Privacy, Data Protection and Cookies Policy

Learn more about our Privacy, Data Protection and Cookies Policy

This Privacy Policy establishes how ‘AngrA, Apartamentos Turísticos de 4*’ uses the personal data of its clients, both within the scope of the hotel and reservation services made available through the website, and the scope of its marketing actions.

In compliance with Regulation (EU) no. 679/2016, of April 27, the processing of personal data collected for the purposes of reservations and/or on the consent form for commercial and marketing purposes of ‘AngrA+, Apartamentos Turísticos de 4*’ is the responsibility of Xtémico, Lda, legal person number 507846982, with share capital of 116,500.00 €, registered office in Lisbon, holder of a tourist operating license and hereinafter identified as AngrA+.

AngrA+ respects the privacy of its customers and is committed to protect the personal data that each customer chooses to share. The current policy sets out the following:

AngrA+ is the entity responsible for controlling all personal information collected about you and used for the purposes set out in the Personal Data Protection Act, which transposes into Portuguese law Dir. NO. 95/46/EC. The customer has the right to make a complaint to the National Data Protection Commission, which is the Data Protection Supervisory Authority.

The designated data protection officer is available by contacting:

  • Rua do Pisão, 88, 9700-152 Angra do Heroísmo – Terceira – Portugal
  • geral@angraplus.com

Personal data may be collected about the customer when they contact AngrA+ through any channel (reception, telephone contact, email, website or social networks) or make a reservation for accommodation, either directly or indirectly through tourist partners.

Specifically, the following information may be collected:

  • basic information, such as name, age, gender, ID card and/or passport and expiration date and country of issue, place of birth and place of residence;
  • contact details – address, email address and telephone number;
  • financial: credit card data, detailed expenses and transaction history with AngrA+;
  • Information you provide about your booking preferences, as well as those of your companions or contracted services.

Personal data will need to be processed in order for us to conclude a hosting contract. It may be used for the following purposes:

  • Providing personalized services, conveying relevant information and supplying products related to your booking;
  • Contact with clients to manage reservations, changes or cancellations;
  • Verification of credit cards or other forms of payment, for accounting and invoicing purposes and to detect fraudulent activity;
  • Administrative or legal purposes: statistical analysis, systems testing, surveys, maintenance or as part of a dispute or claim.
  • Compliance with obligations to the Immigration and Borders Service or similar authority;
  • Protection of vital interests in the area of safety or health of the client or a third party;
  • Administration, prevention and detection of crimes, collaborating with police authorities, governmental or supervisory bodies and in accordance with current laws.

Your personal data will be kept for as long as deemed necessary for the purposes for which it was collected, taking into account legal and contractual obligations. However, the retention period of personal data may vary to comply with specific legal or contractual obligations, respond to complaints and requests for clarification or to protect the legal rights of AngrA+ in the event of litigation.

Strict security procedures are in place regarding both the storage and disclosure of the client’s personal data and its protection against damage, loss or accidental destruction. Access to personal data – including bank and credit card information – is restricted to employees who perform administrative and remote booking/collection management functions and their access is protected by personal, non-transferable passwords.

Personal data provided by email is kept on the email service provider’s server. Access to company e-mails is restricted to employees who carry out administrative and reservations management duties.

It is the customer’s sole responsibility to communicate credit card details by email or telephone, as there is no means of guaranteeing their secure transmission and reception. However, AngrA+ guarantees to delete all e-mails containing credit card data once the information has been collected and entered into the booking system.

The data provided through the website is protected using SSL (Secure Socket Layer) technology. SSL is the industry standard method for encrypting information and credit card data so that it can be transferred securely over the Internet.

AngrA+ never assumes the role of transmitter of personal data to other jurisdictions. However, personal data may be shared with the following entities for the purposes described in this Data Protection Policy:

  • Government services, police forces and regulatory authorities, in compliance with legal requirements;
  • Tour operators and travel agencies, through which you make your booking;
  • Credit and debit card companies that facilitate payments and carry out anti-fraud assessments, which may need information about the booking’s payment method in order to process it or guarantee the security of the transaction;
  • Lawyers, professional consultants, courts and police forces to enforce AngrA+’s legal rights in relation to the contract signed with you;
  • Professional accounting services in the context of out-sourcing.

In certain circumstances, by law and in relation to personal information, the customer has the right to:

  • Ask what personal information about you is registered and why;
  • Request access to your personal data, receiving a full copy of the records;
  • Ask for the information held about you to be corrected;
  • Request deletion of your personal data;
  • Request restriction of processing of personal information;
  • Request transfer of your personal data in a structured, electronic form to you or to another entity (known as the right to ‘data portability’);
  • Withdraw consent to the use of any of your personal information.

The exercise of any of these rights is free of charge. To do so, contact AngrA+ at info@angraplus.com.

Cookies are small pieces of data that a website stores in your browser and sends to the website with each request. They can be:

  • origin: stored by the site you are visiting and sent only to it.
  • from third parties: websites may use external services that can tell the browser to store its own cookies.

Depending on their durability, they can be

  • persistent: these are stored on your device and are not automatically deleted when you close your browser.
  • session: are deleted when you close the browser.

Persistent local storage and session local storage are mechanisms that allow you to store small amounts of data in your browser without this data being automatically sent to the server with each request.

To allow the site to remember your preferences (user session, language, etc.) over a period of time. This way, you don’t have to re-indicate yourself as you scroll through the site. They can also be used to collect statistical data on the browsing experience on the site.

This site mainly uses first-party cookies. However, for statistical purposes and for embedded content (videos, maps, among others), it uses systems originating from external organizations that may store cookies and other local data storage mechanisms.

To manage your usage options, they are grouped into three categories:

  • Necessary: essential for the site to function. It includes only what is necessary to guarantee the basic functionality and security of the site.
  • Performance and analysis (statistical): evaluates how the user interacts with the site as an anonymous user. They are used to help us understand how we can improve the services we provide. You can refuse cookies and other local storage mechanisms in this category.
  • Third-party content: a small number of pages on the site may contain video playback systems, maps and others (Google Maps, etc.) embedded in the page. As this is third-party content, even if they don’t place any cookies or other local storage mechanisms, we can’t guarantee that this situation won’t change in the future. You can therefore refuse cookies and other local storage mechanisms in this category.

When you access this site for the first time, you will be asked to choose your preferences for cookies and other local storage mechanisms. You can accept the three categories described or you can set your preferences differently.

In preference management you are given specific information about these mechanisms that can be stored in your browser. In the case of the “Performance and analysis” and “Third-party content” categories, you will be asked for express consent to use.

Your usage preferences will be valid for 180 days from your last visit. You can change your consent at any time by accessing the Settings.

If changes are made to this site that include modifying the set of cookies and other local storage mechanisms used, you will again be asked to set your usage preferences.

AngrA+ reserves the right to revise the Privacy and Data Protection Policy whenever it deems it appropriate. The last update was in December 2023.