Privacy Policy
The commercial company SOTAL – Sociedade de Gestão Hoteleira, S.A. (hereinafter referred to as “Company”), responsible for operating catering establishments under the name The One, undertakes to protect the personal data of its customers and to respect their privacy in accordance with the Regulation ( EU) 2016/679 (General Data Protection Regulation – GDPR).
This Privacy Policy explains:
- What personal information do we collect and process and why do we do so;
- How we use this information;
- The options we offer, including how to access and update information.
1. Data Controller
The controller of your personal data is SOTAL – Sociedade de Gestão Hoteleira, S.A., with registered office at Hotel Tivoli Carvoeiro – Vale Covo 8400-500 Carvoeiro Lga. For any questions related to this policy, you can contact carvoeiro@tivoli-hotels.com.
2.Legal Basis for the Collection and Processing of Personal Data
By accessing and using our website, its content and/or our services, the user freely and expressly accepts and consents to their personal data being collected and processed by the Company under the terms set out in this Privacy Policy. Data collection may occur, for example, when:
- Subscribe to our newsletter by email or through our website;
- Request registration or participate in events organized by the Society;
- You use our booking, ordering services or interact with our websites.
3. Types and Purposes of Data Collected
We may collect the following types of personal data based on interactions you have with our restaurant:
| Type of Information | Description | Purpose | Legal Basis |
| Identification Information | Name, email, telephone, address (if applicable). | Manage reservations, answer questions, send personalized marketing campaigns. | Execution of contract, Consent, Legitimate interest. |
| Reservation Data | Date, time, number of people, food preferences. | Manage reservations and offer personalized service. | Execution of contract. |
| Payment Details | Credit/debit card information (via secure gateway). | Process payments for reservations or orders. | Execution of contract, Compliance with legal obligation. |
| Navigation Data | IP address, cookies, behavior on the website. | Analyze website traffic, personalize experience, and target advertising. | Consent (for cookies), Legitimate Interest. |
| Marketing Preferences | Interactions with campaigns and newsletters. | Sending personalized communications. | Consent. |
4. Purposes of Data Processing
We collect personal data for the following purposes:
- Reservation Management: To process and manage reservations.
- Communication and Marketing: Send personalized promotional communications and advertising campaigns on platforms such as Google Ads, META (Facebook and Instagram), and offline channels such as SMS and postal mail.
- Targeted Advertising and Remarketing: We use data to create personalized audiences and target ads through cookies and external platforms (Google Ads, META), offering relevant ads based on user behavior on the site.< /li>
- Customer Service: Respond to questions or requests for information.
- Site Improvement: Analyze user behavior to improve navigation.
- Payment Processing: Facilitate the processing of secure financial transactions.
5. Data Sharing with Third Parties
We only share your data with service providers acting on our behalf, such as:
- Booking platforms: To manage and confirm your reservations.
- Email marketing and advertising services: For sending campaignshas personalized (Google Ads, Meta).
- Payment service providers: To process payments securely.
- Integration with CRM and Marketing Platforms: To manage omnichannel campaigns (online and offline), ensuring a personalized experience at all touchpoints.
Personal data may be shared with third parties only when necessary to comply with legal or judicial obligations.
6.Existence of Automated Decisions
The Company’s website may automatically collect information about your visit, such as IP address, interactions and page views (“pageviews”), for the purposes of navigation analysis and targeted advertising.
7. Cookies and Similar Technologies
We use cookies on our website to improve your user experience and for marketing purposes, including remarketing and personalized advertising. The cookies we use include:
- Essential Cookies: Necessary for the basic operation of the website.
- Analytics and Marketing Cookies: Used to track user behavior and serve personalized ads through platforms such as Google and META.
You can manage or disable cookies directly in your browser settings. For personalized advertising, you can refuse the use of cookies by following the advertising platforms’ instructions.
8.Security Measures
The Company adopts appropriate technical and organizational measures to ensure the security of personal data against unauthorized access, loss, destruction, alteration or improper disclosure. However, we warn that the Internet is not a completely secure medium and that the data transmitted may be subject to vulnerabilities.
9. Data Retention Period
Personal data is only retained for as long as necessary for the purposes described in this policy, or as required by law. The specific period depends on the type of data and the purpose of processing.
| Purpose | Retention Period |
| Reservation Management | Until the reservation is fulfilled or in accordance with tax obligations (5 years). |
| Marketing and Newsletters | Until consent is revoked or after 5 years of inactivity. |
| Payment Details | For the period necessary to comply with legal obligations, such as taxation (up to 10 years). |
| Cookies and Browsing Data | Until consent is revoked or depending on browser settings. |
10.Rights of Data Subjects
Under the GDPR, you have the right to:
- Access your personal data and request a copy.
- Correct or delete incorrect or outdated personal data.
- Limit processing or object to the use of your data for marketing.
- Revoke consent at any time, without prejudice to the lawfulness of processing based on previous consent.
To exercise any of these rights, contact carvoeiro@tivoli-hotels.com.
11. Changes to Privacy Policy
We reserve the right to update this privacy policy. Changes will be posted on our website, and your continued use of the website after the changes constitutes acceptance of the new policy.
TERMS AND CONDITIONS
1. Acceptance of Terms
By using the The ONE website, you accept these Terms and Conditions. If you do not agree with them, please do not use our services.
2. Available Services
Our website offers services such as online reservations, take-away orders, and subscription to newsletters. All services are subject to availability and confirmation by the restaurant.
3. Reservation Policy
Reservations made online or by telephone are confirmed via email or SMS. The restaurant reserves the right to cancel or change reservations, notifying the customer as far in advance as possible.
4. Cancellation Policy
To cancel or change your reservation, we ask that you contact us at least 24 hours in advance.
5. Intellectual Property
All content on the website, including texts, images, logos and graphics, is the property of The ONE and protected by copyright. Unauthorized reproduction is prohibited.
6. Limitation of Liability
We are not responsible for any damages resulting from inappropriate or incorrect use of the our website or our services, except as required by law.
7. Changes to Terms
We reserve the right to modify these Terms and Conditions at any time. The changes will come into force after they are published on the website, and your continued use of the website will be considered acceptance of the new terms.
