Privacy Policy

This Privacy Policy describes how Dunas Douradas Beach Club – Aldeamento Turístico, S.A., treats personal information collected through the websites and applications where it appears from its customers (owners of units inside the resort or guests) and candidates or employees. Data protection is one of the core pillar of our business policy.

This Privacy Policy applies to personal information collected through the website as well as information collected at our reservations department or through reservations transferred to us by travel intermediaries, as well as information collected from owners of units inside the resort by the private property management department. It applies also to personal information collected from candidates and employees.

Please review this Policy before using the website or using any of our products or services. By using the website or by using any of our products and services in the context of registering for any products or services, you agree in the collection and use of personal information as described in this Policy. If you do not agree with the use of your personal data as described under this Policy you should not access the website or register to use any of our services or products.

I – The pillars of our privacy policy:

The Dunas Douradas Beach Club, SA data protection policy is based on seven fundamental pillars:

1 – LAWFULNESS, LOYALTY AND TRANSPARENCY

We collect and process personal data of our customers and employees only for lawful purposes, in the scope of the development of our commercial activity, always giving to the holder of the data, information clear and precise about the purposes of the collection of data, as well as about how it is treated and protected.

2 – PURPOSE LIMITATION
The data we collect is used only for the purposes described in this policy.

3 – MINIMISATION OF DATA
We collect personal information strictly necessary for the pursuit of the purposes described in this policy.

4 – ACCURACY
We assume before the data subjects the commitment of to take appropriate measures to keep the data accurate and up-to-date. We ensure also that inaccurate data should be erased or rectified.

5 – STORAGE LIMITATION
We maintain personal data only for the time strictly necessary to pursue the purposes described in this policy.

6 – INTEGRITY AND CONFIDENTIALITY
We adopt technical and organizational measures to protect the data of our customers, candidates and employees, assuring their safety even against unauthorized or unlawful treatment acts, as well as against their loss, destruction or damage.

7 – RESPONSIBILITY
We undertake the responsibility to comply with the provisions of this privacy policy.

II – Personal information collected

Conducting every aspect of our business, we may collect personal information such as:
– Contact information, as your name, address, phone number and email;
– Demographic information, as nationality, gender, age, language preferences;
– Information related to the Preferred Guest Programme, as your guest number and preferences;
– Payment information as your credit card number;
– Information related to your stay as personal information about people traveling with you, dates and time of Check in /Check out, your preferences, information about vehicles you may bring      into our properties;
– Information submitted on customer’s surveys or posted on social media;
– Information related to events as names and other event preferences;
– Fiscal information, as tax payer number;
– Information when you apply for a job as name, address, nationality, phone number, email, date of birth, reasons to be a candidate, hobbies, training, education and work experience;
– Information about social security number, marital status, fiscal address and number of children of our employees besides the information mentioned above;
– If you participate in our activities on social media, we may collect some kind of information from your account, such as your location, check-ins, activities, hobbies, photos, profile updates and list of friends. We may also allow you to participate in prizes draws, shared offers and other promotions that may provide some information, such as photos (namely photos of your stay), which you can share with your contacts, for voting purposes;
– By using our website we may collect other information through tracking tools such as cookies (please see our Cookies Policy), IP addresses, username, language, region from which you access the site, navigation preferences, service preferences, logins, number of visits to the site.

III – Sensitive information
We do not collect any “sensitive information” related to religious or philosophical beliefs, political opinions, race or ethnicity, trade union membership, sexual orientation, sex life and genetic information, unless explicit consent of the data subject to the processing of those personal data for a specified purpose expressly communicated or by any other reason that legally may authorise the treatment.
We may collect some health information, always with the express consent of the client. In particular, we may collect health information related to dietary restrictions, reduced mobility and fitness. These data are exclusively intended to meet the special needs of customers, upon request and with their consent. This personal information will be deleted as soon as it is no longer needed.

IV – Personal information about Children
We collect personal information (name, nationality and date of birth) regarding children under the age of 16 years old always with the consent given or authorized by the holder of parental responsibility.
We never collect information directly from children under 16 years old.
Please make sure that your children do not send us personal information without your consent (particularly by electronic channels). In case that happens, you may apply for its erasure, through the email privacypolicy@ddbc.pt.

V – How do we collect personal information

During the commercial relationship, personal information from our customers is collected in different moments:

1 – Activities of the hotel
When a customer makes a reservation with us we collect personal information (it could be done in person, by phone, email, or through our website;
During the check-in and check-out;
When a customer uses the facilities of the resort (restaurant, bar, room-service, supermarket, pool, gymnasium, spa, beach concession…);
When we fulfill orders of customers (ex. Book restaurants, excursions, golf, transfers or others) as well as when we manage complaints and disputes.

2) Marketing
– Program preferred guest;
– Subscription of newsletters;
– Satisfaction enquires;
– Reviews on social media;
– Welcome letters.

3) Personal information transmitted by business partners
– Bookings through travel agencies and travel operators.

4 ) Internet
Use of the website – personal information is collected automatically by using tracking tools such as IP address and browser cookies (please see cookies policy)
Online forms (online bookings, enquiries, social media).

5) Recruitment
– Job applications.

6) When a unit in the resort is acquired by a new owner

We may combine personal information collected by different means or from various sources mentioned above within the strictly necessary for the development of our activity or obtained your consent when required by law.
We use information as disclosed and described here, subject to any consent required by applicable law.

VI – Purposes of the data collection
We use the personal information collected for different purposes:
– To fulfil our obligations with our customers;
– To manage our customer´s reservation and their stay in our resort. We use it for fulfil the hotel reservation form, send pre-arrival email, make lists of presences in the resort, provide services at customer´s request, supervise the use of the services, manage internally the clients with inappropriate behaviour, create and store legal documents and send post departure communications.
– To get the payment of the reservation and other products and services related.
– To manage the relationship with the customers before, during and after their stay, particularly:
– Program Preferred Guest;
– Management of the customers data basis;
– For statistical purposes and to make reports;
– To manage requests to cancel the subscription of newsletters, promotions and guest satisfaction enquiries;
– To manage complaints, including about terms and conditions, cookies policy and privacy policy;
– To use the opposition right.
– To improve our services. To understand how we can meet your needs and expectations you can receive a request to participate in a customer survey.
– To personalize your experience with us, as far as it is legally permitted.
– To comply with legal obligations as sending passport data to Foreigner and Border Service and to comply with fiscal law (ex. Archive of documents).
– For marketing and sales purposes. We can send information about our services and promotions and news on the resort when you consent. To stop receiving Marketing and Sales communications see section VIII below.
– To manage the private properties, including to satisfy owner´s request and organization of legal and fiscal documentation related to the private properties.
– To hire employees.

VII – Personal information shared with third parties
We inform that the personal information collected could be shared with the following entities:
Employees of the hotel, as long as it is needed for operational purposes;
Services providers, which are contractually obligated to protect your personal information and may not otherwise use or share your personal information, except as it may be required by law. We include here:
– IT services providers;
– Banks;
– Credit card companies;
– Auditors, insurance companies, accountants, fiscal representatives and external lawyers.
– Meetings and events planners, restrict to the information necessary for the organization of that meetings or events;
– Business partners to provide you with services or products as for example transfer companies, golf, excursions or rent a car companies when applied by the customer;
– Third parties’ providers of services inside our properties, as SPA treatments;
– Sponsors of contests or competitions, in case of participation of our customers in those contests or promotions;
– In case of Business transactions. If we sell, buy, restructure or reorganize all business or part of it we may disclose user information as part of the transaction;
– Public authorities, in order to comply with applicable laws, on request of public authorities within the applicable laws, comply with valid legal or fiscal procedures, protect the rights, privacy or safety of our properties, customers, visitors, employees and to respond to an emergency.
– In the event of the transmission of personal data to third parties, the legal obligations under the applicable laws will be strictly complied with and every effort will be made to ensure that such third parties use the personal data in an appropriate manner in accordance with this Privacy Policy.

Transfer of personal information at request
– At the request of the holder of the data, either for him, for others on whom he has parental or guardian responsibility or, for others, we may make reservations with external service providers such as transfers companies, car rental, golf, excursions and restaurants among others. In these cases, it is the responsibility of those who requested these services and provided the data for this purpose, the transfer of the data to these external entities providing services.

VIII – Choices about your personal information
Marketing and sales communications – To stop receiving our promotional newsletters you may follow the instructions contained in any promotional message received from us or you can opt out by sending us an email to privacypolicy@ddbc.pt saying that you don’t wish to receive more promotional communications.
You can control cookies and tracking tools. Please view cookies policy at cookies policy.

IX – Protecting personal information
We have implemented technical and organizational measures to ensure confidentiality and protection of personal information in accordance with legal requirements and with the rules of this policy.
We protect personal data from unauthorized access, disclosure, alteration or destruction.
We use firewalls and ID/password systems and we have restricted access to the personal information, beside other means of physical protection of the data.
We use technology SSL (security Soket Layer) for payments with credit cards through our website, to make sure that the transaction is safe.
We require the third parties with whom we share personal information to exercise reasonable efforts to maintain the confidentiality of personal information about you, according to this privacy policy.

X – Retaining and destruction personal information
We retain personal information about our customers for the period of time necessary to comply with the purposes of this policy and/or for the period necessary to comply with legal and fiscal obligations.
We destroy personal information of our clients when it is not needed anymore.
The data destroyed cannot be restored.

XI – Personal data breach
In the event of a breach of data and to the extent that such breach is liable to pose a high risk to the rights and freedoms of the User, Dunas Douradas Beach Club undertakes to report the breach of personal data to the 72 hours from the knowledge of the incident.
Under legal terms, notification to the holder is not required in the following cases:
– If Dunas Douradas Beach Club has applied adequate protection measures, both technical and organizational, and these measures have been applied to personal data affected by the violation of personal data, especially measures that make personal data incomprehensible to anyone unauthorized to access such data, such as encryption;
– If Dunas Douradas Beach Club has taken subsequent measures to ensure that the high risk to the rights and freedoms of the holder is no longer likely to materialize; or
– If communication to the User implies a disproportionate effort for the Dunas Douradas Beach Club. In that case, Dunas Douradas Beach Club will make a public communication or take a similar action through which the holder will be informed.

XII – Requests for accessing, changing or destroying personal information
In the terms of the applicable law, our customers could:
-ask us to inform them about their personal information that we keep;
-ask us to update or correct their personal information;
-ask us to delete their personal information, as far as it is possible in the terms of the applicable law (for instance personal information for marketing purposes).
Such requests should be done the responsible of data protection.
By safety reasons, we just proceed with requests send through a registered email of the data subject.
We will proceed with required changes or destruction within the as quickly as possible, in accordance with the law.

XIII – Responsible of Data Protection
The responsible of Data Protection is Dunas Douradas Beach Club – Aldeamento turístico SA, bearer of fiscal number 507895258.

In order to deal with issues / issues related to the processing of your personal data, you should contact us through the following means:

Dunas Douradas Beach Club – Aldeamento Turísticos SA
Apartado 3164
Sítio do Garrão, 8135-170 Almancil
Portugal

+351 289 351 300
privacypolicy@ddbc.pt

We may update this Privacy Policy time to time. We strongly recommend that you visit regularly this Policy, in particular when you book a reservation at our resort.

Last Update: 25.04.2024