Terms of use

This website belongs and is controlled by SUMMER C COLOURS – AGRUPAMENTO TURÍSTICO E IMOBILIÁRIO – A.C.E., who operates the brand DHM, holder of national trademark no. 529580 DHM DISCOVERY HOTEL MANAGEMENT (hereinafter “DHM”), company office at Rua Joaquim António de Aguiar nº 66, 6º, 1070 153, Lisbon, Portugal, registered with the Commercial Registry Office of Lisbon under the single taxpayer and tax identification number 510945961.

These Terms of Use shall enter into force upon their publication and shall regulate the access and/or use by the User of our website. By using our Website, the User expressly accepts these Terms of Use. If you do not accept them, you will not be able to use them. Our Services are very diverse, so sometimes additional Terms of Use or requirements may apply. Additional Terms of Use will be available in conjunction with the respective Services and will become part of the contract between you and DHM if you use such Services.

Content

This Website is intended as a platform to present our hotels, and allow you to make online reservations and enquiries and subscribe to newsletters.

Use of website

You must follow all policies made available to you with our Services. The User enjoys complete freedom to use the Website provided that he or she respects these Terms of Use, particularly with regard to copyright and industrial property rights. Users are solely responsible for the use they make of the contents of the Site.
The following activities may not be undertaken:

1.  Activities that undermine DHM rights;
2.  Use of a false identity or concealment of identity;
3.  Illegal activities, such as using information to harm others;
4.  Breaching the rules of use of this Website;
5.  Reproduce offensive and defamatory content or content which may violate the rights and privacy of third parties;
6.  Jeopardise the security of the Website;
7.  Install or attempt to install a virus;
8.  Access them through methods other than the interface and the instructions we provide.

Changes and termination of services

We provide the contents of our Website with skill and care and hope that the User will be satisfied when using it. However, we cannot guarantee the absence of errors in the contents, nor the uninterrupted availability of the features, which may be affected by possible IT failures or bugs in the system that provides content and features.

DHM may also modify these Terms of Use or any additional terms of use that apply to a feature to, for example, reflect changes in the law or our Services. The User should consult the Terms of Use regularly. Notices on changes to these Terms of Use will be published on this page. Notices on changes to the additional terms of use will be published in the corresponding content/features. The changes will not apply retroactively. Changes concerning new features or changes made for legal reasons will take effect immediately. If the User does not accept the amended terms of use of a feature, the User must stop using it.

Responsibility of website user

The User is responsible for the use that he or she makes of the Website and therefore, in addition to the Terms of Use, must comply with the Copyright and Related Rights Code, the Industrial Property Code and the Computer Criminality Act.

The User shall act in good faith and in a way that does not infringe the rights of third parties.

In accordance with Portuguese law, we respond to notices of alleged copyright infringement.

We provide information to help copyright holders manage their intellectual property online. If you think that someone is violating your copyright and wish to notify us, you can contact us at dpo@discoveryportugal.com or at Rua Joaquim António de Aguiar nº 66, 6º, 1070 153, Lisbon, Portugal.

Intellectual property and personality rights

All the information, data, articles, texts, images, videos to which the user has access through the use, as well as the appearance, organisation, layout, or software code are considered to be content belonging to DHM.

Except as authorised in these Terms and Conditions or expressly authorised by DHM, you may not copy, modify, alter, publish, TERMS AND CONDITIONS 4 broadcast, distribute, sell or transfer, in whole or in part, any information from this Website or the software code.

The User maintains the intellectual property rights and the rights of personality that he or she already holds in relation to the contents that he or she sends, publishes or displays on the DHM Website.

Links

To facilitate browsing and accessibility for the user, the Website may contain hyperlinks to other websites on the internet. DHM has no responsibility for the content of these websites and cannot be held liable for the content or the updating and quality of the information. When you use links to such Websites you must accept the terms and conditions of that Website before using it.

Breach of terms and conditions

DHM reserves the right to take all measures which may be necessary to safeguard its rights. In the event of an attempted breach of these Terms and Conditions, DHM reserves the right to block access and use to the respective Website.

Cookies

This Website uses a technology known as cookies. Therefore, when you visit the Website, you will be asked for your consent to the creation and storage of a cookie on your computer. A cookie is a unique text file that a portal sends to your browser software. Cookies allow a portal to personalise the information presented to you, based on your browsing preferences. Cookies may be used to personalise your web pages or to “remember” you when you register/apply for services available on the portal. If you do not wish cookies to be installed on your browser, you can set your browser to reject cookies. Rejecting cookies may affect your ability to use some of the Website features.

The types of cookies used are:

• Session cookies: these are temporary cookies that remain in the cookie file of the browser until the browser leaves the web page, so that no record is left on the user’s hard drive. The information collected by these cookies helps to analyse the traffic patterns on the portal. Ultimately, this allows us to improve the content and usability of the portal.
• Analytics cookies: these are cookies, processed either by us or by third parties, that allow us to quantify the number of users and carry out statistical measurement and analysis of how users use the service offered. We examine your browsing on our portals to improve the supply of products or services that we make available to you.
• Advertising cookies: these are cookies that, processed either by us or by third parties, allow us to more efficiently manage the offer of advertising spaces that may exist on the portal. They analyse your browsing habits and show you advertising related to your browsing profile.
• Google Analytics Cookies: these are processed either by us or third parties and allow us to anonymously collect information on the use of the Website. They also create reports on visits to the Website, with a view to improving its features.

Applicable law

The Terms of Use, as well as the User’s relationship with DHM in accordance with them, are governed by Portuguese law. The User and DHM agree to submit to the exclusive jurisdiction of the judicial courts of the district where DHM is located in the resolution of any legal issues arising from the Terms of Use, without prejudice to the applicable mandatory legal rules. Notwithstanding the above, DHM may apply precautionary measures in any jurisdiction.

Contact information

For clarification of questions relating to these Terms and Conditions, the users of this Website should do so through the email dpo@discoveryportugal.com or to Rua Joaquim António de Aguiar nº 66, 6º, 1070 153, Lisbon, Portugal.

Privacy Policy

A. General

A.1. Collection and processing of user data

In making available the website hosted on www.discoveryportugal.com and the services and communications there, SUMMER C COLORS – AGRUPAMENTO TURÍSTICO E IMOBILIÁRIO – ACE, with head office at Rua Joaquim António de Aguiar nº 66, 1070 153, Lisbon, Portugal, under the single registration and taxpayer number 510945961, holder of national trademark no. 529580 DHM DISCOVERY HOTEL MANAGEMENT (hereinafter “DHM”) may request the User to provide personal data, i.e., information provided by the User enabling DHM to identify and/or contact you (“Personal Data”).

As a rule, Personal Data are requested when the User registers on the Site, requests a contact and/or newsletters to be sent, subscribes to a certain Service, acquires a product or establishes a contractual relationship with DHM.

The Personal Data collected and processed consists of name, gender, date of birth, telephone number, mobile phone number, email address, postal address, tax identification number and credit card details (collected for billing purposes only), although other Personal Data may be collected that may be necessary or convenient for the provision of Services by DHM.

We may also collect data relating to your health if you use our health club or spa, in which case we will ask for your express consent.

When collecting Personal Data, DHM provides the User with detailed information about the nature of the data collected and about the purpose and processing that will be carried out with respect to the Personal Data, as well as the information mentioned in clause 8. DHM also collects and processes information about your hardware and software, as well as information about the pages visited by the User within the Site. This information may include: your browser type, domain name, access times and the links through which you accessed the Site (“Usability Information”). We use this information only to improve the quality of your visit to our Site.

Usability Information and Personal Data are referred to in this Privacy Policy as “User Data”.

A.2. Subcontractors

As part of the processing of User Data, DHM uses or may use third parties, subcontracted by it, on behalf of DHM, and in accordance with the instructions given by the latter, to process User Data, in strict compliance with the provisions of the law and this Privacy Policy.

These subcontracted entities may not transmit the User Data to other entities without prior written authorisation from DHM, and are also prevented from contracting other entities without prior authorisation from DHM.

DHM undertakes to subcontract only entities that provide sufficient guarantees for the implementation of adequate technical and organisational measures to safeguard the User’s rights. All entities subcontracted by DHM shall be bound to the latter by means of a written contract regulating, inter alia, the object and duration of the processing, the nature and purpose of the processing, the type of personal data, the categories of data subjects and the rights and obligations of the parties. When collecting personal data, DHM provides Users with information about the categories of subcontracted entities which, in the specific case, may carry out data processing on behalf of DHM.

A.3. Data collection channels

DHM may collect data directly (i.e., directly from the User) or indirectly (i.e., through partners or third parties). Data may be collected through the following channels:

Direct collection: in person, by telephone, by email or through the Site;

Indirect collection: through partners or group companies and official entities.

B. General principles applicable to the processing of user data

In terms of general principles concerning the processing of personal data, DHM undertakes to ensure that the User Data it processes are:

• Processed in a lawful, fair and transparent manner in relation to the User;

• Collected for specified, explicit and legitimate purposes and not further processed in a way incompatible with those purposes;

• Appropriate, relevant and limited to what is necessary in relation to the purposes for which they are processed;

• Accurate and up to date where necessary, with every reasonable step being taken to ensure that inaccurate data, having regard to the purposes for which they are processed, are erased or rectified without delay;

• Kept in a form which permits identification of the User only for the period necessary for the purposes for which the data is processed;

• Processed in a manner that ensures they are secure and protected against unauthorised or unlawful processing and against accidental loss, destruction or damage, and appropriate technical or organisational measures are taken.

Data processing carried out by DHM is lawful when at least one of the following situations occurs:

• The User has given their explicit consent to the processing of User Data for one or more specific purposes;

• Processing is necessary for compliance with a contract to which the User is party or in order to take precontractual steps at the User’s request;

• Processing is necessary for compliance with a legal obligation to which DHM is subject;

• Processing is necessary in order to protect the vital interests of the User or another physical person;

• Processing is necessary for the purposes of the legitimate interests pursued by DHM or a third party (except where the interests or fundamental rights and freedoms of the User override those which require protection of personal data).

DHM undertakes to ensure that the User Data is only processed under the conditions listed above and in compliance with the aforementioned principles.

Where the processing of User Data is carried out by DHM on the basis of the User’s consent, the User has the right to withdraw his or her consent at any time. The withdrawal of consent, however, does not compromise the lawfulness of the processing carried out by DHM based on the consent previously given by the User.

The period of time for which data is stored and retained varies according to the purpose for which the information is processed. In fact, there are legal requirements on retaining data for a minimum period of time. Therefore, and whenever there is no specific legal requirement, the data will be stored and kept only for the minimum period necessary for the purposes that led to their collection or their subsequent processing, after which they will be eliminated.

B.1. Use and purposes of processing user data

In general terms, DHM uses User Data for the following

purposes:

• Provision of hotel services and associated services (restaurants, bars, etc.); – User contact management;

• Invoicing and collection from the User;

• User Registration on the Site;

• To inform the User, on request, about new products and services available on the Website and/or in the hotels, special offers and campaigns, updated information on DHM’s activity and, in general, for marketing purposes of DHM and its hotels, through any means of communication, including electronic means;

• To allow access to restricted areas of the Site, in accordance with previously established terms;

• To ensure that the Site meets the User’s needs by developing and publishing content that is as appropriate as possible to the User’s requests and type, by improving the Site’s search capabilities and functionalities and by obtaining aggregate or statistical information regarding the User’s profile (analysis of consumer profiles);

• Provision of Services, and other services such as newsletters, opinion polls, or other information or products requested or purchased by the User;

• Recording telephone calls that may be made within the scope of the contractual relationship, both during the contract formation phase and during its validity period;

• DHM may combine Usability Information with anonymous demographic information for research purposes, and we may use the result of such combination to provide more relevant content on the Site. In certain restricted areas of the Site, DHM may combine Personal Data with Usability Information to provide the User with more personalised content.

User Data collected by DHM is not shared with third parties without the consent of the User, with the exception of the situations referred to in the following paragraph. However, should the User contract services with DHM that are provided by other entities responsible for the processing of personal data, the User Data may be consulted or accessed by such entities, insofar as necessary for the provision of such services.

Under the applicable legal terms, DHM may transmit or communicate User Data to other entities if such transmission or communication is necessary for compliance with the contract entered into between the User and DHM, or for pre-contractual steps at the request of the User, in the event it is necessary for the fulfilment of a legal obligation to which DHM is subject or if it is necessary for the purpose of pursuing legitimate interests of DHM or a third party. In the event that we transfer your Data to a third party, we will use reasonable efforts to ensure that the transferrer uses the transferred User Data in a manner consistent with our Privacy Policy.

B.2. Technical, organisational and safety measures implemented

To ensure the security of User Data and the utmost confidentiality, we treat the information you provide as absolutely confidential, in accordance with our internal security and confidentiality policies and procedures, which are updated periodically as necessary, as well as in accordance with the terms and conditions provided by law.

Depending on the nature, scope, context and purposes of the data processing, as well as the risks arising from the processing for the rights and freedoms of the User, DHM undertakes, both when defining the means of processing and during the processing itself, to apply the necessary and appropriate technical and organisational measures for the protection of the User Data and compliance with legal requirements.

It further undertakes to ensure that, by default, only data that are necessary for each specific purpose of the processing are processed and that such data are not made available without human intervention to an indefinite number of persons.

In terms of general measures, DHM adopts the following:

• Regular audits to assess the effectiveness of technical and
organisational measures implemented;

• Raising awareness and training staff involved in data processing operations;

• Pseudonymisation and encryption of personal data;

• Mechanisms to ensure the ongoing confidentiality, availability and resilience of information systems;

• Mechanisms to ensure the timely restoration of information systems and access to personal data in the event of a physical or technical incident;

B.3. International transfer of data

Personal data collected and used by DHM are not made available to third parties established outside the European Union. If, in the future, this transfer takes place for the aforementioned reasons, DHM undertakes to ensure that the transfer complies with the applicable legal provisions, in particular as regards determining the suitability of this country with regard to data protection and the requirements applicable to such transfers.

B.4. Use of cookies

Cookies are small information files that are sent to your computer or mobile phone when you visit a website. Cookies are sent back to the originating site on each subsequent visit or to another site that recognises that cookie. Cookies are useful because they allow a website to recognise a user’s device, allowing the user to navigate pages efficiently, remember their preferences and generally improve the user experience.

Some of the cookies issued by the server will only last for the duration of the session and will expire when you close your browser.

Other cookies are used to remember when a user returns to a site and have a longer lifetime.

Most browsers accept cookies automatically. You can modify your browser setting to not accept, or to be notified each time a cookie is created.

You can find out more about cookies, including how to see what cookies have been set on your device and how to manage or delete them using different types of browsers, at www.allaboutcookies.org.

Cookies can also be enabled, disabled or deleted through your browser. To do this, follow the instructions in your browser (usually located in the “Help”, “Tools” or “Edit” options). Deactivating a cookie or category of cookies does not delete the cookie from your browser; you need to delete it manually.

By blocking or deleting cookies used by DHM, you may not be able to enjoy the full functionality of the website.

We use the following cookies:

Generic Cookies

Name

PHPSESSID
simpleab-index

cookietest

_ga

_gid

GC_AB

_gcsession

gc_ckWarn

bgCookie

Provider

Guestcentric

Guestcentric

Guestcentric

Google

Google

Guestcentric

Guestcentric

Guestcentric

Guestcentric

Purpose

Session management

A/B Testing

Website personalization

Google Analytics

Google Analytics

A/B Testing

Session management

Cookie acceptance

User preferences

Expires

Session

2 months

Session

2 years

24 hours

Session

Session

1 years

1 years

Shopping Recovery Cookies

Name
GCShoppingVisits_<GCID>

GCShoppingRecovery_<GCID>_EXIT

Provider

Guestcentric

Guestcentric

Purpose

Count visits to control popup display

Display shopping recovery

Expires

1 month

1 month

Shopping Activation Cookies

Name

GCShoppingActivations_<GCID>
_BEST_RATE_ GUARANTEED

GCShoppingActivations_<GCID>
_LAST_ RESERVATION

GCShoppingActivations_<GCID>
_LAST_ RESERVATIONS

GCShoppingActivations_<GCID>
_LAST_WEEK_STAYS

GCShoppingActivations_<GCID>
_BEST_OFFER

GCShoppingActivations_<GCID>
_TODAY_BEST_ OFFER

GCShoppingActivations_<GCID>
_TODAY_BEST_ OFFER

Provider

Guestcentric

Guestcentric

Guestcentric

Guestcentric

Guestcentric

Guestcentric

Guestcentric

Guestcentric

Guestcentric

Guestcentric

Purpose

Popup display control

Popup display control

Popup display control

Popup display control

Popup display control

Popup display control

Popup display control

Popup display control

Popup display control

Popup display control

Expires

10 minutes

10 minutes

10 minutes

10 minutes

10 minutes

10 minutes

10 minutes

10 minutes

10 minutes

10 minutes

Guestcentric Application Cookies

Name

PHPSESSID

_gc_tmstp

TawkConnectionTime

Tawk_55d60a87fb34b9810657e9e2

_cfduid

_tawkuuid

_ga

_gid

Provider

Guestcentric

Guestcentric

Guestcentric

Guestcentric

Guestcentric

Guestcentric

Guestcentric

Guestcentric

Purpose

Session management

Session management

Online chat support tool

Online chat support tool

Online chat support tool

Online chat support tool

Tracking

Tracking

Expires

Session

Session

Session

6 months

1 year

6 months

2 years

24 hours

C. User rights
(Data subjects)

C.1. Right to information

C.1.1. Information provided to the user by dhm (when data are collected directly from the user)

• The identity and contact details of the DHM controller and, if applicable, its representative;
• The purposes of the processing for which the personal data are intended and, where applicable, the legal basis for the processing;
• If the data processing is based on the legitimate interests of DHM or a third party, a statement of such interests;
• Where applicable, the recipients or categories of recipients of the personal data;
• Where applicable, an indication of whether the personal data will be transferred to a third country or an international organisation, and whether or not there is
an adequacy decision adopted by the Commission to object to the processing and the right to data portability;
• If the processing of data is based on the User’s consent, the right to withdraw consent at any time, without compromising the lawfulness of the processing carried out on the basis of the consent previously given;
• The right to file a complaint with the CNPD or another supervisory authority;
• Indication of whether the provision of personal data is a legal or contractual obligation or a necessary requirement for entering into a contract, as well as whether the data subject is obliged to provide the personal data and the possible consequences of failure to do so;
• Where applicable, the existence of automated decisions, including profiling, and information concerning the logic involved and the significance and expected consequences of such processing for the data subject.
• In the event that User Data is not collected directly by DHM from the User, in addition to the information mentioned above, the User is additionally informed about the categories of personal data subject to processing, as well as about the origin of the data and, if applicable, whether they come from publicly accessible sources.
• Where DHM intends to further process User Data for a purpose other than that for which the data was collected, prior to such processing DHM will provide the User with information about that purpose and any other relevant information as set out above.

C.1.2. Procedures and measures implemented with a view to fulfilling the right to information.

The information referred to in C.1.1 is provided in writing (including by electronic
means) by DHM to the User prior to the processing of the personal data in question. Under the terms of the applicable law, DHM is not obliged to provide the User with the information mentioned in C.1.1 when and insofar as the User is already aware of it.
The information is provided by DHM free of charge.

C.2. Right of access to personal data

DHM guarantees the means to allow the User access to his/her Personal Data.

The User has the right to obtain confirmation from DHM as to whether or not personal data concerning him or her are being processed and, where applicable, the right to access his or her personal data and the following information:

• The purposes for which the data is being processed;
• The categories of personal data concerned;
• The recipients or categories of recipients to whom the personal data have been or will be disclosed, in particular recipients established in third countries or belonging to international organisations;
• The retention period of the personal data;
• The right to request DHM to rectify, erase or limit the processing of personal data, or the right to object to such processing;
• The right to file a complaint with the CNPD or another supervisory authority;
• If the data has not been collected from the User, the available information on the origin of such data;
• The existence of automated decisions, including profiling, and information concerning the logic involved and the significance and expected consequences of such processing for the data subject;
– The right to be informed about the appropriate safeguards associated with the transfer of data to third countries or international organisations.
Upon request, DHM will provide the User with a copy of the User Data that is being processed free of charge. The provision of further copies requested by the User may incur administrative costs.

C.3. Right to rectification of personal data

The User has the right to request the rectification of his/her Personal Data at any time, as well as the right to have his/her incomplete Personal Data completed, including by means of an additional declaration.

In the event of data rectification, DHM shall notify each recipient to whom the data have been transmitted of the rectification, unless such notification proves impossible or involves a disproportionate effort for DHM.

C.4. The right to the erasure of personal data (“right to be forgotten”)

The User has the right to obtain, from DHM, the erasure of their data when one of the following grounds applies:
• The User Data is no longer necessary for the purpose for which it was collected or processed;
• The User withdraws the consent on which the processing of the data is based and there is no other legal ground for such processing;
• The User objects to the processing under the right to object and there are no overriding legitimate interests justifying the processing;
• If the User Data is unlawfully processed;
– If the User Data must be deleted in order to comply with a legal obligation to which DHM is subject;
Under applicable legal terms, DHM is under no obligation to delete User Data to the extent that the processing is necessary to comply with a legal obligation to which DHM is subject or for the purposes of asserting, exercising or defending a right of DHM in legal proceedings.
In the event of data erasure, DHM shall notify each recipient/entity to whom the data have been transmitted of the respective erasure, unless such notification proves impossible or involves a disproportionate effort for DHM.

Where DHM has made User Data public and is required to erase it under the right to erasure, DHM undertakes to
ensure that reasonable steps, including technical measures, taking into consideration the available technology and the cost of their implementation, are taken to inform those who effectively process the personal data that the User has requested them to delete links to such personal data and copies or reproductions thereof.

C.5. Right to limitation on processing of personal data

The User has the right to obtain from DHM a limitation on the processing of the User Data if one of the following situations applies (limitation consists of inserting a mark in the personal data stored with the aim of limiting their processing in the future)
• If the user contests the accuracy of the personal data, for a period that allows DHM to verify their accuracy;

• If the processing is unlawful and the User opposes the erasure of the data and instead requests the limitation of its use;

• If DHM no longer needs User Data for processing purposes, but such data is required by the User for the purposes of asserting, exercising or defending a right in legal proceedings;

• Where the User has objected to the processing, until it is ascertained that DHM’s legitimate grounds prevail over those of the User.

Where User Data is subject to limitation, it may, with the exception of storage, only be processed with the consent of the User or for the establishment, exercise or defence of legal claims or for the protection of the rights of another natural or legal person, or for reasons of public interest as provided by law.
The User who has obtained a limitation on the processing of their data in the above-mentioned cases will be informed by DHM before the limitation on processing is cancelled.

In the event of limitation of data processing, DHM shall communicate to each recipient to whom the data have been transmitted the limitation, unless such communication proves impossible or involves a disproportionate effort for DHM.

C.6. Right to the portability of personal data

The User shall have the right to receive the personal data concerning him or her that he or she has provided to DHM, in a structured, commonly used and machine-readable format, and the right to transmit such data to another controller, if:

• The processing is based on consent or on a contract to which the User is a party;
And

• The processing is carried out by automated means.

The right to portability does not include inferred data or derived data, i.e., personal data that are generated by DHM as a consequence or result of the analysis of the data subject to processing.
The User has the right to have personal data transmitted directly between controllers, where technically possible.

C.7. Right to object to processing

The User shall have the right to object at any time, for reasons relating to his/her particular situation, to the processing of personal data concerning him/her which is based on the exercise of legitimate interests pursued by DHM or when the processing is carried out for purposes other than those for which the personal data were collected, including profiling, or when the personal data are processed for statistical purposes.
DHM shall cease processing the User Data unless it provides compelling legitimate grounds for such processing which override the interests, rights and freedoms of the User, or for the purposes
of declaring, exercising or defending a right of DHM in legal proceedings.
When User Data is processed for direct marketing purposes, the User has the right to object at any time to the processing of data concerning him or her
for the purposes of such marketing, which covers profiling insofar as it relates to direct marketing. If the User objects to the processing of his or her data for direct marketing purposes, DHM shall cease processing the data for that purpose.
The User also has the right not to be bound by any decision
taken exclusively on the basis of automated processing, including
profiling, which produces effects on their legal sphere or significantly affects them in a similar way, unless the decision:
• is necessary for the conclusion or implementation of a contract between the User and DHM;
• is authorised by legislation to which DHM is subject; or
• is based on the explicit consent of the User.

C.8. Procedures for the exercise of user rights

The right of access, the right of rectification, the right of erasure, the right to limitation, the right to portability and the right to object may be exercised by the User by contacting the DHM Group Data Protection Officer, via email at dpo@discoveryportugal.com.

DHM will respond in writing (including by electronic means) to the User’s request within a maximum period of one month from receipt of the request, except in cases of special complexity, in which case this period may be extended to two months.

If requests submitted by the User are manifestly unfounded or excessive, in particular due to their repetitive nature, DHM reserves the right to charge administrative costs or refuse to grant the request.

C.9. Breaches of personal data

In the event of a data breach and insofar as such breach is likely to entail a high risk to the rights and freedoms of the User, DHM undertakes to communicate the personal data breach to the User concerned within 72 hours of becoming aware of the incident.

In legal terms, communication to the User is not required in the following cases:

• Where DHM has applied appropriate protection measures, both technical and organisational, and those measures have been applied to the personal data affected by the personal data breach, especially measures that render the personal data unintelligible to any person not authorised to access it, such as encryption;

• Where DHM has taken subsequent measures that ensure that the high risk to the rights and freedoms of the User is no longer likely to materialise; or

• In the event that communication to the User would involve a disproportionate effort for DHM. In such a case, DHM will make a public communication or take a similar measure by which the User will be informed.

D. Email confidentiality

The emails sent by DHM and all their attachments are CONFIDENTIAL and are intended solely for those listed as recipients. If you read any message and are not the intended recipient, you are notified that any use, distribution, forwarding or other disclosure, printing or copying of the message to another party is expressly prohibited under applicable law. If you have received an email in error, we request that you notify us immediately to email dpo@discoveryportugal.com and dispose of it immediately. DHM – Discovery Hotel Management declines all responsibility for the content of altered or forged emails.

E. Final part

E.1. Changes to the privacy policy

all the time. In event of changes to the Privacy Policy, the date of the last change, available at the top of this page, is also updated.

If the change is substantial, a notice will be posted on the Site.

E.2. Applicable law and jurisdiction

The Privacy Policy, as well as the collection, processing or transmission of User Data, are governed by the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 and by the laws and regulations applicable in Portugal.

Any disputes arising from the validity, interpretation or execution of the Privacy Policy, or which are related to the collection, treatment or transmission of User Data, shall be submitted exclusively to the jurisdiction of the judicial courts of the district of Lisbon, without prejudice to the applicable mandatory legal rules.