Corporate Policies


Privacy Policy

On May 25, 2018, the Regulation on the Protection of Personal Data of the European Parliament and of the Council (EE 2016/679) came into force for the protection of natural persons against the processing of personal data and for the free circulation of such data and the repeal of the directive 95/46/EC.

Sammyacht.com fully complies with the provisions of the Regulation and undertakes to pay due diligence for the correct, rational and secure processing of the personal data it collects and processes. We understand that by giving us your personal data you are trusting us with that information. We have created this policy so that you can access with full transparency the data we collect from you, the purposes for which we collect it and how we use it. We also need to ensure that you understand the rights you have in relation to your personal data.

What data we collect:

We collect, receive, store and generally process the following about you:

  • Personal data and information you enter through the website, including information you provide when you create an account on the website (specifically: first name, last name, telephone number, email address, profile image only if you upload or connect with facebook and tax identification number only in case we are required to issue an invoice to the user for a purchase or a service),
  • Information contained in or relating to your communications of any nature with us, either directly or through our website.
  • information such as that analyzed below under the heading “Cookies”.

The personal data you enter during your registration on consent shall be complete and true and must include at least the following: name and surname, address, telephone and valid e-mail address.

Special Category Data

Our company does not collect or require the disclosure of sensitive personal data (data of a special category of Article 9 of the Regulation).

How we use personal data and why we process it:

  • We collect personal data about you whenever you use our services, when you use our website or when you use our chat, our call center or our mobile application.
  • We will only process your personal data under specific circumstances and only in the way that the law allows us to do so. In general, we will only use your personal data to:
  • Where we need in order to complete a berth booking request or finalize an already initialized request.
  • Where it is necessary for our legitimate interests (or the interests of a third party) and your interests and fundamental rights do not override those interests.
  • Where we need to comply with a legal or regulatory obligation.
  • When you have given us your express consent to do so.
  • Where we rely on consent as a legal basis for processing your personal data, please note that you have the right to withdraw your consent at any time by contacting us using the contact details set out in our website or using the email: support@sammyacht.com.

For what purpose we collect the data:

Our company, following the principle of data minimization, limits the collection and processing only to the personal data that are appropriate, relevant and necessary for the purpose for which they are processed.

In particular, we collect, store and process your personal data, after your express and free consent, in order to:

  • the performance of the service you requested us to provide you with the aim of our company's compliance with applicable legislation, including but not limited to tax, labor and insurance legislation,
  • booking registration, tracking the booking until delivery,
  • Profile Images only for profile represenations
  • Marina Images and descriptions for Marina issue reporing
  • the information about any problem that arises during the execution of the reservation immediately, and the answer to any question or request of yours,
  • informing you about our news, events and offers and to improve our services, only if you have given us your express consent;
  • internal research and statistical analysis to find out how our website is used and to understand how we can improve it,
  • the best response to a complaint about your booking,
  • our compliance with the requirements of law, regulatory authorities and compliance regulations (if applicable);
  • verifying compliance with the terms and conditions governing the use of our website
  • protecting our civil rights,
  • understanding your interests so we can tailor the content, offers and other actions we display.
  • informing marina administrators about marina issues.

Right to Access, Edit and Delete Your Data:

As a Data Subject you have the right to access your personal data processed by our Company as well as the right to request the correction of any inaccurate data concerning you (Article 15 of Regulation (EU) 2016/679). Bearing in mind the purposes of the processing carried out by our Company within the framework of the contractual relationship between us, you can also request the completion of incomplete personal data, including through your additional statement to our Company (art. 16 of Regulation (EU) 2016/679).

Right to erasure ("right to be forgotten"): You have the right at any time and at your absolute discretion to request from our Company (which, as stated above, acts as a Data Controller in the contractual relationship between us) to delete your personal data in accordance with the specific provisions of art. 17 of Regulation (EU) 2016/679.

Your personal data is stored for as long as is necessary for our Company to be in full compliance with its legal obligations (art. 23 of Regulation (EU) 2016/679).

Any request related to the modification, change and/or cancellation of your personal data processed by our company can be sent to us by email at support@sammyacht.com.

Quality Management Policy

The purpose of the quality management policy is to set the principles applied by SaMMY in the development of reliable products and in the delivery of secure, resilient, and cost-effective online services. This policy addresses the avenues innovation, reliability, security, resilience, performance, management, procurement, and customer centricity is achieved within SaMMY.

To perform these objectives, the design and implementation of SaMMY`s integrated management system (IMS) fully covers all the software development project phases, including inception, deployment, and operation of information systems, as well as the provision of projects in marinas, IoT products and online services from across our organizational units.

The company considers that quality is a necessary precondition for meeting its goals and has set quality assurance as a short-term target and total quality as a long-term target. The company's quality targets, which also contribute decisively to enhancing its image in the market, reducing costs, and improving customer service, are the following:

  • Improved productivity, while maintaining the highest possible quality of services.
  • Continuously reducing, and ultimately altogether eliminating, complaints by customers, personnel, and associates.
  • Rigorous application of our quality assurance system during software development activities.
  • Continuous personnel training.
  • Conformity to the applicable Greek and European legislative and regulatory requirements
  • Achieve EN ISO 9001:2015 certification and maintain it on an on-going basis.
  • Improved effectiveness of the quality procedures.
  • Compliance with client requirements, specifications, and standards.

Information Security Management Policy

The purpose of the information security management policy is to focus attention to cyber security risks and countermeasures in managing everyday security operations within SaMMY. A critical aspect afforded by the information security policy is to set security objectives and to develop a plan on how to achieve them whilst continuing to improve the corporate security posture by continuous education and training and effective security incident response.

To perform these objectives, the design and implementation of SaMMY`s integrated management system (IMS) fully covers all the software development project phases, including inception, deployment, and operation of information systems, as well as the provision of projects in marinas, IoT products and online services from across our organizational units.

The company considers that information security is a necessary precondition for meeting its goals and has set specific high level and tactical information security objectives. These overall objectives will be used as guidance in the setting of lower level, more short-term objectives for information security planning. The company's information security objectives, which also contribute decisively to ensure that its business operates smoothly, with security in mind and without interruption for the benefit of its customers, employees, suppliers, and other stakeholders, are the following:

  • Continually improve the effectiveness of the integrated management system across all areas within the scope of information security.
  • Enhance current processes to bring them into line with good practice as defined within ISO 27001
  • Achieve ISO 27001 certification and maintain it on an on-going basis.
  • Increase the level of proactivity (and the business perception of proactivity) regarding the on-going management of information security.
  • Achieve an enhanced understanding of, and relationship with, the business units to which the IMS applies.
  • Review relevant security metrics on an annual basis to assess whether it is appropriate to change them, based on collected historical data and feedback from relevant sources.
  • Obtain ideas for improvement via regular review meetings with stakeholders and document them.
  • Review ideas for continual improvement at regular management meetings to prioritise them and assess timescales and benefits.

Business Continuity Management Policy

The purpose of the business continuity management policy is to assess alternatives and define the strategies that will be used to deliver the degree of business continuity that has been identified as being needed. These strategies are then formulated into more detailed business continuity procedures which set out what actions will be taken and by whom if a major incident occurs.

To apply these strategies, the design and implementation of SaMMY’s integrated management system (IMS) fully covers all the software development project phases, including inception, deployment, and operation of information systems, as well as the provision of projects in marinas, IoT products and online services from across our organizational units.

Commitment to the delivery of business continuity extends to senior levels of the organisation and will be demonstrated through this business continuity policy and the provision of appropriate resources to establish and develop effective business continuity objectives. The company's business continuity objectives, which also contribute decisively to ensure that its business operates smoothly, with security in mind and without interruption for the benefit of its customers, employees, suppliers, and other stakeholders, are the following:

  • Continually improve the effectiveness of the integrated management system across all areas within the scope of business continuity.
  • Enhance current processes to bring them into line with good practice as defined within ISO 22301
  • Achieve ISO 22301 certification and maintain it on an on-going basis.
  • Increase the level of proactivity (and the business perception of proactivity) regarding the on-going management of business continuity.
  • Achieve an enhanced understanding of, and relationship with, the business units to which the IMS applies.
  • Review relevant business continuity metrics on an annual basis to assess whether it is appropriate to change them, based on collected historical data and feedback from relevant sources.
  • Obtain ideas for improvement via regular review meetings with stakeholders and document them.
  • Review ideas for continual improvement at regular management meetings to prioritise them and assess timescales and benefits.