1. PERSONAL DATA
In accordance with the GDPR, "Personal Data" shall mean any "information relating to an identified or identifiable natural person («data subject»); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier, or one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that natural person".
2. DATA PROCESSING RESPONSIBLE PARTIES
The responsibility for processing personal data transmitted in the context of using the Website, regardless of its nature or ownership, shall always lie with ESPIRITO REBELDE, UNIP., LDA. For this purpose, please contact the data protection officer Katty Vieira at the following contacts: +351 220 994 155 or by email at rgpd@espiritorebelde.pt
However, concerning the processing of personal data of Buyers – individuals or entities using the Site to purchase products marketed by ESPIRITO REBELDE, UNIP., LDA., it shall act as responsible for the means of such processing, using the data for the determined purposes and strictly legitimate purposes necessary for the completion of legal transactions, as well as fulfilling legal obligations.
3. COLLECTION AND PROCESSING OF PERSONAL DATA
Access and mere use of the Site by Users do not imply the collection or processing of any personal data. However, whenever a User creates an account on the Site, certain data will be collected, the nature of which varies depending on the purpose associated with it. The purposes underlying the collection and processing of data can be consulted in section 7 of this "PP".
4. TRANSFERS OF PERSONAL DATA
In certain cases, personal data transmitted by Site Users may be subject to transfer to other entities providing services to ESPIRITO REBELDE, LDA. operating in the European Union.
5. RIGHTS OF DATA SUBJECTS
Users of the Site, regardless of their role, are guaranteed the right of access, rectification, withdrawal of consent, objection to processing for the previously defined purposes, erasure, restriction, and portability of the personal data they have transmitted.
The aforementioned rights of users may be exercised at any time by simply sending such requests in writing to the representative of the Data Controller – rgpd@espiritorebelde.pt.
Without prejudice to the foregoing, users of the Site who have transmitted their personal data may also submit a complaint to the National Supervisory Authority (National Data Protection Commission – CNPD), whose contacts can be consulted at https://www.cnpd.pt/.
6. PERIOD OF PERSONAL DATA RETENTION
The personal data collected and processed by ESPIRITO REBELDE, LDA. will be retained for the entire period during which the registration of users on the Site remains active.
Once the user's registration on the Site is terminated, the personal data transmitted to ESPIRITO REBELDE, LDA. will be retained for up to 1 (one) year from that date, unless another retention period is required by the specifically applicable law.
However, the Site user can, at any time, request ESPIRITO REBELDE, LDA. to delete the personal data they have transmitted.
7. PURPOSES ASSOCIATED WITH THE COLLECTION AND PROCESSING OF PERSONAL DATA
The personal data provided in the context of using the Site will be processed and stored electronically in databases specifically created for this purpose and are mandatory as they are necessary and indispensable for the fulfillment of the following purposes: registration of Buyers; access, use, and enjoyment of the Site by them; execution of other purposes, including the provision of services, execution of commercial transactions to be concluded, commercial management, performance of marketing and sales operations, including sending information about new or current products, offers, or other promotional actions; compliance with current legal obligations (especially of a fiscal, administrative, and judicial nature).
8. SECURITY MEASURES
ESPIRITO REBELDE, LDA. is committed to protecting the privacy of Site users. Therefore, it employs highly innovative security systems that ensure that any personal data transmitted to it by Site Users is adequately stored and protected, preventing and preventing any unauthorized access to these elements, as well as their loss, disclosure, destruction, or use beyond the purpose that justified their collection.