SECTION 1 - DATA COLLECTION AND PROCESSING
All personal data regarding visitors, subscribers or other users browsing the CdR website will be processed in accordance with the General Data Protection Regulation (RGPD). This regulation, effective from May 25, 2018, redefines EU data protection rules and gives citizens greater control over their personal data.
Personal data actively and consciously “provided by” the data subject include, for example, account information sent via forms. The following categories can be classified as being "provided by the data subject": 1) Data actively and consciously provided by the data subject upon optional registration (e.g. zip code, username, age, etc.); (2) Observed data provided by the data subject in connection with his or her use of the service or device (e.g. (search history, traffic data, and location data), We use analytics tools to collect and analyze such data. Data collected by these tools is used to monitor the status of the website, improve its interface and usability, and display content and advertising material in a personalized manner, always with a better user experience in mind.
The purpose of registration is to provide access to newsletter subscriptions, educational content, and other services provided by CdR. Collected personal data may thus include the user's first and last name, email address, landline and/or mobile number, address, and other location data such as IP address, cookies and/or other information. When we request such data, our aim is to maintain a closer relationship with our users. Registrations allow us to address users by their own name, making it possible to meet their needs or requests more effectively. By using the website, the user agrees to provide accurate data and keep it up-to-date.
SECTION 2 - COOKIES POLICY
WHAT ARE COOKIES?
Cookies are short text files containing relevant information that is processed by a browser when a user visits a website. Cookies help the website to recognize the user's device (tablet, desktop, mobile, etc.) whenever they visit us. Cookies only retain information related to your preferences; they do not disclose any personal data. For an optimal browsing experience, we recommend that users do not disable cookies. Cookies improve browsing responsiveness.
TYPES OF COOKIES
There are several types of cookies with different features and functions, to wit:
- Essential cookies: These cookies are very important when accessing specific website areas, and allow for a correct browsing experience;
- Functionality cookies: These cookies allow user preferences to be saved when users visit the website. This way, users don't have to customize it every time they visit it;
- Analytical cookies: These cookies allow us to analyze how users use the website, know what the most popular pages are, and monitor the website performance, making it possible to understand any possible error messages. Personal data will never be disclosed.
- Advertising cookies: These cookies channel ads based on the user's interests and website behavior so as to display advertising and content in accordance with the user's tastes and preferences.
SECTION 3 - DATA COLLECTION AND PROCESSING PURPOSES
WHY DO WE NEED THE DATA?
3.1 CUSTOMER MANAGEMENT:
Data processing is necessary, among others, to provide services to be contracted between the customer and CdR.
3.2 MARKETING ACTIONS:
CdR may process data to send email and telephone information about the company's services and content. Such data processing will only be carried out with the user's consent, provided when subscribing to the newsletter via a dedicated form on the CdR website, blog, or other company channels. Data can also be used for marketing campaigns on social media platforms such as Facebook. Consent to the processing of personal data for direct marketing purposes may be revoked at any time.
3.3. TARGET DEFINITION:
CdR creates customer profiles based on information concerning their behavior on the website. Such information is analyzed to determine the customer's information consumption profile. This analysis enables CdR to improve its offering, plan and manage its communication, and send information tailored to a given profile.
Personal information may be disclosed internally for the purpose of assessing job applications. Please check the spontaneous application form on our PEOPLE page.
SECTION 5 - PERSONAL DATA STORAGE LOCATION AND PERIOD
CdR stores customer and user data on its servers, which are located in the European Union. All servers conform to high security standards in order to protect personal data and comply with all applicable privacy standards. The period during which personal data is stored and retained depends on the purpose for which the information is used. However, legal requirements require that data be stored for a certain period. Accordingly, whenever there is no specific legal requirement otherwise, data will be stored and retained for the period deemed necessary for the purposes for which it was collected or provided, or for as long as it is permitted by the National Data Protection Commission.
SECTION 6 - RIGHTS OF PERSONAL DATA SUBJECTS
WHAT ARE THE RIGHTS OF DATA SUBJECTS?
At any time, the data subject may ask us to:
- Access the information we have on said data subject;
- Correct said data, if it is incorrect or incomplete;
- Delete or limit the processing of the subject's personal data;
- If data processing depends on the data subject's consent or agreement and is carried out automatically, said data subject is entitled to be sent the personal data he or she has provided, in a structured, commonly used and computer-readable format;
- The data subject has the right to file a complaint to the National Data Protection Commission
SECTION 7 - DATA PORTABILITY
Article 20 of the RGPD also establishes a new right to data portability, which is closely linked to the right of access. The purpose of this new right is to empower data subjects by giving them greater control over their personal data.
Data subjects have the right to obtain, in a structured, commonly used and readable format, any personal data they have provided to a controller, as well as the right to transfer such data to another controller, without the original controller having the right to
WHAT IS THE DEADLINE TO RESPOND TO A PORTABILITY REQUEST?
Article 12.3 requires the data controller to provide "the data subject with information on the measures that have been taken... without undue delays and within one month of receipt of the request." In complex cases this one-month period may be extended to a maximum of three months, provided that the data subject has been informed of the reasons for the extension within one month of the initial request.
HOW SHOULD PORTABLE DATA BE PROVIDED?
Pursuant to Article 20.1 of the RGPD, data subjects have the right transfer to their personal data to another controller without the original controller having the right to prevent it. Article 20.2 requires controllers to transfer portable data directly to other controllers "whenever it is technically possible."
SECTION 8 - FINAL CONSIDERATIONS
Further information can be obtained from supervisory authorities such as the National Data Protection Commission (CNPD) in Portugal and its publications.
You may access your personal data, obtain a copy of it, and/or request its updating or deletion, as provided by law, by contacting us at Rua Narciso José Machado Guimarães, 630, 4795-089, Vila das Aves, Portugal, or via email to firstname.lastname@example.org. For any questions regarding this commitment, please do not hesitate to get in touch with us.
Date of this disclaimer update: December 16, 2019.