Your privacy is important to us. We respect your privacy and are committed to protecting you. To better protect your privacy, we present this notice explaining our privacy practices and the available options in which your information is collected and used.
1. Commitment IS3 METALWORKING
IS3 METALWORKING, (hereinafter IS3), in the context of its obligations, treats personal data, aiming to ensure strictly, effectively and safely the protection of all the data it collects and processes on a daily basis.
2. The data controller and the Data Protection Officer shall
In the scope of its activities and obligations, IS3 is the entity responsible for the collection and processing of personal data, which are processed and stored in an automated and non-automated manner.
IS3 has a Data Protection Officer, which can be contacted by e-mail at firstname.lastname@example.org.
In particular, the Data Protection Officer is responsible for monitoring the compliance of the activities involving the processing of his / her data with the applicable legal and regulatory standards, and is also the contact point between IS3 and the National Control Authority, as well as between IS3 and its customers and users in matters relating to the processing of personal data.
3. Personal Data, holders of personal data and categories of personal data
What is personal data?
Personal data is any information of any nature, collected on any type of medium, relating to a natural person, identified or identifiable. The set of information that may lead to the identification of a particular person, namely by reference to an identifier (such as an identification number or a location data), is identifiable.
Whom do we collect personal data from?
In view of IS3's obligations, most of the data are processed from legal persons (companies and associations). However, for the fulfillment of their obligations, data of the following types of natural persons (non-exhaustive list) may be collected and processed:
• Clients and their collaborators;
• Service providers, suppliers and their collaborators;
• Candidates and trainees;
What personal data do we treat and how do we collect them?
IS3 only collects data that is appropriate, relevant and limited to what is necessary in relation to the purposes for which it is treated.
The collection of your data can be done orally, in writing (in particular through forms and contracts), as well as through the IS3 website in the case of email.
For different purposes, we may collect the following types of personal data:
• identification data (such as name, citizenship, citizen's card or date of birth);
• contact information (such as mobile phone, address or e-mail);
• qualification data, certification and professional status (such as level of education and CV);
• bank, financial and transaction data (such as IBAN or tax identification number);
• location data (such as IP address);
IS3 does not deal with special data such as health data, political opinions, trade union membership. It only handles biometric data for assiduity control purposes.4. Fundamentals and Purposes of the Treatment of Personal Data
Why and on what grounds do we use your personal data?
All data collected and processed by IS3 are based on one of the following conditions of legitimacy
• Consent: When the collection is preceded by your express, specific and informed consent, through written or web support.
We collect your consent, for example, for purposes related to subscribing to newsletters or using photographs of employees.
• Execution of contract or pre-contractual procedures: when the treatment is necessary for the execution of a contract in which it is part or for pre-contractual procedures.
This condition will be fulfilled when we treat your data for the purposes of managing programs and protocols for financing and cooperation or for supply and service contracts.
• The fulfillment of legal obligations: when the treatment is necessary to fulfill a legal obligation.
This includes, for example, the communication of data to other public (national and Community), tax or judicial bodies.
• Legitimate Interest: where treatment proves necessary to pursue the legitimate interests of the treating entity or third parties, without prejudice to the rights and freedoms of its customers and / or users.
What are the purposes for which we collect your data?
Personal data collected by IS3 are processed only for specific, explicit and legitimate purposes. Whenever personal data are collected, they are intended solely for the purposes expressly identified at the time of collection and described in the Personal Data Processing Plan.
Here we outline the main purposes that justify the collection of personal data by AICEP
• Compliance with legal obligations and employee benefits;
• Assiduity control;
• Contract of supply and service contracts;
• Disclosure of newsletters / publications;
• Physical Security of Facilities and People.
5. Period of retention of personal data
IS3 treats and stores your data only for as long as is necessary to continue or complete the purposes of the processing, in compliance with the maximum time limits necessary to comply with contractual, legal or regulatory obligations.
As a general rule, and where there is a contract that legitimizes the processing of your data, IS3 will maintain such data for as long as such a contractual relationship is maintained. Other circumstances exist, such as compliance with legal or regulatory obligations (for example, for the purposes of complying with tax obligations, personal data relating to invoicing must be kept for a maximum period of ten years from the date of the act) and pending a judicial proceeding, which may justify keeping their data for a longer period of time.
At the end of the retention period, IS3 will delete the data.6. Rights of data subjects
Under the terms of the legislation in force, as soon as we collect and process your data, there is a set of rights that you can exercise at any time with IS3.
What are your rights?
Right of access: right to obtain information on the processing of your data and its characteristics (in particular the type of data, the purpose of the processing, to whom your data may be communicated, storage periods and what data you need to know compulsory or optional)
Right of rectification: right that allows you to request the rectification of your data, requiring that these are accurate and current, such as when you consider that they are incomplete or outdated.
Right to be deleted or "Right to be forgotten": right that allows you to request the deletion of your data, when you consider that there are no valid grounds for data retention and provided there is no other valid basis for such treatment. the performance of a contract or the fulfillment of a legal or regulatory obligation).
Right to Limitation: right that allows you to suspend treatment or limitation of treatment to certain categories of data or purposes.
Right to Portability: right through which you can request the sending of your data, in digital format and in current use, that allows the re-use of such data. Alternatively, you may request the transmission of your data to another entity that becomes responsible for the processing of your data.
Right of Opposition: right that allows it to oppose certain purposes and provided that there are no legitimate interests that prevail over its interests. One of the examples of this right concerns opposition to direct marketing (marketing) purposes.
Right to Withdraw Consent: right that allows you to withdraw your consent, but which can only be exercised when your consent is the only condition of legitimacy.
How can you exercise your rights?
All rights described above may be exercised, subject to the limitations set forth in the applicable legislation, upon written request, to be sent by e-mail to email@example.com
In the same way you can send questions related to the processing of your data, directly to the Data Protection Officer, through the email indicated in section 2.
You can also submit any complaint to the National Control Authority.
7. Data transmission
With whom do we share your personal data?
Subject to IS3's obligations, and depending on its purpose, your data may be shared with third parties, which include public bodies and private entities for the purpose of complying with legal or regulatory, contractual or public interest obligations.
Your data may also be accessed by IS3 service providers deemed necessary for the purposes described above, in particular as regards information security and archiving services. IS3 guarantees that it only resorts to service providers who have the guarantees to carry out the technical and organizational measures necessary and adequate to protect their personal data by holding them accountable through confidentiality agreements.
Transfers of personal data from outside the EEA
IS3 does not plan to transfer personal data to third countries (outside the EEA - European Economic Area). When it proves necessary, it will ensure that the data transfers are carried out in the strict compliance with the applicable legal norms updating the plan of treatment of personal data8. Cookies Policy
What are cookies?
Cookies are small text files with relevant information that is downloaded by your access device (computer, mobile phone / smartphone or tablet), through the browser, when a site is visited by the user, and used to store information about visits.
Cookies, depending on how long the user stays on the page, can be classified as session or permanent cookies. The first type of cookies expires when the user closes the browser. The second type of cookies expires when your goal is completed or when they are manually turned off.
The cookies used by IS3 on www.is3.pt do not collect personal information that allows you to identify the user.
The cookies used on the site www.is3.pt are:
• Analytics - collects information about users' browsing experience on the web page, anonymously, although sometimes they also allow a user to be identified, uniquely and unambiguously to obtain information about the user's interests in the services provided by the web page.
• Advertising - persistently active but for a limited period of time, in order to collect user information on Internet browsing habits so that the advertisement displayed by the user matches their needs and interests.
• Third-party - allow the site to remember browsing preferences, language, region, and collect user information to direct advertising to your interests.
However, it is important to note that disabling cookies may prevent some web services from functioning properly, affecting, in whole or in part, navigation.
9. Contact us
The processing of personal data of employees and clients carried out by IS3, as well as the sending of commercial communications carried out by electronic means are in compliance with the national and community legislation in force, namely by the General Regulation of Data Protection.
For those customers for whom we produce their own products, which are provided exclusively to them, it is guaranteed that each article, drawing or other documentation, are treated with the highest degree of discretion, security and confidentiality.