PRIVACY POLICY AND TREATMENT OF PERSONAL DATA

I. We and our commitment:
Microrégio – Soluções Informáticas, Lda is a company incorporated in the form of a commercial company by quotas, and hereinafter referred to as “Microrégio”, which is dedicated to development, design and implementation of solutions in the Information Systems and Technologies sector.
Taking into account the proportionality and adequacy imposed by the capacity to allocate the resources and technical means at its disposal, Microrégio is deeply and genuinely committed to protecting its regular and occasional clients and employees, as well as users of our various physical and digital platforms, especially paper files, digital files and / or websites in use or to implement, with respect to your privacy and the processing and circulation of your personal data.

II. Our collection devices and personal data media in use:
We dispose, edit and manage the following personal data media
Computer system consisting of a set of software solutions, supported on a set of hardware devices and other similar solutions, including e-mail services and other external digital repositories and communication solutions;
Paper files packaged in cabinets and bookcases in restricted access rooms;
Microrégio website – www.microregio.pt;

III. Personal and material scope of this Privacy Policy:
This privacy policy obliges Microrégio and exclusively with respect to the personal data that collects, treats and circulates.
The same or similar policy will also be assumed, contractually signed with Microrégio, by entities that treat the same personal data on behalf of this.
The availability through the website www.microregio.pt of other access links to other websites outside Microrégio, is made in good faith and in the interest of the user, and Microrégio can not be held responsible, in any way, for the collection, treatment and destination of the data on those websites, or for the reliability, accuracy, legality and functionality available there, and therefore do not apply to this privacy policy.
Microrégio considers it obligatory and will presume for all effects, without possibility of proof to the contrary, that it will read the privacy policies of all the websites that access.

IV. The reason for and the publicity of this Privacy Policy:
In addition to implementing it in its organizational processes, Microrégio drafted this Privacy Policy with the purpose of making available and publicizing an explanatory instrument of the general rules of privacy and treatment of the personal data it collects, always in strict compliance with the Legislation pertinent.
For this purpose, the text of this privacy policy will be available for consultation whenever requested at our headquarters and in digital support at the website www.microregio.pt.
What is prescribed in this Privacy Policy complements what is stipulated in the same matter in the formal or informal contracts that the visas celebrate with Microrégio.
We ask you to read this Privacy Policy carefully, therefore, the availability of your personal data, either in person or when accessing said Website, implies that you know and accept the conditions contained herein and the treatment of them for the purposes lawful and legitimate provided by law.
Microrégio expressly reserves the right to change the present privacy policy at any time and the result of which is duly publicized by the same means.

V. Concept of personal data:
Personal data shall mean any information or record of any nature and regardless of its support or format, namely sound, image, writing, chirograph or feature, relating to an identified or identifiable natural person.
It is considered identifiable any person who can be directly or indirectly identified by reference to one or more specific personal data, alone or in conjunction with each other, including their physical, physiological, psychological, economic, ethnic, cultural, geographical, social or location.

VI. The entity responsible for the processing of personal data:
The entity responsible for the collection and processing of personal data is Microrégio, Lda., which, in the context of its relations with the holder of personal data, establishes, on a legitimate basis, the data collected, the means of treatment and the purposes of such collection and treatment.

VII. Types of personal data collected and processed:
In the scope of its activity, Microrégio collects and treats:

1. Personal data necessary to provide and / or receive services and / or supply of products to its customers and / or its suppliers, dealing in this area with data such as name, tax number, address, telephone number and address among others, strictly necessary, proportionate and lawful.

2. Personal data necessary for the execution of the employment contract or service contracts concluded with its employees, dealing in this area with data such as the name, identification document number and other data, tax identification number, composition of the household, social security, address, telephone numbers and e-mail address, health data, access, location, among others that are strictly necessary, proportionate and lawful.

3. Personal data necessary to fulfill legal obligations, either to public entities or to private entities, dealing in this area with data such as the name, identification document number and other data, tax identification number, composition of the household, social security number, address (es), telephone numbers and e-mail address, health data among others that are strictly necessary, proportionate and lawful.

4. Data necessary for the management of clients and suppliers, contracting and managing the contractual relationship with customers and suppliers, adequacy of the provision of services appropriate to the needs and interests of the Client, including the sending of suggestions, information and marketing actions, publicize campaigns, promotions, advertising and news about the services and / or products, conducting market studies and / or satisfaction surveys, handling complaints, dealing in this field with address (es) telephone numbers and e-mail address , among others strictly necessary, proportional and lawful.

5. All personal data necessary for the exercise of the rights of Microrégio in the scope of the relations mentioned in the previous items, and in the continuation of its activity and legitimate interest, mainly, to the accounting, fiscal and administrative management, to the management of litigation, to the judicial proof, fraud detection, revenue and audit protection, network and systems management, control of information security and physical security, and security of premises.
Notwithstanding the compliance with legal norms or legitimate orders from a competent authority regarding the preservation and transmission of data, Microrégio only treats personal data necessary for its activity, in the strict and strict measure required by the nature of the contractual relationship or of another nature, established with the holder of such data, or prior, legitimate, lawful and informed consent, if any.

VIII. Moment and method of collection of personal data:
Microrégio collects the personal data in person, in writing, by phone, by email or through its website.

As a rule, personal data is collected when starting the relationship, or collaboration, contractual or otherwise necessary for the pursuit of Microrégio activity, between this and the data holder.
Some personal data is mandatory collection and necessary for the initiation and normal and legal development of that relationship or collaboration, so in the absence or insufficiency of such data, it will not start or continue, and in this case, Microrégio will inform the holder of such mandatory and necessary data.
Other than those of a public list and those that may be used in the legitimate interest of Microrégio, your data will only be collected and processed if and for the purposes that were previously agreed, in a free, informed, specific and unequivocal manner , by means of a written declaration, orally or through the validation of an option, namely for the subscription of newsletters or marketing communications, situation in which the other rules of this privacy policy will apply.

If you wish to stop receiving these communications, you can express your opposition at all times.
The data collected will be documented, whether in paper or digital format, in the strict compliance with the legislation that regulates the protection of personal data, being stored and contained in paper files and / or specific database, created and managed with limited and restricted access to the employees of Microrégio who necessarily have to deal with them in the pursuit of this activity.
In no case shall the data collected be used for any purpose other than that for which the consent has been given by the holder, where necessary, or for the lawful and legitimate purpose of the collection.

IX. Purposes of the collection and processing of personal data:
In general, personal data collected aim at the management of customers, suppliers and employees, the contracting and management of the contractual relationship with customers, suppliers and employees, the receipt and / or delivery of services / supplies contracted, the adequacy of service provision / supplies to the needs and interests of the Client, the sending of suggestions, information and marketing actions, publicizing campaigns, promotions, advertising and news about the services and / or products, conducting market studies and / or satisfaction surveys, claims management, accounting, tax and administrative management, litigation management, judicial evidence, fraud detection, revenue protection and auditing, network and systems management, information security control and physical security, the safety of the installations, the fulfillment of legal obligations and for the other purposes for which the Law recognizes a legitimate interest.
When collecting the data, or when you request it, you will be informed in more detail about the treatment we make of your data.

X. Deadlines for keeping your personal data:
Whenever there is a specific legal requirement that requires to keep the data for a minimum period of time, this will be observed by the Microrégio.
Microrégio will keep your personal data stored for the minimum period of time strictly necessary for the purpose for which the information is collected and processed, after which it will eliminate them.

XI. Right of access, rectification, opposition, deletion, limitation and portability of your personal data:
Microrégio guarantees the holder of personal data, the right of access, rectification, opposition, deletion, limitation and portability of their personal data.
These rights may be exercised by phone +351252638330 or by written communication sent to the postal address “Avenida Mouzinho de Albuquerque, 15, Azurara, 4480-151 Azurara” or by electronic communication to personaldata@microregio.pt.

XII. Measures adopted to ensure the safety of your personal data:
Microrégio observes the best practices, adopting the technical and organizational measures appropriate to the risk, in the field of security and protection of personal data, having approved and implemented a demanding plan of compliance with the objectives, the Law and the interest of the owners of personal data, capable of protecting the data that are made available to us by anyone that in any way relates to us, in order to protect them against its diffusion, loss, misuse, alteration, treatment or unauthorized access , as well as against any other form of illicit treatment.

Thus, the form(s) for the collection of personal digital or paper data, whether filled in the physical premises of Microrégio, or on the website, (which require the encrypted sessions of the Browser) or by any of Microrégio employees, are stored safely in our physical repositories and digital systems.

All personal data you provide us about yourself, are stored in a datacenter owned by Microrégio, or one of its subcontractors, under cover of all advanced physical and logistics security measures, which we believe are essential to the protection of your personal data.

Despite these security measures, we alert everyone who browses the Internet that they should take additional security measures, such as ensuring the use of fully patched PC and Browser, the use of active firewall, antivirus and antispyware and to make sure of the authenticity of the websites you visit on the internet avoiding websites whose reputation you do not trust.

Whenever, in the legitimate and lawful pursuit of objectives of its activity, Microrégio adopts monitoring measures for its employees, especially with regard to access control, working hours, tasks and productivity, movement and transportation, not only the visas will have prior knowledge of the respective implementation – being, whenever legally necessary and lawful, requested their consent – as the tools for the purpose used will ensure the same level of security of the personal data collected and processed by them

The safety and compliance plan includes the designation of an element of the team responsible for controlling all processes inherent in the legal obligations required by the legislation regulating the processing of personal data.

XIII. Responsible for the protection of personal data:
Can be contacted directly by mail to the address “Avenida Mouzinho de Albuquerque, 15, Azurara, 4480-151 Azurara” or to the email address personaldata@microregio.pt.

XIV. Communication of data to other entities, subcontractors or third parties:
Microrégio may use subcontractors for the purpose of collecting and processing data, for the same purposes that it aims, obtaining from those entities contractually, a guarantee of reputation and an obligation to develop technical and organizational measures adequate for the protection of data and to ensure the rights of data holders. In certain circumstances determined by law, certain personal data may have to be reported to public authorities, such as tributary, courts and security forces.
In this way, any of these subcontracted entities will treat the personal data of our Clients, in the name and on behalf of Microrégio, under the obligation to adopt the appropriate technical and organizational measures to the risk in order to protect the personal data against the destruction, accidental or illicit, accidental loss, alteration, dissemination or unauthorized access and against any other form of illicit treatment.

XV. Transfer of personal data:
The pursuit of Microrégio activity may imply the transfer of its data outside Portugal.
In this event, Microrégio will strictly comply with the applicable legal provisions, in particular as regards the determination of the reliability and suitability of the country of destination as regards the protection of personal data and the requirements applicable to such transfers.

XVI. Changes to the Privacy Policy and Treatment of Personal Data:
Microrégio expressly reserves the right to change the present privacy policy at any time, being the result of them duly publicized by the same means