Privacy Policy and Personal Data Protection

Samirana Boutique Hotel belongs to the company Evolvo Properties LTD and started its operation on August 1, 2020. It is a limited liability company established in Cyprus with registration number HE355981 and located at 57 Konstantinou Kalogera Street, PC 6021, Larnaca, Cyprus. Samirana Boutique Hotel is committed to privacy and confidentiality and is committed to protecting the privacy of its customers.

This Privacy and Privacy Policy is in line with the provisions of Regulation 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of individuals with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46 / EC (hereinafter referred to as the “General Regulation on Data Protection – GDPR”).

Customer Data

In providing its services, Samirana Boutique Hotel collects personal data from various sources to provide its services in accordance with applicable laws and regulations. It retains your personal data such as your name, telephone number and email address, for the purpose of communicating and maintaining cooperation with you and for its legal obligations.
We inform you that the collection of your personal data is done for the purposes of fulfilling our contractual obligations and our legal obligation. This data will also be used for the purpose of recording and communicating with you and this data will only be stored for the required period of time. We also assure you that the processing and management of your Personal Data is done safely and confidentially and is subject to the relevant provisions of the new General Regulation on Personal Data (EU) 679/2016. In any case, we collect personal data which is sufficient, relevant and limited for the purpose for which it is processed.

Due to the nature of the services we offer we collect and process, among other things, the following personal data:

 Name and Surname
 Addresses
 Contact Details (phone, email addresses)
 Any other data or documents in printed or electronic form, which may contain personal data and which are related to you or to other persons related to our services.

Data of candidate partners

In case you apply for a vacancy, we collect:
 Name and Surname
 Contact Details (phone, email addresses)
 Personal information contained in your CV, such as academic qualifications, employment history, gender, nationality, skills and various personal data that you included in your CV
 Other information required for recruitment


Legal basis for the use of personal data

We will use your personal data only for the purposes stated in this privacy notice and when permitted by law. We will usually collect, use and process your personal data to achieve the following purposes:

 When you or your organization commit to the use of our professional services,
 When you or your organization provide us with services,
 For managing an application for employment / cooperation and for employment / cooperation with you
 When we have to comply with a legal obligation.
Where do we collect your personal data

Samirana Boutique Hotel collects your personal data:
a. directly from you,
b. by your intermediaries, agents and / or representatives,
c. from your partners,
d. from public sources (eg social media, websites)

Samirana Boutique Hotel collects and processes the personal data of children for the performance of a legal duty or the management of a legal relationship or contract with you. In any case we act only with the consent of the guardian for the processing.
How we use your personal data
We use your personal data to provide you with the required professional service. In order to provide you with our services, we have to process your personal data in order to provide you with the requested services.

Data conservation

We process, store and maintain your personal data for as long as is deemed necessary for the purpose for which they were collected, as provided by applicable law or regulation.
In the absence of specific legal, regulatory or contractual requirements, the retention period of the file database and other evidence generated during the provision of services is the written notice to the customer for deletion.

Information Security Protection Measures

Samirana Boutique Hotel maintains extensive information security measures and procedures for the protection of Personal Data in accordance with its legal obligations.
The measures include the implementation of corporate policy and security procedures, which cover issues of corporate governance, security audits, document security, information management, operations and communications, personnel security, physical security, access to computer systems, incident management, etc. It also covers the necessary technical and organizational measures for effective protection against cyber-attacks and other risks.

When and how we exchange personal data

We recognize that your information is valuable and we take all reasonable steps to protect your information.
The information collected may be passed on to government departments, agencies or other relevant government and semi-government agencies as required by law or with your consent, as well as to third parties, including specific service providers contracted by Samirana Boutique Hotel.


General Customer Rights based on the European Regulation 2016/679 (“GDPR”) from 25/5/2018

 Right to information: When a person collects information about you, they should inform you of their identity and the reasons why they need it. It should inform you about the persons to whom this information will be given and make it known that you have the opportunity to receive copies of any information that it holds and that concerns you.
 Data accuracy: You can request that your personal information be corrected or updated at any time by contacting us. Include your name, address, and email address when contacting us, as this will help ensure that we only receive modifications from the right person. We encourage you to inform us immediately in the event of a change in your personal information.
 Right of access: You have the right to request and receive a copy of your personal information held in our archives. This right may be limited if and when the fulfillment of your request involves the disclosure of Personal Information about another person.
 Right to Restrict the processing of your personal data: You may object to the processing of your Personal Data in certain cases (especially when we do not need to process the data for a contractual or other legal requirement or where we use the data for direct marketing). Please note that you will always be able to withdraw your consent.
 Right to delete your Personal Data: At any time you may request the deletion of your data from our files when you withdraw your consent to the processing of such data and there is no other legal basis for the processing. The right may not be exercised where the retention of data is necessary for the purposes of legislation or the processing is necessary, inter alia, for the purposes of archiving in the public interest, for the purposes of scientific or historical research or for statistical purposes.
 Right to transfer (portability) of your Personal Data: You have the ability to transfer your personal data which is in electronic form from one controller to another “without objection” as the exercise of this right does not adversely affect the rights and freedoms of third parties. This right facilitates your ability to easily move, copy or transfer personal data from one IT environment to another.

To exercise any of these rights, you can contact us as follows:
By email at: [email protected]
or write to us at the following address: Konstantinou Kalogera 57, 6021, Larnaca, Cyprus


«Personal Data»: any information relating to an identifiable or identifiable natural person (“data subject”). location data, online identity or one or more factors specific to the physical, physiological, genetic, psychological, economic, cultural or social identity of that natural person.

«Person performing the processing»: the natural or legal person, public authority, service or other body that processes personal data on behalf of the controller.

«Processing»: any operation or sequence of operations performed with or without the use of automated means, on personal data or on personal data sets such as collection, registration, organization, structure, storage, adaptation or modification, retrieval, the search for information, use, disclosure, dissemination or any other form of disposal, association or combination, restriction, deletion or destruction.

«Data Processor»: the natural or legal person, public authority, service or other body which, alone or jointly with others, determines the purposes and manner of processing personal data; when the purposes and manner of such processing are determined by Union law or the law of a Member State, the controller or the specific criteria for his appointment may be laid down by Union law or the law of a Member State