Privacy Policy

PRIVACY STATEMENT

1. Scope All personal data subjects defined under the GDPR

2. Responsibilities
2.1. The Data Protection Officer is responsible for ensuring that this statement is available to all individuals before CARMIM begins the process of collecting and processing personal data.

2.2. All CARMIM employees who interact with personal data are responsible for ensuring that this statement is an integral part of the Organization's day-to-day operations, with particular emphasis on security mechanisms and procedures in the processing of such data.

3. Privacy Statement

3.1. General Scope: CARMIM, headquartered at Rua Professor Mota Pinto, apartado 3, 7200 – 412 Reguengos de Monsaraz, Portugal, is registered with the Commercial Registry of Reguengos de Monsaraz under unique registration number and NIPC 500912629, with a share capital of €60,000. CARMIM is responsible for this Statement. This privacy policy covers physical and logical channels, as well as other locations and/or websites that mention this policy. Your privacy is important to us. This privacy statement explains what personal data CARMIM collects through our interactions with you and through our services, and how this data is used. Please read the specific details of this privacy statement, which provide additional information about CARMIM's services. This statement applies to CARMIM's interactions with you and the services listed below, as well as to other CARMIM products/services that display this statement. CARMIM is committed to respecting the User's privacy and processing their personal data carefully and confidentially, in accordance with applicable laws. The data will not be processed for any purposes other than those specified herein. CARMIM reserves the right to update or modify its Privacy Policy at any time, in particular to adapt it to legislative changes. Users are therefore advised to visit this page regularly.

3.2. Consent By using this website, you are giving your consent to the collection and use of information. CARMIM may at any time modify, add, or delete any of the privacy policies on its website (https://www.carmim.eu/loja/) by updating the content of this page.

3.3. What types of data does CARMIM collect? CARMIM collects data about its employees and about companies that are its clients and partners. CARMIM does not process the special data referred to in the GDPR.

3.4. What is the purpose of CARMIM's personal data collection? For its employees, the data collected includes name, email address, position, and telephone number for the provision of goods and services to customers, internal organizational processes (Quality), and for tax and legal obligations inherent to the normal performance of their duties. For customers and partners, the data collected includes name, email address, and telephone number for the purchase, delivery, and provision of products and/or services and, consequently, the respective legally required documents, for commercial prospecting activities (Direct Marketing), marketing events, training, and technical information regarding products and/or services.

3.5. Does CARMIM use personal data for Direct Marketing activities? CARMIM may use your personal data to send you any unsolicited mail related to products or commercial offers that may be of interest to you. CARMIM does not provide, sell, or trade your data. The customer expressly authorizes CARMIM to send information about products and services that may be of interest to you using your personal data for direct marketing purposes through any communication channel, including email, telephone, SMS, or other automated calling methods. CARMIM will not sell or share its customer database with third parties. Please note that consent may be withdrawn by sending a request to protecao.dados@carmim.eu or alternatively in person at CARMIM's facilities.

3.6. Who has access to your personal data? CARMIM does not disclose any personal data of its Customers and Users to third parties without their consent, except (1) when it concerns companies of the CARMIM Group, or (2) when necessary for CARMIM employees, staff, suppliers or business partners to provide a product or service or perform a function on CARMIM's behalf, or (3) when required or permitted by law.
CARMIM will take reasonable precautions to ensure that its employees or collaborators with access to personal data receive adequate training on how to process it correctly, in compliance with this policy and legal data protection obligations. In the event of non-compliance, CARMIM will impose disciplinary sanctions on its employees and collaborators.
Whenever CARMIM discloses the User's personal data, it will safeguard compliance with the General Data Protection Regulation, in particular by establishing contractual provisions that ensure that the third party uses the data received only for the specified purposes (if there is a legal basis for doing so). Otherwise, the data will only be provided with the User's consent. The Provider complies with the purposes described in this policy and uses appropriate security measures to protect the User's personal data against illegal or unauthorized processing, as well as against accidental loss, destruction, or other harmful actions.

3.7. Where is your personal data stored and for how long? CARMIM processes personal data for the aforementioned purposes only taking into account the required legal basis. The period between the start and end of this processing is stored, although personal data may be retained for a significantly longer period due to the existence of a legal basis for this purpose and in accordance with CARMIM's retention procedure. However, if you wish, you can always request clarification from CARMIM by sending a request to protecao.dados@carmim.eu or alternatively in person at CARMIM's premises.

3.8. Is personal data safe with CARMIM? CARMIM stores its customers' and Users' data internally and through its referral partners. Both are protected and maintained according to high security standards and in compliance with the GDPR and applicable privacy laws.

3.9. When are there links on the CARMIM Website? The CARMIM website may contain links to other websites and email addresses of companies not belonging to the CARMIM Group. This Privacy Policy does not apply to these websites and email addresses. If you use a link available on this website and provide personal data on that website, data processing will be subject to that website's privacy statement.

3.10. Does CARMIM use cookies on its Website and/or in its business applications? Cookies are small files that are stored on your computer, tablet, or smartphone when you first visit our website. Cookies are files that store information on the User's hard drive or browser, allowing websites to recognize you and know that you have visited them before. The User can configure their browser to refuse cookies, but in this case, the website or parts of it may not function properly. Cookies are used to monitor and analyze website usage, allowing CARMIM to better identify and serve the User.

CARMIM uses cookies to: – Know our visitors and thus improve their browsing experience on the website; – Personalize the information on the web pages they visit with content of interest;
With the help of these cookies, CARMIM enhances the creation of relationships with visitors and customers to improve their experience and collect data to continue improving their navigation on the website and our products and services. By browsing this website, you are consenting to the installation of these cookies in your browser. However, cookie preferences can be cleared from your browser at any time. CARMIM does not share cookies with third parties, including external data providers or websites. This mechanism can be removed by sending a request to protecao.dados@carmim.eu or alternatively in person at CARMIM's facilities.

3.11. Consent By consenting to this Privacy Statement, you are granting us permission to continue processing your data for the purposes mentioned above.
Consent may be withdrawn by means of a request sent to the email protecao.dados@carmim.eu or alternatively in person at CARMIM's premises.

3.12. Your Rights. Under the GDPR, the User has the right to access and transfer their personal data. You have the right to know which personal data has been processed by CARMIM, and you may also request that CARMIM correct, restrict the processing, or delete your personal data, whether in whole or in part (right to be forgotten) if it proves to be incomplete, incorrect, or irrelevant for processing purposes. In short, at any time, and while CARMIM holds your personal data, you may: . Right of access – Request a copy of the information CARMIM holds about you. . Right to rectification – Request or correct any personal data found by CARMIM. . Right to be forgotten – In certain circumstances, you may request that your personal data be deleted or destroyed by CARMIM. . Right to request restriction of processing of your personal data – In certain circumstances, you may restrict the processing of your personal data by CARMIM. Right to Portability – Request that your personal data be transferred to an organization other than a CARMIM Group company. . Right to object to certain processing – Request that the processing object be removed, for example, for Direct Marketing. . Right to object to automated processing of personal data, including Profiling, by requesting that your personal data not be subject to automated processing. . Right to complain – If CARMIM refuses any of your requests without a legal basis, you may file a complaint using the contact details below.
If you wish, at any time, you may make your request by contacting our Data Protection Manager through the following means: . Name: Jorge Mantas . Email address: protecao.dados@carmim.eu . Telephone: 266508200
All requests mentioned above will be forwarded to protecao.dados@carmim.eu and you must indicate in the body of the message which right you wish to exercise.

3.13. Complaints If you wish to make a complaint about the way your data is being processed by CARMIM (or by third parties on CARMIM's behalf) you can make your request directly to CARMIM's Personal Data Protection team, namely:
Contact of CARMIM’s Data Protection Officer Name: Jorge Mantas Address: Rua Professor Mota Pinto, apartado 3, 7200 – 412 Reguengos de Monsaraz, Portugal Email: protecao.dados@carmim.eu Telephone: 266508200

3.14. Contact of the Supervisory Entity – National Data Protection Commission (CNPD)
Supervisory Entity Contact Name: National Data Protection Commission Address: Rua de São Bento no 148-3o
1200-821 Lisbon Email: geral@cnpd.pt Telephone: +351 213928400

3.15. You may be contacted by CARMIM regarding your personal data. Under the GDPR, your personal data will be subject to strict risk minimization measures to preserve citizens' rights and freedoms, in particular against
unauthorized access. If there is any type of privacy breach, you will be informed, in accordance with the provisions of CARMIM's Personal Data Breaches Processing Procedure.

3.16. Privacy Policy Our Privacy Statement is available at https://www.carmim.eu/loja/, and our Privacy Policy can be requested by email at protecao.dados@carmim.eu.