Privacy and Cookies Policies

POUSADA MARIA FLOR LTDA, a private legal entity registered with the CNPJ under no. -, with headquarters at Rua Alameda Pau D'Arco, 508, Fernando De Noronha, 53990000, Brazil (“HOTEL”), understands as sensitive and relevant the electronic records and personal data left by you (“User”) when using the various websites and services (“Pages”) of the HOTEL, serving this Privacy Policy (“Policy”) to regulate, in a simple, transparent and objective manner, which data and information will be obtained, as well as when they may be used. To better illustrate how we process data, we present a summary of our Privacy and Personal Data Protection Policy (“Policy”):

1. What Data We Use

The HOTEL may collect information actively entered by the User at the time of registration and also information collected automatically when using the pages and the network, such as, for example, identification of the commercial establishment used, IP with date and time of connection, among others. There are, therefore, two types of personal data processed:

a) Information provided by the User: The HOTEL collects all information actively entered by the User on the Pages, such as full name, email, gender, date of birth, city and state, when the User fills out forms on the Pages. The HOTEL may use this information to promote the dissemination of advertising material, promotions, discounts, events and loyalty programs, as well as to conduct satisfaction surveys. b) Data may be collected automatically, such as characteristics of the access device, browser, IP (with date and time), IP origin, information on clicks, pages accessed, subsequent pages accessed after leaving the Pages, or any search term entered on the website or in reference to it, among others. For this collection, standard technologies may be used, such as cookies, pixel tags, beacons and local shared objects, which are used for the purpose of improving the User's browsing experience on the Pages, according to their habits and preferences. It is possible to disable, through the settings of your internet browser, the automatic collection of information through some technologies, such as cookies and caches, as well as on our own website, specifically regarding cookies. However, the User must be aware that, if these technologies are disabled, some features offered by the website, which depend on the processing of said data, may not function correctly. In addition, satisfaction surveys may be conducted, collecting this information to increasingly improve our services, to better understand your preferences and evaluate the quality and your impressions of our tools, as well as for statistical and advertising purposes. The information collected may be shared by the HOTEL with: a) other partner companies, when necessary for the adequate provision of the services that are the object of their activities; b) to protect the interests of the HOTEL in any type of conflict; c) by court order or request from a competent authority. Furthermore, we clarify that your information may also be shared with companies that provide the technological and operational infrastructure necessary for the HOTEL's activities, such as payment intermediaries and information storage service providers. The User may access, update and add their data, as well as request the deletion of their data collected by the HOTEL, which is obliged to provide service and communicate any Data Operators that may be part of the reservation chain, and it is the Controller's responsibility to ensure that the Data Operators have complied with the obligation to delete, it being clear that the deletion will only not occur if there is some legal obligation attached, which prevents the request from being fulfilled. If there is no request for data deletion or updates, the HOTEL is responsible for respecting the retention periods established by law.

2. How We Use Data

The information collected by the HOTEL is intended to establish a contractual relationship or to manage, administer, provide, expand and improve the Pages to the User, adapting them to their preferences and tastes, as well as to create new services and products to be offered to Users. If the User no longer wishes to receive advertising information from the HOTEL, the User may contact the HOTEL at any time through its service channels and the HOTEL is solely responsible for informing any Data Operators that operate throughout the reservation chain. Legal Basis: In these cases, the processing of data is authorized by item I of article 7 of Law No. 13,709/2018, the General Data Protection Law (“General Data Protection Law - LGPD”).

3. How We Use Cookies

Cookies are files or pieces of information that may be stored on your devices when you visit HOTEL’s Pages. A cookie generally contains the name of the website that originated it, its lifetime and a value, which is generated randomly. HOTEL uses cookies to facilitate use and better adapt the Pages to your interests and needs, as well as to compile information about the use of our websites and services, helping to improve their structures and content. Cookies may also be used to speed up your future activities and experiences on the Pages.

After the User consents to the use of cookies, when using the HOTEL Pages, the User may store a cookie on his/her device to remember this in the next session. At any time, the User may revoke his/her consent to cookies, for which he/she must delete the cookies from the HOTEL Pages using the settings of his/her preferred browser. For more information on how to proceed in relation to the management of cookies in browsers:

• Internet Explorer: https://support.microsoft.com/pt-br/help/17442/windows-internetexplorer-delete-manage-cookies
• Mozilla Firefox: https://support.mozilla.org/pt-BR/kb/ative-e-desative-os-cookies-queos-sites-usam
• Google Chrome: https://support.google.com/accounts/answer/61416?co=GENIE.Platform=Desktop& hl=pt-BR
• Safari: https://support.apple.com/pt-br/guide/safari/sfri11471/mac

Finally, we remind you that if the User does not accept some cookies from the HOTEL Pages, certain services may not function optimally.

4. Who We Share Data With

The HOTEL works with partners that offer solutions for tourism and the hotel market, as well as operating in the corporate segment, and may share the information collected through the Pages, in the following cases:

a) With other companies of the Group, established or operating in any country, which undertake to use the information for the same purposes indicated in this Policy; b) With partner companies, in the development of the HOTEL's commercial activities, including connections and distribution of reservations, servers, etc.; c) To protect the HOTEL's interests in any type of conflict, including legal actions; d) In the case of transactions and corporate changes involving the HOTEL, in which case the transfer of information will be necessary for the continuity of services; or e) By court order or at the request of administrative authorities that have legal authority to request it.

5. How We Keep Data Secure

The HOTEL will store the information collected on its Data Operator Pages or contracted by it.

The HOTEL uses reasonable market and legally required means to preserve the privacy of data collected on its Pages. Therefore, it adopts the following precautions, in compliance with the guidelines on security standards established in Decree No. 8,771/2016, as well as interacting with Data Operators with the same guidelines, and Data Operators are only responsible for any data that passes through their database, for the full fulfillment of reservations, and are not responsible for managing or overseeing how the HOTEL conducts its Internal Policies, conduct, and security practices.

HOTEL makes every effort to preserve the privacy of Users' data. However, no website is completely secure and HOTEL does not fully guarantee that all information transmitted on the Pages will not be subject to unauthorized access using methods designed to obtain information improperly. For this reason, we encourage Users to take appropriate measures to protect themselves, such as allowing third parties to use their data or credit cards or passwords.

6. Retention of Collected Information

The information collected by the HOTEL, through the Pages, will generally be automatically deleted from its servers when it is no longer useful for the purpose for which it is intended or after compliance with legal obligations, or when the user requests the deletion of his/her personal data. Without prejudice, the information may be kept to comply with legal or regulatory obligations, transfer to third parties may occur, and it is the responsibility of the HOTEL to verify the reliability of its Data Operators, holding them liable only if it is proven that any losses were caused by the Data Operators.

7. Your Rights

In compliance with applicable regulations, with regard to the processing of personal data, the HOTEL is responsible to the User for the possibility of submitting requests based on the following rights: a) confirmation of the existence of processing; b) access to data; c) correction of incomplete, inaccurate or outdated data; d) blocking or deleting unnecessary, excessive or non-compliant data; e) deletion of data processed with the User's consent; f) obtaining information about the public or private entities with which the HOTEL shared its data; g) information about the possibility of not providing consent, as well as being informed about the consequences, in case of refusal; h) revocation of consent. Should the User require any assistance in exercising their rights, they may contact the HOTEL, in accordance with the guidelines in this Policy. The User is aware that the deletion of essential information for managing their account with the HOTEL will imply the termination of their registration, with consequent cancellation of the services then provided. Contact us by email: reservas@pousadamariaflor.com.br with the subject Privacy Policy.

HOTEL will make every effort to comply with such requests as quickly as possible. However, even in the event of a deletion request, the minimum storage period for information from Internet application users, as determined by Brazilian law, will be respected.

8. Consumer Relationship

The HOTEL is directly responsible for all consumer relations with the guest, and any Data Operators are not responsible for any obligations of this nature.

9. Legislation

This Policy will be governed, interpreted and executed in accordance with the Laws of the Federative Republic of Brazil, especially Law No. 13,709/2018.