Data Protection and Privacy Policy

Tripix Azores from MMCC – Matteo Miguel Carosi Cordeiro, Turismo & Serviços, Lda., hereinafter Tripix Azores / MMCC, is a Tourist Company with license RNAAT 4/2017/RAA and Maritime-Tourism Operator license 09/2022 that provides tourist activities services in the Azores, specifically on the islands of Pico, Faial and São Jorge.

The Office and the Head Office of Tripix Azores / MMCC are located respectively at Cais da Madalena, S/N, 9950-305 Madalena and Rua da Igreja, 23, 9950-026 Bandeiras, both locations in Pico Island, Azores, and the address of our website is www.tripixazores.com.

1. Objectives

The Data Protection and Privacy Policy of Tripix Azores / MMCC, aims, in accordance with the Data Protection Regulation (EU) 2016/679, to make known to visitors to our website, potential customers and clients, how their personal data and records are obtained and protected and for what purposes they are used. In addition to complying with this right to information, this policy also respects the following rights of data subjects: the right to be notified, whenever data which entails a risk to the data subject is violated; the right of access to data which concerns the data subject; the right to portability, when applicable; the right to be forgotten, when consent is withdrawn or when there is no legitimacy to retain the data; the right of rectification, whenever data subjects wish to update data which concerns them; the right to contest decisions on how their data is handled.

2. Safe navigation on our website.

Tripix Azores / MMCC has its website hosted in safe servers. In this website there are links to partners websites and several entities. Tripix Azores / MMCC is not responsible for the security of third-party websites, so those who decide to visit them should consult the respective privacy policies previously.

3. Cookies Policy

The Tripix Azores / MMCC website uses several types of cookies. To know more about what cookies are, how they operate and how you can accept or refuse their use, click on the message regarding cookies in the footer of our website.

4. Processes for collecting personal data

The personal data referred to in this Data Protection and Privacy Policy is information voluntarily provided to the company by the data subject, either through the booking forms on our website, or through proposals for subscription to newsletters, or directly to the company, via email or otherwise. This collection is of the exclusive responsibility of Tripix Azores / MMCC and is processed within the framework of the normal operation and communication of a company providing services of tourist activities, registered as a tourist activities company and as a maritime-tourist operator. The forms used, whenever applicable, include a Term of Consent for the use of the data supplied by the customer or potential customer.

5. Objectives of the collection of personal data

The personal data transmitted to us on our service reservation forms, through our newsletter, via e-mail or otherwise, serves solely and exclusively for the following purposes: to facilitate communication with clients and potential clients; to publicize and promote the company’s products and services; to guarantee our provision of services under safe conditions; to comply with legal norms relative to insurance and billing; to comply with the stipulations of hotel rooming lists; and, in the case of the accommodation of foreign citizens, to respond to the obligation of identifying clients with the Foreigners and Borders Service (SEF).

6. Types of personal data requested

The nature of the data requested by the company does not include sensitive matter, being reduced to what is strictly necessary for the purposes mentioned above: name; email and/or contact address; telephone contact when applicable; date of birth for insurance purposes; tax identification number for billing purposes; passport number for communication to the SEF; and weight and height for the purpose of assigning equipment for the company’s activities such as bicycles, as well as for insurance purposes and activation of support and emergency services in case of accidents.

7. Protection of personal data

The personal data entrusted to us in the reservation forms will not be stored in our website databases, nor will they be transmitted to third parties, either free of charge or in a burdensome manner, except in the cases mentioned in the following point. The storage and treatment of the personal data of our customers and potential customers are the exclusive responsibility of Tripix Azores / MMCC. They are subject to the confidentiality and protection norms defined internally in accordance with the regulations in force and the protection standards appropriate to their nature. Their access and use are limited to authorized persons and under our internal policy of security and control. Tripix Azores / MMCC is not responsible for the way the personal data that is obliged to supply by legal imperative are protected and treated. Regarding the transmission of data to subcontracted entities, it is an express part of the contractual agreements that these entities are the only ones responsible for the protection and treatment of the data received, in compliance with the General Data Protection Regulation. Unless otherwise stated in this Data Protection and Privacy Policy, Tripix Azores / MMCC does not sell or rent your personal information to third parties unless requested. We can only use images and videos of our customers and captured in the activities performed, for promotion, dissemination and exposure of our work in social networks and website, unless otherwise indicated when confirming the reservation of the service or by sending email with this intention to [email protected]. On the other hand, and based on good sense and good faith, we request that Tripix Azores / MMCC be identified in each publication in the social networks of its customers, to help in the promotion, dissemination and exposure of images and videos captured by the company and its employees.

8. Right to correction and deletion of personal data

Any request for updating or removal of personal information transmitted through these forms or by any other means, may be requested directly to the company through the email [email protected] indicating, in both cases, the subject “change or removal of personal data”. It is the commitment of Tripix Azores / MMCC to process these requests and close the updating or deletion process within 30 days from the submission of the request. The legal imperatives of data retention constitute an exception to this rule, as is the case of the retention periods of accounting documents, the treatment of complaints when it does not depend only on our company, and the judicial processes, being the holder of the data subject to the periods required and opportunely defined for each of these processes.

9. Conservation of personal data

Customer data will be kept as long there is a legitimate interest on the part of the company and the holder consents to it. Thus, it will be a rule of Tripix Azores / MMCC that its database, created for the purposes mentioned in point 5, will be kept as long as it is of legitimate interest of the company and while the holders of the data do not exercise their right to be forgotten.

10. Validity of this Data Protection and Privacy Policy

To guarantee the respective updating, development and continuous improvement, Tripix Azores / MMCC may, at any time, make the changes that are considered appropriate or necessary to this Policy of Data Protection and Privacy, being assured its publication online to ensure transparency and information to Users, Service Recipients and Customers. Continued use of the company’s services after such communication will be considered as your agreement.