Privacy Policy

Last updated: 11/03/2026

Introduction

This Privacy Policy explains how Scorpio Actividades Náuticas Lda, operating as Scorpio Madeira diving center (“Scorpio Madeira”, “we”, “our”, or “the Company”), collects, uses, stores, and protects personal data when you visit the website scorpiomadeira.com or interact with our services.

We are committed to protecting your privacy and ensuring that your personal data is processed in accordance with the General Data Protection Regulation (GDPR) and applicable data protection laws in Portugal and the European Union.

By using this website or booking our services, you acknowledge and agree to the practices described in this Privacy Policy.

Data Controller

The data controller responsible for the processing of personal data collected through this website is:

Scorpio Actividades Náuticas Lda
Caminho da Ribeira do Natal, 30
9200-031 Caniçal
Madeira
Portugal

Website: https://scorpiomadeira.com
Email: info@scorpiomadeira.com

Personal Data We Collect

We may collect and process the following categories of personal data:

Identification information such as first name and last name
Contact information such as email address and phone number
Booking details including activities reserved, dates, and participant information
Payment-related information required to process transactions
Communication records when you contact us by email, phone, or through website forms
Technical information such as IP address, browser type, device type, and website usage data

For diving activities, participants may also be required to provide health-related information through medical questionnaires to determine fitness for diving.

How We Collect Personal Data

Personal data may be collected when you:

Make a booking through our website or through an online booking platform
Contact us via email, telephone, messaging services, or contact forms
Provide information during the booking, check-in, or activity preparation process
Interact with our website through cookies or analytics tools
Subscribe to newsletters or marketing communications where available

Some bookings may be processed through third-party booking systems such as FareHarbor.

Purpose of Data Processing

We process personal data for the following purposes:

To manage, confirm, and administer bookings and reservations
To communicate with customers regarding reservations, schedules, or inquiries
To provide diving activities, training, and related services safely and effectively
To process payments and issue invoices
To comply with legal obligations and safety requirements
To improve our website, services, and customer experience
To send marketing or promotional communications where consent has been provided

Legal Basis for Processing

Under GDPR, personal data is processed on one or more of the following legal bases:

Performance of a contract when processing is necessary to provide booked services
Compliance with legal obligations when information is required by law or regulatory authorities
Legitimate interests related to operating and improving our services and communication with customers
Consent where you agree to receive marketing communications or optional services

Sharing of Personal Data

Personal data may be shared with trusted third parties only when necessary to provide our services or comply with legal obligations.

These may include:

Online booking platforms used to manage reservations
Payment service providers processing transactions
IT service providers responsible for website hosting and maintenance
Accounting, administrative, or legal service providers
Regulatory or governmental authorities when required by law

We do not sell or rent personal data to third parties.

International Data Transfers

Some service providers may process personal data outside the European Economic Area.

When such transfers occur, appropriate safeguards are implemented to ensure that personal data remains protected in accordance with applicable data protection laws.

Data Retention

Personal data is retained only for the period necessary to fulfill the purposes for which it was collected, including legal, accounting, and regulatory requirements.

Booking and financial transaction records may be retained for the period required by Portuguese tax and accounting regulations.

When personal data is no longer required, it will be securely deleted or anonymized.

Data Security

We implement appropriate technical and organizational measures to protect personal data from unauthorized access, loss, misuse, alteration, or disclosure.

These measures include secure servers, restricted access to data, and the use of secure payment processing systems.

Although we take reasonable steps to protect personal data, no method of data transmission or electronic storage can be guaranteed to be completely secure.

Cookies

Our website uses cookies and similar technologies to ensure the proper functioning of the website and to improve the user experience.

Detailed information about the cookies used on this website, their purpose, and how you can manage your preferences is available in our Cookie Policy.

Users can manage or withdraw their consent for cookies at any time through their browser settings or through the cookie consent tool available on the website.

Third-Party Websites and Services

Our website may contain links to third-party websites or services, including booking platforms and social media services.

Scorpio Madeira is not responsible for the privacy practices or content of external websites. Users are encouraged to review the privacy policies of any third-party websites they visit.

Your Data Protection Rights

Under the General Data Protection Regulation, you have the following rights regarding your personal data:

The right to access your personal data
The right to request correction of inaccurate or incomplete data
The right to request deletion of personal data where applicable
The right to request restriction of processing in certain circumstances
The right to data portability
The right to object to certain types of processing
The right to withdraw consent where processing is based on consent

Requests to exercise these rights may be submitted using the contact details provided in this Privacy Policy.

Complaints

If you believe that your personal data has been processed in violation of applicable data protection laws, you have the right to lodge a complaint with the competent data protection authority in Portugal.

Changes to This Privacy Policy

Scorpio Madeira reserves the right to update or modify this Privacy Policy at any time to reflect changes in legal requirements or operational practices.

Any updates will be published on this page with a revised “Last updated” date. Users are encouraged to review this Privacy Policy periodically.