Personal Data Protection Policy

Zyrgon Portugal Lda., respects the privacy of its customers / users; workers and suppliers. This Privacy Policy describes who we are, for what purposes we may use your data, how we treat it, who we share it with, how long we keep it, as well as how to contact us and exercise your rights. The regulations provided in this Data Protection Policy complement the provisions on the protection and processing of personal data specified in the contracts that the Customers / Users, Workers and suppliers conclude with Zyrgon Portugal Lda, as well as the rules established in the terms and conditions that regulate the offer of the various products and services and that are duly publicized in the respective websites.

Your data is collected by Zyrgon Portugal Lda, headquartered at Travessa do Sebeiro Nº12, hereinafter referred to as Zyrgon.

Zyrgon processes and stores personal data within the European Union (EU) and respects best practices in the area of personal data security and protection, having taken the necessary technical and organizational measures to comply with the General Data Protection Regulation (Regulation (EU) 2016/679), which is a directly binding legislative act for natural and legal persons who, whether resident or not in the EU, treat data of citizens of the European Union and which aims to ensure that the processing of data is lawful, loyal, transparent and limited to authorized purposes.

The privacy statement is under the responsibility of Zyrgon who is considered the data controller for the purpose of the RGPD and will determine the purpose and means of processing personal data presented and collected online.

The Data Protection Officer (DPO) ensures compliance with the regulations and is involved in all matters relating to the protection of personal data. His identification and contact details are indicated at the end of this document.

 

What is personal data?

Personal data is any information of any nature and regardless of its support, including sound and image, relating to an identified or identifiable natural person.

It is deemed identifiable the natural person that may be, directly or indirectly, identified by reference to a name, identification number, location data, identifiers by electronic means or one or more specific elements of his or her physical, physiological, genetic, mental, economic, cultural or social.

 

What is the processing of personal data?

The processing of personal data consists of an operation or set of operations carried out on personal data or personal data sets, by automated means or not, namely collection, registration, organization, structuring, preservation, adaptation, retrieval, consultation, use, disclosure, dissemination, comparison, interconnection, limitation, erasure or destruction.

 

 

Our data protection policy guarantees that the data is:

  1. Object of lawful, fair and transparent treatment of the data subject (‘lawfulness, loyalty and transparency’);
    2. Collected for specific purposes, explicit and legitimate and cannot be further processed in a way incompatible with those purposes;
    3. Appropriate, relevant and limited to what is necessary in what concerns the purposes for which they are processed;
    4. Accurate and updated whenever necessary; all appropriate measures are undertaken to ensure that inaccurate data, taking into account the purposes for which they are processed, are erased or rectified without delay;
    5. Preserved in a way that allows data holders to be identified only for the period necessary for the purposes for which they are processed;
    6. Treated in a way that guarantees their safety, including protection against their unauthorized or unlawful treatment and against their accidental loss, destruction or damage by adopting the appropriate technical or organizational measures;

 

Purposes of Treatment of Personal Data.

Guaranteeing, whenever necessary, the prior consent of the holder of the personal data, we will collect, among others, the following information: Name and Surname, Civil Identification Number, Tax Identification Number; Date of Birth, Email and Telephone.

In general, the personal data collected are based on and are intended for the management of the contractual relationship, the provision of the contracted services, the suitability of the services to the needs and interests of the Client / User; Worker and Supplier, in particular for the purpose of accessing specific features of the services, contents’ suggestions, proximity information services as well as information and marketing actions.

In addition, personal data may also be processed for the purpose of complying with legal obligations and for the purposes of investigation, detection and prosecution of serious crimes.

 

Cookies

Our website uses cookies or similar technologies to ensure the best user experience and to analyse trends, track user movement within the website, and collect demographic information about our user base as a whole. Our Cookies record information such as Internet Protocol (IP) address, browser type, Internet Service Provider (ISP), reference / exit pages, files accessed on our site (for example HTML pages), operating systems, date and time, to analyse trends on the site.

 

Shelf life

The length of time during which personal data is stored and kept varies according to the purpose for which the information is processed.
In fact, there are legal requirements that mandate the retainment of the data for a minimum period of time. Thus, and whenever there is no specific legal requirement, the data will be stored and kept only for the minimum necessary period for the pursuit of the purposes that led to their collection or subsequent processing, under the terms defined by law.

 

Legal Age

By accepting this privacy policy you guarantee to be 18 years or older.

 

Use of personal data

Zyrgon will contact you to present our goods and / or services to you. The processing of such data is based on the consent given by the data subject. Access to personal data is strictly limited to the personnel of the data controllers and subcontractors.

 

Sharing of personal data

Zyrgon ensures that it does not intend to transfer data to third countries to the General Data Protection Regulation and, if it does so, it will request your explicit consent.

Zyrgon concluded with its subcontractors an agreement whereby they undertake not to transfer data to third countries.

In certain situations, both Zyrgon and its Subcontractors may be notified to disclose personal information in response to requests by supervisory authorities to meet the requirements of the RGPD.

 

Security in Processing

Zyrgon is committed to ensuring the protection of the security of personal data made available to us and has adopted and implemented strict rules in this regard. Compliance with these rules is an obligation for all those who legally access them.

Bearing in mind the concern and commitment that Zyrgon reveals in the defence of personal data, a number of technical and organizational security measures have been adopted in order to protect the personal data made available to us against its dissemination, loss, misuse, alteration, unauthorized access or processing, as well as against any other form of illicit treatment.

In addition, third parties that, in the scope of the provision of services, process the personal data of the Client / User; Worker and Supplier in the name and on behalf of Zyrgon, are required in writing to carry out appropriate technical and safety measures which at all times meet the requirements of the legislation in force and ensure the protection of the rights of the data subject owner (namely, the protection of the privacy and personal data of Customers, Users and Employees).

 

Access and rectification or deletion of personal data

As the holder of the data, the Client / User, Worker and Supplier have the right to request access to the data concerning him, to ask for rectification and to eliminate them. It may also limit the processing of data as well as oppose it and, furthermore, require data portability.

They may do so, either directly or by written request, addressed to the person responsible for the treatment, through the contacts made available for this purpose in this document.

They may also request clarification from the Data Protection Officer or submit a complaint to the CNPD whenever it’s their understanding that their rights are being violated.

 

Right of access

The holder of the personal data has the right to obtain from Zyrgon the confirmation that the data relating to him are or not subject of treatment and, if necessary, to access his personal data and access the information foreseen in the law.

 

Right of rectification

The holder of the personal data has the right to obtain from Zyrgon’s company without undue delay the rectification of inaccurate or incomplete data concerning him.

 

Right to erase data (“right to be forgotten”)

The holder of the personal data shall have the right to obtain from Zyrgon the erasure of his data without undue delay and the data subject shall be obliged to delete the personal data without undue delay when, in particular, one of the following reasons applies:

  1. (a) personal data is no longer necessary for the purpose for which they were collected or processed;
  2. (b) the data holder has withdrawn his consent for the processing of data (in cases where treatment is based on consent) and there is no other basis for such treatment;
  3. (c) the data holder opposes the treatment and there are no prevailing legitimate interests justifying the treatment;

 

Right to limit treatment

The holder of the personal data has the right to obtain from Zyrgon the limitation of the treatment if, in particular, one of the following reasons applies:

  1. a) To contest the accuracy of personal data, for a period that allows Zyrgon to verify its accuracy;
  2. b) The processing of data is legitimate, and the data holder opposes the erasure of personal data and requests, in return, the limitation of its use;
  3. c) Zyrgon no longer requires personal data for treatment purposes, but such data are required by the holder for the purposes of declaration, exercise or defense of a right in a judicial process; (d) if he opposes the processing until it is established that the legitimate grounds of the controller prevail over those of the data subject.

 

Right of portability of data

If the processing is subject to the consent of the data subject and such consent has been provided by automated means, the data subject is entitled to receive the personal data concerning him and which he has provided to Zyrgon in a structured format, of current use and of automatic reading.

 

Right of opposition

In cases where the processing of data is undertaken for 1) effect of the legitimate interests pursued by Zyrgon; or 2) the processing of data is carried out for the purposes of direct marketing or 3) definition of profiles, you can also, at any time, oppose the treatment of your personal data. 

 

Marketing Emails

Data controllers are allowed, after explicit consent, to send marketing emails to site users. At any time, the user may cancel the consent through the link, existing for this purpose, in each email sent.

 

 Changes to this policy

This policy may be updated from time to time, for example due to changes to relevant legislation. If any material changes are made, customers will be notified by email or notification on the website.

 

Contacts
________________________________________

DATA CONTROLLER

Zyrgon Portugal Lda.
Tel: +351 216 027 740
E-mail: geral@zyrgon.com

DATAT PROTECTION OFFICER

Dr. Patricia Fatana Afonso
Address: Estrada da Torre n.º 1554, R/C Loja, 2775-667 Carcavelos
Tel: +351 965808082
E-mail: patriciafatana@gmail.com