Privacy Policy
Last updated: 1 January 2026
Santorini.Wedding ("we", "us", "our") operates the website santorini.wedding and provides luxury destination wedding planning services in Santorini, Greece. We are committed to protecting the privacy of every couple, guest and visitor we work with, in accordance with the EU General Data Protection Regulation (GDPR), Greek Law 4624/2019, and the ePrivacy Directive.
1. Who We Are
The data controller is Santorini.Wedding, with its studio at Oia, Santorini Island, South Aegean 84702, Greece. Questions about this policy may be directed to Info@santorini.wedding.
2. Information We Collect
We collect only the information necessary to respond to your enquiry and deliver our services:
- Identity & contact data: name, partner's name, email, telephone, country of residence.
- Wedding data: intended wedding date, guest count, ceremony preference, budget range, vendor preferences.
- Technical data: IP address, browser type, device type, pages visited, anonymised analytics events.
- Communications: any messages, photos or files you choose to share with us.
3. Lawful Basis for Processing
We rely on the following GDPR lawful bases: (a) your consent when you submit our enquiry form or subscribe to communications; (b) performance of a contract when planning your wedding; (c) legitimate interest in operating and improving our website; and (d) legal obligation for tax and accounting records.
4. How We Use Your Information
- To respond to your enquiry and provide a personalised proposal.
- To plan, coordinate and deliver your wedding and related services.
- To communicate with vendors, venues and authorities on your behalf.
- To send occasional updates or planning resources, only with your consent.
- To improve our website experience through anonymised analytics.
5. Sharing of Information
We never sell your data. We share it only with vetted vendors and service providers strictly necessary to deliver your wedding (e.g. photographers, florists, venues, transport, civil-marriage officers), and only with your authorisation. We may also share data with authorities where required by Greek law (for example, to legally register a marriage).
6. International Transfers
Your data is stored on servers located within the European Economic Area. Where any sub-processor operates outside the EEA, we rely on Standard Contractual Clauses approved by the European Commission.
7. Data Retention
Enquiry data is retained for 24 months unless you become a client, in which case we retain your records for ten years following the wedding to comply with Greek tax and contractual obligations. Marketing-consent data is retained until you unsubscribe.
8. Your Rights Under GDPR
You have the right to access, rectify, erase, restrict or port your personal data, to object to processing, and to withdraw consent at any time. To exercise any of these rights, email Info@santorini.wedding. You also have the right to lodge a complaint with the Greek Data Protection Authority (Hellenic DPA, dpa.gr).
9. Cookies
We use a minimal set of cookies for site functionality and anonymised analytics. You may accept or decline non-essential cookies via our cookie banner, and you may clear cookies at any time through your browser.
10. Security
We employ industry-standard technical and organisational measures — encrypted transmission (TLS), restricted access controls, encrypted backups — to protect your data against unauthorised access, alteration or loss.
11. Children
Our services are intended for adults. We do not knowingly collect personal data from anyone under 16. If we learn we have done so, we will delete it.
12. Changes to This Policy
We may update this policy from time to time. The most current version is always posted on this page, dated above.
For any privacy question, contact us at Info@santorini.wedding.