it all starts here



This Privacy Policy applies to the processing of your personal data (hereinafter referred to as "Personal Data") as a hotel customer or visitor to our Website (hereinafter referred to as the "Customer" or "Guest" or "you"), made by the company S.KARAGIANNIS M.NICOLIS SA (hereafter "Hotel" or "Hotel Memphis Beach" or "we").


As a hotel customer or visitor to our Website you are entitled to the protection of your Personal Data. The Hotel respects your privacy and your personal data and always complies with the Personal Data Protection Legislation. The hotel also undertakes to act transparently as to how to collect and use the data in the course of fulfilling its obligations.


The term "Personal Data Protection Legislation" (hereinafter referred to as "Legislation") means all laws, regulations, directives, etc., Greek or European that deal with the processing of Personal Data, privacy and security.


Basic, but not exclusively, legal acts are the General Data Protection Regulation (GDPR), the ePrivacy Directive on Privacy in Electronic Communications and any other Opinion or Guideline issued by the Hellenic Data Protection Authority.


It is important to read carefully and keep this policy explaining explicitly how and why we collect your Personal Data, what we do with them, how long we maintain them, with whom we share them, how we protect them, and the choices you can have about them. In this way you will always be fully aware of the ways and reasons for which we use this data and your rights in accordance with the Legislation.


You can view the Digital Privacy Policy at the following address.


Data Controller

The Hotel in accordance with the General Data Protection Regulation acts as "Data Controller". This means that the Hotel is responsible for deciding on the ways and purposes for which it collects and uses ("processing") your personal data.

Our contact details are:


Memphis Beach Hotel

Kolymbia, Rhodes, 85103, Greece

Tel: +30 22410 56288, +30 22410 56352

Fax: +30 22410 56351



Principles of Processing

In the context of complying with the Data protection Legislation, we make every effort and in particular:


Legal basis for the processing of personal data

We process your Personal Data according to at least one of the legal bases mentioned in particular below:


Personal Data we Collect and Process

Personal Information is any information that relates to you as an identifiable person. In detail, the Personal Data we collect and process are described below:



When you use our Website, we also collect information automatically, some of which may be personal data. These include items like language settings, IP address, location, device settings, device operating system, usage time, redirect URL, etc. We can also collect data through cookies. Cookies are small files that store a website on a visitor's computer and to which the Site has access to analyze the user's behaviour. In detail, both the types of cookies that are present and the type of processing that is made are described in a separate policy (Cookies Policy)


We also use Google Analytics to analyze the use of our Website. Google Analytics generates statistics and other site usage information that is used to generate reports. In detail, the types of edits processed through Google Analytics are described in a separate policy (Cookies Policy)

In case of registration and / or access through a Social Login account, we can collect and access specific information about the user's profile from the corresponding social network only for internal administrative purposes and / or for the purposes mentioned above.

We do not process minors' data without the consent of the parent or guardian.


Edit special categories of personal data

The General Privacy Policy defines specific categories of data that need to be processed according to stricter procedures such as health data. The processing of such data is only possible when it is given after your request given (eg dietary allergies) or if required by applicable laws or regulations.


How we collect and source Personal Data Data

The collection of personal data is usually from yourself but we may also collect your Personal Data from other sources as below:


Purpose of Collection and Processing of Your Personal Data

We process and use your personal data for one or more of the following purposes:

Some of these processing instances overlap to a certain extent and, in total, constitute legitimate bases and legitimate purposes within which we process your personal data.

Your personal data will be used solely for the purposes for which it has been collected. If we are required to use your personal data for any other purpose, you will be informed and notified of the legal basis on which the processing will be based or your consent may be requested.

In any case, your personal data is processed in accordance with the principles hereof and the rules of the Personal Data Protection Regulation.

Automated decision making, including profiling

We do not make decisions that can have a significant impact on you, including profiling, in an automated way (decision-making exclusively with the use of a computerized system)

When and how we share or disclose Personal Data we receive with others

In order to fulfill its contractual and legal obligations for the purposes contained in this Privacy Policy, the Hotel may transfer certain personal data to third parties including credit institutions, tax authorities, accountancy agencies, travel agents, suppliers , co-operating private insurance companies, doctors, lawyers, health care providers, maintenance providers, various service providers, etc. and more generally by any third party required to meet the regulatory and legal obligations.

Data transmission will be made by ensuring (where feasible) that these third parties process your data with absolute confidentiality, taking appropriate security measures to protect them in accordance with our policies and not using your personal data for our own purposes or any purpose other than those agreed upon.

Specific data may be passed on to your relatives only with your prior consent or in an emergency.

In addition to the above, the Hotel will not transfer personal data to any third party unless it is legally obliged to do so or when it has to comply with its contractual and legal duties (the tax authorities or the police performing our audit duties)

The Hotel will not sell your personal data to third parties under any circumstances and will not allow third parties to sell the data they have forwarded to them.

We work with third parties to offer you online reservation services such as or Web Hotelier and Channel Managers. Although we provide the content on these websites and you make a reservation directly to us, the processing of the reservations is made by third parties. The data you give to these third parties is stored in one or more databases hosted by them. These third-party companies do not use or access your personal information for purposes other than managing reservations.


Disclosure of Personal Data

We will use and disclose personal information as we think is necessary or appropriate:


International Transfers of Personal Data in Third Countries

Sometimes your personal information may be transferred to third countries outside the EU for the purposes described in this policy. The transfer of personal data to a third country or international organization may take place if the European Commission has determined that these third countries offer an adequate level of protection or appropriate safeguards (eg standard contractual clauses which have been approved by the European Commission); and provided that there are enforceable rights and effective remedies for you.


How long do we keep your data?

We will retain your Personal Information for the period necessary to fulfill the purposes outlined in this Privacy Policy, as it is necessary to fulfill our contractual and legal obligations, unless the prolonged retention period is required or permitted by law or if you request their withdrawal, oppose or withdraw your consent.
 The criteria used for determining retention periods include: 
The time we have a continuous relationship with you and we provide you with our Services
If you have a reservation that is not yet complete
If there is a legal obligation that imposes retention (for example, some laws require us to keep the records of your transactions for a certain period of time before you delete)
Whether retention is appropriate taking into account our legal and tax situation
As long as we have reasonable business needs, such as managing our relationship with you and managing our operations
As long as someone can appeal against us.
Maintenance periods in accordance with legal and regulatory requirements or instructions.
If the data collection was based on your consent, these may be deleted at any time after your consent has been withdrawn. Your data may also be deleted in one of the following cases: 
when they are no longer necessary for the purposes that are collected
when deletion is necessary to comply with our legal obligations
at your request, provided there are no compelling legal reasons for maintaining it. Data will be destroyed in a secure way when it is no longer necessary. It may be necessary for the company to retain some financial data for legitimate purposes (eg accounting matters). 

Your Rights on the Protection of Personal Data

Under certain conditions set forth in the Privacy Policy, you have the following rights regarding your personal data:



In addition, in cases where we process your personal data on a legitimate interest or in the public interest, you have the right to express your disagreement at any time regarding this use of your personal data in accordance with applicable law.

If you have given your consent to the use of some of your data, you also have the unlimited right to withdraw it at any time. Recalling your consent means that we will stop processing the data you have previously given your consent. The hotel, of course, reserves the right to determine what information should continue to be retained in order to fulfill its tax and legal obligations in general. There will be no consequences for the withdrawal of your consent beyond the hotel's inability to perform this treatment.


You can exercise your rights by contacting the Hotel or by sending an email to privacy @ <domain> or using the Data Submission Form. If you exercise any of your rights in writing with a request, we will take every possible action to process your claim within thirty (30) days of receipt and we will inform you either of its satisfaction or of the reasons for your satisfaction of. If you do not receive a response within 30 days or are not satisfied with our response, you have the right to complain to the Data Protection Authority.


You have the right to complain to the Data Protection Authority, which enforces data protection laws, if you have concerns about how the Hotel is processing your personal data or you are dissatisfied with our response to your complaint or request.


Hellenic Data Privacy Authority

1-3 Kifissias str. 115 23, Athens

Tel: + 30-210 6475600

Fax: + 30-210 6475628



Protection of your personal data

Data is stored in a variety of resources, including the physical file, the Site, the Property Management System, and other IT systems (including email). The data are stored in the whole and the format they are submitted to, without any interference with their content.

We have put in place a series of technical and organizational security measures to prevent the unauthorized or unauthorized use or access of your personal information, accidental loss or damage to their integrity, change or disclosure. In addition, we restrict access to your personal information only to those who have a business need to know. They will only process your personal information in accordance with our instructions and are subject to a confidentiality obligation. Your Personal Data will be processed by a Third Processor only if he agrees to comply with the specific technical and organizational data security measures.

In case of a breach of data security we will notify you and any applicable regulatory bodies where we will be legally obliged to do so.

Questions, Concerns or Complaints

If you have questions about this Privacy Policy, if you would like to complain about how your personal data is processed by the Hotel or its partners you have the right to contact us. The contact details can be found in the Processing Manager and Data Protection Officer

Connections to Other Websites and Social Media

Our site may contain links to allow you to easily access other Web sites or Social Networks. However, once you have used these links, you should know that we have no control over this other Site you are going to visit. Therefore, we can not be held responsible for the protection and confidentiality of the information you provide during your visit to them and these sites are not governed by this Privacy Policy. You should be careful and review the privacy statement applicable to these Sites.

Third-party companies active in the hotel.

Third-party businesses are involved in the provision of services and products to you. Therefore, we can not be held responsible for the protection and confidentiality of the information you provide during your visit to them and these businesses are not governed by this Privacy Policy. You should be careful and examine the Privacy Policy applicable to these businesses.

In detail, the third companies operating on the site are the following

Amendments to this policy

The Hotel reserves the right to modify this Privacy Policy and its associated practices at any time to respond to changes in the regulatory environment, business needs, or to meet the needs of the subjects, properties, strategic partners and service providers without notice. Such changes, modifications, additions or deletions to the Privacy Policy will replace previous disclosures and will take effect immediately upon publication.

Updates will be posted on the Hotel's website at the following address and will be marked with a publication date so that you always know when the policy was last updated.

We encourage you to check our site frequently to see our current privacy policy and to make sure you agree with any changes made to it. For older versions you can contact us.



Make the reservation now