RESERVATIONS (Mon-Sat / 9h-18h):
+351 931 369 115 | +351 934 250 663 - Calling a national mobile network
The confidentiality of the personal information of our clients is fundamental and a commitment of “Longevity Wellness Worldwide, Lda.” (hereinafter “Longevity”).
There are many circumstances in which we request “Personal Data” of a user (“User”) from the websites www.longevitywellnessworldwide.com, www.longevityvilalara.com, www.longevityvilamoura.com (“Sites”). This may happen within the scope of availability of the website, while entering into any contracts (namely hotel, Spa, health and wellness services, booking of accommodation, etc.), supply of information, access to content, including newsletters, login areas, or telephone contacts (hereinafter collectively referred to as “Services”), to its users and other entities related to it.
As a rule, Personal Data is collected and handled when the User registers with the Site, requests to be contacted and/or to receive our newsletter, subscribes a specific Service, supplies or requests information, purchases a product or establishes a contractual relationship with Longevity.
Personal Data is the information which allows for the identification or contact of the User when making a reservation, registers with our Site or subscribes our newsletter. The collected and handled Personal Data consists of information relating to name, nationality, date of birth, address, e-mail address, telephone, mobile phone, tax identification number, credit card details (only collected for invoicing purposes), however, other Personal Data may be collected which may prove necessary or useful for supply or charge of Services by “Longevity Wellness Worldwide, Lda.” – Responsible Entity for the collection and handling of Personal Data – better identified below. After the collection of the Personal Data, more detailed information is given to the User in relation to the nature of the data collected, the purpose of the collection and the handling of the data, as well as the information referred to in paragraph 7 below.
It is also collected and handled, information relating to the characteristics of your hardware and browser/software characteristics, as well as information on the pages visited by the User within the Site. This information may include your IP (Internet Protocol) address, the operating system and the type of browser (“Usability Information”). We use this information only to improve the quality of your visit to our Site.
The Responsible Entity for collection of the Personal Data is “Longevity Wellness Worldwide, Lda.”, a company with its registered office at Metropolitan Business Center, Rua Fernando Namora, Zone 3 – Nº 4 7ºB, 2675-487 Odivelas – Portugal, registered in the Commercial Registry of Lisbon, under registration and VAT number 508 707 633, with a share capital of EUR 400.000.
These Subcontracted Entities will not be allowed to supply the User Data to other entities without “Longevity” giving prior written authorization to this effect, being always prevented from contracting other entities without “Longevity”’s prior authorization.
“Longevity” commits to subcontract only entities who offer maximum security in the performance of technical and adequate organizational measures, for the purpose of ensuring the User rights protection. All Entities subcontracted by “Longevity” are bound to the latter by a written contract regulating, specifically, the subject and duration of the handling, the nature and purpose of the handling, the type of personal data, the categories of the data holders and the rights and obligations of the parties.
Following the collection of the Personal Data, and if applicable, “Longevity” provides the User, information about the Subcontracted Entities that in this specific instance might handle the data on behalf of “Longevity”.
“Longevity” may collect data in a direct way (i.e. directly from the user) or in an indirect way (i.e. through partner entities or third parties). The collection may be done through the following channels:
Direct collection: in person, by telephone, by e-mail or through the Site.
Indirect collection: through partners or group companies and official entities.
“Longevity” ensures the User Data collected is handled in accordance with the following general principles:
The data handling performed by “Longevity” are permitted and legal when at least one of the following situations applies:
“Longevity” undertakes to ensure the handling of the User data is only performed in the conditions set out above and respecting the principles above mentioned.
When the processing of the User Data is performed by “Longevity” based on the consent of the User, it has the right to withdraw its consent at any time. However, the withdrawal of consent does not compromise the lawfulness of the processing done by “Longevity” based on the consent previously granted by the User.
The period of time during which the data is stored and maintained varies in accordance with the purpose for which the information is processed.
“Longevity” will comply with the legal requirements that oblige us to keep Personal Data for a minimum period of time. Where there is no specific legal obligation, the data will be stored only for the minimum period necessary for the purposes for which it was collected or subsequently processed, being deleted on its expiry.
The collected Personal Data will be used solely for the following purposes:
To guarantee the security of the User Data and maximum confidentiality, “Longevity” processes the information supplied in a completely confidential manner, in accordance with its internal security and confidentiality procedures, which are periodically reviewed and updated in accordance with the needs and in accordance with the terms and conditions legally envisaged.
Considering the nature, scope, context and the purposes of the data processing, as well as the inherent risks for the rights and liberties of the User, arising from the processing of data, “Longevity” commits itself to applying, not only at the time of defining the processing means, but also at the time of the actual processing, the necessary and adequate technical and organizational measures to the protection of User Data and to the compliance with the legal obligations.
Commits itself further to ensure that, by default, only the necessary data for each specific purpose is processed and that that data is not made available without human intervention and to an undetermined number of people.
The communication between the User device and the Site of “Longevity” is made through secure communications channels which use the HTTPS protocol and the security standard SSL. Nevertheless, in terms of general measures, “Longevity” adopts the following:
Personal Data collected and used by “Longevity” may be made available to third parties established within or outside the European Union (“EU”) / European Economic Area (“EEA”).
Some recipients located in countries outside the EU / EEA are recognized as having an adequate level of data protection from the point of view of European data protection legislation, namely: Andorra, Argentina, Canada, Faroe Islands, Guernsey, Israel, Isle of Man, Jersey, New Zealand, Switzerland and Uruguay.
Certain recipients in the US are certified by the EU-US Privacy Shield Seal and therefore also recognized as holders of an adequate level of data protection from the point of view of European data protection law.
Other recipients, however, may be located in countries that do not provide an adequate level of protection from the point of view of European data protection legislation. For transfers to these countries, which do not provide an adequate level of data protection, if they occur, we will base the transfer on appropriate safeguards.
When visiting the Site of “Longevity”, consent will be requested from the User for the creation and saving on your computer of a text file (Cookie). This file, when recognizing you, will allow the User an easier and faster access to the Site, as well as a personalized use in accordance with your preferences.
The information set out in points 7.1 and 7.2 above shall be provided in writing (including by electronic means) by “Longevity” prior to the processing of the Personal Data concerned. Under the applicable legislation, “Longevity” has no obligation to provide the user the information mentioned in 7.1. and 7.2. above, when, and to the extent that the User is already aware of them.
The information is provided to the User by “Longevity” at no cost.
“Longevity” guarantees the means to enable the User to consult its personal data.
The User has the right to obtain confirmation from “Longevity” whether its Personal Data is processed or not, and, as the case may be, the right to access its Personal Data and the following information:
Upon request, “Longevity” will provide the User, free of charge, a copy of the User Data that is being processed. The supply of other copies requested by the User may entail administrative costs.
The User has the right to request at any given moment, the correction of inaccurate Personal Data that concerns him or her, as well as the right to have his or her incomplete Personal Data completed, including by means of an additional declaration.
In case of data correction, “Longevity” shall notify each recipient to whom the data has been forwarded of the correction, unless such communication is considered impossible or involves a disproportionate effort by “Longevity“.
The User has the right to obtain, from “Longevity“, the deletion of his/her Personal Data when one of the following reasons applies:
In accordance with the applicable legal provisions, “Longevity” is under no obligation to delete the User Data to the extent that the treatment proves necessary to fulfill a legal obligation that “Longevity” is subject to or for the purpose of declaring, exercising or defending a right of “Longevity” in a legal proceeding. In the event of deletion of the Data, “Longevity” communicates the deletion to each recipient/entity to whom the data has been transmitted, unless such communication proves impossible or involves a disproportionate effort by “Longevity“.
When “Longevity” has made a User’s Data publicly available and is obliged to delete it under the right to deletion, “Longevity” undertakes to ensure such measures as being reasonable, including taking into account the available technology and the costs of its application, to inform those responsible for the effective treatment of the Personal Data that the User has requested the deletion of the links to this Personal Data, as well as copies or reproductions thereof.
The User has the right to obtain from “Longevity” the limitation of the processing of its Personal Data if one of the following situations applies (the limitation consists of inserting a mark in the stored Personal Data with the objective of limiting processing in the future):
When User Data is subject to limitation, it may only, with the exception of storage, be processed with the consent of the User for the purpose of declaration, exercise or defense of a right in a legal proceeding, to defend the rights of another person or company, or for reasons of public interest legally established.
The User who has attained the limitation of processing of its Personal Data in the above mentioned cases will be informed by “Longevity” before the limitation to the processing is annulled.
In case of data processing limitation, “Longevity” will communicate to each recipient to whom the data has been transmitted of the respective limitation, unless such communication proves impossible or involves a disproportionate effort by “Longevity“.
The User has the right to receive its Personal Data, which it provided to “Longevity“, in a structured format, in current use and automatic reading, and the right to transmit this Data to another Responsible for Processing, if:
The portability right does not include inferred data or derived data, i.e. personal data generated by “Longevity” as a consequence or result of the analysis of the data being processed.
The User has the right to have its Personal Data transmitted directly between those responsible for the processing, whenever this is technically possible.
The User has the right to oppose, at any time, for reasons relating to its particular situation, the processing of its personal data, for the purposes of the legitimate interests pursued by “Longevity” or when the processing is carried out for purposes other than those for which the Personal Data has been collected, including the definition of profiles, or when Personal Data is processed for statistical purposes.
“Longevity” will stop processing the User Data, unless it presents urgent and legitimate reasons for such processing that prevail over the interests, rights and freedoms of the User, or for the purposes of declaration, exercise or defense of a right in legal proceedings.
When the User Data is processed for the purpose of direct marketing, the User has the right to oppose at any time the processing of its Personal Data for the purposes of said marketing, which includes the definition of profiles, insofar as it is related to direct marketing.
If the User opposes the processing for the purposes of direct marketing, “Longevity” will cease the processing of Personal Data for this purpose.
The User has also the right to not be subject to any decision solely based on automated processing, including profiling, which may affect its legal position or significantly affects it in a similar way, unless:
“Longevity” will respond in writing (including electronic media) to the request of the User within a maximum of one month from receipt of the request, except in cases of special complexity, where this period may be extended up to two months.
If the requests presented by the User are clearly unjustified or excessive, in particular due to their repetitive nature, “Longevity” reserves the right to charge administrative costs or refuse to comply with the request.
In the event of a breach of Personal Data and to the extent that such breach is likely to pose a high risk to the User’s rights, freedoms and warranties, “Longevity” undertakes to notify the User in question of any Personal Data breach within 72 hours of becoming aware of the incident.
In legal terms, communication to the User is not required in the following cases:
Published on 24/05/2018. Updated on 24/05/2018