A
A

Privacy Policy

OF THE FUNDAÇÃO FRANCISCO MANUEL DOS SANTOS WEBSITE
1. IDENTIFICATION OF THE CONTROLLER
  • Entity: FUNDAÇÃO FRANCISCO MANUEL DOS SANTOS (hereinafter, “FFMS”)
  • Registered Office: Largo Monterroio Mascarenhas, n.º 1, 7th floor, 1099 - 081 Lisbon
  • Legal Entity and Taxpayer Number / VAT ID: 508867380
  • Telephone: +351 21 001 5800
  • Email: protecaodedados@ffms.pt
2. INFORMATION AND CONSENT

The Personal Data Protection Law (hereinafter, the “LPDP”) and the General Data Protection Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, hereinafter, the “GDPR”) ensure the protection of natural persons with regard to the processing of personal data and the free movement of such data.

Under the law, personal data means any “information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.”

Under this Policy, the User is informed that the personal data made available through this website will be processed by FFMS, as well as any data resulting from browsing and any other data that may be provided in the future, and that such processing complies with the technical and organizational security measures required by personal data protection legislation.

FFMS maintains a database containing a record of users composed only of the personal data provided by the data subject at the time of registration, which are collected and processed automatically by FFMS, in its capacity as controller.

Under no circumstances will personal data revealing racial or ethnic origin, religious or philosophical beliefs, political opinions, trade union membership, data concerning health, genetic data, biometric data or data concerning a natural person’s sex life or sexual orientation be requested.

Under no circumstances will FFMS carry out any of the following activities with the personal data provided through this site without the data subject’s prior express consent:

  • Disclose them to other persons or entities;
  • Transfer them outside the European Economic Area (EEA).
3. PURPOSES OF PERSONAL DATA PROCESSING

The personal data processed through this page will be used solely for the following purposes, on the following legal bases, and for the following periods:

PURPOSES OF PERSONAL DATA PROCESSING

FFMS guarantees the confidentiality of all data provided. Although FFMS collects and processes data securely and prevents their loss or manipulation by using the most appropriate techniques for this purpose, it should be borne in mind that the collection of data on open networks allows personal data to circulate without adequate security safeguards, with a risk that they may be seen and used by unauthorized third parties.

Failure to provide the data marked as mandatory makes it impossible to respond to the data subject’s request.

4. SECURITY MEASURES

FFMS declares that it has implemented and will continue to implement the technical and organizational security measures necessary to ensure the security of the personal data provided to it, in order to prevent alteration, loss, unauthorized processing and/or access, taking into account the current state of technology, the nature of the data stored and the risks to which they are exposed.

FFMS guarantees the confidentiality of the data provided through this website. Data are collected and processed securely in a way that prevents their loss or manipulation. All data will be entered into a Secure Server (128-bit SSL), which encrypts/encodes them (transforms them into code), and your password is stored using a one-way hash, which means it cannot be recovered (or disclosed) by anyone, including FFMS, and can only be reset. You can verify that your browser is secure if the padlock symbol appears or if the address begins with https instead of http.

Personal data are processed with the level of protection legally required to ensure their security and prevent alteration, loss, unauthorized processing or access, taking into account the state of technology, and the user acknowledges and accepts that Internet security measures are not infallible.

Although we take the care and precautions we consider appropriate to protect the personal data you provide to us and that we collect, you should be aware that no security system is impenetrable.

Accordingly, you should take certain precautions, for example, keeping your password secret and not disclosing it to any other person; if you believe your password has been misused, you must notify us immediately; you should also ensure that you log in and log out whenever you close the browser.

Whenever FFMS accesses personal data, it undertakes to:

  • Store them by means of legally required technical and organizational security measures that ensure their security, thereby preventing alteration, loss, unauthorized processing or access, in accordance with the state of the art at any given time, the nature of the data and the possible risks to which they are exposed;
  • Use the data exclusively for the purposes previously defined;

Ensure that the data are processed only by employees whose intervention is necessary to satisfy the data subject’s request, and that such employees are bound by duties of secrecy and confidentiality. If the information may be disclosed to third parties for the purposes referred to above, they must be required to maintain appropriate confidentiality in accordance with this document.

5. WHEN DO WE DISCLOSE DATA TO THIRD PARTIES?

FFMS may use third parties to provide certain services, including maintenance, technical support, marketing, invoicing or payment management, and such third parties may have access to some personal data, namely the data necessary for the contracted purposes.

Personal data are stored on secure servers in the Netherlands and managed by Pantheon Systems UK, St James's Square Suite 1, 3rd Floor, 11 – 12 London SW1Y 4LB, United Kingdom, which provides us with appropriate security guarantees for the protection of personal data against disclosure, loss, misuse, alteration, processing or unauthorized access, as well as against any other form of unlawful processing.

6. THIRD-PARTY WEBSITES

The website may contain links to other websites that may collect and process your personal data; such processing is the sole responsibility of the owners of those websites, and FFMS bears no responsibility for their policies and/or practices.

Examples of such third parties are Facebook, Instagram, LinkedIn, Twitter or YouTube, through the buttons present on the WEBSITE.

7. COMMERCIAL AND PROMOTIONAL COMMUNICATIONS

One of the purposes for which personal data provided by users are processed is the sending of electronic communications containing commercial and promotional information.

All communications of this kind will be sent exclusively to users over 18 years of age who have given their prior express consent.

If the user wishes to stop receiving commercial or promotional communications from FFMS, they may object at any time by sending a request to the following email address: protecaodedados@ffms.pt

8. EXERCISE OF RIGHTS AND DEFINITIONS

Before we explain how you may exercise your rights, it is useful to know what they are. Accordingly, the law grants you the right to request the exercise of the following rights:

(a) Access: the right to obtain confirmation as to whether or not personal data concerning you are being processed and, where that is the case, the right to access your personal data;

(b) Rectification: the right to obtain the rectification of inaccurate personal data concerning you and to have incomplete personal data completed;

(c) Erasure (‘right to be forgotten’): the right to obtain the erasure of your personal data where one of the grounds laid down in the legislation applies;

(d) Restriction of processing: the right to obtain restriction of processing where one of the situations laid down in the legislation applies;

(e) Objection: the right to object at any time to the processing of personal data concerning you;

(f) Portability: the right to receive the personal data concerning you in a structured, commonly used and machine-readable format.

Accordingly, the user may at any time exercise their rights of information, access, rectification, erasure, restriction, portability and objection by written request addressed to FFMS by the following means:

  • By post to the following address: Largo Monterroio Mascarenhas, n.º 1, 7th floor, 1099 - 081 Lisbon
9. DATA TRANSFERS OUTSIDE THE EUROPEAN UNION

If data transfers to third countries outside the European Union or to international organizations occur, FFMS will comply with the legal rules, namely with regard to the adequacy of the destination country in respect of personal data protection and the requirements applicable to such transfers, and personal data will not be transferred to jurisdictions that do not provide adequate security and protection safeguards.

10. SUPERVISORY AUTHORITY

Under the law, the data subject has the right to lodge a complaint with a supervisory authority, in particular in the Member State of his or her habitual residence, place of work or place of the alleged infringement, if the data subject considers that the processing of personal data relating to him or her infringes this Regulation. In Portugal, the competent supervisory authority is the Portuguese Data Protection Authority (Comissão Nacional de Proteção de Dados – CNPD) www.cnpd.pt.