Home - Privacy Policy

Privacy Policy


Data Controller

Visit Cascais is a website of the Associação Turismo de Cascais, Visitors & Convention Bureau, which complies with Regulation No. 2016/679 of April 27th, 2016, and Law No. 58 of August 8th, 2019, and is supervised by the Portuguese authority CNPD (National Data Protection Commission). The Privacy and Data Protection Policy of Visit Cascais provides information on how it processes personal data, with the domain visitcascais.com and the URL www.visitcascais.com. The Privacy and Data Protection Policy of Visit Cascais establishes the purposes of processing personal data and how it shares it with third parties or subcontractors. If you have any questions regarding this Privacy and Data Protection Policy, including requests to exercise your legal rights, please contact the Data Protection Officer at rgpd@visitcascais.com.


Visit Cascais’ Data

This website is operated under the designation Associação Turismo de Cascais, Visitors & Convention Bureau (hereinafter Visit Cascais), a limited liability company headquartered at Rua Padre Moisés da Silva, Loja 54, Mercado da Vila 2754-529 Cascais, Portugal, registered with the Cascais Commercial Registry, under number PT 506 466 876, which is also the company’s VAT.


Your Data and Your Visits to the Visit Cascais Website

The information or data provided by the customer will be processed in accordance with the provisions of the Privacy Policy. By using the Visit Cascais website, the customer consents to the processing of such information and data and declares that all information or data provided to us is true and corresponds to reality.


Visit Cascais' Commitment

The protection of personal data is a priority for Visit Cascais, which is why we are committed to only processing your personal data that is strictly necessary to provide you with the best service, ensuring transparency in information and applying the best practices in the security and protection of the personal data domain. Whenever personal data is processed by contracted entities, we will require them to provide the same level of security and privacy assurance regarding personal data protection. We want to earn our customers' trust and ensure that they feel their personal data is secure with us, as we are always committed to protecting the privacy of data subjects, assuming our responsibilities regarding the protection of personal data with great seriousness and dedication. In case of doubt regarding the processing of personal data, we are available for any clarification.


What Personal Data Does Visit Cascais Use and What is the Purpose of its Processing?

 Visit Cascais undertakes to only process personal data that is strictly necessary to provide our services with the highest quality. Examples of personal data processed include: name, email, address, and tax identification number (NIF).


Creation of a Visit Cascais Online Account

 When creating an online account at www.visitcascais.com, your personal identification data (name and NIF) and contact data (email and address) will be processed. The processing of this personal data is necessary for you to enjoy the functionalities of the Visit Cascais online account, namely, to track services, make online purchases, and access your purchase history. Your personal data will be anonymized 5 years after your last login.


Direct Marketing

We may send you informative communications via email about new features, campaigns and offers, discounts, or benefits from Visit Cascais, requiring the use of identification data (name) and contact data (email). At any time, you may withdraw your consent to receive such communications through each communication we send you. Your personal data will only be stored for as long as you maintain your consent to receive these communications. If you revoke your consent for this processing, your personal data will be deleted. Personal data will be anonymized 5 years after your last login.


Deliveries

 Whenever you purchase items, identification data (name) and contact data (address and email) will be requested so that we can inform you when the order is available for shipment, proceed with the delivery to your address, or any other requested location. If it’s impossible to deliver an order, you will be informed of the location of the order and what to do for it to be delivered again. If you are not at the delivery location at the agreed time, please contact Visit Cascais to schedule the delivery for another day. Please note that if the product is not delivered within the stipulated time frame, expenses related to product storage and new delivery attempts may be charged.


Transaction Management

Your tax identification number will be requested in your purchases to record it and subsequently transmit it to the Tax and Customs Authority (Autoridade Tributária e Aduaneira). Regarding payment methods and transactions, these will be handled by the company Ifthenpay, Lda, an institution supervised and registered with the Bank of Portugal under No. 8707 with VAT No. PT510 450 024.


Customer Support

To provide you with the best assistance and support service, it will be necessary for you to provide identification data (name) and contact data (email). This way, it will be possible to identify you, analyse your orders, and provide you with a response in a timely manner. You can contact us via email at rgpd@visitcascais.com.


Suggestions and Complaints

You may, at any time, make suggestions or complaints regarding the Visit Cascais service, indicating identification data (name) and contact data (email).


How Long Does Visit Cascais Keep Your Personal Data?

 Visit Cascais only keeps personal data for the period strictly necessary to fulfil the aforementioned purposes, within legal limits. Once the defined storage period has expired, Visit Cascais undertakes to delete, destroy, or anonymize your personal data. With the exception of transaction data, which by legal requirement, must be kept for a period of 12 years, personal data will generally be deleted as soon as order requests have been fulfilled and pending issues have been clarified and resolved. In case of doubt or to obtain additional information regarding the storage periods of your personal data, you can contact Visit Cascais at the following email address: rgpd@visitcascais.com.


With Whom Is Personal Data Shared?

In certain cases, personal data may be disclosed, strictly as necessary, to entities providing services to Visit Cascais, within the scope of home deliveries, support services, and marketing actions. If personal data needs to be shared with entities located outside the European Economic Area, we ensure that they are required to comply with European legislation regarding the protection of personal data. Visit Cascais transmits your personal data to the Tax and Customs Authority (Autoridade Tributária e Aduaneira), by legal requirement. Under no circumstances will your personal data be shared with other companies or brands for commercial purposes.


What Are a Data Subject's Rights and How Can They Exercise Them?

As a rule, the data subject has the following rights regarding data protection:

  • The right to request access to personal data concerning them;
  • The right to demand rectification or erasure and to be forgotten if permitted by law;
  • The right to restrict processing, if they believe that the data is incomplete or inaccurate or if they consider the processing to be unlawful;
  • The right to object, at any time, for reasons related to their particular situation, to the processing of personal data, except in cases where the data controller presents compelling legitimate grounds;
  • The right not to be subject to automated decision-making; and,
  • The right to data portability.

If consent has been requested from a data subject for a specific processing of their personal data, it may be withdrawn at any time. To exercise this right, you must do so through the following email: rgpd@visitcascais.com. Your request will be carefully analysed, assessing its legitimacy and relevance, and we are committed to responding in a timely manner. If necessary, you may also submit a complaint with the National Data Protection Commission (CNPD).


Cookies

Visit Cascais uses cookies that allow for the improvement of performance and browsing experience, increasing response speed and efficiency, and eliminating the need to repeatedly enter the same information. The use of cookies will help recognize the devices used during visits to the Visit Cascais website, but also, is essential for the proper functioning of navigation. The cookies used do not collect personal information that allows you to be identified, and only store generic information, namely, the form and/or location of access to the Visit Cascais website, as well as how you use it. Cookies only retain information related to your preferences as a user.


Navigation Cookies:

These are temporary cookies that remain in the browser's cookie file until the webpage is abandoned, so no record is left on the user’s hard drive. The information collected by these cookies is only used to analyse traffic patterns on the website. Ultimately, this allows for improvement on the content and usability of the website.


Analytics Cookies:

These allow quantifying the number of users, the volume of traffic, and statistically analysing the quality of the service provided by Visit Cascais. Navigation on the Visit Cascais website will be evaluated to improve the provision of Visit Cascais’ products and services available to you. If desired, you can disable this setting in your browser, although this may limit access to certain areas of the website or receiving personalized information.


Cookies Used in Visit Cascais Necessary Cookies:

  • Cookie: PHPSESSID

    • Cookie Purpose: This cookie is native to PHP applications. The cookie stores and identifies the unique session ID of a user to manage user sessions on the website. The cookie is a session cookie and will be deleted when all browser windows are closed.
    • Duration: Session

  • Cookie: cookieyes-consent

    • Cookie Purpose: CookieYes sets this cookie to remember users' consent preferences so that their preferences are respected on subsequent visits to this website. It does not collect or store any personal information about website visitors.
    • Duration: 1 year

Analytics Cookies:

  • Cookie: ga_

    • Cookie Purpose: Google Analytics sets this cookie to store and count page views.
    • Duration: 1 year, 1 month, and 4 days

  • Cookie: ga

    • Cookie Purpose: Google Analytics sets this cookie to calculate visitor, session, and campaign data and track website usage for the website's analytical report. The cookie stores information anonymously and assigns a randomly generated number to recognize unique visitors.
    • Duration: 1 year, 1 month, and 4 days


Removing Browser Cookies

In the browser’s Help menu, the customer can manage the use of cookies and other similar technologies. As indicated in the message visible on this page, access to the Visit Cascais online store implies the use of cookies and disabling them may affect navigation on the site. For more information, it is suggested to consult the information provided in each of the browsers or articles with specific information on the subject (e.g., https://www.allaboutcookies.org/).


How Is Personal Data Protected?

Visit Cascais has a variety of information security measures aligned with the best national and international practices to protect personal data, including technological controls, administrative, technical, and physical measures, and procedures that ensure the protection of your personal data, preventing its misuse, unauthorized access and disclosure, loss, unauthorized or inadvertent alteration, or unauthorized destruction. The same commitment to continuous improvement is assumed regarding information security, which guides our daily activity.

Among others, Visit Cascais highlights the following privacy and security measures:

  • Restricted access to personal data;
  • Secure storage and transmission of personal data;
  • Protection of information systems through devices that prevent unauthorized access to personal data;
  • Implementation of mechanisms that ensure the integrity and quality of personal data;
  • Permanent monitoring of information systems, with the aim of preventing, detecting, and deter the misuse of personal data;
  • Redundancy of storage, processing, and communication equipment for personal data to prevent loss of availability.


Updates to This Privacy Policy

This Privacy Policy may be revised and updated, always ensuring the availability of the necessary information.


Last update: 27/05/2024