PRIVACY AND DATA PROTECTION POLICY
Legal information regarding data protection
At Hotel Faro, we understand that the use of your personal data requires your trust. We are subject to the highest privacy standards and will only use your personal data for clearly identified purposes and in accordance with your data protection rights.
The confidentiality and integrity of your personal data is one of our main concerns.
Who is responsible for processing your personal data
Hotel Faro is responsible for processing personal data of its customers and/or potential customers who fill in their data and submit the Marketing Communications Consent Form of Hotel Faro through this homepage.
How we collect your personal data
Your personal data will be collected and processed in the following situations:
If you fill in your personal data and submit the Consent Form on this homepage; and/or
If you purchase and/or use a product or service provided by Hotel Faro.
For what purposes and on what legal basis can your personal data be used
Your personal data will be collected and used for Customer Assistance and Marketing purposes (communication of information, products and services of Hotel Faro), in strict accordance with your selections on the Consent Form on this homepage.
Under the current data protection legislation in the European Union (the General Data Protection Regulation), the use of personal data must be justified under at least one legal basis for the processing of personal data. You can find an explanation of the scope of each of these legal bases. *
The legal basis for the collection and use of your personal data for customer support and marketing purposes is your consent.
*Legal basis for the processing of personal data:
When you have given consent to the processing of your personal data (for this purpose you will be presented with a consent form for the use of your data, which can be later withdrawn);
When the processing is necessary for the performance of a contract with you or for taking steps at your request prior to entering into a contract;
When the processing is necessary for compliance with a legal obligation to which Hotel Faro is subject;
When the processing is necessary for the purposes of the legitimate interests pursued by Hotel Faro or by a third party, except where such interests are overridden by your interests or fundamental rights and freedoms;
When the processing is necessary for the establishment, exercise or defense of legal claims or whenever courts are acting in their judicial capacity.
What personal data can be collected
Data collected by Hotel Faro:
Name; address; email; telephone; company or organization name
Preferred contact channel
Customer number; contract number
Customer satisfaction rate; offers received; equipment purchased, including information about model, configuration, purchase date, delivery date, price, warranty information, purchase details, data collected during meetings, campaign/response history, optional customer data on purchased equipment and/or services, participation in events, complaint history, technical reports, contracts and agreements
Application, website, and social media data
If the customer has registered or authenticated, the following data may be used: average use of the application (behavior within the applications); location information; use of online entertainment; use of the www.hotelfaro.pt portal; use of Hotel Faro's social media (for example, forum visits and posts).
Data on the www.hotelfaro.pt portal
If the customer has registered on our website portal, the following data may be used: details of how you used the portal, the date and time and nature of your requests, your IP address, data about the device you use to interact with the portal.
We use a variety of security measures, including encryption and authentication tools, to help protect and maintain the security, integrity, and availability of your personal data.
Although data transmission over the internet or website cannot guarantee complete security against intrusions, we and our service providers and business partners make every effort to implement and maintain physical, electronic, and procedural security measures designed to protect your personal data in accordance with applicable data protection requirements. Among others, we have implemented the following:
Restricted personal access to your personal data based on the "need to know" criterion and only within the scope of the communicated purposes;
Transfer of collected data only in encrypted form;
Highly confidential data storage (such as credit card information) only in encrypted form;
Protection of information technology systems through firewalls to prevent unauthorized access to your personal data; and
Continuous monitoring of access to information technology systems to prevent, detect, and prevent the misuse of your personal data.
How long do we keep your personal data
We keep your data only for the period necessary for the purpose for which it was collected.
Once the maximum retention period has been reached, your personal data will be irreversibly anonymized (with the anonymized data possibly being kept) or securely destroyed.
How to change or withdraw your consent
You can change or withdraw your consent at any time, with effect for the future.
Consent granted to Hotel Faro may be withdrawn contacting us at +351289830830 or by email at firstname.lastname@example.org.
If you have any questions related to our use of your personal data, you should first contact us. Subject to certain conditions, you may have the right to request that we:
Provide you with additional information about how we use your personal data;
Provide you with a copy of the personal data you have provided to us;
Provide the personal data you have provided to us to another controller at your request;
Update any inaccuracies in the personal data we hold;
Erase personal data that is no longer legitimate to use;
Limit how we use your personal data until the submitted complaint is investigated.
Your exercise of these rights is subject to certain exceptions aimed at safeguarding the public interest (prevention or detection of crimes) or our interest (maintaining professional secrecy).
Data Retention Periods
Personal data will only be retained for the period necessary for the purposes that motivated its collection or subsequent processing, ensuring compliance with all applicable legal standards regarding archiving.