Back to the site

Privacy Policy

1. Data Controller

SokoLOVE Photography (“we”, “us”, “our”) operates the website sokoloveph.com, providing professional photography services in Santorini, Greece. As the data controller under GDPR and Greek Law 4624/2019, we are responsible for the personal data we collect.

Contact: sokoloveph@gmail.com | Santorini, Greece

2. What Data We Collect

We collect the following categories of personal data:

  • Identity data: full name, nationality
  • Contact data: email address, phone number (including WhatsApp)
  • Location data: pickup/meeting point in Santorini, preferred shooting locations
  • Payment data: transaction records processed via Stripe (we do not store card details)
  • Photographic data: images and videos captured during your session
  • Technical data: IP address, browser type, cookies when you visit our website
  • Communication data: messages sent via contact forms, email, or WhatsApp

3. Legal Basis for Processing

We process your personal data based on the following legal grounds (Art. 6 GDPR):

  • Contract performance: to book, confirm, and deliver your photography session
  • Legitimate interests: to improve our services, respond to inquiries, and prevent fraud
  • Consent: for marketing communications and use of your photos on our website/social media
  • Legal obligation: for invoicing and tax compliance under Greek law

4. How We Use Your Data

  • To confirm and manage your photography booking
  • To communicate before, during and after your session
  • To process payments securely via Stripe
  • To send booking confirmations and session reminders
  • With your explicit consent: to publish photos on our website, Instagram, or marketing materials
  • To comply with legal obligations (invoicing, Greek tax authority requirements)

5. Data Sharing

We do not sell your personal data. We may share data with:

  • Stripe Inc. — payment processing (PCI-DSS compliant)
  • Google LLC — calendar, email, analytics (with appropriate safeguards)
  • Viator / GetYourGuide / TripAdvisor — booking platforms (when booked via OTA)
  • Greek tax authorities (AADE) — as required by law

All third-party processors are bound by data processing agreements in compliance with GDPR.

6. International Transfers

Some of our service providers operate outside the EEA. In such cases, transfers are protected by Standard Contractual Clauses (SCCs) approved by the European Commission, or adequacy decisions.

7. Data Retention

  • Booking & contact data: 5 years (Greek tax & commercial law requirements)
  • Photos: retained until you request deletion, unless published with consent
  • Marketing data: until you withdraw consent
  • Website analytics: 26 months (Google Analytics default)

8. Your Rights (GDPR Art. 15–22)

You have the following rights regarding your personal data:

  • Right of access — request a copy of your data
  • Right to rectification — correct inaccurate data
  • Right to erasure ('right to be forgotten')
  • Right to restrict processing
  • Right to data portability
  • Right to object to processing
  • Right to withdraw consent at any time

To exercise your rights, contact us at: sokoloveph@gmail.com. We will respond within 30 days.

You also have the right to lodge a complaint with the Hellenic Data Protection Authority (HDPA): www.dpa.gr | +30 210 6475600

9. Cookies

Our website uses cookies for functionality and analytics. You may control cookies through your browser settings. A cookie consent banner is displayed on your first visit.

10. Photography Consent

By proceeding with a photoshoot booking, you acknowledge that photos taken during your session may be used for portfolio, website, and social media purposes unless you explicitly opt out in writing before or during the session. This consent may be withdrawn at any time.

11. Contact & Complaints

Data Controller: SokoLOVE Photography | sokoloveph@gmail.com | Santorini, Greece

Supervisory Authority: Hellenic Data Protection Authority (HDPA) — www.dpa.gr

Privacy policy