GDPR

GENERAL DATA PROTECTION REGULATION

For the purposes of the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27 (General Data Protection Regulation), the commercial company HIDDENSPICE, Lda., with NIPC 514759771 and registered office at Rua Pinto Mourão 246 , 3º Esq. Trás, 4400-253, parish of Mafamude, municipality of Vila Nova de Gaia, with telephone number 223 165 522, email address geral@dagalcs.pt, the holder of personal data (Client) is hereby informed that:

1) The entity responsible for the processing of personal data is the commercial company Hiddenspice, Lda and its franchisees.

The personal data to be processed are the following: name, address, email address.

2) The Customer's personal data is processed because it is necessary for commercial budgeting, conclusion and execution of the contract or because it was subject to consent. The omission or inaccuracy of this data or other information provided by the customer is their sole responsibility.

3º) The personal data provided by the Customer will be processed and stored electronically, intended to be used by Hiddenspice, Lda and its franchisees for: marketing and sales, customer management and service provision, accounting, tax and administrative management, management of litigation, network and systems management, control of information security and tax security and compliance with legal obligations.

4) You can oppose data processing at any time and by any means, without prejudice to compliance with obligations imposed by law.

5th) Personal data are retained for different periods of time, depending on the purpose for which they are intended and taking into account legal criteria, necessity and minimization of retention time, without prejudice to the periods legally defined for the different purposes.

6) You have the right to request from Hiddenspice, Lda and its franchisees information about the type of processing to which your data is being subjected. The information will be provided in writing and the request must be made to the email geral@dagalcs.pt. If the Customer so requests, the information may be provided orally, provided that the identity of the holder is proven by other means.

7º) Your personal data was transferred to Hiddenspice, Lda and its franchisees for the purposes of accounting and tax processing and marketing and sales. Hiddenspice, Lda, Lda and its franchisees may use subcontractors for the purposes of processing personal data, namely for customer management, service provision, billing and litigation management, with these entities being obliged to develop appropriate technical and organizational measures data protection and ensure the defense of the holder's rights. In certain circumstances, certain personal data may have to be communicated to public authorities, such as tax authorities, social security, courts, supervisory and inspection entities, as well as security forces.

8) You have the right to access a copy of the personal data being processed. If the request is submitted electronically, the information must be provided in a commonly used electronic format.

9) You have the right to request the rectification of your personal data at any time.

10) You have the right to request the erasure of your personal data, without prejudice to compliance with legal obligations.

11) You have the right to oppose the erasure of your personal data and request the limitation of its processing, without prejudice to compliance with legal obligations.

12) You have the right to object to the use of your data for direct marketing purposes.

13) Your personal data is processed in an automated or non-automated manner.

14) You have the right to request that your personal data be transferred to another entity.

15º) Your personal data is protected, guaranteeing its pseudonymization and maintaining the ability to ensure the permanent confidentiality, integrity, availability and resilience of processing systems and services, the ability to reestablish availability and access to data in a timely manner in the event of a physical or technical incident and a process to regularly test, assess and evaluate the effectiveness of technical and organizational measures to ensure the security of processing.