Generic selectors
Exact matches only
Search in title
Search in content
Post Type Selectors

Privacy Policy

Protecting your personal data is important to us. Please take some time to read this Privacy Policy and familiarize yourself with how the TÜV AUSTRIA HELLAS group of companies, headquartered in Agia Paraskevi, Mesogeion Avenue 429, Postal Code 153 43, and the Sani-Ikos group, headquartered in Pylaia Thessaloniki, (hereinafter referred to as “we” or “us”), acting jointly as Data Controllers, collect, store, use, and generally process the personal data (hereinafter “Data”) you submit when visiting or using the website or displayed therein.

For any issues related to the processing of your Data, you can contact us via:

Email: or 

(Attention: Data Protection Officer)

1.About Us:

TÜV AUSTRIA Hellas is a group of holistic services encompassing certification, education, technical and industrial inspections, certification of professional qualifications, regulatory compliance of organizations, laboratory analysis and testing, and technological solutions for digital education. It has been operating in Greece since 1994, with a vision and priority to effectively implement Quality as an integral tool of business and work processes, placing people, safety, environment, and society at the center.

It has a presence and significant partnerships in 15 countries and 4 branches in Northern Greece, the Aegean, and Crete. The group employs 251 staff members and 200 external collaborators throughout Greece. In recent years, it has undertaken three significant acquisitions: ACTA – the Technology Transfer Office of the Aristotle University of Thessaloniki, Food Allergens Labs, and CCS, enriching its strong portfolio. TÜV AUSTRIA Hellas’ main priority is to deliver added value through its services for businesses, professionals, society, and the economy of Greece, always with integrity and independence.

The Sani/Ikos hospitality group is an innovative and fast-growing group of luxury resorts in unique beachfront destinations across the Mediterranean. Under the brand names Sani Resort and Ikos Resorts, it operates 12 privately-owned resorts in Greece and Spain, all ranking amongst the best luxury hotels in the world.

A leader in sustainability and sustainable tourism, the Sani/Ikos Group has received numerous international awards and certifications for its ESG initiatives aimed at enhancing its positive impact on the environment, on local communities, and ecosystems. The Group has also received significant distinctions for its corporate governance practices and is a member of the United Nations Global Compact, a voluntary initiative for businesses.

All Sani/Ikos Group hotels are carbon-neutral, sourcing 100% renewable electricity with guarantees of origin, while implementing advanced technologies for energy, water, and waste management. The Group consistently partners with scientific institutes, experts and NGOs to protect local wetlands, sea, forest, and wildlife around its hotels.

TÜV AUSTRIA Hellas and the Sani/Ikos Group, in collaboration with the non-profit organization Bee for Planet, have created the SAVE THE BEE – The Parnitha Bee Project program. The goal of the program is to restore the 75 beehives lost in the fires of 2023 and along with them the 1,500,000 bees they hosted, in an effort to restore the biodiversity of Mount Parnitha.

2.What are personal data?

Personal data, hereinafter referred to as “Personal Data” or “Data”, means any information relating to an identified or identifiable natural person (“data subject”) that can directly or indirectly identify the natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person.

3.What is Personal Data Processing?

Any operation or set of operations performed upon personal data or sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure, or destruction.

4.What Data do we collect from you?

We take care to collect only the absolutely necessary Data to serve the purpose for which they are intended. Specifically, we collect:

  • Name
  • Contact details (phone, email)
  • Image data (photographs)

5.For what purpose do we process your data?

We collect your Data for the social promotion of the program, notification, communication, and information through our program’s website SAVE THE BEE – The Parnitha Bee Project, and the significant purpose it serves. Specifically, we use your Data for the purposes described below:

For information concerning all relevant services, events, actions related to the above purpose of the Program.

6.What is the legal basis for processing your Data by us?

Your Data are collected in accordance with the legal bases provided by the GDPR (Articles 6 and 9).

7.Who are the recipients of your Data?

Access to your data may be granted to our partners and staff and/or our subcontractors, for the purpose of supporting, promoting, and publicly presenting the purpose of the above program, who in any case are committed to confidentiality.

8.How do we ensure that our partners/staff/subcontractors respect your Data?

Our partners/staff/subcontractors have agreed and contractually committed to:

maintain confidentiality and bind their personnel accordingly

not disclose Data to third parties without our written permission

implement appropriate organizational and technical measures for Data security

promptly inform us of any incident involving the breach of your Data

delete and/or return your Data upon the termination of our contract

in general, comply with the legal framework for the protection of personal Data, especially the General Data Protection Regulation (GDPR) and Law 4624/2019.

9.Do we send your Data outside the EU?

We impose contractual restrictions on our partners, ensuring compliance with applicable national and European legislation on personal data. They are not sent to third countries.

10.How long do we keep your Data and when do we delete them?

We keep your Data for as long as necessary to fulfill the purpose for which they were collected, unless an extension of this time is required due to legal claims or our lawful obligations. They are immediately deleted within a timeframe not exceeding one year. Data collected by Cookies are deleted in accordance with the Cookie Policy.

11.Are your Data secure?

Any processing of your Data is allowed only by authorized personnel, employees, and partners, exclusively for the aforementioned purposes. We have taken necessary and appropriate organizational and technical measures for the security and protection of your Data from any form of accidental or unlawful processing, both physically and logically (e.g., physical security procedures, access control to Data, protection of computer systems, software). These measures are reviewed and modified as necessary.

12.What are your rights?

You have the rights to:

access your personal Data

correct inaccurate personal Data

erasure/right to be forgotten

portability of your Data

restriction of processing

objection/withdrawal of consent to the processing of your Data

13.How can you exercise your rights?

You can exercise your rights by submitting completed standard requests found on the site. You can contact the Data Protection Officers (DPO) at the email addresses and/or (Attention: DPO).

14.When do we respond to your Requests?

We respond to your Requests free of charge without delay and in any case within (1) one month from the receipt of your request. However, if your Request is complex or there is a large number of Requests from you, we will inform you within the month if we need an extension of another (2) two months, within which we will respond to you. If your Requests are clearly unfounded or excessive, especially due to their repetitive nature, we may impose a reasonable fee, taking into account administrative costs for providing the information or performing the requested action, or refuse to proceed with the Request, explaining the reasons in the response you will receive. If you do not receive a response within the above-mentioned deadline or the response you receive is not satisfactory or the issue is not resolved, you may contact the Hellenic Data Protection Authority (

15.Where can you address for the progress of your Requests?

For more information, you can send an email to the addresses and/or (Attention: DPO), and we will respond to you as soon as possible.

16.Links to third-party websites

The website may contain links leading to the website of TÜV AUSTRIA HELLAS and the Sani/Ikos group. We encourage you to carefully read the respective applicable privacy policies on these websites.

17.Do we use automated decision-making/including profiling in processing your Data?

We do not make decisions, nor do we profile based on automated processing of your Data, except for the use of “Cookies” on our website and always after your information and consent.

18.What is the applicable law in processing your Data by us?

The applicable law is Greek Law, as shaped in accordance with the General Data Protection Regulation 2016/679/EU, Law 4624/2019, and in general, the current national and European legislative and regulatory framework for the protection of personal data. The competent courts for any emerging disputes regarding your Data are the Courts of Athens.

19.Where can you appeal to check if your rights have been respected?

You have the right to lodge a complaint with the Hellenic Data Protection Authority ( if you believe that the processing of your Personal Data violates the current national and regulatory legal framework for the protection of personal data.

20.How will you be informed about any changes to this Policy?

We may review or update this Personal Data Protection Policy from time to time as necessary. Any changes to this Personal Data Protection Policy will take effect upon issuance of the revised Policy. We update this Policy as necessary. If there are significant changes to the Policy or the way we use your Personal Data, we will publish the update to this Policy on our website before the changes take effect and will notify you in the most appropriate way. We encourage you to read this Policy regularly to understand how your Data is protected.

Last modified date: 03/04/2024