LEGAL NOTICE AND PRIVACY POLICY

The MUNICIPALITY OF COVILHÃ is increasingly committed to the satisfaction of its clients, investing in the certification of its activities by adopting measures aimed at reducing their environmental impact.

Privacy and Cookies*

The MUNICIPALITY OF COVILHÃ, a legal entity headquartered in Portugal, is committed to protecting the privacy and personal data of all individuals it interacts with, namely clients, suppliers, and employees.

  • Use of “Cookies“: “Cookies” are small software tags stored on the user’s computer via the browser, retaining only information related to preferences, and not including personal data.

In accordance with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27-04-2016, also known as the General Data Protection Regulation (GDPR), and other applicable legislation, the MUNICIPALITY OF COVILHÃ has established this Privacy Policy.

1. Definitions

  • Personal data: Any information related to an identified or identifiable natural person (“data subject”).

  • Processing: Any operation performed on personal data, whether or not by automated means.

  • Special categories of personal data: Data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership; genetic, biometric, health, sex life or sexual orientation data.

  • Sensitive categories of personal data: Data relating to financial status, usernames, passwords, or any other data that may lead to stigmatization or identity fraud.

  • Data controller: The entity that determines the purposes and means of data processing.

  • Processor: An entity that processes personal data on behalf of the controller.

  • Consent: A freely given, specific, informed, and unambiguous indication of the data subject’s wishes.

  • Personal data breach: A security breach leading to accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, personal data.

  • Privacy by design: Taking privacy risks into account from the design stage of any new product or service.

  • Privacy by default: Ensuring that only necessary personal data is collected, used, and retained.

  • Pseudonymization: Processing personal data so it cannot be attributed to a specific data subject without additional information kept separately and securely.

2. Scope

The MUNICIPALITY OF COVILHÃ establishes commercial relations with third parties, clients, suppliers, and its employees, and in this context, processes personal data.

This Privacy Policy applies exclusively to personal data for which the MUNICIPALITY OF COVILHÃ is the data controller within its areas of activity.

Data may be collected in person, by phone, in writing, via email, fax, or websites.

The MUNICIPALITY OF COVILHÃ websites may contain links to external websites, for which it is not responsible for data processing practices.

3. Purposes and Legal Basis for Data Processing

The MUNICIPALITY OF COVILHÃ processes personal data for various purposes, including:

  • Contract Management: For the fulfillment of service contracts with clients and suppliers. Optional information like allergies, dietary restrictions, or mobility issues may be provided to improve service.

  • Legal Obligations: To comply with legal requirements.

  • Quality: Client feedback may be used statistically, with consent.

  • Marketing: With consent, personal data may be used for newsletters, promotions, and other client information.

  • Profiling: With consent, customer behavior may be analyzed for personalized offers.

  • Video Surveillance: For the safety of clients and staff, in compliance with the law.

  • Contests and Giveaways: These may require the processing of personal data under specific regulations.

  • Recruitment: Applications (spontaneous or specific) involve processing necessary personal data and are retained for a maximum of two years.

  • HR Management: Employees must provide personal data for contractual purposes; specific consent will be requested when needed.

4. Cookies

Cookies are used on MUNICIPALITY OF COVILHÃ websites to enhance user experience. These small files stored in the browser contain only preference-related data, not personal data. By continuing to browse the website, users consent to cookie use. Disabling cookies may affect site functionality.

5. Data Subject Rights

Under the GDPR, data subjects have the following rights:

  • Right of access
  • Right to rectification
  • Right to erasure (right to be forgotten)
  • Right to restriction of processing
  • Right to data portability
  • Right to object
  • Right to withdraw consent

To exercise these rights or clarify any issue, contact the MUNICIPALITY OF COVILHÃ in writing at the headquarters address, by email to: rgpd@cm-covilha.pt, or via the form on the website.

6. Obligations of the MUNICIPALITY OF COVILHÃ

The MUNICIPALITY OF COVILHÃ commits to:

a) Collect only data for specific, explicit, and legitimate purposes

b) Limit data collection to what is necessary;

c) Not use data for purposes other than those consented to;

d) Keep data updated when necessary;

e) Store data only as long as needed;

f) Protect the data fro;

g) Apply privacy by design and by default principles;

h) Use a privacy by design framework;

i) Implement encryption or pseudonymization;

j) Ensure GDPR compliance.

Redigido na sua sede em: maio de 2018.
Esta política será atualizada periodicamente.