PRIVACY POLICY
We are committed to protecting the privacy and personal data of customers and users of the website, which is why we have prepared this policy and the practices described herein. In this policy, we explain how your personal data is collected and processed, so we advise you to read it.
1. Identification of the data controller.
Entity: BEBLUESHIFT, LDA (hereinafter referred to as “BLUESHIFT“)
NIPC: 514133104
Headquarters: Rua dos Quintais, n.º 4, Abelheira, 2530 Lourinhã (Portugal)
Telephone contact: + 351 211 350 368 (national landline)
Email:
2. What is this policy about?
- This Privacy Policy explains how we collect and process personal data that is necessary for the provision of services that are available through the website and describes the practices adopted for that purpose.
3. What are personal data?
- Personal data shall mean all information relating to an identified or identifiable individual, whatever the nature and support of the information, including sound and image of the individual.
- An identifiable person is a person who can be identified, directly or indirectly, in particular by reference to an identification number or to other factors specific to his physical, physiological, mental, economic, cultural or social identity.
4. How do we use your personal data?
- The personal data processing operations that we carry out are an essential tool for your satisfaction and for the activity of BLUESHIFT and are performed in accordance with applicable law and best practices.
- Your personal data will not be reused for other purposes that are not previously identified or that have no connection with those purposes for which they were initially collected.
5. What are the purposes, legal basis and retention periods for the data collected?
- The personal data we process has specific bases, depending on the purposes for which they are intended, and will be kept for the time necessary for the respective purposes, as listed in this Privacy Policy.
- The personal data collected are only those necessary and appropriate for the purposes indicated.
- The following table shows the purposes of processing and data collected for these purposes, the respective grounds and the periods or criteria for storing data:
PURPOSES | LEGAL BASIS | COLLECTED DATA | RETENTION PERIOD |
To analyse and respond to your messages, customer support and information requests. | Consent for this specific purpose. | Name; email; telephone number. | For as long as necessary for this purpose. |
To review and process your application to work with us. | Need to take steps at the request of the candidate prior to entering into a contract. | Name; Address; LinkedIn profile; Curriculum Vitae and letter of motivation and data included therein. | 1 year. |
For website management operations. | Consent for that specific purpose (cookies);
Legitimate interests pursued by BLUESHIFT, namely to analyse users’ interaction with the website and manage it. |
Cookies Data; IP Address. | See information on the Cookies Policy. |
For fraud prevention and information systems security. | Consent for that specific purpose (cookies);
Legitimate interests pursued by BLUESHIFT for fraud prevention and information systems security. |
Cookies Data; IP Address. | See information on the Cookies Policy. |
For business purposes, such as data analysis, audits. | Consent for that specific purpose (cookies);
Legitimate interests pursued by BLUESHIFT. |
Cookies Data; IP Address. | See information on the Cookies Policy. |
- If the law provides for a specific or mandatory period, the data will be kept for that period. In all other cases, personal data will be kept for a maximum of the times indicated above, periods that the BLUESHIFT considers sufficient to fulfil the purposes.
- At the end of the conservation period, all personal data collected will be deleted.
6. How do we collect your personal data?
- We will collect your personal data through the forms on the website, but also through the website and the communication that it makes with your device and email messages that you send us.
- Your personal data is collected through your equipment as follows:
- When you fill in the contact and application submission forms;
- Through your browser;
- Through cookies;
- IP Address.
- BLUESHIFT is committed to process your data lawfully and legally.
- BLUESHIFT will not sell, rent or share your personal data with third parties, except as clearly identified in this Privacy Policy (see Section 11 to understand how).
7. What are cookies?
- Cookies are small information files that help you identify your browser and can store information, for example, User settings and preferences.
- BLUESHIFT will store cookies on your device to personalize and facilitate browsing as well as troubleshooting, statistics, quality assurance, and to monitor system security.
- With the exception of cookies specifically required for the performance of the website, the storage of other cookies will always depend on the acceptance and consent of the User, and this consent may be withdrawn at any time through specific browser tools.
- To know more about the cookies we use please refer to our Cookies Policy.
8. How do we protect your personal data?
- Your personal data is kept secure by adopting a variety of technical and organizational security measures to ensure that only those employees who are required to access the personal data in accordance with the access requirements and rules created for this purpose have access to it.
- To protect your personal data, we only use data center providers that offer adequate and documented security measures, including guarantees that your personal data is stored on servers that are maintained in controlled environments with limited access.
- Although we take all necessary precautions, we deem appropriate to protect the personal data you provide and we collect, one must be aware that no security system is impenetrable.
9. Which are your rights:
- Before we explain how you can exercise your rights, we inform you which they are:
- Access: the right to obtain confirmation as to whether or not personal data concerning you are being processed and, if so, the right to access your personal data;
- Rectification: the right to obtain the rectification of inaccurate personal data concerning you and to have incomplete personal data completed;
- Erasure: the right to obtain the erasure of your personal data when one of the grounds listed in the legislation applies, namely where:
- The personal data is no longer needed in relation to the purposes for which they were collected;
- The data subjects withdraws consent on which the processing is based and there is no longer other legal ground for the processing;
- The data subjects objects to the processing and there are no overriding legitimate grounds for the processing;
- The personal data have been unlawfully processed;
- The personal data have to be erased for compliance with legal obligations;
- The personal data have been collected in relation to the offer of information society services.
- Restriction of processing: the right to obtain limitation of processing if one of the situations listed in the legislation applies, namely where one of the following applies:
- The accuracy of the personal data is contested by the data subject;
- The processing is unlawful and the data subject opposes the erasure of the personal data requesting the restriction of their use instead;
- The controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise or defence of legal claims;
- The data subject has objected to processing related with automated individual decision-making.
- Objection: the right to object on grounds relating to data subject’s particular situation, at any time of the processing of personal data concerning him or her which is based on public interest or legitimate interests;
- Data portability: the right to receive personal data concerning him/her in a structured, commonly used and machine-readable format and the right to transmit those data to another controller without hindrance from the controller to which the data have been provided where the processing is based on consent or on a contract or where the processing is carried out by automated means.
- You also have the right to lodge a complaint with a supervisory authority (National Data Protection Commission at cnpd.pt).
- In addition to the rights described above, when the basis for the processing of data is consent, the User has the right to withdraw such given consent at any time, without this invalidating the processing of data carried out up to that point.
10. How can you exercise your rights?
- By writing to the following addresses:
(a) Via email: geral@blueshiftportugal.com
(b) Via post: Rua dos Quintais, n.º 4, Abelheira, 2530 Lourinhã (Portugal)
- If you request us to delete some or all of your personal data, some of the services you have requested may not be provided to you and BLUESHIFT will retain only the personal data necessary to comply with its legal obligations.
11. When do we communicate data to third parties?
- BLUESHIFT may use third parties to provide certain services, such as maintenance, technical support, marketing, billing or payment management, which may have access to some personal data, in particular, data required for contractual purposes.
- BLUESHIFT ensures that the entities that have access to the data are credible and offer high guarantees of protection, and that that data will never be transmitted beyond what is necessary to provide for the contracted service, nevertheless BLUESHIFT remains responsible for the personal data made available.
- BLUESHIFT may also transmit data to third parties in the context of investigations, inquiries and judical and / or administrative proceedings or of similar nature, provided that it is duly ordered by a court.
12. Third party websites.
- The WEBSITE may contain links to other websites which may collect and process your personal data, and this processing is the sole responsibility of the owners of these websites, and BLUESHIFT does not take any responsibility for its policies and / or practices.
- Examples of such third parties are Facebook or LinkedIn through the buttons that are present on the WEBSITE.
13. DATA TRANSFERS OUTSIDE THE EUROPEAN UNION.
- Your data will be processed by us within the European Economic Area.
- In the event that data transfers may occur to third countries outside the European Union or the European Economic Area, BLUESHIFT will make the necessary efforts to adopt the appropriate guarantees so that these are realized in accordance with the applicable legislation.
14. Minors.
- The WEBSITE is not intended for minors under the age of 18, thus, we request that minors do not provide us with personal information through the website, social media and/or emails.
15. Sensitive personal data.
- BLUESHIFT requests you not to send or disclose to us any sensitive personal data, i.e. information revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic information, biometric information, health data or data concerning a natural person’s sex life or sexual orientation.
- If you nevertheless send or make known such categories of personal data to us, it will be deleted immediately.
16. Changes to the privacy policy.
- BLUESHIFT reserves the right to readjust or change this Cookies Policy at any time. These changes will promptly be made public.
- BLUESHIFT recommends that users who interact with the website visit this Privacy Policy on a regular basis, as a way of keeping abreast of any changes made to it.
17. Contact details.
- If you have any questions about this Privacy Policy, please email us at .
18. Last review.
- 22 – 05 – 2024. Lisboa (Portugal).