Privacy Policy
Last updated: 14 July 2026
This Privacy Policy explains how Alektor (“Alektor”, “we”, “us” or “our”) collects, uses and protects your personal data when you visit our website or contact us to book a table. We are committed to handling your information responsibly and in line with the EU General Data Protection Regulation (GDPR) and Greek data protection law.
Who we are
Alektor is a family-run restaurant located on Dimokratias Square, Zakynthos Town, Zakynthos, Greece. For any question about this policy or your personal data, you can reach us:
- By email: [email protected]
- By phone: +30 26950 24644
- By post: Alektor, Dimokratias Square, Zakynthos Town, Zakynthos, Greece
For the purposes of GDPR, Alektor is the data controller of the personal data described below.
What personal data we collect
We only collect the information we need to answer your enquiries and manage reservations. Specifically:
- Reservation and enquiry details. When you use our reservation form or contact us, we collect the information you provide — typically your name, email address, phone number, the date and time you would like to visit, the number of guests, and any notes or special requests you choose to add.
- Contact you initiate. If you email, call, or message us (for example via WhatsApp), we receive the contact details and the content of your message.
- Usage and technical data. Like most websites, when you visit our site our hosting provider and any analytics we use may automatically record technical information such as your IP address, browser type and version, device type, the pages you view, and the date and time of your visit. This helps keep the site secure and working properly.
We do not collect payment card details through this website, and we do not knowingly collect any “special category” (sensitive) data.
How and why we use your data
We use your personal data for the following purposes and legal bases:
- To handle your reservation or enquiry — to respond to you, arrange or confirm a table, and answer your questions. Legal basis: taking steps at your request before or during our dealings with you (contract / your request).
- To operate, secure and improve our website — to keep the site available, prevent abuse, and understand in aggregate how it is used. Legal basis: our legitimate interest in running a safe, functional website.
- To comply with the law — for example to meet accounting, tax or other legal obligations. Legal basis: compliance with a legal obligation.
We do not sell your personal data, and we do not use it for automated decision-making or profiling.
Third parties who process data for us
We use a small number of trusted service providers (“processors”) to run the website and receive your messages. They only process your data on our instructions:
- Form delivery (Web3Forms). Our reservation form uses Web3Forms to send the details you submit to our restaurant inbox by email.
- Website hosting and security (Cloudflare). Our site is hosted and delivered through Cloudflare’s global network, which may process technical data such as your IP address to serve pages and protect against attacks.
- Analytics (Google Analytics), if enabled. We may use Google Analytics to understand site usage in aggregate. If enabled, it may set cookies and process usage data as described below.
- Maps (Google Maps). Our contact page may embed a Google Map. Loading it involves Google and may set cookies or collect data under Google’s own privacy policy.
- Messaging (WhatsApp / Meta), if you choose to use it. If you contact us through WhatsApp, your message is handled under WhatsApp’s own privacy terms.
We may also disclose your data where we are legally required to do so, or to establish, exercise or defend legal claims.
International transfers
Some of our providers (for example Google or Cloudflare) may process data outside the European Economic Area. Where that happens, we rely on appropriate safeguards recognised under GDPR (such as the European Commission’s Standard Contractual Clauses) to protect your information.
How long we keep your data
We keep reservation and enquiry information only for as long as needed to deal with your request and for a reasonable period afterwards, and longer only where the law requires it (for example tax records). Technical and analytics data is generally kept for a limited period. When data is no longer needed, we delete or anonymise it.
Your rights
Under GDPR you have the right to:
- access the personal data we hold about you;
- ask us to correct inaccurate or incomplete data;
- ask us to delete your data (“right to be forgotten”);
- restrict or object to our processing;
- receive your data in a portable format; and
- withdraw any consent you have given, at any time.
To exercise any of these rights, please contact us at [email protected]. You also have the right to lodge a complaint with the Hellenic Data Protection Authority (Αρχή Προστασίας Δεδομένων Προσωπικού Χαρακτήρα, www.dpa.gr) if you believe your data has been handled unlawfully.
Cookies
Our website aims to use as few cookies as possible. The site itself needs no cookies to display its pages, and it may store small preferences (such as your chosen language) in your browser. Cookies may be set by third-party features when they are used — for example analytics or an embedded Google Map. You can control or delete cookies through your browser settings; blocking some cookies may affect how certain features work.
Children
Our website and services are intended for a general adult audience and are not directed at children. We do not knowingly collect personal data from children. If you believe a child has provided us with personal data, please contact us and we will delete it.
Links to other websites
Our site may link to third-party websites (for example social media or map services). We are not responsible for the content or privacy practices of those sites, and we encourage you to read their privacy policies.
Security
We take reasonable technical and organisational measures to protect your personal data. However, no method of transmission over the internet or electronic storage is completely secure, and we cannot guarantee absolute security.
Changes to this policy
We may update this Privacy Policy from time to time. When we do, we will post the revised version on this page and update the “Last updated” date above. Please review it periodically.
Contact us
If you have any questions about this Privacy Policy or how we handle your personal data, please contact us at [email protected] or +30 26950 24644.