Privacy Policy – Caldera Massages Studio

Effective date: September 01, 2017

Caldera Massages Studio (referred to here as “CMS”, “Our”, “us”, “we”) provides its Service (as defined below) to you through its web site located at,, and any of the internet subdomains or alternative domain names of (the “Site”). The “Service” includes (a) the Site, (b) the system, tools and services provided by CMS through the Site, and (c) all software, data, text, images, sounds, video, and content made available through the Site or Service (collectively referred to as the “Content”). The “Booking” includes reserving a massage or other service appoinment by linking to the domain of Bookeo Pty Ltd (the “Booking Engine”) and payment of any required deposit or reservation fee facilitated by the “Payment Gateway”. Any new features added to or augmenting the Service are also subject to this Privacy Policy.

By using the Service and / or accessing the Site, you agree to the Privacy Policy which is set out in this document. The Privacy Policy relates to the collection and use of personal information you may supply to us through your conduct on the Site and /or through your use of the Service.

If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, for issues from use of the Booking Engine please contact their U.S.-based third party dispute resolution provider (free of charge) at For issues from use of our domain(s), please contact *protected mail*

In this Privacy Policy, we use the following terms to describe visitors to the Site. Our site visitors, users and customers are called “Customers”.

This Privacy Policy is in addition to any other terms of service applicable to the Site. We do not make any representations about third party web sites that may be linked to the Site.

We recognize the importance of protecting the privacy of information collected about visitors to the Site, in particular information that is capable of identifying an individual (“personal information”). This Privacy Policy governs the manner in which your personal information, obtained through the Site, will be dealt with. We reserve the right, at our discretion, to modify or remove portions of this Privacy Policy at any time. If we make any material changes we will notify you by email or by means of a notice on this Site prior to the change becoming effective. This Privacy Policy should be reviewed periodically so that you are updated on any changes. We welcome your comments and feedback.

1. Personal Information

Personal information about Customers to the Site is collected only when knowingly and voluntarily submitted. For example, we may need to collect such information to provide you with further services or to answer or forward any requests or enquiries to third parties. It is our intention that this policy will protect your personal information from being dealt with in any way that is inconsistent with applicable privacy laws in the EU.

2. Use of Information

Personal information that Customers submit to the Site is used only for the purpose for which it is submitted or for such other secondary purposes that are related to the primary purpose, unless we disclose other uses in this Privacy Policy or at the time of collection.

For our business purposes, such as booking services, data analysis, audits, fraud monitoring and prevention, developing new products and services, enhancing, improving or modifying our products and services, identifying usage trends, determining the effectiveness of our promotional campaigns and operating and expanding our business activities.

3. Personal information that we collect about Customers

We collect personal information about Customers in order for Customers to take full advantage of the service. This information includes but is not limited to names, email addresses, addresses, telephone numbers, Santorini accommodation and other personal information as required to make a Booking. This personal information will be collected by the Booking Engine.

The Booking Engine may also collect credit card details and billing address. These credit card details are securely transmitted to a selected third party (Payment Gateway) for the sole purpose of processing payments. The credit card details of a Customer are never shown in full to CMS. The Payment Gateway is responsible for securely storing such credit card details and for limiting their access to authorized users.

We do not store credit card details in our Site or in any facility operated by us. The Booking Engine may, however, store partial credit card details (card type, expiry date, and no more than 3 digits from the card number), in order to let the Customer identify and update the credit card details used for payment processing and in order to let CMS process any applicable Refund, Partial Refund or Additional Charge as rqeusted/authorized by the Customer.

4. Disclosure to third parties

Personal Customer information, whether public or private, will not be sold, exchanged, transferred, or given to any other company for any reason whatsoever, without the consent of the customer, other than for the express purpose of delivering the purchased product, booking or service requested by the customer. We will share your personal information with third parties only in the ways that are described in this privacy policy. If you do not want us to share your personal information with these companies, contact *protected mail*

In certain situations, CMS may be required to disclose personal data in response to lawful requests by public authorities, including to meet law enforcement requirements. We may also disclose your personal information as required by law, such as to comply with a subpoena, or similar legal process and when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.

If CMS is involved in a merger, acquisition, or sale of all or a portion of its assets, you will be notified via email and/or a prominent notice on our web site of any change in ownership or uses of your personal information, as well as any choices you may have regarding your personal information.

5. Security

We strive to ensure the security, integrity and privacy of personal information submitted to our sites, and we review and update our security measures in light of current technologies. We follow generally accepted standards to protect the personal information submitted to us, both during transmission and once we receive it. Unfortunately, no data transmission over the Internet can be guaranteed to be totally secure. Therefore, we cannot guarantee its absolute security. However, we will endeavour to take all reasonable steps to protect the personal information you may transmit to us or from our online products and services. Once we do receive your transmission, we will also make our best efforts to ensure its security on our systems.

In addition, our employees and the contractors who provide services related to our information systems are obliged to respect the confidentiality of any personal information held by us. However, we will not be held responsible for events arising from unauthorised access to your personal information.

For your safety and protection, we never store credit card numbers on our servers. Where necessary, credit card numbers are stored by our Payment Gateway provider (such as “PayPal”), or by one of the payment gateways preselected by us  with the use of encryption during transmission. When you enter sensitive information (such as a credit card number) on our order forms, the Booking Engine will encrypt the transmission of that information using secure socket layer technology (SSL).

6. Email addresses

We may send notification emails to the email address provided by Customers regarding bookings, cancellations, purchases, membership subscriptions, billing or other activities that are part of the Service and that are related to the Customer.

We may send periodic company news, updates, and/or related product or service information. Out of respect for your privacy, you may choose to stop receiving our newsletter or marketing emails by following the unsubscribe instructions included in these emails or accessing the email preferences in your account settings page.

7. Log files

As is true of most web sites, the Booking Engine will gather certain information automatically and store it in log files. This information may include internet protocol (IP) addresses, browser type, referring/exit pages, operating system, date/time stamp, and clickstream data. The Booking Engine may combine this automatically collected log information with other information it collects about the Customer. It does this to improve services we offer Customer.

8. Tracking Technologies

We CMS and the Booking Engine and our partners use technologies such as cookies or similar technologies to analyze trends, administer the website, track users’ movements around the website, and to gather demographic information about our user base as a whole. Users can control the use of cookies at the individual browser level.

9. Access to Information

We will endeavor to take all reasonable steps to keep secure any information which we hold about you, and to keep this information accurate and up to date. Upon request CMS will provide you with information about whether we hold any of your personal information. If, at any time, you discover that information held about you is incorrect, you may correct, update, amend, delete/remove, or deactivate it by emailing our Customer Support at *protected mail*. In addition, our employees and the contractors who provide services related to our information systems are obliged to respect the confidentiality of any personal information held by us. We will respond to these requests within a reasonable timeframe.

We will retain your information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

10. Links to other sites

We provide links to Web sites outside of our web sites, as well as to third party Web sites. These linked sites are not under our control, and we cannot accept responsibility for the conduct of companies linked to our website. Before disclosing your personal information on any other website, we advise you to examine the terms and conditions of using that Web site and its privacy policy.

Our web site does not offer publicly accessible blogs or community forums.

Our web site includes social media features, such as the TripAdvisor link, Facebook Like button and widgets, such as the ShareThis button or interactive mini-programs that run on our site. These features may collect your IP address, which page you are visiting on our site, and may set a cookie to enable the feature to function properly. Social media features and widgets are either hosted by a third party or hosted directly on our web site. Your interactions with these features are governed by the privacy policy of the company providing it.

11. Problems or questions

If we become aware of any ongoing concerns or problems with our website and/or online Booking Engine, we will take these issues seriously and work to address these concerns. If you have any further queries relating to our Privacy Policy, or you have a problem or complaint, please contact us. For more information about privacy issues in the EU and protecting your privacy, visit the European Data Protection Supervisor’s web site:

Caldera Massages Studio. 49 Kastro. Oia Santorini. Greece. 84702