Privacy Policy
Introduction
With this privacy and personal data protection policy, ROFEL – INDUSTRIA METALURGICA DE ÁGUEDA LDA., a private limited company registered at the Águeda Commercial Registry Office under the registration and legal person number 500620601, with a share capital of €800.000.00 Euros (eight hundred thousand euros), 3750 353 Barrô, parish of Barrô and Aguada de Baixo, municipality of Águeda, district of Aveiro, from now on referred to as “ROFEL“, aims to inform Customers/Users of ROFEL‘s policies and procedures regarding the collection, use, processing and disclosure of any personal data transmitted directly by its Customers/Users or through third parties, through the use of the website operated by ROFEL – https://www.rofel.pt/.
ROFEL respects the privacy of its Customers/Users and is committed to protecting the information it collects from them, as well as complying with the legal rules in force defined by the General Data Protection Regulation (GDPR).
Accessing and using the website and subscribing to the services and products it offers implies that users agree, accept and are bound by this privacy and data protection policy.
1. Who are we?
ROFEL is a commercial company that operates in the industry and trade of accessories for bicycles and motorbikes; in the metallurgical industry; hydraulic suspensions and reinforced polyesters.
ROFEL will do its utmost to protect the personal data of the Customers/Users of the products and services it commercialises, as well as the personal data of the respective owners in all situations in which personal data is collected and processed.
2. The need for this policy
The purpose of this policy is to inform Customers/Users of the rules governing the processing of personal data, which is collected and processed under the provisions of the personal data protection legislation in force, namely Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (“GDPR”), as well as other applicable legislation, namely Law no. 58/2019 of 8 August.
ROFEL is sensitive to the protection and confidentiality of personal data and has adopted the measures it deems appropriate to ensure the processing and confidentiality of personal data, as well as all other rights held by these users/customers.
ROFEL is committed to implementing practices in the field of security and protection of personal data and has adopted the necessary technical and organisational measures to comply with the GDPR and ensure that the processing of personal data is carried out in strict compliance with the applicable legislation and that its use is limited to that authorised in the GDPR.
The purpose of this Privacy and Data Protection Policy is to comply with all the provisions on the protection and processing of personal data laid down in the contracts that Customers/Users have entered into or will enter into with ROFEL , as well as the rules laid down in the terms and conditions governing the availability of the various goods available on our website.
3. Personal data security measures
ROFEL has always endeavoured to guarantee the protection and security of the personal data that is made available to it. To this end, ROFEL has implemented an internal security policy and compliance with these rules is an obligation for all employees who access personal data. These security rules and measures are of a technical and organisational nature and are aimed at protecting personal data against its dissemination, loss, misuse, alteration, unauthorised processing or access, as well as against any other form of illicit processing.
In addition, third parties who process the Client’s/User’s data in ROFEL‘s name and on ROFEL‘s behalf as part of the provision of services are obliged, by means of a written reduction, to implement appropriate technical and security measures which, at all times, fulfil the requirements of the GDPR and any other applicable legislation and are aimed at safeguarding the rights of the data subject.
Under ROFEL‘s internal security policy, all forms of online personal data collection are encrypted and stored securely, and physical and logistical security measures have also been implemented.
ROFEL‘s actions do not dispense with the need for Clients/Users to adopt security measures, particularly concerning the use of online personal defence systems (firewall, anti-virus, anti-spyware, tools for checking the suitability of websites, etc.).
4. What is personal data?
For Article 4(1) of the GDPR, “Personal data means information relating to an identified or identifiable natural person (“data subject”); an identifiable natural person can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.”
5. Processing of personal data
For Article 4(2) of the GDPR, “Processing” means any operation or set of operations which is performed upon personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.”
6. Who is responsible for the treatment?
ROFEL is responsible for processing personal data following the purposes and means of processing it at any given time.
For the purposes set out in this policy or within the scope of the GDPR, should the holder of personal data need to contact ROFEL, they may do so via the email address rofel@rofel.pt or by written communication addressed to the company at its head office, whose address is: Rua dos Moleiros, Nº127 – Zona Industrial de Barrô, 3750-353 Barrô.
7. Is there a data protection officer?
ROFEL has appointed a data protection officer: MARIO RODRIGUES MIRANDA.
You can contact ROFEL‘s data protection officer at the following email address: rofel@rofel.pt.
8. Types of personal data that may be processed
Considering the activities carried out by ROFEL, this organisation processes the personal data necessary for the supply of goods or in its social responsibility activities, processing personal data such as name, address, telephone number, email address, national identity card number or tax identification number. The information collected may be greater or lesser depending on the information provided by the Customer/User.
Except for any obligation arising from the fulfilment of a legal obligation, all data will only be processed by ROFEL to the extent that it is necessary for the development of its activity, also allowing the Client/User to have access to specific functionalities of the products that the company commercialises, suggestions and proximity information services.
Personal, traffic, geographic location, profile and/or consumption data may be processed by ROFEL for advertising purposes or the dissemination of offers of goods or services, if the respective holder of the personal data has authorised/consented to this.
If prior consent has been given by the Client/User, it may be withdrawn at any time, without the lawfulness of the processing carried out based on prior consent being called into question.
To withdraw your consent, please use the following email address: rofel@rofel.pt.
9. Circumstances of processing by subcontractors
As part of its activities, ROFEL uses third parties to provide certain types of services, which may involve these entities having access to the personal data of Clients/Users. In this case, ROFEL ensures that subcontractors comply with the rules of the GDPR and other applicable legislation, as well as complying with certain rules that are similar to our internal security policy.
If personal data is communicated to other subcontractors, ROFEL remains responsible for that personal data.
10. Destination of personal data
Personal data is intended solely for ROFEL and may only be used by third parties to fulfil legal obligations.
11. Collection of personal data
ROFEL collects personal data by telephone, by e-mail, by contract or through its website, always guaranteeing the prior consent of the owners of the personal data.
Some personal data is indispensable for the performance of the contracts entered into and, if it is insufficient, the provision of services or the supply of goods by ROFEL may be jeopardised.
The rules of this policy apply to the holders of personal data who are not ROFEL Customers/Users.
The personal data collected may be processed by computer and in an automated or non-automated way. ROFEL ensures compliance with the GDPR and other applicable legislation. Personal data is stored in specific databases created for this purpose. Personal data will only be used for the purpose for which it was collected and for which consent has been given by the data subject.
12. Purpose
The personal data collected is intended for the management of the contractual relationship, the supply of goods, the adaptation of services to the needs and interests of the Client/User and information and publicity actions.
Personal data may also be processed to comply with legal obligations.
If the Client/User consents, ROFEL may use the personal data provided by the holder for other purposes, such as social responsibility actions, sending complaints and suggestions, publicising campaigns, promotions, advertising and news about ROFEL‘s products and/or services, as well as carrying out market research or evaluation surveys.
13. Storage of personal data
The conservation and storage of personal data is necessarily related to the purpose for which the information was collected and is processed.
Except in cases where there may be a legal obligation to keep personal data, personal data will only be stored and kept for the minimum period necessary for the purpose for which it was collected.
14. Transfer of personal data
ROFEL does not transfer personal data and, if it does, it will be done in accordance with the GDPR and any other applicable legislation, without prejudice to the exercise of the right to portability by the holder of the personal data.
15. Yours rights and how to realise them
As the holder of personal data, ROFEL guarantees you, at any time, the right to access, rectify, update, limit and erase your data (except for data that is indispensable for the provision of services or the supply of goods in which the contractual relationship still lasts), the right to oppose its use for commercial purposes by ROFEL and to withdraw consent, as well as the right to data portability. All the rights set out in the Law that the holder of Personal Data may exercise are provided by ROFEL
Date last updated 23/05/2024.
Made by FONTES COSTA – SOCIEDADE DE ADVOGADOS, SP, RL – https://fontescostaadvogados.pt/