • other persons who provide services for the Administrator and process personal data on its behalf on the basis of a contract on the processing of personal data

8. The rights of the data subject in the processing of personal data

The data subject may exercise the following rights when processing personal data:

  • the right of access to and information on their personal data
  • the right to rectify personal data
  • the right to delete personal data
  • the right to restrict the processing of personal data
  • the right to personal data portability
  • the right to object to the processing of personal data
  • the right to withdraw consent at any time (if consent is the legal basis for processing)

The data subject may exercise these rights in accordance with the Personal Data Protection Act and the GDPR Regulation, as well as other relevant legal regulations. The Administrator shall provide a statement and any information on the measures taken as soon as possible, but no later than within one month of receipt of the request. In justified cases, taking into account the complexity and number of applications, the Administrator may extend this period by another two months, even repeatedly. The administrator is obliged to inform you of any such extension within one month of receipt of the request, together with the reasons for the extension. You can exercise your rights against the Administrator through a written request at the registered office of the Administrator: Misa Tour Limenaria 640 02, Thassos, Greece or by electronic means at This email address is being protected from spambots. You need JavaScript enabled to view it.

9. Withdrawal of consent to the processing of personal data

Consent to the processing of personal data is based on the principle of voluntariness, ie you can revoke the consent at any time via e-mail sent to the email address This email address is being protected from spambots. You need JavaScript enabled to view it., stating your personal data at least in the name and surname, address of residence together with information that you do not want the Administrator to process your personal data (or if you would like to receive only selected offers, please indicate which offers are involved so that we can accommodate you).

If you have any questions or comments about the processing of your personal data, please contact us via e-mail at: This email address is being protected from spambots. You need JavaScript enabled to view it.

The current version of Regulation No. 2016/679 of the European Parliament and of the Council on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC (General Data Protection Regulation) is available at attached link below: http://eur-lex.europa.eu/legal-content/EN/TXT/HTML/?uri=CELEX:32016R0679

10. Consent for Marketing Purposes

This is in accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46 / EC (General Data Protection Regulation). personal data), you consent to the processing of your personal data by CK Misa Tour, Limenaria, 640 02, Thassos, Greece as an operator for marketing purposes for a period of 10 years in the scope of: title, name, surname, e-mail address, telephone number, or photos from the trip, if they are taken. You can revoke your consent to the processing of personal data at any time.

Contact information

Stavropoulou Marcela

Travel Agency MISA TOUR

Limenaria, 640 02

Thassos Island

GREECE

 

Phone: +30 6974 783127

Viber: +30 6974 783127

Email: misa-tour@otenet.gr

Web: www.misatour.cz

FB   Youtube

Why book with us?

Experiences
30 years of experience. We live in Thassos, so we know how to choose the ideal accommodation for you.

Our services are free for you
You do not pay anything for our services.

Support
We are available to our clients 24 hours a day. We will help you with everything you need here on holiday.
CK Misa Tour