Effective Date: May 21, 2018
As we are located in European territory, in Portugal, we follow the legislation in force in the European Community, and we are in compliance with the new General Regulation on Data Protection (GDPR), which came into force on the 25th day of greatest 2018.
It is known that there was already legislation on Data Protection (Directive 95/46 / EC), which all companies or public authorities in the European territory should comply with. However, to unify these laws and make them easier to enforce and regulate in all countries, the GDPR has emerged. This new regulation replaces all existing legislation, further respects individual rights and extends protective measures to the personal information of citizens of the European Union, especially in relation to online activities.
See how and what we at ASTRO do to collect, use and protect your data.
What data do we collect?
We collect only the data that pertain to the nature of our business. We will never ask for information beyond what is strictly necessary for the marketing and dissemination of design, decoration and architectural products online. For example, to deliver the product you need address data, but not how many children you have or your blood type.
Therefore, on our website, we collect the e-mail, the moment the user subscribes to the newsletter, completes the contact form or when he simulates or concludes a purchase. In the latter case, the name, surname, delivery address and telephone number are also requested, as well as, in some cases, the number of the taxpayer for the billing. In case of making any purchase through our website, the payment information is sent directly to the Electronic Commerce Payment Processors that are integrated into the site. The data is not stored at any time in our database.
We also collect information regarding your browsing, through cookies or Third Party Services (Learn more about our Cookies Policy), namely: IP addresses, preferences, web pages visited before accessing our sites, information about your browser , network or device (such as browser type and version, operating system, Internet service provider, preference and language settings), information about how you interact with our site (such as clicks, scrolling, browsing times, searches, transactions , reference pages, loading times, and issues you may encounter, such as loading errors). Any information provided, directly by you, is also collected.
What are these data collected for?
To make sales and delivery of our products, to communicate with you, clarify doubts, pass quotes and inform about transactions and deliveries. We also collect data for future promotional or advertising contacts, such as promotions, launches, offers, campaigns, services and the like.
We collect data to comply with legal obligations, such as those relating to the payment of taxes on commercial transactions and other applicable government regulations.
The collected data is also useful for customizing the types of contacts so that they are always timely and address issues that are relevant to you. As well as, they help us always understand their preferences, improve our services, develop new products, monitor communication strategies and protect navigation and users against abuse.
How is the data processed and where is it stored?
The data collected is processed and stored on the platform hosting our site, Squarespace Ireland Limited, which has a server within the European area, located at Le Pole House, 1st Floor - Ship Street Great - Dublin 8.
Squarespace is a company committed to security as one of its top priorities. As such, it uses numerous tools and protection methods like regular security scans to maintain PCI DSS compliance; tools to protect against Cross-Site Scripting (XSS), SQL injections and other potential vulnerabilities.
It also leverages network hardware from industry-leading vendors to provide protection against intruders, employ a variety of dynamic threat mitigation techniques, and implement measures to protect against denial of service (DoS and DDoS) attacks.
With whom do we share your data?
We do not share any data with third parties for the purpose of providing their own advertisements. Your data is shared only with service providers linked to us, such as carriers, billing system, website hosting platform, networks and companies that run online ads or send marketing. The data may also be shared in the case of a reorganization, acquisition or sale of some or all of the assets.
Shall we transfer your data outside the European Community?
No. Studio Deusdara is headquartered in Portugal and has no representation or department outside the European Community, as well as the services of its suppliers.
What are the rights of data subjects?
You may, at any time, request us to remove our database or to correct any specific data. You can also choose not to receive marketing communications, select the type of subject you prefer to receive information or make any kind of complaint. In addition, there is the right to be completely forgotten, which means that after deleting your data, we will not reinsert them again.
There are two ways to do these actions: when you receive a newsletter in your email box. The footer always offers the possibility of removing your email from our database or selecting your preferences. If you wish to withdraw consent to use any type of data or to request the portability of your data or any other subject, just send us an email to: email@example.com.
If you are subject to EU data protection legislation, you have the right to complain to any competent supervisory authority. We leave here, as a suggestion, the contacts of the supervisory authority in Portugal:
National Commission for Data Protection
Rua de São Bento nº 148-3º 1200-821 Lisboa / PT
Tel: +351 213928400
Fax: +351 213976832
All requests made by data subjects will be dealt with as soon as possible, with a maximum response time of 15 working days. In any case, this will not affect the legality of the processing before your withdrawal of consent.
Who manipulates this data?
The professionals that access the data of third parties are suitable persons, of the confidence of the ASTRO, and, moreover, they sign a term of confidentiality. To contact the data protection professional directly, send an e-mail to: firstname.lastname@example.org.
What if the data is violated?
In the event of any breach for which notification is required by the applicable EU Data Protection Laws, we will make due notification of breach by email, informing where possible the protective measures already put in place to remedy the problem.
How to get in touch with us
You can get in touch with us in several ways:
Taking a visit to our headquarters:
Rua de São João, 6 - 4700-325
Braga / Portugal
Sending an e-mail to: email@example.com
Sending a message through our social networks
Calling to: +351 918 701 584.