Privacy Notice

Welcome to our Privacy Notice. It’s very important for us to keep you informed on how we handle and keep your data safe. This Notice will give you information on:

 

  • What kind of personal data we collect;
  • How we collect your personal data;
  • Why we collect your personal data;
  • How long do we keep your data;
  • Your privacy rights;
  1. Who we are

1.1. We are a rent a car office, owned and managed the first by Christos Γαλαζιος with Τax ID Number 800477406 (Tax Office of Rhodes), based in Nea Marina, Skala, Patmos island, P.C. 85500, with telephone number 22470-34343, mobile phone 6983-957690 and Email: info@rossirentacar.gr

1.2. This privacy Notice issued on behalf of Rossi Rent a Car (RRC). RRC is the data controller -the one responsible and in charge for any personal data (i.e. any information that would allow to identify you, either directly or indirectly) you provide us through our website at https://rossirentacar.gr/.  So when we say ‘we’, ‘us’, or ‘our’ in this Notice we are actually talking about RRC.

 

  1. How to contact us

If you have any questions about this Notice, please contact our legal department at:

Address: Nea Marina, Skala, Patmos island, P.C. 85500

Email: info@rossirentacar.gr

Telephone: +30 22470-34343

Please include your name and the reason for contacting us. If you don’t provide that information, it’s absolutely fine and we will then, treat your request as if the question relates directly to the company.

 

What types of data we collect?

Types of personal information we collect:

  1. In order to complete your booking you need to provide us with your name, surname, email, address, city and country of origin, your postal code and your telephone number.
  2. If you are not a member you may create your credentials (username, password) to register for any future purchase. If you already are a member you can simple enter your username and password and log in to your account.
  3. You also provide information regarding to your booking, such as your pick up and return location and your check-in / check-out dates.
  4. In order to finalize your booking you need to provide us with your credit card details (name of the cardholder, card number, ccv, date of expiry).
  5. In case you want to communicate with us by using our website’s contact form you have to provide us with your name, your email and your message.
  6. We also collect some information using our website’s cookies such as: IP address, device ID, browser type, operating system, mobile device identifiers, state or country from which you accessed our websites, specific webpages visited, date and time of a visit, number of links and specific links you click within our website, any reservations, updates, purchases or other transactions through our website.
  7. We may collect additional information such as driver data, insurance coverages, extra preferences, charges incurred

In some exceptional circumstances we may collect certain Personal Data that constitutes sensitive data in some countries, such as (indicatively but not limited to): data related to health conditions (for instance, if there is an accident and we need to work with insurance and claims management companies relating to any injury you may incur). In this case we will collect this data under your explicit, clear and freely given consent.

How we collect your data ?

We may collect information in two ways. One is by the information our visitors provide on a voluntary basis and other is by the information we receive from our visitors via cookies.

  1. When making a booking

1.1. When the customer is making the booking or requesting for a quote sending us an email in our electronic address, we will ask personal information from the customer in order to fulfill required information to rent a car. This information includes the name and surname of the customer, the gender and any contact details (e-mail address, telephone). We also collect rental information such as rental location, return location, rental duration, payment card information, additional driver data, if any, insurance coverages, additional requests or preferences, charges incurred.

1.2. Why we collect your data: we process your personal data to identify you and to prepare and facilitate your booking / rental agreements with us, for example:

  • To confirm and guarantee your booking;
  • To modify or cancel your booking;
  • to communicate with you in relation to your booking (e.g. to provide you with information on your booking, to send you reminder notice before your check-in / check-out dates, to respond to your questions or for troubleshooting;
  • to manage your payments and issue any invoices
  • to manage potential claims or complaints
  1. When navigating to our website

2.1. We may collect information such as pages viewed, the type of your browser, your preferred language on our website and whether you are visiting our site through desktop, mobile or tablet. This information is not able to tell us who you are but could still be considered as personal information.

We use cookies such as Google Analytics to collect information about our visitors behavior on our website. Google Analytics stores information about what pages you visit, how long you are on the site, how you got there and what you click on. For more information about third party cookies visit our cookie policy

2.2. This processing, aiming at having a better understanding of our visitor’s needs and offering you customized functions to enhance your experience when using our website or/and our products / services, based on our legitimate interest.

 

2.3. Your payment details: your credit card information in order to proceed and finalise/secure your booking. We collect this data to comply with our contractual obligations.

 

 

  1. When engaging in promotional and marketing activities, namely:
  2. the sending of email notifications for special promotions / deals;
  3. the sending of emails about a booking you did not complete or send you a summary about a booking enquiry;

iii. the management and update of our customers database

Direct marketing processing activities for example any commercial message from us aiming at promoting our products / services, are subject to your explicit, clear, freely given consent.

 

By exception, if you are already our customer the received message concerns products / services similar to those you have already purchased, the underlying processing aiming at promoting these products / services will not be based on your consent but on our company’s “legitimate interest”.

 

  1. When registering as a member by creating a user account (username, password).

 

We may collect all the abovementioned data from our website, from your browser or/and from our physical office in Skala, Patmos. We may also collect your data from calls to or from our reservation call center, customer contact or via our email address.

Why we collect your data?

  1. We may use your Personal Data to provide you with the services or products that you requested and to perform activities related to such services or products, including billing and collection following a rental, or to communicate with you regarding: any reservation you initiate or rental transaction you perform with us. Legal grounds:to perform our contract with you or to take steps at your request prior to entering into a contract with you.

 

  1. With your consent, we may use your Personal Data to provide you with marketing information -if you are not a prior customer- special offers and promotions via various means, including e-mail and SMS messages, in accordance with applicable law. If you are already a customer we can do so depending on our company’s legitimate interest. Of course, you can unsubscribe from these communications at any time either by following the hyperlink at the end of any email communication or by sending us an email at info@rossirentacar.gr

 

  1. We may also process your Personal Data and other information if such processing is necessary:
  • to comply with the law or in response to a subpoena, court order, law enforcement request, or other legal process;
  • Legal grounds:where it is necessary for compliance with a legal obligation to which we are subject
  • to protect the interests, rights, safety, or property of us or others.

    Legal grounds:where necessary for our legitimate interests, which are to protect such interests, rights, safety and property;

  • to enforce any terms of service on our websites or the terms and conditions of any rental, purchase, or utilization
  • Legal grounds:for our legitimate interests, which are to protect us and enforce such terms of service or terms and conditions.

 

How long do we keep your data?

We retain personal data about our customers for as long as necessary for the purposes for which it was collected, or unless otherwise allowed or required by you or by law. We collect Personal Data for a number of purposes (see above) and may be required to retain it for legal (including tax, civil or other legal regulations) reasons for a period which is longer than the time we need or use the data for the purpose of providing our rental services to you. We maintain a data retention policy to cover all the Personal Data we retain across our systems. In any case, we maintain your personal data in our records for a maximum period of 10 years.

The criteria used to determine our retention periods include:

  • Whether there is a legal obligation to which we are subject (for example, certain laws require us to keep records of your transactions for a certain period of time before we can delete them)
  • Whether retention is advisable considering our legal position (such as, for statutes of limitations, litigation or regulatory investigations)
  • Our relationship prospects;

In the event you request to delete your data to delete any information concerning you before the set retention periods (when applicable), we may not be able to do so for technical, legal, regulatory or contractual constraints. Your information will be retained in order to comply with legal and regulatory obligations as well as for analysis, to prevent fraud, collect any remaining amount of money owed, and to resolve disputes.

We will destroy your personal information as soon as possible and in a non-restorable, non re-identifiable manner.

How do we share your data?

We do not share your personal information with others. However, we may share your personal information with third parties in order to provide services to you, to make your rental reservations, to provide you with any extra services you requested (i.e. insurance etc) and satisfy your needs, requests and expectations.

We will also share your personal information with companies in connection with your rental, including your credit card provider, your bank, or other payment processors that process your payments or any intermediary you use, such as a travel agent or broker, in relation to any aspect of your rental.

In case personal data is transferred from the EU to outside the EU, we use Model Clauses, ensuring that such data transfers are compliant with applicable privacy legislation.

 

Technical and organizational measures 

We use reasonable administrative, technical, personnel, and physical measures (a) to safeguard Personal Data against loss, theft, unauthorized use, disclosure, or modification; and (b) to ensure the integrity of your Personal Data. To help us protect your privacy, you should maintain the secrecy of any logon IDs and passwords, Member numbers, or other identifiers or credentials you may have set up or were provided with in connection with your participation in or use of our products, services, or website.

Your personal data will be stored on our servers which are located in the European Economic Area. We do not transfer your data to any third party outside the EEA. However, in case we transfer your personal data outside the EEA, we ensure a similar degree of protection is afforded to it, by ensuring at least one of the following safeguards is implemented:

Please contact us if you want further information on the specific mechanism used by us when transferring your personal data out of the EEA.

 

Communication with you

As you may be aware, there is no completely secure method of transmitting or storing data. Although their physical characteristics are different, postal mail, telephone calls, text messages, faxes and transmissions over the Internet or wireless networks all present possibilities of loss, misrouting, interception and misuse of the data that is transmitted. If you have reason to believe that any account with us is no longer secure, you must immediately contact us.

We try to strike a balance between the security of your data and your convenience. As a result, we may sometimes use a method of communication that is less secure than a less convenient alternative. For example, but not limitation, we may send you an e-mail or a text message in unencrypted form (i.e. instantly readable) because many of our customers are unable to access encrypted (i.e. coded) e-mail or messages. This means that our message, if misrouted or intercepted, could be read more easily than encrypted messages. Such messages may contain Personal Data. We strongly advice you not to include confidential information, such as your credit card number or account passwords, in any e-mail or text you send to us or on any posting you make to a public area of a third-party social network page, especially since any such posting immediately becomes public. For a more secure way to communicate with us over the Internet, please use on the contact form on our website.

Our rules for collecting your data

  1. We only use the data for the agreed lawful reason and for the time it’s needed;
  2. We keep data that we’re legally required to have on record;
  3. We fully explain why we need the data and how we’ll use it (unless we have legitimate reason not to);
  4. We check and update privacy information on a regular basis (we might also cross-check the data against other database to make sure it’s correct);
  5. We do not share data with anyone unless we have a legal or legitimate reason, or we have permission from you;

 

Your rights

You have the right to:

  1. be informed. The information that our company supplies about the processing of personal data will be concise, transparent, intelligible; written in clear and plain language; and easily accessible.
  2. Access all personal data you provide to us, in printed or in electronic form free of charge;
  3. Obtain rectification of any inaccurate or outdated data, or to complete any incomplete data;
  4. Receive or ask us to provide you or transmit your data in common format (data portability);
  5. Delete your personal data, provided we have no legal obligation to do otherwise;
  6. Ask for the restriction of any data processing activities;
  7. Object to certain types of processing including direct marketing;
  8. Submit a complaint to the Greek Data Protection Authority.  You can see further information on their webpage (www.dpa.gr);

All rights can be exercised by submitting a written request to the Reception or via email free of charge (e-mail: info@rossirentacar.gr)

 

Our designated officer will respond to your request within thirty (30) calendar days.

 

Changes to our Privacy Notice

From time to time we may make changes to this Notice. This might be in relation to changes in the law, best practice, changes to the services we provide or collection and use of your personal information. We will always display clearly when the Notice was last updated and where appropriate, notify you of any relevant changes.

 

Contact us

If you would like to get in touch with us, please contact:

 

Rossi rent a car

Nea Marina, Skala, Patmos island, P.C. 85500

Email: info@rossirentacar.gr

Telephone: +30 22470-34343