Privacy Policy

The commercial company Palácio Chiado (hereinafter referred to as the “Company”), responsible for operating restaurant establishments under the name ADG, Lda., is committed to protecting its customers’ personal data and respecting their privacy in accordance with Regulation (EU) 2016/679 (General Data Protection Regulation – GDPR).

This Privacy Policy explains:

What personal information we collect and process and why we do so;
How we use this information;
The choices we offer, including how to access and update information.

1. Data Controller

The person responsible for processing your personal data is ADG, Lda., with registered office at Rua do Alecrim, No. 70, 1200-018 Lisbon
. For any questions regarding this policy, you can contact us at duartecpinto@palaciochiado.pt.

2. Legal Basis for the Collection and Processing of Personal Data

By accessing and using our website, its content, and/or our services, the user freely and expressly accepts and consents to the collection and processing of their personal data by ADG, Lda. Data collection may occur, for example, when:

You subscribe to our newsletter by email or through our website;
You request registration or participate in events organized by the Company;
You use our reservation or ordering services or interact with our websites.

3. Types and Purposes of Data Collected

We may collect the following types of personal data based on your interactions with our restaurant:

Type of Information	Description	Purpose	Basis Legal
Identifying Information	Name, email, phone, address (if applicable).	Manage reservations, answer questions, send personalized marketing campaigns.	Performance of contract, Consent, Legitimate interest.
Reservation Data	Date, time, number of people, dietary preferences.	Manage reservations and offer personalized service.	Execution of contract.
Payment Data	Credit card information Credit/debit (via secure gateway).	Process payments for reservations or orders.	Execution of contract, Compliance with legal obligation.
Browsing data	IP address, cookies, website behavior.	Analyze website traffic, personalize experience and target advertising.	Consent (for cookies), Legitimate interest.
Marketing Preferences	Interactions with campaigns and newsletters.	Sending personalized communications.	Consent.

4. Purposes of Data Processing

We collect personal data for the following purposes:

Reservation Management: To process and manage reservations.
Communications and Marketing: Send personalized promotional communications and advertising campaigns on platforms such as Google Ads, META (Facebook and Instagram), and offline channels such as SMS and postal mail.
Targeted Advertising and Remarketing: We use data to create custom audiences and target ads through cookies and third-party platforms (Google Ads, META), offering relevant ads based on user behavior on the website.
Customer Service: Respond to questions or requests for information.
Improvement of Website: Analyze user behavior to improve navigation.
Payment Processing: Facilitate the processing of secure financial transactions.

5. Data Sharing with Third Parties

We only share your data with service providers acting on our behalf, such as:

Booking platforms: To manage and confirm your reservations.
Email marketing and advertising services: To send personalized campaigns (Google Ads, Meta).
Payment service providers: To securely process payments.
Integration with CRM and Marketing Platforms: To manage omnichannel campaigns (online and offline), ensuring a personalized experience at all touchpoints.

Personal data may be shared with third parties only when necessary to comply with legal obligations or Legal matters.

6. Existence of Automated Decisions

The Company’s website may automatically collect information about your visit, such as your IP address, interactions, and page views, for navigation analysis and targeted advertising purposes.

7. Cookies and Similar Technologies

We use cookies on our website to improve the user experience and for marketing purposes, including remarketing and personalized advertising. The cookies we use include:

Essential Cookies: Necessary for the basic functioning of the website.
Analytics and Marketing Cookies: Used to track user behavior and offer personalized ads through platforms such as Google and META.

You can manage or disable cookies directly in your browser settings. For personalized advertising, you can refuse the use of cookies by following the instructions of the advertising platforms.

8. Security Measures

The Company adopts appropriate technical and organizational measures to ensure the security of personal data against unauthorized access, loss, destruction, alteration, or improper disclosure. However, we warn you that the Internet is not a completely secure medium and that transmitted data may be subject to vulnerabilities.

9. Data Retention Period

Personal data is retained only for as long as necessary for the purposes described in this policy, or as required by law. The specific period depends on the data type and the purpose of the processing.

Purpose	Retention Period
Reservation Management	Until the reservation is fulfilled or in accordance with tax obligations (5) years).
Marketing and Newsletters	Until consent is revoked or after 5 years of inactivity.
Payment Data	For the period necessary to comply with legal obligations, such as taxation (up to 10 years).
Cookies and Browsing Data	Until consent is revoked or as per browser settings.

10. Data Subject Rights

Under the GDPR, you have the right to:

Access your personal data and request a copy.
Correct or delete inaccurate or outdated personal data.
Limit processing or object to the use of your data for marketing purposes.
Revoke consent at any time, without prejudice to the lawfulness of processing based on prior consent.

To exercise any of these rights, please contact duartecpinto@palaciochiado.pt.

11. Privacy Policy Changes

We reserve the right to update this privacy policy. Changes will be posted on our website, and your continued use of the website after the changes are made constitutes acceptance of the new policy.