Last Updated: May 2, 2025

1. Our Commitment to Protecting Your Privacy

At Victoria Golf Resort & Spa, we are dedicated to providing you with exceptional experiences amidst the serene beauty of Vilamoura. Your trust is paramount to us, and safeguarding your personal data is a responsibility we take seriously. This charter outlines our commitments to you and details how we handle your personal information.

2. Scope of Application

In this charter, “we,” “us,” and “our” refer to:

• Victoria Golf Resort & Spa, located at Avenida dos Descobrimentos, 8125-309 Vilamoura, Portugal;

• Our affiliated companies involved in hospitality services;

• Hotels operated under the Victoria brand worldwide.

Please note that while many of our hotels are managed by us, some are operated under franchise or management agreements. In such cases, your personal data may be processed by both Victoria and the respective hotel entity, each acting as independent data controllers for their specific purposes.

3. Our Ten Principles for Protecting Your Personal Data

In alignment with applicable regulations, including the European General Data Protection Regulation (GDPR), we adhere to the following principles:

1. Lawfulness: We process personal data only when:

   • We have obtained your consent, or

   • It is necessary for the performance of a contract with you, or

   • It is required for compliance with legal obligations, or

   • It is essential to protect your vital interests, or

   • We have a legitimate interest that does not override your rights.

2. Fairness: We ensure transparency in our data collection and usage practices.

3. Purpose Limitation and Data Minimization: We collect only the data necessary for specific, legitimate purposes.

4. Transparency: We provide clear information about how we use your personal data.

5. Facilitating Rights: We support your rights to access, rectify, or erase your personal data, and to object to its processing.

6. Storage Limitation: We retain personal data only for as long as necessary for the purposes outlined.

7. Security: We implement appropriate measures to protect your personal data against unauthorized access, alteration, or destruction.

8. Third-Party Protection: We ensure that any third parties processing your data on our behalf maintain adequate data protection standards.

9. International Transfers: When transferring data outside the European Economic Area, we ensure appropriate safeguards are in place.

10. Breach Notification: In the event of a data breach, we will notify the relevant authorities and affected individuals as required by law.

For any inquiries regarding these principles, please contact our Data Privacy department (see the “Your Rights” section below).

4. What Personal Data Is Collected?

We may collect various types of personal data, including:

• Contact Information: Name, telephone number, email address.

• Personal Details: Date of birth, nationality.

• Identification Documents: Passport, ID card, or driver’s license details.

• Payment Information: Credit card details for reservations and transactions.

• Loyalty Program Data: Membership numbers and activity related to our loyalty programs.

• Stay Preferences: Room preferences, dietary requirements, special requests.

• Feedback: Comments and reviews provided during or after your stay.

• Technical Data: Information collected through our websites and applications, such as IP addresses and browser types.

For minors under 16 years of age, we collect limited data (e.g., name, nationality, date of birth) only with the consent of a parent or guardian.

In certain cases, to fulfill specific requests or provide tailored services, we may collect sensitive personal data (e.g., health information). Such data will only be processed with your explicit consent.

5. When Is Your Personal Data Collected?

Your personal data may be collected in various scenarios, including:

• Hotel Services: Booking accommodations, check-in/check-out processes, and during your stay.

• Participation in Programs: Enrollment in loyalty programs, contests, or surveys.

• Digital Interactions: Use of our websites, mobile applications, and communication channels.

• Third-Party Sources: Information received from travel agents, booking platforms, or social media networks.

6. Purposes and Retention of Your Personal Data

We process your personal data for purposes such as:

• Managing reservations and stays.

• Administering loyalty programs.

• Conducting customer satisfaction surveys.

• Personalizing services and communications.

• Complying with legal obligations.

We retain your personal data only for the duration necessary to fulfill these purposes, in accordance with applicable laws and regulations.

7. Access by Third Parties

We may share your personal data with:

• Internal Departments: Authorized personnel within Victoria responsible for various services.

• Service Providers: Third-party vendors assisting with operations like IT support, payment processing, and marketing.

• Business Partners: Collaborators offering complementary services or promotions.

• Legal Authorities: When required by law or in response to legal processes.

All third parties are obligated to protect your personal data in compliance with applicable laws.

8. International Data Transfers

When transferring your personal data to countries outside the European Economic Area, we ensure appropriate safeguards are in place, such as standard contractual clauses approved by the European Commission.

9. Your Rights

You have the right to:

• Access: Obtain a copy of your personal data.

• Rectify: Correct inaccurate or incomplete data.

• Erase: Request deletion of your data under certain conditions.

• Restrict Processing: Limit how we use your data.

• Data Portability: Receive your data in a structured, commonly used format.

• Object: Oppose certain types of data processing.

Victoria Golf Resort & Spa

Avenida dos Descobrimentos

8125-309 Vilamoura, Portugal

Email: victoriagolfresort@accor.com

Phone: +351 289 317 000