Privacy Policy

1) Privacy Policy (GDPR)


This Privacy Policy describes how the website of the Sainopouleio Amphitheatre (hereinafter referred to as the “Website”) collects, uses, and protects the personal data of its visitors and users, in accordance with the General Data Protection Regulation (EU 2016/679 – GDPR) and applicable Greek legislation.
By browsing the Website and/or communicating through it, you accept the terms of this Policy.

  1. Data Controller
    The data controller responsible for processing personal data is the Sainopouleio Amphitheatre / its managing entity.
    For matters related to data protection, you may contact us via the Website’s contact form or through the published contact details.

  2. What data we collect
    The Website may collect data in the following cases:

    a) Data you provide to us
    When you contact us via a form or email, we may collect:
    • Full name (if provided)
    • Email
    • Phone number (if provided)
    • Message content

    b) Browsing data (technical data)
    During your visit, the following may be collected automatically:
    • IP address
    • device/browser type
    • operating system
    • pages you visit and time spent
    • general usage statistics
    The above data is collected mainly through cookies and/or statistical analysis tools.

  3. Purposes of processing
    We use your data for the following purposes:
    • Communication and handling of requests you submit to us
    • Improving the operation and user experience of the Website
    • Statistical traffic analysis (where applicable)
    • Protecting the security of the Website and its users

  4. Legal basis for processing
    The processing of your data is carried out on the basis of:
    • Consent (e.g., acceptance of cookies, submission of a contact form)
    • Legitimate interest (e.g., Website improvement, security/prevention of malicious activities)
    • Compliance with legal obligations, where required

  5. Disclosure of data to third parties
    The Sainopouleio Amphitheatre does not sell, rent, or transfer your personal data to third parties, unless this is necessary for:
    • technical operation and hosting of the Website (hosting, technical support)
    • compliance with legal obligations or requests by competent authorities
    In such cases, it is ensured that partners/providers apply appropriate protection measures.

  6. Data retention period
    Personal data is retained only for as long as necessary:
    • Communication data is retained for the time required to handle the request and any possible future related communication.
    • Statistical/technical data is retained in accordance with the settings of the tools used and the Cookies Policy.

  7. Your rights
    Under the GDPR, you have the right to:
    • Access your data
    • Rectify inaccurate data
    • Erase your data (“right to be forgotten”), where applicable
    • Restrict processing
    • Object to processing
    • Data portability (where applicable)
    • Withdraw consent at any time (where processing is based on consent)
    To exercise your rights, you may contact us via the contact form.
    You also have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA).

  8. Data security
    We take appropriate technical and organizational security measures to protect your data against unauthorized access, loss, or alteration. However, the transmission of data over the internet cannot be considered completely secure, and the user accepts the associated risk.

  9. Links to third-party websites
    The Website may include links to third-party websites. We are not responsible for the privacy practices or the content of third-party websites. Users are advised to read the respective policies of those websites.

  10. Policy amendments
    This Privacy Policy may be amended from time to time. The updated version will be posted on the Website with a revised date.

Last updated: 23/01/2026