en
EN PT
Quinta Vale da Roca
en
Book Online
  • Home
  • Privacy Policy

Privacy Policy

Last updated: 14 October 2025

Who we are (Data Controller)

Quinta Vale da Roca (“we”, “us”, “our”) operates https://www.valedaroca.com. We promote wine tours and allow visitors to book tours and overnight stays.

Registered address: Rua Casal Farripas, nº 8 Azóia, Azóia 2705-001, Colares, Sintra Portugal

Email: info@valedaroca.com

Scope

This Policy explains how we collect, use, share, and protect personal data when you visit our website, request information, or make a booking. It applies globally.

Personal data we collect

Data you provide

  • Booking & stay details: name, email, phone, country, dates, party size, preferences, special requests (e.g., dietary or accessibility).
  • Communications: emails, form submissions, feedback, reviews.
  • Marketing choices: newsletter opt-in/opt-out.
  • Account details (if you create one): password, preferences.

Data collected automatically

  • Technical/usage data: IP address, device/browser, operating system, language, referrer, pages viewed, time on page.
  • Cookies & similar tech: essential (for the site/booking engine), analytics, and – only with consent – marketing.

Sensitive data

We don’t intentionally ask for special-category data. If you share dietary/accessibility details that reveal such data, we use them only as needed to provide the requested service.

Why we use your data (purposes) and legal bases
  • Provide and manage bookings, stays, and tours (confirmations, updates, pre-arrival info). Legal basis: Contract (GDPR Art. 6(1)(b)).
  • Customer support and operations (modifications, cancellations, service quality, security). Legal basis: Legitimate interests (Art. 6(1)(f)) and/or Contract.
  • Marketing you opt into (newsletters about tours, events, seasonal offers). Legal basis: Consent (Art. 6(1)(a))—you can withdraw any time.
  • Analytics & non-essential cookies (to improve our site/experiences). Legal basis: Consent.
  • Legal, tax, and compliance (accounting, responding to lawful requests). Legal basis: Legal obligation (Art. 6(1)(c)).

We do not sell wine online. Any marketing we send concerns tours, experiences, events, and accommodation.

Cookies and analytics
  • Essential cookies are required for site/booking functions.
  • Analytics/marketing cookies run only if you consent via our Cookie Banner/Settings (footer link).

We configure analytics with privacy safeguards (e.g., IP truncation where available)

Who we share data with (processors/recipients)
  • Booking engine / PMS: guestcentric.net (manage reservations).
  • Email & messaging: Google (transactional emails; newsletters with consent).
  • Hosting/CDN & security: [Provider].
  • Analytics providers: Google.
  • Professional advisors & authorities where required by law.

These providers are obligated to protect your information and use it solely for the services they provide to us.

International data transfers

If we transfer data outside your country or the EU/EEA, we use appropriate safeguards (e.g., EU Standard Contractual Clauses, and supplementary measures where needed). You can request information about such safeguards at info@valedaroca.com.

Retention
  • Booking/guest records: typically 10 years for accounting/tax (or as required by local law).
  • Support communications: up to 3 years after last contact.
  • Marketing data: until you unsubscribe or after 2 years of inactivity.
  • Cookies: per their defined lifetimes.
Your privacy rights

Your rights depend on where you live and applicable law. Wherever possible, we apply these core rights to everyone:

  • Access your data; rectify inaccuracies; erase data; restrict or object to certain processing; data portability; and withdraw consent (where processing relies on consent).

To exercise rights, contact info@valedaroca.com. We may verify your identity.

Children & age

Our services are for adults. We don’t knowingly collect children’s data for marketing. Alcohol-related experiences may be age-restricted under local law and our house rules.

Security

We use technical and organizational measures (TLS encryption, access controls, least-privilege, staff confidentiality). No system is 100% secure.

Regional disclosures

EU/EEA (including when we target EU visitors):

  • Controller: see section 1.
  • Legal bases: see section 4.
Third-party links

Our site may link to third-party sites (tourism boards, maps, social media). Their privacy terms apply to those sites.

Changes to this Policy

We may update this Policy due to legal or service changes. We’ll post the revised version with a new “Last updated” date and, where appropriate, notify you on-site or by email.

Contact

Questions or requests about this Policy or your data?

Email: info@valedaroca.com