Privacy Policy
1. Scope
Housecript (hereinafter referred to as this Entity) is a brand image that sells Information Manuals in a legal person and as part of its commercial activity, it may be necessary to collect personal data from its customers / users. Considering the customers' right to privacy, the entity does not collect any personal information without the prior consent of its holders.
Regarding the navigation and use of the entity's website by its users, to optimize and improve the browsing experience, data is collected through cookies that may or may not be stored on the user's computer / navigation device.
It is intended to demonstrate in a clear way the collection and use of these Cookies, their purpose and protection of data collected in the use of the website.
When browsing the website, personal data are not automatically collected without prior consent.
In any case, the entity does not sell in any way the personal data that may be collected, nor does it transmit them to third parties without the prior consent of the holders, except as required by law.
2. Entity Responsible for the Processing of Personal Data
Regarding Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 designated by RGPD – General Data Protection Regime, the entity responsible for the collection and processing of personal data is Mickey van Druenen, Sitio de Alfarrobeira , CXP 917Z 8100-221 Loulé, Taxpayer 231789572.
3. Definition of Personal Data
Any information, in any written, magnetic or digital medium relating to the identification of a natural person or that may be identifiable.
4. Consent
When browsing the website, whenever identification and collection of personal data is necessary, the user will have to authorize its collection through authorization mechanisms that may vary depending on the case, but which will be clear in their purpose and intuitive as to their use. For example, in a contact form, there will be a checkbox where the user must click authorizing the collection and processing of personal data entered in the form and subsequent contact by the entity. However, it should be noted that without authorization for data processing, the entity will not have a way to contact the user.
The processing of personal data, once authorized, will be done in accordance with this Privacy Policy, and your authorization must assume that this has been read and understood, as well as the Terms and Conditions of use of the website.
This Privacy Policy and the Terms and Conditions of use of the website may be revised without the need for prior consent but always in accordance with the RGPD.
5. Personal data to be collected
The personal data to be collected from the user will only be those necessary for the indicated treatment. The collection is generally done through a form that will have the identification of its purpose and authorization to collect the data when applicable. Depending on the type of purpose, the following may be requested: Name, Telephone, Email, tax number among others. Only those marked as mandatory will be necessary and essential for the activity, the others being optional based on the data subject's voluntary decision.
6. Purpose, accuracy and data collection
The accuracy of the personal data provided is the sole responsibility of the holder thereof, and the entity cannot be held responsible for its inaccuracy or inaccuracy.
Identification data are necessary for the activity and/or for the fulfillment of legal obligations and for the time necessary for its purpose or until the right of opposition, deletion or consent is withdrawn. The processing of personal data is essential and is consented to by the user and without which the entity's business relationship is not possible.
Examples of data processing purposes:
CRM (Customer Relationship Manager): Management of contacts, information, customers, suppliers, market research, support requests, invoicing, collections and payments, among others.
Accounting Management: Invoicing, accounting, tax information, sending a SAFT-PT file to the tax authority, among others.
Marketing: creation of consumption profiles (aggregated data), analysis of products and services by profile, among others.
Network and systems management: monitoring, service support, remote support
Registry Operators: data management in operators including ICANN, DNS.PT, EURID, among others, data management in web services management profiles, data management in ancillary services profiles such as personal digital certificates, company, etc.
Control and security management: access logs, incidents, physical and online security, physical and remote system surveillance. Management of protection measures, firewall, intrusion detection system. Surveillance systems on the access to the system by employees, levels of access to information and access registration (logs).
Backup Management: Backup policy, access, recovery and deletion or overwrite. Management of data redundancy and infrastructure security.
Legal Obligations: compliance with data transmission via legal imposition.
Recruitment: in the selection of potential candidates, the collection and processing of candidates' personal data becomes necessary. They will not be passed on to third parties without your prior consent.
7- Transmission of Data to Third Parties
As a general rule, the collected data are not shared with third parties except as a legal requirement or because they are strictly necessary for the activity.
Under the terms of the RGPD, in the eventual transmission of data to third parties, the following procedures are observed: unambiguous information to the holder of the reason for the transmission, consent (except for legal imposition), shielding of the transmission method, guaranteeing levels of confidentiality, security and protection. These third parties must comply with the RGDP / Privacy Shield Act, namely in terms of the duty of secrecy, security and protection, and these data cannot be used for any other purpose, nor related to others that they have.
Personal data will be processed whenever possible within the European Union space and in countries that comply with the RGPD / Privacy Shield.
8- Duration of Preservation of Personal Data Processing
Only what is necessary for the purpose identified will be kept, that is, during the period of the contract or commercial relationship, and after this period they may be kept for 2 years for control purposes. By legal imposition, data relating to tax or accounting information is retained for a period of 10 years. On this point, we will follow the CNPD guidelines, always complying with the guidance that data should only be kept for the strictly necessary period and for the purpose for which they were transmitted.
9- Data Processing Security
Data will be stored by computer on a server maintained and controlled by the entity, whose security is always monitored in terms of infrastructure and data access. Access is restricted and protected by various access management and encryption tools, so that unauthorized third parties do not have access to them. The security risk is thus minimized but not extinguished and there is always the possibility of illegal access to data. In this case, measures to contain leakage and disclosure will be implemented according to the RGPD.
10. Rights of Personal Data Subjects
The holders enjoy, in accordance with the RGPD, the right of access, rectification, opposition, erasure, limitation or portability of data. In order to exercise their rights, they must submit the request in writing via email to info@housescript.com.
In the written request, the entity will, for security reasons, authenticate the respective issuer as the legitimate holder of the data. In case of doubt, the request is not granted, and the issuer can authenticate it in another way.
In any case, the request may not be immediately satisfied (legal or other requirements). The holder will always be informed in this case, and it is expected that within 1 month the required procedure will be completed.
In case of deletion (data deletion), they may be retained for further processing due to legal imposition and for the period that may be imposed (10 years for billing, for example).
11- Right to claim
The entity is at the disposal of data subjects to clarify any question about the collection and processing of data through the email info@housecript.com
The data subject is free to lodge a complaint with the control authority CNPD – National Commission for Data Protection, R. de São Bento 148, 1200-031 Lisboa regarding the form of collection and processing of the entity's data.