Greece’s Data Protection Authority has issued warnings to hotels and short-term rental platforms like Airbnb regarding the collection of unnecessary personal data. The Authority prohibits the practice of requesting and retaining photocopies of identification cards and credit cards from guests. This decision stems from concerns that such data collection unnecessarily increases the risk of unauthorized access, fraud, and financial harm to individuals. The Authority determined these practices violate data protection regulations. Hotels and Airbnb are now required to cease this practice and implement more secure data handling procedures. Failure to comply may result in substantial fines. The ruling aims to strengthen personal data privacy for travelers in Greece.