PRIVACY POLICY:
At JASE Hotels & Resorts we respect individual privacy, so our commitment will always be to protect your personal data.
1. IDENTIFICATION OF THE RESPONSIBLE FOR THE TREATMENT AND THE DATA PROTECTION CHARGE
- Company: JASE Hotels & Resorts
- Headquarters: Via Norte Trade Center, Avenida D. Mendo, nº 132, Sala 205, 207 e 209, 4470-038 Maia
- NIPC: 507035127
- Telephone: +351 223 706 522
- E-mail: protecaodados@jase.pt
2. INFORMATION AND CONSENT
The Personal Data Protection Act (hereinafter “LPDP”) and the General Data Protection Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, hereinafter “GDPR”) ensure the protection of individuals with regard to the processing of personal data and the free movement of such data.
Under the legal terms, "personal data" means any information, of any nature and regardless of its support, including sound and image, relating to an identified or identifiable natural person, so the protection does not cover the data of legal persons.
Upon acceptance of this Privacy Policy, the user gives informed, express, free and unambiguous consent to the personal data provided through the site
https://www.jasehotels.com/ are included in a file under the responsibility of JASE Hotels & Resorts, whose treatment under the terms of the LPDP and the GDPR complies with the appropriate technical and organizational security measures.
The formalization of reservations through our website implies the introduction, by the user, of personal identification data, such as aspects related to his personal preferences, special circumstances that affect him or others, data relating to credit cards and debit cards, which will be used to facilitate and allow the hiring and reservation of the specific services that make up the customer's request, as well as to provide information regarding JASE Hotels & Resorts products and services.
In no case will information be requested on philosophical or political beliefs, party or union affiliation, religious faith, private life and racial or ethnic origin as well as health and sexual life data, including genetic data.
In no case will we carry out any of the following activities with the personal data provided through this website:
-
Give to other people or other entities, without the prior consent of the data subject;
-
Assign to other persons or other entities, without the prior consent of the data subject;
3. PURPOSES OF THE PROCESSING OF PERSONAL DATA
-
The personal data that we process through this page will only be used for the following purposes:
-
(i) Own to the activity;
-
(ii) Providing intervening parties with the services requested by the user to carry out the reservation / service contracted by the User;
-
(iii) Management, administration, provision, expansion and improvement of services that the user decides to subscribe to and register or use to adapt these services to the user's preferences and tastes;
-
(iv) Check credit cards and other types of cards used for payment and indicated by the User;
-
(v) The study of the use of services by users;
-
(vi) Verify, maintain and develop statistical systems and analyzes;
-
(vii) Advertising, promotion and commercial prospecting activities, if duly authorized and consented by the User;
-
(viii) Submit survey forms to which the user is not obliged to respond;
-
(ix) Send SMS messages for the purposes of direct sale, advertising or related to the contracted service, if duly authorized and consented by the User.
-
The user may consent that JASE Hotels & Resorts treat your Personal Data in order to determine your profile and offer you suitable products and services. These services can be own or third parties.
-
The personal data collected through the "Newsletter" form or other forms related to the activity of the website are necessary and appropriate, and that the user may voluntarily provide, without the lack of response implying a decrease in the quality or quantity of the services. corresponding services. However, the lack of response to the data considered mandatory, will imply the impossibility of accessing the specific service for which the data was requested or the consultation required by the data subject.
-
If you do not agree with the conditions mentioned above, JASE Hotels & Resorts cannot contract with the user and consequently cannot accept your reservation.
4. ASSIGNMENT OF PERSONAL DATA
-
JASE Hotels & Resorts may disclose user information to third parties solely for the purpose of completing the requested reservation and for administrative reasons under the terms of the legislation in force for making travel / services to certain countries.
-
Any data collected in this way on the website will be transmitted, in accordance with the data protection legislation in force, to the entities involved to contract the required services to the extent absolutely necessary for the completion of the desired reservation / service and for compliance with the legislation. destination countries.
-
In addition, the user will expressly consent that personal data may be transferred to:
-
(i) National and international authorities competent in matters of tourism, combating terrorism or crimes that violate human rights;
-
(ii) Any legal entity affiliated or participated by JASE Hotels & Resorts or the company that provided the contracted service (hotels, water transport company, land, rail, air, rental, etc.), so that they use them for the purpose of a correct provision of each service requested by the user.
-
The user guarantees that the information provided is true, accurate, complete and up to date, and is responsible for any damage or loss, direct or indirect, that may be caused as a result of the breach of that obligation. In the event that the data provided belongs to a third party, the user guarantees that he informed the said third party of the aspects contained in this document and obtained his authorization to provide his data to JASE Hotels & Resorts for the indicated purposes.
5. SECURITY MEASURES
-
JASE Hotels & Resorts declares that it has implemented and will continue to implement the security measures of a technical and organizational nature necessary to ensure the security of the personal data provided to it in order to prevent its alteration, loss, treatment and / or unauthorized access, taking into account the state technology, the nature of the data stored and the risks to which they are exposed.
-
Personal data are treated with the level of protection legally required to guarantee their security and prevent unauthorized alteration, loss, treatment or access, taking into account the state of technology, with the user being aware and accepting that the security measures Internet security are not impregnable.
-
JASE Hotels & Resorts are equipped with technical infrastructures for peripheral control, namely, network firewalls, private circuits and VPN’s that respect security requirements. The computer servers are housed in a datacenter’s operator, which provides a digital information protection service for the hosted servers. The service includes file backup (backup), conservation according to the defined policy and restore at the request of JASE Hotels & Resorts.
-
Credit card details are used only to make the payment and, after the transaction has been made, are deleted from our records.
-
JASE Hotels & Resorts accessing any personal data, undertakes to:
-
Store them by means of legally enforceable security measures, of a technical and organizational nature, which guarantee their safety, thus avoiding alteration, loss, treatment or unauthorized access, in accordance with the state of technology at all times, nature of the data and the possible risks to which they are exposed;
-
Use the data exclusively for the previously defined purposes;
-
Make sure that the data is processed only by employees whose intervention is necessary for the provision of the service, being obliged to the duty of secrecy and confidentiality. If there is a possibility that the information may be disclosed to third parties, they should be obliged to maintain due confidentiality in accordance with the provisions of this document.
6. COMMERCIAL AND PROMOTIONAL COMMUNICATIONS
One of the purposes for which we process personal data provided by the user is to send electronic communications with information relating to commercial and promotional communications.
Whenever we make a communication of this type, it will be directed exclusively to the user who has previously authorized it and expressly.
If the user wishes to stop receiving commercial or promotional communications from JASE Hotels & Resorts, you can request the service's opposition by sending an email to the following address:
protecaodados@jase.pt or through the link enabled for this purpose in the own communications.
7. EXERCISE OF THE RIGHTS OF THE DATA HOLDER
In accordance with the provisions of the LDPD and the GDPR, the user can exercise his rights of access, rectification, deletion, limitation, opposition and portability at all times, through a written request by any of the following means, including, always, certified copy of a document proving the identity of the data subject and specifying the right or rights he wishes to exercise.
8. CONTROL AUTHORITY
Under legal terms, the data subject has the right to lodge a complaint regarding the protection of personal data to the competent supervisory authority, the National Data Protection Commission (CNPD)
www.cnpd.pt