Privacy Policy

This Privacy Policy explains how Besalou Restaurant (“Besalou”, “we”, “us”) collects, uses, stores, and shares personal data when you visit our website, contact us, or make a reservation.

This is a general template and not legal advice. Because privacy requirements can vary by jurisdiction and by the tools you use (e.g., reservation platforms, email marketing, analytics), we recommend you review this with your legal advisor.

1) Who we are

Controller: Besalou Restaurant (Santorini, Greece)
Contact: besalou.santorini@gmail.com

2) What personal data we collect

Depending on how you interact with us, we may collect:

Reservation/contact details: full name, email address, phone number
Reservation preferences: date/time, number of guests, seating requests, special occasions
Health-related information you choose to share: allergies, dietary requirements (only if you provide them)
Marketing preferences: whether you opted in or out of receiving promotional communications
Messages and correspondence: information you send via forms, email, phone, or messaging
Technical data: IP address, device type, browser, pages viewed, approximate location (derived from IP)
Cookies and similar technologies: as described in the Cookies section below

We do not intentionally collect data from children. If you believe a child has provided us with personal data, please contact us.

3) How we collect personal data

We collect personal data when you:

Fill in a reservation form or request a booking
Contact us via website forms, email, phone, or messaging
Subscribe to updates (if available)
Opt in to receive promotional communications (where offered)
Browse our website (through cookies and similar technologies)

4) Why we collect personal data (purposes)

We use your personal data to:

Manage reservations and provide customer service
Accommodate requests you share with us (e.g., allergies, dietary needs, seating preferences)
Operate and improve our website and services
Communicate with you about your reservation or inquiry
Send promotional communications (such as news, offers, and updates) where permitted by law and/or where you have opted in
Comply with legal obligations (e.g., tax, accounting, regulatory requirements)
Protect our business (fraud prevention, security, and enforcing our terms)

5) Legal bases (GDPR)

If you are in the EEA/UK, we process personal data under these legal bases:

Performance of a contract (e.g., managing your reservation)
Legitimate interests (e.g., operating and improving our services, preventing fraud)
Consent (e.g., promotional communications where required, and non-essential cookies)
Legal obligation (e.g., compliance with applicable laws)

6) How we store and protect your data

We take reasonable administrative, technical, and physical measures to protect personal data against loss, misuse, unauthorized access, disclosure, alteration, or destruction.

We keep personal data only for as long as necessary for the purposes described in this policy, unless a longer retention period is required by law.

7) Sharing and disclosure

We may share personal data with:

Service providers that help us run our website and operations (e.g., website hosting, reservation tools, email services)
Professional advisors (e.g., legal, accounting) when necessary
Authorities where required by law or to protect rights, safety, and security

We do not sell your personal data.

8) International transfers

If we use service providers that process data outside the European Economic Area, we will take steps to ensure appropriate safeguards are in place (such as standard contractual clauses), where required.

9) Cookies and analytics

Our website may use cookies and similar technologies to:

Enable core website functionality
Understand how visitors use our site
Improve performance and user experience

Some cookies may be placed by third-party services used on our website. These third parties may have their own privacy policies.

You can control cookies through your browser settings and, where available, through our cookie banner/preferences.

10) Marketing communications

If we send marketing messages (e.g., newsletters or promotions), we will do so only where permitted by law and/or where you have opted in.

You can opt out at any time by:

Using the unsubscribe link in a marketing email (if provided), or
Contacting us at besalou.santorini@gmail.com

Service-related messages (e.g., reservation confirmations) may still be sent even if you opt out of marketing.

11) Your rights

Depending on your location and applicable law, you may have rights to:

Access your personal data
Correct inaccurate data
Request deletion of your data
Restrict or object to processing
Request data portability
Withdraw consent (where processing is based on consent)
Lodge a complaint with your local data protection authority

To exercise your rights, contact us at besalou.santorini@gmail.com.

12) Updates to this Privacy Policy

We may update this Privacy Policy from time to time.

13) Contact

For questions or requests about this Privacy Policy or your personal data, contact:

Besalou Restaurant
Email: besalou.santorini@gmail.com
Address: Santorini, Oia

Privacy Policy

This Privacy Policy explains how Besalou Restaurant (“Besalou”, “we”, “us”) collects, uses, stores, and shares personal data when you visit our website, contact us, or make a reservation.

This is a general template and not legal advice. Because privacy requirements can vary by jurisdiction and by the tools you use (e.g., reservation platforms, email marketing, analytics), we recommend you review this with your legal advisor.

1) Who we are

Controller: Besalou Restaurant (Santorini, Greece) Contact: besalou.santorini@gmail.com

2) What personal data we collect

Depending on how you interact with us, we may collect:

Reservation/contact details: full name, email address, phone number

Reservation preferences: date/time, number of guests, seating requests, special occasions

Health-related information you choose to share: allergies, dietary requirements (only if you provide them)

Marketing preferences: whether you opted in or out of receiving promotional communications

Messages and correspondence: information you send via forms, email, phone, or messaging

Technical data: IP address, device type, browser, pages viewed, approximate location (derived from IP)

Cookies and similar technologies: as described in the Cookies section below

We do not intentionally collect data from children. If you believe a child has provided us with personal data, please contact us.

3) How we collect personal data

We collect personal data when you:

Fill in a reservation form or request a booking

Contact us via website forms, email, phone, or messaging

Subscribe to updates (if available)

Opt in to receive promotional communications (where offered)

Browse our website (through cookies and similar technologies)

4) Why we collect personal data (purposes)

We use your personal data to:

Manage reservations and provide customer service

Accommodate requests you share with us (e.g., allergies, dietary needs, seating preferences)

Operate and improve our website and services

Communicate with you about your reservation or inquiry

Send promotional communications (such as news, offers, and updates) where permitted by law and/or where you have opted in

Comply with legal obligations (e.g., tax, accounting, regulatory requirements)

Protect our business (fraud prevention, security, and enforcing our terms)

5) Legal bases (GDPR)

If you are in the EEA/UK, we process personal data under these legal bases:

Performance of a contract (e.g., managing your reservation)

Legitimate interests (e.g., operating and improving our services, preventing fraud)

Consent (e.g., promotional communications where required, and non-essential cookies)

Legal obligation (e.g., compliance with applicable laws)

6) How we store and protect your data

We take reasonable administrative, technical, and physical measures to protect personal data against loss, misuse, unauthorized access, disclosure, alteration, or destruction.

We keep personal data only for as long as necessary for the purposes described in this policy, unless a longer retention period is required by law.

7) Sharing and disclosure

We may share personal data with:

Service providers that help us run our website and operations (e.g., website hosting, reservation tools, email services)

Professional advisors (e.g., legal, accounting) when necessary

Authorities where required by law or to protect rights, safety, and security

We do not sell your personal data.

8) International transfers

If we use service providers that process data outside the European Economic Area, we will take steps to ensure appropriate safeguards are in place (such as standard contractual clauses), where required.

9) Cookies and analytics

Our website may use cookies and similar technologies to:

Enable core website functionality

Understand how visitors use our site

Improve performance and user experience

Some cookies may be placed by third-party services used on our website. These third parties may have their own privacy policies.

You can control cookies through your browser settings and, where available, through our cookie banner/preferences.

10) Marketing communications

If we send marketing messages (e.g., newsletters or promotions), we will do so only where permitted by law and/or where you have opted in.

You can opt out at any time by:

Using the unsubscribe link in a marketing email (if provided), or

Contacting us at besalou.santorini@gmail.com

Service-related messages (e.g., reservation confirmations) may still be sent even if you opt out of marketing.

11) Your rights

Depending on your location and applicable law, you may have rights to:

Access your personal data

Correct inaccurate data

Request deletion of your data

Restrict or object to processing

Request data portability

Withdraw consent (where processing is based on consent)

Lodge a complaint with your local data protection authority

To exercise your rights, contact us at besalou.santorini@gmail.com.

12) Updates to this Privacy Policy

We may update this Privacy Policy from time to time.

13) Contact

For questions or requests about this Privacy Policy or your personal data, contact:

Besalou Restaurant Email: besalou.santorini@gmail.com Address: Santorini, Oia

Controller: Besalou Restaurant (Santorini, Greece)
Contact: besalou.santorini@gmail.com

Besalou Restaurant
Email: besalou.santorini@gmail.com
Address: Santorini, Oia