Privacy policy.

1. Introduction

Welcome to The Haus. We are committed to protecting your privacy and handling your personal data with transparency, security, and care. This Privacy Policy explains how we collect, use, store, share, and safeguard your information when you visit our website (https://www.the-haus.co), use our services, or otherwise interact with us. It also outlines your rights under applicable data protection laws, including the General Data Protection Regulation (EU) 2016/679 ("GDPR").

2. Who We Are

Company Name: The Haus
Legal Address: Rua Domingos Sequeira, 27, Lisbon, Portugal
Email Contact: info@the-haus.co

The Haus is the data controller responsible for your personal data. If you have any questions about this policy or your data, please contact us at the email provided above.

3. Personal Data We Collect

We collect and process different types of personal data depending on your interaction with us:

3.1 Identity and Contact Data

  • Full name

  • Email address

  • Phone number

  • Postal address

  • Passport or national ID number (when required by law)

3.2 Booking and Guest Data

  • Dates and details of your reservation

  • Preferences and special requests

  • Payment status and details (processed via secure third-party platforms)

  • Loyalty program or promotional participation

3.3 Communication Data

  • Messages, emails, phone call summaries (e.g., via Aircall)

  • Support queries

  • Feedback, complaints, or reviews

3.4 Technical and Usage Data

  • IP address and geolocation

  • Browser type and version

  • Device identifiers

  • Operating system

  • Log files, usage data, and clickstream analysis

4. How We Use Your Personal Data

We process your personal data for the following purposes:

  • Booking management: To process, confirm, and manage your reservations.

  • Guest services: To provide services before, during, and after your stay.

  • Communication: To respond to inquiries, provide updates, and share relevant information.

  • Marketing: To send newsletters, promotions, and content related to The Haus, subject to your consent.

  • Service improvement: To analyze usage trends and improve our properties, website, and services.

  • Legal compliance: To meet obligations under tax, immigration, public safety, or other laws.

5. Legal Bases for Processing (GDPR Compliance)

Under the GDPR, we rely on the following legal bases:

  • Performance of a contract: For booking, guest services, and customer support.

  • Legal obligation: For recordkeeping, public safety, and regulatory compliance.

  • Legitimate interests: For fraud prevention, service development, and internal business operations.

  • Consent: For optional marketing communications and non-essential cookies.

6. Disclosure of Your Data

We may share your personal data with:

  • Service providers: IT, analytics, payment, marketing, and guest communication providers.

  • Business partners: Marketing or operational collaborations (e.g., local experiences).

  • Legal or regulatory bodies: When required by law, such as police, tax, or health authorities.

All third parties must respect your data privacy and are bound by contractual obligations.

7. International Data Transfers

Your personal data may be transferred and stored outside the European Economic Area (EEA). When we do this, we ensure:

  • Adequate level of protection under European Commission adequacy decisions, or

  • Implementation of Standard Contractual Clauses (SCCs) with third-party processors. 

8. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes we collected it for, including legal, accounting, or reporting requirements. Generally:

  • Booking and financial data: 7 years (for tax and accounting)

  • Marketing preferences: Until you withdraw your consent

  • Communications: Up to 3 years after the last interaction

9. Your Rights Under GDPR

As a data subject under the GDPR, you have the right to:

  • Access your personal data

  • Rectify inaccurate or incomplete data

  • Erase your data (“right to be forgotten”)

  • Restrict or object to processing

  • Data portability

  • Withdraw consent at any time (for consent-based processing)

Lodge a complaint with the Portuguese Data Protection Authority (CNPD)

10. Data Security

We implement a range of technical and organizational measures to protect your data, including:

  • HTTPS encryption and secure servers

  • Access controls and two-factor authentication

  • Staff training on data handling and privacy

  • Regular audits and security updates


11. Cookies and Tracking Technologies

We use cookies to enhance user experience, analize traffic, and support marketing. For more details and to manage your preferences, please see our Cookie Policy.

12. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for their privacy policies. We recommend you review their terms before providing any personal data.

13. Changes to This Policy

We may update this policy periodically. The updated version will be posted on our website with a new effective date. If significant changes are made, we will notify you via email or website banner.

14. Contact Us

For any privacy-related questions or requests, please contact:

Email: info@the-haus.co
Mail: The Haus, Rua Domingos Sequeira, 27, Lisbon, Portugal

Thank you for trusting The Haus.