Privacy

Privacy Policy

Effective Date: November 12th, 2025

OAG Greece values your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you visit our website or use our services.

1. Information We Collect

We may collect the following types of personal information:
  • Personal Identifiable Information (PII): Name, E-Mail address, phone number, and other contact details provided by you.
  • Payment Information: Billing details, payment method, and related financial data.
  • Travel Preferences: Details about your travel needs, preferences, and past bookings.
  • Technical Data: IP address, browser type, device type, and usage data collected via cookies, analytics tools, and tracking technologies.

2. How We Use Your Information

Your personal data is processed for the following purposes:
  • To provide and manage our luxury travel services.
  • To respond to inquiries, requests, or bookings.
  • To personalize your travel experiences.
  • To comply with legal obligations, such as tax and accounting requirements.
  • To improve our website and services via analytics and user feedback.
  • To deliver targeted advertisements and measure the effectiveness of marketing campaigns.

3. Legal Basis for Processing

We process your personal data under the following legal bases:
  • Consent: When you provide explicit consent for specific activities, such as receiving newsletters.
  • Contractual Necessity: To fulfill your booking or service requests.
  • Legal Obligations: To comply with applicable laws and regulations.
  • Legitimate Interests: To improve our services, enhance customer experiences, and conduct marketing activities.

4. Sharing Your Information

We only share your personal data with trusted third parties when necessary, including:
  • Service providers, such as luxury accommodation providers, transport companies, and local guides.
  • Payment processors for billing and transaction purposes.
  • Legal or regulatory authorities, if required by law.
  • Marketing and analytics platforms, such as:
    • Google Analytics
    • Google Tag Manager
    • Google Ads
    • Google YouTube
    • Google reCAPTCHA
    • Mailchimp
    • Facebook Pixel
These tools help us analyze website traffic, optimize marketing efforts, and enhance the overall user experience.
 
Microsoft Clarity (Session Replay & Heatmaps)
 
We use Microsoft Clarity to understand how visitors use our site and to improve usability. Clarity records pseudonymous interaction data such as page views, scrolls, clicks, mouse movements, device/viewport info, and basic timing data. We configure Clarity to avoid capturing sensitive inputs and to mask fields that may contain personal data. Clarity sets first-party cookies that store a pseudonymous ID to link page views across a session/visitor.
 
  • Provider: Microsoft Corporation / Microsoft Ireland Operations Limited
  • Purpose: UX analytics (session replays, heatmaps, diagnostics)
  • Data categories: Online identifiers (pseudonymous ID), device/usage info, interaction events; IP addresses may be processed to enable delivery/security
  • Legal basis (EEA/UK/CH): Consent via our cookie banner; without consent Clarity does not place cookies and functionality is limited
  • Retention: Per Microsoft defaults for Clarity; we keep aggregated reports as long as necessary for UX improvements
  • More info: Microsoft Clarity & Microsoft Privacy Statement
  • Opt-out: Use the cookie banner “Analytics” toggle or the “Privacy settings” link in our footer
 
Technical/compliance notes: Clarity supports consent-aware behavior and only places cookies in the EEA/UK/CH after a valid consent signal is received. Microsoft provides SCCs for international transfers where applicable. 

5. Use of Cookies and Tracking Technologies

We use cookies, local storage and similar technologies to (i) make the site work, (ii) measure performance, (iii) improve UX (including session replays/heatmaps), and (iv) deliver/measure advertising.
 
Consent in the EEA/UK/Switzerland. Non-essential cookies (including analytics, session replay and advertising) are used only after your opt-in via our cookie banner. You can change or withdraw consent anytime via the “Privacy settings” link in the footer.
 
Categories
  • Strictly Necessary (cannot be disabled)
  • Performance/Analytics (e.g., Google Analytics, Microsoft Clarity)
  • Advertising/Targeting (e.g., Meta/Facebook Pixel, Google Ads)
  • Functionality (e.g., preferences)
 
Controls. You can also block or delete cookies in your browser settings.

6. International Data Transfers

Where data is transferred outside the EEA/UK/CH, we use safeguards such as the EU Standard Contractual Clauses (SCCs), UK IDTA/Addendum, and/or other mechanisms permitted by law. For Microsoft Clarity and other Microsoft services, transfers are covered by Microsoft’s data protection terms including SCCs. 

7. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy or comply with legal obligations. We keep raw session recordings from Clarity only as long as necessary for diagnostics/UX improvements and then either delete or aggregate/anonymize them per provider defaults.

8. Your Rights

Under GDPR and other privacy laws, you have the following rights:
  • Access: Request a copy of your personal data.
  • Correction: Request correction of inaccurate or incomplete data.
  • Deletion: Request deletion of your personal data, subject to legal obligations.
  • Objection: Object to the processing of your personal data in certain circumstances.
  • Data Portability: Request transfer of your data to another provider.
  • Withdraw Consent: Withdraw consent where processing is based on consent.

9. Security Measures

We implement robust technical and organizational measures to protect your data from unauthorized access, alteration, disclosure, or destruction.

However, no online platform is entirely secure, and we cannot guarantee absolute security of your data.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be posted on this page with a revised “Effective Date.”

11. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at:

E-Mail: contact@oag-greece.com