Privacy policy
- In compliance with the provisions of the General Data Protection Regulation (GDPR), Organic Law 3/2018 on the Protection of Personal Data and the Guarantee of Digital Rights (LOPDGDD), and other applicable regulations, users are hereby informed of this Privacy Policy.
1. Data Controller
The data controller for the personal data collected through this website is:
- Owner: Maria Elena López Cebrián (HellenHost)
- Tax ID Number (NIF): 44380293E
- Address: Calle de Silva, 14
- Email: service@hellenhost.com
- Phone: +34 677 874 790
- Website: www.hellenshost.com
2. Personal Data Collected
Through this website, we may collect the following personal data when a user fills out the contact form or submits an availability request:
- First name.
- Email address.
- Check-in date.
- Check-out date.
- Any other information the user voluntarily provides through their communications.
In addition, while browsing the website, certain technical data may be collected through cookies or similar technologies, such as browser information, site settings, user session data, or data necessary for the proper functioning of the website.
3. Purposes of Data Processing
The personal data provided by users may be processed for the following purposes:
- To respond to inquiries, requests for information, or communications received through the website.
- To manage requests related to availability, stays, or reservations.
- To maintain necessary communication with the user.
- To manage the provision of lodging services, when applicable.
- To comply with legal obligations applicable to the business.
- To ensure the proper functioning, security, and technical maintenance of the website.
No marketing communications will be sent.
4. Legal Basis for Processing
The legal basis for the processing of personal data will be:
- User consent, when the user voluntarily submits their data via the contact form.
- Implementation of pre-contractual measures or performance of a contractual relationship, when the request relates to a reservation, stay, or service requested by the user.
- Compliance with legal obligations, when it is necessary to retain or disclose certain data due to regulatory requirements.
- Legitimate interest of the data controller, to maintain the security, proper functioning, and technical improvement of the website.
5. External Booking System
The website may link to an external booking system managed by smoobu.
When the user accesses this system to make or manage a reservation, the processing of the data entered on that platform may also be subject to smoobu’s legal terms and privacy policies.
Hellenhost may process the data necessary to manage the reservation, provide the contracted service, respond to communications related to the stay, and comply with legal obligations arising from the lodging business.
Users are advised to review smoobu’s privacy policy before completing any reservation on that platform.
6. Data Retention
Personal data will be retained for as long as necessary to fulfill the user’s request and, where applicable, to manage the corresponding contractual or pre-contractual relationship. Subsequently, the data may be retained in a properly restricted format for the periods required by law to address potential administrative, tax, accounting, or legal liabilities.
In the case of data related to reservations, billing, or compliance with legal obligations, it will be retained for the periods established by applicable regulations.
7. Recipients of the Data
Personal data will not be disclosed to third parties except where required by law or when necessary to provide the requested service.
External providers who supply services necessary for the operation of the website or the management of web hosting may have access to certain personal data, such as:
- Web hosting and technical maintenance providers.
- External booking platform.
- Email and communication services.
- Consulting or administrative firms, in the case of tax, accounting, or administrative obligations.
- Public administrations,
- Law enforcement agencies or competent authorities, when there is a legal obligation.
These providers will process the data solely in accordance with the instructions of the data controller and in compliance with applicable data protection regulations.
8. International Data Transfers
In general, no international data transfers outside the European Economic Area are anticipated. However, if technology providers that may process data outside the European Economic Area are used, appropriate safeguards will be implemented in accordance with the provisions of the GDPR.
9. User Rights
Users may exercise the following rights at any time:
- Right of access to their personal data.
- Right to rectify inaccurate data.
- Right to erasure of their data.
- Right to object to processing.
- Right to restriction of processing.
- Right to data portability, where applicable.
- Right to withdraw consent at any time.
To exercise these rights, users may submit a request to: service@hellenhost.com.
The request must clearly indicate the right the user wishes to exercise and, when necessary, be accompanied by a copy of an identification document to verify the applicant’s identity. Furthermore, if the user believes that the processing of their data does not comply with current regulations, they may file a complaint with the Spanish Data Protection Agency via www.aepd.es.
10. Data Security
Hellenhost will implement the necessary technical and organizational measures to ensure the security, confidentiality, and integrity of personal data, preventing its loss, alteration, unauthorized access, or misuse. However, users should bear in mind that no computer system is completely invulnerable, especially on the internet.
11. Social Media and External Channels
If the user contacts Hellenhost via social media, WhatsApp, external platforms, or any other channel outside of this website, their data will be processed for the purpose of responding to the inquiry or communication received. The use of such platforms will also be subject to the privacy policies of each external provider.
12. Cookies and Similar Technologies
This website uses cookies and similar technologies necessary for its operation, configuration, security, and to improve the browsing experience.
If the website uses analytical, advertising, or third-party cookies that are not strictly necessary, the user’s prior consent will be requested via the corresponding banner or cookie settings panel.
Users may configure or reject non-essential cookies through the panel provided on the website, as well as modify their browser settings.
13. Minors
This website is not intended for minors. Requests to make reservations or contract services must be made by adults of legal age who possess sufficient legal capacity.
14. Changes to the Privacy Policy
Hellenhost reserves the right to modify this Privacy Policy to adapt it to new legislation, technical changes, modifications to the services offered, or guidelines from the supervisory authority. The version published on the website will be the one in effect at any given time.
Last updated: July 2026 © 2026
All rights reserved

