Privacy Policy
ARFIT is committed to protecting the privacy of our customers and website users. This Privacy Policy demonstrates our commitment to and respect for privacy rules and personal data protection regulations.
This Privacy Policy applies exclusively to the collection and processing of personal data by our company. We recommend reading this document in its entirety.
This Privacy Policy applies to all personal data collected through our website.
Data Controller
The entity responsible for processing personal data is ARFIT, headquartered at Rua Domingos Ferreira da Costa 280, 4475-297 Gemunde, Maia, Portugal, with the email addressservicocliente@arfit.pt
Types of Personal Data
The data collected through our professional activities consists of information provided through contact forms on our website.
How We Collect Your Personal Data
– Through our website;
– When you subscribe to our newsletters by providing your consent.
Legal Basis and Processing Purposes
– Marketing and sales: campaign activities, events, promotions, information about new or existing services and/or products, satisfaction surveys;
– Pre-contractual measures and contract performance;
– Execution of service provision contracts.
– service provision and customer management
– Delivery of contracted services and customer relationship management.
– Legal obligation compliance: when processing is necessary to comply with legal obligations, such as responding to judicial, regulatory, and supervisory authorities.
– Legitimate interest: when personal data processing serves a legitimate interest, such as service quality improvement, fraud detection, etc.
Data Retention Period
We retain your data only for the period necessary to fulfill the purposes for which it was collected.
User Rights
Users may exercise the following rights at any time:
– Access to your data
– Data update or correction
– Data deletion
– Processing limitation
– Right to object to commercial use
– Withdrawal of consent (without affecting the lawfulness of processing based on consent before withdrawal)
– Data portability
Users may also file complaints about data processing with the Portuguese Data Protection Authority (Comissão Nacional de Proteção de Dados).
Data Transmission
User data processing may be performed by reputable service providers contracted by our company. When this occurs, appropriate measures are taken to ensure that entities with access to data provide the highest guarantees regarding data protection.
Any subcontractor will process users’ personal data on behalf of and for our company, strictly complying with legal regulations on personal data protection, information security, and other applicable standards.
International Data Transfers
Our company may, within the scope of the described purposes, transfer user data outside the European Economic Area (EEA). In such cases, we strictly comply with applicable legal provisions, including determining the adequacy of destination country(ies) regarding personal data protection and applicable requirements for such transfers.
Automated Decisions
Our company may create user profiles, which may lead to automated decisions based on personal characteristics, preferences, behavioral history, and location. In these cases, users have the right to obtain human intervention in the decision, express their point of view, and contest the adopted decision.
Personal Data Protection Measures
Our company implements various appropriate technical and organizational measures to protect users’ personal data.
Changes to the Privacy Policy
Our company may occasionally update this Privacy Policy. We ask that you review this document periodically to stay informed.
