We appreciate your trust in choosing Legendary Travel for your online booking requests and travel arrangements. Therefore, we will highly protect the privacy and confidentiality of your personal details.
The information we collect about you, if you agree to provide it, will allow us to contact you and send information to you about products and/or services where you have registered an interest.
- In providing us your information you thereby consent to us processing it for this purpose.
- We will not pass your information on to any third party.
For the purposes of the General Data Protection Regulation (GDPR) the data controller is Legendary Travel, Unipessoal, Lda.
We may collect and/or process the following data about you:
Information you provide to us including
- Information you provide to us by filling in forms on our website legendarymadeira.com (our site) or by entering into a contract with us, or by correspondence with us by email, letter, phone or other methods, which includes data provided by you by registering to use our site, commenting on blog posts, or by subscribing for newsletters or other information services, or by placing an order for products or services, and when reporting a problem with our site, or otherwise contacting us.
- Personally Identifiable Information (PII) – the information you give us may include: your name, address, email address, IP address, phone number, together with financial and credit card information. All of which is PII and subject to the GDPR.
Data Integrity and Security
All PII data we hold is protected by us in accordance with the Principles (Article 5) of the GDPR including the use of two-factor access control and encryption wherever possible.
We use reasonable efforts to maintain accurate information and use physical and technical safeguards to secure your data.
We use third-party providers to provide the technology required to provide our Services including hardware, networking, software and storage.
These facilities may be located outside of the European Economic Area. By submitting your personal information, you agree to this.
Although we will use reasonable efforts to secure network communications and our Sites, we cannot guarantee that the information submitted to, maintained on, or transmitted from our systems will be completely secure.
Information we collect about you with regard to your use of our website may be automatically collected and comprises the following:
- technical information – such as your; internet protocol (IP) address, login information, time zone, browser type/version with plug-in types/versions, device information (operating system and platform);
- information about your visit – such as your; Uniform Resource Locators (URL), including the date and time, products and services viewed/searched; site response times, downloads, errors, page visit time length, interaction (scrolling, clicks, mouse-overs), exit methods away from pages, phone numbers (i.e. used to call our customer service number), route to our site from other websites, with the address of other sites, or from search engine links to our site including search engine address and search term used.
Disclosure of personal details
Information we collect and receive may be disclosed to third parties in and out of the European Economic Area as (i) described in this policy, (ii) if you otherwise give your consent, or (iii) if the disclosure is legally required.
If you choose to email us through an email link the information your supply will not be stored by this website but will be sent to us in an email. Our email servers are provided by Microsoft. We consider Microsoft to be a third party data processor.
We use a number of third party data processors to process data on our behalf. These third parties may transfer your data outside of the country from which you are accessing this website including but not limited to the USA and, are EU-US Privacy Shield compliant. We have a data processing agreement/contract in place with each data processor.
We may disclose aggregated or anonymous information where reasonable steps have been taken to ensure the data does not contain your personally identifying information.
By completing a booking, you agree to receive an invitation email to complete our guest review form which we will promptly send to you after your stay of the hotel, which review can also be completed anonymously.
By completing the guest review, you agree that the completed guest review can be uploaded to our website at the relevant hotel information page for the sole purpose of informing (future) customers on the service (level) and quality of the relevant hotel.
We reserve the right to adjust, refuse or remove review forms at our sole discretion. The guest review form should be regarded as a survey and does not include any (further commercial) offers, invitations or incentives whatsoever.
If you no longer wish to receive a survey request email, you may opt out of receiving them by following the instructions included in each survey or reply via the unsubscribe webpage.
Newsletters and other information
We may offer you to subscribe to newsletters, hot-deals notification and other information, if you wish to subscribe for our newsletter or wish to receive other information from us (in respect of our, our affiliated companies’ or business partners’ products or services), we offer you the option to “Opt in” for this service.
If you no longer wish to receive our newsletter and other promotional communications, you may opt out of receiving them by following the instructions included in each newsletter or reply via the unsubscribe webpage.
Visitor’s registration and “cookies”
For (improvement of) our service and product, we use (temporary and persistent) cookies to track browsing behaviour and monitor and record the visits and use of our website(s).
Furthermore, we will record your IP address, browser type, Internet Service Provider (ISP) for fraud, misuse and criminal investigation purposes.
Please note that, in accordance with European personal data protection laws, strict security procedures are observed within Legendary Travel to prevent personal data misuse and unauthorized access.
For marketing analysis and quality improvement purposes, we collect on an anonymous basis various information with respect to the total amount of transactions, referring/exit pages, platform type, date/time stamp information and the number and location of clicks on a given page.
Please note that from time to time, we may use third party service providers to collect, monitor and report on this anonymous data.
Links to Third Parties
The use of any information or materials that you may access at these external sites is purely voluntary. You should not rely on the contents without independent and thorough review of the accuracy, completeness, effectiveness, timeliness and correct sequencing. These external sites may also refer to specific commercial products, processes, or services by trade name, trademark, service mark, manufacturer or otherwise. Unless Legendary Travel has provided explicit authority, such references in no way indicate our endorsement, recommendation or preference.
Protect and secure your credit card information
In order to protect the personal data provided to us, we have implemented and use appropriate business systems and procedures. For example, your credit card information is transmitted to us through a secure server protocol, which encrypts all your personal and credit card details. The encryption method used is the industry standard “Secure Socket Layer” (SSL) technology. Furthermore, we have implemented and use security procedures and technical and physical restrictions for accessing and using personal information. Only authorized employees are permitted to access personal information for performing their duties in respect of our services.
Our server and network are protected by firewalls against unauthorized access and we have intrusion detection systems that monitor and detect unauthorized (attempts to) access to or misuse of our servers.
Your credit card details will be kept by us up to maximum 10 days after a booking is made. After that period, your credit card data will be deleted.
Control over your data
You always have the right to review the personal data you have stored with us. You can request your personal data by emailing us at firstname.lastname@example.org Please state ‘request personal data’ in the subject line of your email. If your personal data is incorrect, we will change it upon your request.
You can also ask Legendary Travel to remove your personal data from its database by sending us an email to the aforementioned email address.
Legendary Travel encourages parents and guardians to spend time with their children online, and to be familiar with the sites their children visit.
No information is permitted to be either submitted to, or posted on, our sites by users under the age of 13. Legendary Travel relies on our users to be truthful in responding to the question of age.
Legendary Travel will not provide any personally identifying information about users under the age of 13, regardless of its source, to any third party for any purpose whatsoever without first requesting parental permission.
When does Legendary Travel send you emails?
After you make a booking, you will receive a confirmation message with all the information about your booking. You may take this confirmation to the hotel as proof of the reservation.
Furthermore, after your stay at the hotel, we will send you the guest review survey, which we appreciate to be filled in by you. Your completed guest review form may be uploaded onto the relevant hotel’s information page on our website for the sole purpose of informing future customers of your opinion of the service level and quality of the hotel.
To the extent that you have “Opted in” you may receive from us and from time to time our newsletter or other information.
Data Controller: Legendary Travel, Unipessoal, Lda.
Address: Rua Nova do Vale da Ajuda, Edifício Golden Star, Bloco B, 41, 9000-720 Funchal, Madeira - Portugal
Telephone: +351 291 646 000
If you have any suggestions or remarks about this privacy statement, please send an email to email@example.com
We are at all times entitled to change the way we collect, transmit and process the personal information and such other information as we may deem necessary.
This Privacy Statement may therefore be amended from time to time in order to reflect the latest changes.
Issue Date: 10th March 2019