Privacy Policy

By accessing the LEVA-ME (Fronteiras e Colinas, Lda) website, you accept the terms set forth herein. All personal information collected will be used to help make your visit to our website as productive and enjoyable as possible.

Ensuring the confidentiality of the personal data of users of our website is important to LEVA-ME (Fronteiras e Colinas, Lda).

The personal information collected may include your name, email, telephone and/or mobile number, address, date of birth and/or others.

LEVA-ME (Fronteiras e Colinas, Lda) may link to websites operated by third parties. Our privacy policy does not apply to third-party websites, so if you visit another website from ours, you must read and accept its privacy policy. You must also accept that LEVA-ME (Fronteiras e Colinas, Lda) does not control the content of that website and assumes no responsibility for the privacy policy or content published on those websites. Furthermore, a link to a website not owned by LEVA-ME (Fronteiras e Colinas, Lda) does not mean that LEVA-ME endorses the website or the products and services referenced therein.

All copyrights, registered trademarks, and other rights applicable to or used on this website belong to LEVA-ME (Fronteiras e Colinas, Lda) and are protected by copyright. All rights not expressly granted herein are reserved. Copying, altering, distributing, transmitting, displaying, reproducing, publishing, transferring, or selling any information, products, or services obtained through this website is prohibited.

Under no circumstances shall LEVA-ME (Fronteiras e Colinas, Lda) be held liable, directly or indirectly, for any damage resulting from or in any way related to the use of this website.

The agency does not guarantee that its web pages will be free from errors or other difficulties. The agency reserves the right to modify, without prior notice and for any reason, any information on the website. The user is responsible for reviewing the content whenever they consult or book trips through the website. Continued use of the website after any changes are made will be considered acceptance of those changes.

The customer registered for a trip gives express consent for all information provided in relation to their trip to be transmitted to LEVA-ME partners (Fronteiras e Colinas, Lda) in order to carry out the travel program, food preferences, personal health information or others.

The user, as a customer registered for a trip, expressly consents to all information, including personal data, provided in relation to their trip being transmitted to government authorities for the purposes of border control and air travel security.

All data collected through registration on the LEVA-ME (Fronteiras e Colinas, Lda) website is completely confidential and is intended for customer management, services, and our company's marketing initiatives. When contacting us via email through our website, if you select the "subscribe to the Newsletter" option, your email address may become part of our database and be used for marketing purposes for our company and the Joaocajuda.com website. Therefore, all your registration data is completely confidential and will be used exclusively to send you our latest news, provide you with the best possible service, and create offers tailored to your interests.

GDPR – TAKE ME

Privacy Policy and General Data Protection Regulation

Our website treats your privacy with the utmost care. In the following sections, we'll explain:

  • What information we collect through the website, how it is processed and for what purpose;
  • How you can manage your personal information;

Want to learn more? Check out these links:

Who processes personal data?

The person responsible for processing personal data is:

Borders and Hills, Ltd.

info@leva-me.com

NIF: 513 951 016

National Register of Travel and Tourism Agencies: No. 6282

Accommodation

The website is hosted by Hostinger. Some data such as IP address, browser type and version, date and time, and the website you came from, if any, are recorded. The IP address is stored anonymously. This data is required for various security and analysis purposes. The legal basis for this processing is Art. 6 (1) f of the GDPR.

E-mail

Emails sent to and from our email addresses are processed outside the European Union by Google and Sendgrid. You can view Google's data processing policy here. https://cloud.google.com/security/gdpr/ and Sendgrid here https://sendgrid.com/policies/privacy/website-privacy-policy/#information-about-international-transfers. Emails are stored in these services for a minimum period of time to ensure that no emails are lost in the event of a technical failure. The legal basis for this processing is Art. 6 (1) f GDPR.

The payment system is managed by EuPago. You can check how payments are handled on the Legal Terms & Conditions page: https://www.eupago.pt/termos

How do we collect your data?

All data collected is expressly provided by the user, except for cookies collected automatically. Therefore, the data subject consents to their information being processed using confirmation fields on the respective forms.

How do we process and for what purpose do we use your data?

For billing, we use your First Name, Last Name, Address, Tax ID and Email.

For payment processing, your data is sent to the responsible entity. In our case, you can read more details about eupago.pt's data policy at https://www.eupago.pt/privacidade

To update the status of your order, we use Name, Address, Tax ID and Email.

If you have registered your email address on the form provided for our newsletter, we will use your email address to send you news.

Right to correct data and right to object

If the data subject considers that his or her personal data is incorrect, incomplete or inaccurate, he or she has the right to have it rectified or completed without undue delay.

The data subject may also object at any time to the processing of their personal data for a specific use.

Right to data removal (right to be forgotten)

The data subject may request that their personal data be deleted if it is no longer necessary to fulfill the purpose of the processing. However, the company is not obliged to delete the data if:

  • its processing is necessary to respect freedom of expression and information;
  • you must retain personal data to comply with a legal obligation;
  • there are other reasons of public interest for retaining personal data, such as reasons related to public health or scientific and historical research;
  • the retention of personal data is necessary in the context of legal proceedings.

Automated decision-making and profiling

There are no automated decisions.

Data breach notification

A data breach is considered to occur if personal data for which our company is responsible is disclosed, either accidentally or unlawfully, to unauthorized recipients, is altered, or access to it is temporarily interrupted.

If a data breach occurs that poses a risk to individual rights and freedoms, our company will inform the data protection authority within 72 hours of becoming aware of it.

If the breach poses a high risk to data subjects, our company may also be required to inform all affected individuals of the breach.

Response to requests

If our company receives a request from an individual wishing to exercise their rights, we will respond to it without undue delay and, in any case, within one month of receipt. This period may be extended by two months for complex or multiple requests, provided the individual is informed of the extension. Requests will be processed free of charge.

If a request is refused, we will inform the interested party of the reasons for the refusal and of their right to lodge a complaint with the data protection authority.

Data protection by design and by default

Data protection by design means that our company takes data protection into account from the earliest stages of planning a new way of processing personal data. In accordance with this principle, the data controller takes the necessary technical and organizational measures to implement data protection principles and protect data subjects' rights, for example, through the use of pseudonyms.

Data protection by default means that our company always adopts, as default settings, the settings that best protect privacy.

Cookie Policy

What are Cookies?

As is common practice with almost all websites, this site uses cookies, which are tiny files that are downloaded to your computer, to improve your experience. This page describes what information these cookies collect, how we use it, and why we need to store these cookies. We also share how you can prevent these cookies from being stored. However, this may reduce or "break" certain elements of the sites functionality.

Disable Cookies

In most cases, there are no industry standard options for disabling cookies without completely disabling the functionality and features they add to this site. It is recommended that you leave all cookies enabled if you are not sure whether you need them or not, as they may be necessary to provide you with a service that you use.

You can prevent cookies from being set by adjusting your browser settings (see your browser's Help for how to do this). Be aware that disabling cookies will affect the functionality of this site and many other websites you visit.

The Cookies we use

Account-related cookies – if you create an account with us, we use cookies to manage the sign-up process and general administration. These cookies will typically be deleted when you log out. However, in some cases, they may remain activated to remember your website preferences after you log out.

Login-related cookies – we use cookies when you're logged in so we can remember this fact. This prevents you from having to log in every time you visit a new page. These cookies are typically removed or cleared when you log out to ensure that you can only access restricted features and areas when logged in.

Cookies related to newsletters and other subscriptions – This website offers subscription and other subscription services. Some cookies may be used to check if you're already registered and whether we should show you certain notifications.

Cookies related to booking processing – some cookies are essential to ensure that your booking is remembered between pages so that we can process it correctly.

Form-related cookies – when you submit data through a form, some cookies may be set to remember your user details for future correspondence.

Survey-related cookies – From time to time, we may offer surveys to better understand our user base. Some cookies may be used to determine who has already participated.

Third-party cookies

In some cases, we also use cookies provided by trusted third parties.

This website uses Google Analytics, one of the most widespread and trusted analytics solutions on the web. It helps us understand how you use the site and how we can improve your experience. These cookies may track things like how long you spend on the website and the pages you visit so we can continue to produce engaging content.

We may also use cookies related to external services, such as newsletters or meta pixels. These cookies are used to monitor the effectiveness of our campaigns.

We may also use other features of certain social networks. For these to work, these platforms will place cookies on our website, which may be used to improve your profile on these sites, in accordance with their respective privacy policies.

More information

We hope these policies have been informative. However, if you require further information, please contact us at info@leva-me.com.

This policy is valid from August/2025.