Legal
Privacy Policy
Crystal Waves Charters is committed to protecting your personal data in accordance with EU GDPR and Cyprus Data Protection Law.
1.
Data Protection Commitment
Crystal Waves Charters complies with:
- EU General Data Protection Regulation (GDPR) 2016/679
- Cyprus Data Protection Law
We are committed to protecting your personal data.
2.
Information We Collect
We may collect:
- Full name
- Phone number
- Email address
- Booking details
3.
Purpose of Data Processing
Your data is used for:
- Booking management
- Customer communication
- Service delivery
- Internal service improvement
4.
Legal Basis
We process your data based on:
- Contractual necessity (booking fulfillment)
- Legitimate business interests
5.
Data Sharing
We do not sell or rent your data.
We may share data only with:
- Payment providers (e.g. Stripe)
- Technical service providers
- Authorities where legally required
6.
Data Retention
Your data is stored only as long as necessary for:
- Service delivery
- Legal and accounting obligations
7.
Your Rights
Under GDPR, you have the right to:
- Access your data
- Request correction
- Request deletion
- Withdraw consent
Requests can be submitted via our contact channels.
8.
Cookies Policy
Our website uses cookies for:
- Website functionality
- Analytics (Google Analytics)
- Marketing (Meta / Facebook / Instagram Ads)
You can manage your cookie preferences at any time:
- Use the cookie consent banner to accept or reject cookies when you first visit our site
- Manage preferences via your browser settings (clear cookies, block third-party cookies, etc.)
Crystal Waves Charters — Protaras, Cape Greco & Ayia Napa, Cyprus