Last updated: 16 May 2026

Privacy Policy

This Privacy Policy describes how Poseidon Diving Club Crete ("we", "us", "our") collects, uses, and protects your personal data in compliance with the EU General Data Protection Regulation (GDPR) and Greek law.

1. Data Controller

Poseidon Diving Club Crete
Mades Bay, Crete, Greece
Email: info@poseidondivingclub.com
Phone: +30 697 560 6834

2. What We Collect

Contact form data: name, email, phone (optional), service type, message — only when you choose to send us an enquiry.
Cookies & analytics: non-identifying session cookies; optional Google Analytics data (only after you accept the cookie banner).
Server logs: standard IP address logs maintained by our hosting provider for security purposes.

3. Why We Collect It

To reply to your enquiry and confirm bookings.
To improve our website (anonymized analytics, with consent).
To meet legal obligations (e.g., insurance records for diving activities).

4. Legal Basis

We process your data under one of the following legal bases: your explicit consent (GDPR Art. 6(1)(a)), the performance of a contract for diving services (Art. 6(1)(b)), or our legitimate interest in running and securing our business (Art. 6(1)(f)).

5. Retention

Contact-form messages: up to 2 years, then deleted.
Booking records: 5 years (required by Greek tax & insurance law).
Cookies: session or up to 12 months (whichever is shorter).

6. Your Rights

Under GDPR you have the right to: access, rectify, erase, restrict, port, or object to the processing of your personal data. You may also lodge a complaint with the Greek Data Protection Authority (HDPA).

To exercise any of these rights, email us at info@poseidondivingclub.com. We respond within 30 days.

7. Third Parties

We do not sell your data. We may share limited data with: our hosting provider (Hostinger), our email provider, and — only if you consent — Google Analytics for anonymous traffic analysis.

8. Children

Our diving services are available from age 8 under parental supervision. We do not knowingly collect data from minors without parental consent.

9. Updates

This policy may be updated to reflect changes in law or our practice. The "Last updated" date above always shows the current version.