The user’s privacy is important for Fabri.
Company: Fabriprojecto, Fábrica de Carpintaria e Móveis Lda.
(from now on “Fabri”).
Address: Estrada Cabeço do Cação, 1096 Trajouce 2785-088 São
Domingos de Rana, Cascais, Lisboa, Portugal;
– Client, any identity that requires our services; and
– User, any person that visits our any of our websites, microsites that mention this policy and/or subscribers that belong to our electronic content list (Newsletters).
General Data Protection Regulation
The General Data Protection Regulation (GDPR), fully applicable since 25 May 2018, regulates the processing of personal data of singular persons and the free movement of such data.
This information is of your interest. We want to transparently inform you about how FABRI handles personal data, how it manages all information, what its purposes are and how to carry out its management. We invite you to read this brief summary carefully.
It is the Policy that establishes the terms under which FABRI handles the personal data of its customers and the rights they may exercise, in accordance with the Regulation (EU) 2016/679 of the European Parliament and of the Council – General Data Protection Regulation (GDPR) – and other applicable national legislation on privacy and data protection.
What is personal data and the processing of personal data?
Personal data is any type of information relating to a person. For example, their name, an identification number, location data, contact details, even elements of their physical, economic or social identity.
The processing of personal data is any operation carried out, by automated or non-automated means, on this data – collection, recording, alteration, consultation, use, transmission and destruction, among others.
How does FABRI collect your data?
FABRI collects personal data in the context of the commercial relationship established with the Client, for example, by executing a quotation, proposal or contract. In collecting and processing the data, FABRI complies with the applicable obligations and observes the principles and rules of processing.
Is your personal data secure?
FABRI has adopted several technical and organizational security measures in order to protect the personal data of its Customers against loss, disclosure, alteration, improper or unauthorized processing or access. The data may be kept for as long as there remain obligations arising from the commercial relationship with the Customers.
Can FABRI provide its customers’ data to third parties?
FABRI may use third parties – subcontractors – for the provision of certain services: CARRIERS, COUNTERTOP SUPPLIERS, APPLIANCE SUPPLIERS, EQUIPMENT AND FURNITURE INSTALLERS, which may imply access, by these third parties, to the personal data of the Customers. FABRI shall ensure that these subcontractors comply with the applicable legal requirements and offer adequate guarantees with regard to data protection. FABRI shall provide subcontractors with instructions on the processing of personal data.
What are the rights of the personal data subjects?
a) Right of access – provision of information on the personal data held by FABRI concerning the data subject and on its the processing;
b) Right of rectification – correction, updating or inclusion of information (that may be missing) concerning the data subject;
c) Right to data destruction (“right to be forgotten”) when there is no active contract;
d) Right to limitation of processing – (temporary) suspension/cessation of data processing, in compliance with the necessary requirements (no active contracts);
e) Right to portability – making available the personal data provided by the Customer, in a structured format for common use and automatic reading, so that they can be transmitted to another controller;
f) Right to object – revocation of consent for data processing carried out on that basis.
How can the Client exercise their rights and access information on personal data management?
At FABRI, Clients may exercise any of these rights via e-mail: firstname.lastname@example.org
FABRI ensures that the sharing of personal data, where necessary, complies with the principles and rules on the processing of personal data enshrined in the RGPD, ensuring the protection of the personal data of its Customers.
Fabri collects data from its Clients and Users, through the submission of existing forms for this purpose, in digital and/or physical format.
Fabri is the responsible entity for collecting and processing this data, deciding the categories of the data, it’s processing and purposes. All automatic and non-automatic procedures that allows the collection, organization, storage, modification and transfer of this personal data will be considered as “personal data processing”.
All data collected by Fabri will be used to communicate with Clients and Users, for information inquiries, analytics, as well as for direct marketing purposes.
Fabri can use your personal data to send you any non-requested e-mail related to products or commercial offers that might be of your interest. Fabri does not sells or negotiates your data with any 3rd party.
The user expressly authorizes Fabri to send information about products and services that might be of your interest, using your personal data for direct marketing purposes through any communication channel, namely, e-mail, telephone, SMS, MMS or other forms of automatic calls. Fabri will not sell, negotiate or share its client’s database with third parties.
Fabri does not share any of it’s Clients and Users personal data with third parties without your consent, except:
– When it’s necessary that Fabri’s employees, suppliers or business partners need to provide a product or service or execute a task in Fabri’s name, or
– When is required or permitted by law.
Fabri will adopt measures to guarantee that their employees with access to personal data receive appropriate training to their correct processing, following this policy and the legal data protection obligations. In case of non-compliance, Fabri will apply disciplinary sanctions to their employees.
Every time Fabri divulges the user’s personal data, it will implement the law of personal data protection, through the contractual provisions that guarantee the third party that receives the data only uses it for specific purposes described in this policy, and that safety measures are applied, in order to protect the user’s personal data against illegal or unauthorized treatment as well as accidental loss, destruction or any other harmful actions.
Data Storage Time
Fabri takes technical and organizational measures to protect, all data from non-authorized access and processing. Fabri develops adequate efforts to avoid the non-authorized or illegal use, as well as the loss, destruction or damage of all data. However, Fabri cannot provide an absolute guarantee regarding the user’s data. Whenever there is a leak, loss or violation of personal data that is likely to imply high risk to the rights and freedom of its clients and users Fabri will:
Notify the control authorities, within a 72 hour timespan, after being made aware that the incident has occurred;
Communicate the incident in time to the owners of the affected data.
Fabri guarantees the safety of personal data through the following methods:
– The use of encryption with certified on all website communications.
– Limited access to personal data (for example, access only given to employees).