Security Policy & Cookies

Identification of the person responsible for processing data protection
Company: Sociedade Turística Hoteleira Vale do Douro S.A.
Head Office: Largo da Estação da CP, 5050-237 Peso da Régua
Telephone: +351 254 320 700

Information and consent
The Personal Data Protection Act and the General Data Protection Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, hereinafter "GDPR" ensure the protection of natural persons with regard to the processing of personal data.

The privacy of our clients and employees is one of the pillars of the Policy of the Hotel Régua Douro.

In legal terms, "personal data" is considered to be any information (e.g. name, address, contacts, etc.), of any nature and regardless of its support, including sound and image, relating to an identified or identifiable natural person, so that protection does not cover the data of legal persons.

Customers/job seekers should read this policy before submitting personal data.

Customers should ensure that children under the age of 18 do not submit personal data without their permission.

Within the scope of this policy, the Hotel Régua Douro undertakes to:
  • Explain the purpose and mode of processing any personal data requested; 
  • Use personal data only for the purpose mentioned in this policy 
  • Request only the necessary personal data, taking the necessary steps to keep the data updated 
  • Retain personal data for the period of time necessary for its processing in accordance with local legislation;
  • Provide customers/suppliers/job seekers with the means to access, change, correct or delete their personal data;
  • Keep personal data received confidential and protected unless disclosure is required as a result of a legal order.
As a client of the Hotel Régua Douro, your personal data and/or the personal data of members of your family may be requested, namely:
  1. Contacts: name, nationality, identification card number, tax identification number, telephone number and e-mail;
  2. Date of birth
  3. Credit card details;
  4. Dates of arrival and departure from our hotel /restaurant;
  5. Children's information: name, ID card number, date of birth and age;
  6. Interests and preferences: such as preferred room location, preference for room type and bed requested, desired newspaper and so on.
  7. Possible comments from the customer during or after the stay.
As a job applicant or trainee at the Régua Douro Hotel, you may be asked for the following personal information:
  1. Contact details: name, nationality, telephone number, e-mail, address, etc;
  2. Date of birth
  3. Interests and reason for the application;
  4. Training, education and work experience.
We do not request sensitive information such as: religious or philosophical beliefs, political opinions, health information, race or ethnicity, sexual orientation or trade union membership.

Personal data may be requested in different circumstances, including (but not limited to) the following:
  1. Participation in advertising programmes (subscription to newsletters to receive offers/promotions);
  2. Hotel activities (e.g. room or table reservations, check-in and check-out; complaints or requests);
  3. Provision of information about tour operators, travel agencies or online booking systems;
  4. Internet activities (connection to the Hotel Régua Douro website; filling in forms to request online data - e.g. online reservations and so on.);
  5. Job or internship applications.
By accepting this Privacy Policy, the user gives informed, express, free and unequivocal consent for the personal data provided through the website to be included in a file under the responsibility of the Hotel Régua Douro, the processing of which under the terms of the LPDP and the RGPD complies with the appropriate technical and organizational security measures.

If you do not agree with the above conditions, the Hotel Régua Douro cannot accept your booking/candidature.

Personal data is requested for the following purposes:
  1. Management of customer reservations and stays;
  2. Improving the services provided in our hotel, restaurant and other services in order to understand customers' needs and exceed their expectations;
  3. Personalisation of our services;
  4. Sending newsletters, promotions and advertising materials. Customers may cancel their subscription to the e-mail newsletter service by clicking on the newsletter link that we send by e-mail;
  5. Hiring staff for the Régua Douro Hotel.

The Hotel Régua Douro may share the personal data of clients/applicants with:
  1. The employees of the Hotel Régua Douro who necessarily need the client's data, namely to provide the services requested and/or to manage the client's databases.
  2. The local authorities - if required by local legislation or as part of internal inspections of the Hotel Régua Douro, in accordance with legal requirements.
In case of transmission of personal data to third parties, the obligations under applicable laws will be strictly complied with and every effort will be made to ensure that such third parties use personal data in an appropriate manner, in accordance with this Privacy Policy.

Clients/applicants may access, correct, add, update or delete their personal data by contacting the Hotel Régua Douro through the e-mail address: Such requests will be processed as soon as possible. 

The Hotel Régua Douro has implemented the necessary technical and organizational measures, in compliance with the legal requirements, in order to protect the personal data of clients and employees, ensuring confidentiality in accordance with the rules established in this policy.

The Hotel Régua Douro, when accessing any personal data, undertakes to:
  • Store them using legally required security measures of a technical and organisational nature, which guarantee their security, thus avoiding alteration, loss, treatment or unauthorised access, in accordance with the state of technology at each moment, the nature of the data and the possible risks to which they are exposed;
  • Use the data exclusively for the purposes previously defined;
  • Ensure that the data is only processed by those employees whose intervention is necessary for the provision of the service, who are bound by the duty of secrecy and confidentiality. If there is the possibility of the information being revealed to third parties, these shall be obliged to keep it confidential in accordance with the provisions of this document.
The clients' personal data is incorporated into a computer application owned by Newhotel. Access to information on file by the Hotel Régua Douro's employees is only possible with the insertion of access passwords, and the record is documented. It is, however, possible to alter existing data in the archives, and a record is kept of the date and user code responsible for the alteration. Personal data is treated with the legally required level of protection to ensure their security and avoid their alteration, loss, treatment or unauthorised access, taking into account the state of technology, with the user being aware and accepting that Internet security measures are not unassailable.

The Hotel Régua Douro is equipped with technical infrastructures for peripheral control, namely, network firewalls and private circuits that meet security requirements. The computer servers are hosted in a data centre operator, which provides a digital information protection service for the hosted servers. The service includes the backup of files (security copy), stored in accordance with the policy defined at the request of the Hotel Régua Douro.

One of the purposes for which we process personal data provided by you is to send you electronic communications containing information on commercial and promotional communications. Whenever we make a communication of this type, it will be directed exclusively to the user who has expressly authorised it in advance.

The Hotel Régua Douro uses cookies on its website to improve its operation and optimize user experience.

The purpose of this information is to clarify any questions that users may have about the use of cookies on the Hotel Régua Douro website.

7.1 What are cookies?
Cookies are small text files that are introduced into the user's device (computer, mobile phone or tablet) when the user visits the Hotel Régua Douro website with a browser. Cookies allow the website to recognise the user's device.

7.2 What are cookies for and why does the Hotel Régua Douro use them on its website?
The Hotel Régua Douro uses cookies to understand the importance, usefulness, interest, volume and frequency of visits to its online content and discover the best way to present information that is truly relevant to users. Cookies help the Hotel Régua Douro to understand how a client arrived at the site (search on the Internet, recommendation of another site, advertisement, etc.) and how the client navigates through its pages. Cookies also allow us to know your browsing preferences, such as the language you use. However, they do not collect personal information of any kind or any other information that would allow the user to be personally identified.

7.3 Are all cookies the same?
No. There are different types of cookies that are used depending on the type of information you wish to analyse and collect and the length of time they remain installed on the user's device.

7.4 What kind of cookies does the hotel Régua Douro website use?
The cookies used by the Hotel Régua Douro website have different functions. On the one hand, the site uses cookies that analyse how users navigate the site and how they reach us. These cookies allow us to study the site's analytical data and improve navigation and content. In addition, it uses cookies that record certain user preferences such as language preference or access credentials to reserved areas.

7.5 Can the user block cookies?
Yes, all browsers allow users to configure the access of cookies or block them. For more information on how to block cookies, please consult the help section of our browser.

Where can I find out more about cookies?
For more information about cookies, please consult the website (in English, French and Spanish).

In accordance with the provisions of the LDPD and the RGPD, users may at all times exercise their rights of access, rectification, erasure, limitation, opposition and portability, by written request by any of the following means, always including a certified copy of a document proving the identity of the data subject and specifying the right or rights they wish to exercise.
Head Office: Largo da Estação da CP, 5050-237 Peso da Régua

Under the terms of the law, the data subject has the right to lodge a complaint regarding the protection of personal data with the competent supervisory authority, the National Commission for Data Protection (CNPD)

The present privacy policy may be periodically modified, as such we recommend regular consultation. The last update of this privacy policy dates from: 25 May 2018.

Special Offers