Privacy And Cookies Policy

Tralhão takes care of the data protection and privacy of its customers and users. It uses effective technology so that its use is safe. When you contact us through our platforms, we refer to all channels and media, digital and physical, you are automatically accepting all the terms of this agreement in full, as well as the terms of use of the website.

Tralhão processes the personal data of its users in accordance with the legislation in force in Portugal. This policy applies only to this website (www.tralhaodesigncenter.com), and not to others that may be linked to it.

What is personal data?

Personal data is any information, of any nature and in any medium, relating to an identified or identifiable natural person.

A person who can be identified directly or indirectly, for example by name, identification number, location data, electronic identifier or other elements that allow the identification of this natural person is considered to be identifiable.

Who are the holders of personal data?

The user, a natural person to whom the data relates and who has used Tralhão’s services or products.

Tralhão informs that it also protects personal data and respects the rights of its users.

Compliance with the duties and rights of the holders of these data are the responsibility of the user, being the treatment carried out by Tralhão made in accordance with point 7 of this document.

What categories of personal data do we process?

a. Identification and contacts

Civil or tax identification number, data for payments, billing and shipping address, telephone contact and e-mail address.

b. Service

Products and Services purchased and subscribed.

c. Information on the use of the Service

Statistical information on the use of services, address I P.

d. Content

Information included by users in the platforms made available to customers.

Consent: when you have your express consent - in writing or through the validation of an option - and prior and if this consent is free, informed, specific and unambiguous.

Or

Compliance with legal obligations: when the processing of personal data is necessary to comply with a legal obligation to which our company is subject, such as the communication of identification or traffic data to law enforcement, judicial, tax or regulatory authorities;

Or

Legitimate interest: when the processing of personal data corresponds to a legitimate interest of our company or third parties, such as data processing for, improving service quality, fraud detection and revenue protection, and when our reasons for its use should prevail over your data protection rights.

For what purposes and for how long does our company process your personal data?

Your personal data is processed by our company only for the period of time necessary to achieve the defined purpose or, as applicable, until you exercise your right to object, right to be forgotten or withdraw consent. After the respective retention period has elapsed, our company will delete or anonymize the data whenever it should not be stored for a different purpose that may remain.

What are the terms of processing and storage of personal data?

Our company processes and stores your personal data according to the purposes for which they are processed.

There are cases in which the law requires the processing and storage of data for a minimum period of time, namely: for 10 years the data necessary to inform the Tax Authority for accounting or tax purposes. But where there is no specific legal obligation, then the data will be processed only for the period necessary to fulfill the purposes that motivated its collection and preservation and always in accordance with the law, the guidelines and decisions of CNPD. So:

Our company will process and maintain your personal data for as long as you have a contractual relationship with us.

Our company may retain other personal data for periods longer than the duration of the contractual relationship, either on the basis of the Customer’s consent, or to ensure rights or duties related to the contract, or because it has legitimate interests that justify it, but always for the period strictly necessary to achieve their purposes and in accordance with the guidelines and decisions of the CNPD.

Examples are contact for marketing and sales purposes, data preservation in the context of invoice claim processes, legal proceedings, for the period in which they are pending.

When and how do we collect your personal data?

We collect personal data with your consent when you purchase products or services from our company or when you request information.

The collection can be in writing or through our company’s websites.

But your personal information may also be collected from publicly available sources or other sources. In order for you to better understand this indirect collection we indicate the following cases:

Other relevant information about credit risk or identification and contact details, for collection management, fraud detection and revenue protection.

Our company may collect personal data from private entities that maintain relevant information about the credit of the holders of personal data, provided that these bases comply with applicable data protection rules. We may also access, collect or confirm personal data on websites of the Public Administration and private entities, in particular to confirm the accuracy of your identification and contact details.

What are your rights?

a. Right of Access

Right to obtain confirmation of what personal data is processed and information about it, such as the purposes of processing, retention periods, among others. The right to see/listen or obtain a copy, for example, of invoices, written agreements or calls in which you are involved and which are recorded.

b. Right of Rectification

Right to request the rectification of your personal data that is inaccurate or request that incomplete personal data be completed, such as address, NIF, email, telephone contacts, or others.

c. Right to erasure of data or "right to be forgotten"

Right to have your personal data deleted, provided that there are no valid grounds for their retention, such as in cases where our company has to retain the data in order to comply with a legal obligation to preserve it for research purposes, detection and prosecution of crimes or because legal proceedings are ongoing.

d. Right to Portability

Right to receive the data you have provided us in a commonly used and machine-readable digital format or to request direct transmission of your data to another entity that becomes the new controller of your personal data, such as receiving your invoices or transmitting your contacts to the new person in charge, but only if this is technically possible.

e. Right to withdraw consent or right of opposition

Right to object or withdraw your consent at any time to a data processing, such as in the case of data processing for marketing purposes, provided that no legitimate interests prevail over your interests, rights and freedoms, as for example the defence of a right in legal proceedings.

f. Right of Limitation

Right to request the limitation of the processing of your personal data, in the form of: (i) suspension of processing or (ii) limitation of the scope of processing to certain categories of data or purposes of processing.

g. Right to complain

Right to submit a complaint to the supervisory authority, the CNPD, in addition to the company.

h. How can you exercise your rights?

The exercise of the rights shall be free of charge, except where a request is manifestly unfounded or excessive, in which case a reasonable fee taking into account the costs may be charged. The information must be given in writing, but if requested it may be given orally. In this case, our company must verify your identity by means other than oral. Requests must be answered within 30 days, unless the request is particularly complex.

Exercise them through the following addresses:

Company Name: Tralhão

Address: Variante Norte, 3130-200, Soure

Email: info@tralhaodesigncenter.com

Telephone: 239 506 400

About the use and processing of personal data on our company’s websites, be sure to consult the rules on the use of cookies on their websites. Our company’s websites, products or applications may contain links to third-party websites, products or services that are not related to us or that are not covered by this Privacy Policy. The collection or processing of personal data requested by these third parties is their sole responsibility, and our company cannot be held responsible, under any circumstances, for the content, accuracy, veracity or legitimacy of these websites or the misuse of data collected or processed through them. We alert our company’s customers and users to this fact and to the need, before using the websites, products or applications, to read and accept the rules regarding the processing of personal data defined by these third parties.

Our company has implemented the appropriate, necessary and sufficient logical, physical, organizational and security measures to protect your personal data against destruction, loss, alteration, the dissemination, unauthorized access or any other form of accidental or unlawful treatment.

Our company advises, however, caution in the exposure of your personal data and the circulation of this data on the internet, acts that are the full responsibility of the customer, since these data are not fully protected against possible violations, the adoption of complementary security measures, including the maintenance of properly updated equipment and programs configured with firewalls and protection against malicious software (e.g., antivirus), not browsing on sites of dubious reputation or for which you do not have the necessary guarantees of authenticity, the physical protection of your equipment and avoid putting access credentials on public access computers and the use of strong and differentiated passwords depending on each service or website.

Our company as the customer’s subcontractor processes the data of other natural persons (who are not customers or users) present on the platforms provided by our company with the same criteria for the treatment of customer and user data, and in accordance with the strict compliance with the rules of the General Data Protection Regulation and with the indications of the CNPD.

In relation to any breach of Personal Data, our company will notify the Customer of such breach as soon as possible, but in no case later than 48 hours after becoming aware of the breach of Personal Data and providing reasonable details regarding the matter.

The notification of personal data breach should be sent to the Customer via e-mail (the contact details at the end of this document will be used), being the Customer obliged to notify our company within 24 hours of any change in their contact details.

The notification shall include:

- A description of the nature of the Personal Data breach, including, where possible, the categories and approximate number of data subjects concerned as well as the categories and an estimated number of records of Personal Data concerned;

- The name and contact details of the data protection officer or other point of contact for other relevant investigations;

- A description of the likely consequences of the personal data breach;

- A description of the measures taken or proposed to be taken to address the Personal Data breach, including, where appropriate, measures to mitigate its possible adverse effects.

Our company shall provide all necessary information and assistance to the Customer regarding any action to be taken in response to such Personal Data breaches under the Applicable Data Protection Laws.

Unless required by mandatory law, our company will not disclose or publish any statement, communication, notice, press release or report about a breach of Personal Data, nor notify the Holders or data protection authorities, without the prior written consent of the Customer.

We use cookies and similar devices to facilitate your navigation on the platform, understand how you interact with us and, in certain cases, be able to show you advertising based on your browsing habits.

In the event of a dispute, the consumer can appeal to the Center for Arbitration of Consumer Disputes, with address at:

- Avenida Fernão Magalhães, no. 240 - 1o, 3000-172 Coimbra, with site at www.centrodearbitragemdecoimbra.com, for consumption made in our store in Soure.

- Rua dos Dourados, no. 112 - 2o, 100-207 Lisbon, with site at www.centroarbitragemlisboa.pt, for consumption made in our store in Lisbon.

For purchases made exclusively on-line should resort to the arbitration center of your district of residence: CICAP - Porto; CIAB - Braga, CACCVA - Vale do Ave, CIMAAL - Algarve, CACCRAM - Madeir or, if none of these apply to CNIACC - National Center for Information and Arbitration of Consumer Conflicts, with site at www.cniacc.pt.