This policy explains what personal data Acropolis Taverna collects when you book a table or get in touch, why we collect it, who we share it with, and the rights you have over it.
Who we are
Acropolis Taverna, Ermou 7 & Kalitheas Corner, Faliraki, Rhodes 85100, Greece. We are the “data controller” for the personal data described here. For any privacy question or request, email info@acropolisfaliraki.com.
What we collect and why
When you reserve a table we collect the details you enter in the form: your name, phone number, email address, party size, and your chosen date and seating. We use these only to make and manage your reservation and to contact you about it — including the email we send you to confirm the booking.
The legal basis for this is performance of a contract (Article 6(1)(b) GDPR): we need these details to hold your table. If you email or call us, we use your contact details to answer you.
The reservation form also includes automated security measures to detect and block fake or automated bookings; we rely on our legitimate interest in protecting the restaurant and genuine guests (Article 6(1)(f) GDPR).
Who we share it with
We do not sell your personal data and we do not use it for advertising. We share it only with the service providers that make the booking work, acting on our instructions:
- Our reservation system, running on a server hosted by Hetzner in Helsinki, Finland (inside the EU), which stores your booking.
- Cloudflare, which hosts this website and runs the security check on the reservation form.
- An email service provider that delivers your confirmation and reminder emails.
- OpenStreetMap, which loads the map shown on our contact page.
Where your data is stored
Your reservation details are stored on servers inside the European Union (Finland). Some providers we rely on, such as Cloudflare, are based in the United States. Where your data is handled outside the EU, it is protected by appropriate safeguards — the EU–US Data Privacy Framework and/or the European Commission’s Standard Contractual Clauses.
How long we keep it
We keep your reservation data only for as long as we need it to manage your booking and keep reasonable business records — normally no longer than 24 months after your visit — after which it is deleted or anonymised.
Cookies and tracking
This website uses no analytics, advertising, or tracking cookies, and we do not profile visitors. The reservation form loads a security check (Cloudflare Turnstile) and the contact page shows a map (OpenStreetMap); both are strictly necessary for those features. Because we set no non-essential cookies, we do not show a cookie-consent banner.
Your rights
Under the GDPR you have the right to:
- ask for a copy of the personal data we hold about you;
- have inaccurate details corrected;
- ask us to delete your data;
- restrict or object to how we use it;
- receive your data in a portable format.
To exercise any of these, email info@acropolisfaliraki.com. You also have the right to complain to the Hellenic Data Protection Authority (www.dpa.gr).
Contact
Questions about this policy or your data? Email info@acropolisfaliraki.com, call +30 697 286 1694, or write to Acropolis Taverna, Ermou 7 & Kalitheas Corner, Faliraki, Rhodes 85100, Greece.