Last updated: January 2019
1.1 “Personal Data” – information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
Article 4 – REGULATION (UE) 2016/679 of the European Parliament and of the Council of 27 April 2016 (General Data Protection-GDPR)
2. Controller and National Supervisory Authority
2.1 The controller responsible for collecting and processing the personal data of the users of this website is Marques SGPS S.A., tax number 512 058 989, with office in Rua Joaquim Marques nº 34, in the municipality of Pico da Pedra, 9600-099 Ribeira Grande, phone number 296 205 800 and e-mail address email@example.com.
2.2 The national supervisory authority is Comissão Nacional de Proteção de Dados (CNPD), the Portuguese Data Protection Authority:
Av. D. Carlos I, 134 – 1.º 1200-651 Lisboa
3. Types of personal data and purposes of the processing
3.2 Contact form: If you wish to contact any of the companies from GRUPO MARQUES directly through the website, you need to fill the form provided for that purpose, which can be found in the menu “Contacts”.
Some personal data will be requested as identification data (name and e-mail address).
These Forms help the user access the different companies under GRUPO MARQUES in an easier, safer and faster way.
Filling these Forms gives GRUPO MARQUES the opportunity of providing a faster, more personalized service.
3.3 The User shall ensure that the personal data made available to Marques, SGPS, S.A. are accurate and he/she shall be responsible for communicating any changes to the data.
3.4 The user may occasionally (at least once a year) receive from the companies under GRUPO MARQUES with whom he/she interacted a request to confirm his/her personal data, as the accuracy of this data is, by Law, a shared responsibility of both parties.
4. Period of retention of your personal data
The user’s personal data will be retained for the period required to fulfil legal obligations.
In the absence of a specific legal requirement, the user’s personal data will be stored and retained for a period of 10 years.
5. Disclosure of data to third parties
5.1 Your personal data may be accessed by third party service providers who assist Marques, SGPS, S.A. in its activities, providing services such as web-page hosting and e-mail address hosting.
Marques, SGPS, S.A. shall, as far as possible, assure that the entities who have access to the personal data are reliable and offer guarantees for the protection of the data, and that they will never have access to data beyond what is required for providing the services for which they were contracted.
5.2 Aside from these partners, your personal data may be disclosed in the following situations:
- To meet the requirements established by law or by competent governmental or judicial authorities.
- To meet the requirements necessary to bring about or to assist legal proceedings or a defence in a lawsuit.
- Your personal data may be transmitted to the police or to the judicial authorities, in accordance with the applicable legislation and regulations and by means of a formal request on the part of the authorities, for purposes of fraud prevention (anti-fraud services).
6. torage of your personal data
Your personal data collected and processed by Marques, SGPS, S.A. are stored in servers with limited access, located in supervised facilities.
7. Transfer of data abroad
Your data will not be transferred to entities located abroad.
Where this transference is justified (for example, by the request of the data subject for purposes of contacting Marques Exportação), Marques SGPS, S.A. shall strictly comply with the applicable legal provisions, particularly when determining the adequacy of the country at hand in relation to personal data protection and the applicable data transfer requirements.
8. Safety measures
To avoid unauthorized disclosure or access to personal data and to ensure the appropriate use of each user’s personal data, Marques SGPS, S.A. shall resort to appropriate and reasonable physical, technical and administrative procedures in order to safeguard the data it collects and processes, protecting personal data against transmission, loss, inappropriate use, alteration, unauthorized processing or access, as well as against any type of unlawful processing.
For this purpose, in addition to using certificate-based encryption (SSL /TLS) for all the data in the website, Marques, SGPS, S.A. has an internal security policy which covers the processes for access control, configuration, storage, back-up, support, transmission, audits, technical infrastructure updates and a solid authentication policy.
9.1Accessing and browsing the website: Upon accessing the website, a set of data are automatically collected, which are then temporarily stored in specific files, and are also automatically eliminated after the established period. These data are known as Cookies.
These data are collected for merely technical purposes, such as configuring the connection, guaranteeing the system’s safety, ensuring the technical administration of the network and optimizing the website. The following are the personal data collected with the aforementioned aim:
- a) IP address of the requesting processor;
- b) Date and time of access;
- c) Name and URL of the transferred file;
- d) Volume of data transmitted;
- e) Notice of whether the transfer was successful;
- f) Identification data for the software of the browser and the operating system;
- g) Website from which you have accessed our website;
- h) Name of your internet service provider.
Cookies help improve our service. Some cookies are essential to ensure the available features, while others are intended to improve the performance and experience of the user.
10. Rights of the Data Subjects
According to the legislation in force, the user has the right of access and the right to rectification of his/her personal data, as well as the right to request their erasure, object to its processing and request its restriction or portability, where applicable.
The user may also object to their data being used for the purpose of creating a customer profile; in this case, the user will not enjoy personalized offers or services. Additionally, he/she may, at any moment, request to stop receiving our communications for marketing and advertising purposes.
These rights may be exercised by directly contacting the Data Protection Officer of GRUPO MARQUES:
- by address : Rua Joaquim Marques, n.º34, freguesia do Pico da Pedra, 9600-099 Ribeira Grande;
- by phone: + 351 296 205 800
- by email: firstname.lastname@example.org;
11. Connection to social media
We support connection to social media, but are in no way responsible for their privacy and safety policies, so we advise you to read them.
These are connections to social media outside GRUPO MARQUES and are subject to their respective Privacy Policies. These social media may record information regarding the users’ internet activities, including on our website.
12. Applicable right
12.1 In case of controversy or complaint of any nature in relation to this website, the Regulation (UE) 2016/679 of the European Parliament and of the Council of 27 April 2016 (General Data Protection-GDPR) shall apply, complemented by the Portuguese legislation in force when it is omissive, regardless of any conflicts of applicable laws.