Privacy Policy

This policy provides information on how Atelier de Software collects and processes your personal data obtained through the use of the atelierdesoftware.pt website, in accordance with Regulation (EU) 2016/679 of April 27, 2016 (General Data Protection Regulation) and Law No. 58/2019 of August 8.

It is important that you read this privacy policy so that you are fully aware of how and why we use your data.

1. Data Controller

The entity responsible for processing personal data provided on the atelierdesoftware.pt website is Atelier de Software by Pina dos Santos, Lda., headquartered at Rua da Esperança, nº 17, loja C, 2735 - 473 Cacém and office at Rua Amílcar Cabral Nº7, Piso 2 - Sala 4, 2735-534 Agualva-Cacém, registered at the Commercial Registry Office R.N.P.C., under the unique registration and tax number 516 156 870, operating in the market under the brand Atelier de Software.

2. How to Contact Atelier de Software

If you have any questions about the processing of personal data carried out on our website or if you wish to exercise your rights in this area, you can contact us via email at geral@atelierdesoftware.pt or by letter sent to the office at Rua Amílcar Cabral Nº7, Piso 2 - Sala 4, 2735-534 Agualva-Cacém.

3. Personal Data Processed by Atelier de Software

The personal data referred to in this privacy policy are the information relating to you that we obtain when you access and browse our website, which allow us to identify you directly or indirectly.

We may collect, use, store, and transfer different types of personal data about you, which we have grouped as follows:

Contact form: When you contact Atelier de Software through the form available on the website, we store your contact details (name and email) and your message to respond to your request personally, based on the legal grounds of the need to take pre-contractual steps at your request or Atelier de Software's legitimate interest in responding to contact requests addressed to it, depending on the purpose of your communication.

Email contacts: When you send us a message by email, for example to request information about our services, a quote for a project, or clarification of a doubt, we will process the contact details you provide and the content of your message to respond to your request, based on the legal grounds of the need to take pre-contractual steps at your request or Atelier de Software's legitimate interest in responding to contact requests addressed to it, depending on the purpose of your communication.

Cookies: We use cookies only to analyze traffic data from visits to the website. These cookies may collect personal data, such as the Internet Protocol (IP) address, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform, and other technologies on the devices you use to access the website. The legal basis for processing this data is your consent, which means that cookies will only be installed with your authorization. We suggest you read our Cookie Policy for more details on which cookies we use and their purpose.

4. Retention Period of Your Personal Data

The data we collect will be processed for the strictly necessary period to fulfill the purposes for which they were obtained. When the maximum period is reached, your personal data will be anonymized or securely deleted.

The most relevant periods are as follows:

Contact form – We will process your data for the time necessary to respond to your contact request. This data will then be archived together with the documentation relating to your client file or, if you are not a client of Atelier de Software, will be deleted after 6 months.

Email contacts – We will process your data for the time necessary to respond to your request. This data will then be archived together with the documentation relating to your client file or, if you are not a client of Atelier de Software, will be deleted after 6 months.

Cookies – We will process your data for a maximum period of 2 years, during which cookies may remain active.

5. Recipients of Personal Data Collected by Atelier de Software

The personal data we process may be accessed by Atelier de Software employees responsible for managing the website and by entities subcontracted by us to provide IT support, on our behalf and under our responsibility and supervision.

6. Data Transfers Outside the European Union

Your data will be processed in Portugal or Europe, and no data transfers outside the European Union will take place.

7. What Security Measures Protect Your Data

Atelier de Software uses physical, technological, and organizational security measures to protect personal data against destruction, loss, alteration, disclosure, or unauthorized access.

Among these measures, we highlight the following, which we apply on the website:

- The entire website uses an encrypted HTTPS / SSL connection, following the best security practices recommended for online services with data transactions;

- We do not store personal data on the website;

- We monitor website access to prevent, detect, and block unauthorized access. The platform we use is protected with a security module that limits and blocks unauthorized access attempts and analyzes and blocks malware attacks;

- The number of people with access to personal data from contacts generated through the website, such as email messages, is restricted and limited to the purposes indicated above;

- For partners and subcontracted suppliers who process personal data, we require proof that they practice adequate security levels.

8. Your Rights as a Data Subject and How to Exercise Them

Depending on the purpose and legal basis for processing your data, you may exercise the following rights:

- Access, update, or correct inaccurate data we hold about you. You can update your data with Atelier de Software using one of the contact methods indicated above;

- Request that we delete your personal data when it is no longer necessary for the purposes for which it was collected or when we no longer have a legal basis to process it;

- Request that we cancel or limit the use of your data when it may not be accurate or is no longer necessary for the original processing purpose, but cannot or you do not want it to be deleted;

- When data is processed based on your consent, you have the right to withdraw it at any time;

- In cases where the legal basis for processing the data is consent or a contract, you may also request the portability of the personal data you have provided to us, in a structured, commonly used, and machine-readable format, so that you can transmit it to another entity;

- When data is processed based on our legitimate interest, you may object to the processing of your data;

- You also have the right to lodge a complaint with the Portuguese Data Protection Authority – CNPD regarding any issue related to the processing of your personal data if you believe your rights have not been properly guaranteed or if you are not satisfied with our response to a request to exercise your rights. You can contact the CNPD via email at geral@cnpd.pt or through the forms available on the website https://www.cnpd.pt/.

9. Changes to the Privacy Policy

This Privacy Policy is updated regularly and may be changed without prior notice. To stay up to date, we recommend that you consult it regularly. The last revision was on April 18, 2022.