/ PRIVACY POLICY
Privacy Policy

General information

Deal and contact manager

Costa & Días, Lda. (hereinafter Codil) is responsible for the processing of your personal data.

For any questions related to your personal data and its processing, you can contact us through the following channels: for questions related to recruitment, please consider email: rh@codil.pt, if you have any other questions, please email: privacidade@codil.pt, or address Trav. Teacher. Francisco Xavier Dias Pinho N.º80 3700-371 Fajões.

How we protect your data

Codil uses various measures to protect your personal data, maintaining its security, integrity, and availability. However, whenever you transmit your data to us via email, the Internet, or a website, we cannot guarantee complete security against intrusions. Therefore, we strongly recommend that you transmit your data to us in person at our branch.

However, we, our suppliers, customers, and service providers are committed to implementing, maintaining, and updating physical, electronic, and procedural security measures to protect your data.

These include: restricting access to your data; encryption, encryption, or equivalent tools; firewall, antivirus, and IT support; and monitoring.

If you have any questions regarding your data, you can contact us using the methods indicated above.

Under certain conditions, you may have the right to ask us:

  • - additional information about our use of your personal data;
  • - a copy of the personal data you provided to us;
  • - that we provide personal data to another data controller at your request;
  • - that we update any inaccuracies in the personal data we hold;
  • - that we delete personal data whose use is no longer legitimate, including by withdrawing consent;
  • - refuse to have decisions made that affect you based on the automated processing of your personal data;
  • - we will restrict the use of your personal data until your complaint is investigated;

The exercise of these rights is subject to certain exceptions designed to safeguard the public interest (prevention or detection of crimes) or our interest (maintenance of professional secrecy).

These rights must be used reasonably. If the exercise of these rights, whether through repetition or for any other reason, proves unreasonable, Codil may charge you administrative fees or reject your request on this basis.

If you exercise any of these rights, we will analyze it and respond promptly within 1 (one) month.

If you are dissatisfied with our use of your personal data or with our response to your exercise of any of these rights, you have the right to lodge a complaint with the National Data Protection Commission | Rua de São Bento, no. 148, 3º, 1200-821 Lisbon | Tel: +351 213928400 | Fax: +351 213976832 | email: geral@cnpd.pp

What are the grounds and purposes? The data processing authorized by this declaration is based on your consent, which you may withdraw at any time. To do so, you must send us a written declaration to that effect using one of the channels indicated in the general information.

The data processing authorized by this declaration is for the purpose of preparing and sending our newsletter and/or information regarding our events, products, and services.

How long do we retain your data? Your data will be retained for a period of 5 (five) years, or until you withdraw your consent, whichever comes first.

The aforementioned retention periods may be extended by legal action, up to six months after the transfer of the data to judicial institutions or after a final judgment.

After the deadline, your data will be anonymized or securely destroyed.

With whom can we share your data? Your personal data, for which you provide authorization here, will not, as a general rule, be shared with third parties.

Exceptionally, we may also share information with authorities or in response to legal requests, in strict compliance with the law.

Customer and supplier contacts

What data do we process and why do we collect it? Whenever we enter into contracts, request quotes, or otherwise initiate steps toward entering into a contract, we may process the following data:

Identification Data

These include: Name; FPC; Tax Area; ICMS regime; CPF of the country of origin; Address and Delivery Address. This data is intended for compliance with legal obligations, including tax obligations, the issuance of the respective invoices and receipts, as well as for the formalization and execution of each contract and/or estimate.

Contacts

These include: phone number, cell phone number, and email address.

This data is necessary to send you quotes and contact you when the goods are available for pickup, contact you for payment, and communicate with you. We therefore collect it for the execution of each contract, or to send pre-contractual information and in the interest of both parties.

Customer/Supplier History

Your orders, the contracts you enter into with us, the products you bought or sold from us, your securities, your invoices and receipts, and your complaints are important to us.

This data is necessary for compliance with legal obligations, the execution of contracts, and the management and evaluation of the contractual relationship.

Payment details

Whenever we enter into a contract, we may process your personal data related to the payment method.

These may include, among others, data related to the accounts you use to make the payment, such as IBAN, Bank name, SWFT, and other data relevant to payment and identification.

This data is necessary for the execution of the contract.

What are the grounds and purposes? The processing of this data is based on the preparation, formalization, and execution of contracts, as well as the fulfillment of tax obligations. Occasionally, legitimate interests may also be used.

How long do we retain your data? Data will be retained for as long as necessary for the underlying purpose, or as long as processing is permitted, whichever is earlier.

This is a case-by-case determination that depends on factors such as the nature of the data, the reason it is being collected and processed, and relevant operational or legal retention needs.

Thus and exemplifying:

  • – for the purposes of demonstrating compliance with tax obligations, data may be retained for 10/12 years;
  • – for the purposes of demonstrating compliance or non-compliance with contractual obligations, the data may be retained for up to 21 (twenty-one) years;
  • – the aforementioned retention periods may be extended by legal action, up to six months after the transfer of the data to judicial institutions or after the final judgment;

The aforementioned retention periods may be extended by legal action, up to six months after the transfer of the data to judicial institutions or after a final judgment.

After the deadline, your data will be anonymized or securely destroyed.

With whom can we share your data? Your data may be processed through subcontracting and may need to be communicated to third parties, strictly for their purposes and to comply with the controller's legal obligations.

Therefore, personal data may be shared, among others, with the following entities:

  • – legal advisors/lawyers;
  • – public accountants/auditors;
  • – IT Consultants;
  • – financial and banking institutions that manage the accounts for our payments/receipts;
  • – treasury authority;
  • – law enforcement officers;
  • – entities to which the data must be communicated by virtue of legal provisions or at the request of the interested party;

Codil will require its data processors to comply with confidentiality obligations in a manner consistent with this Data Policy and the agreements entered into with them.

We use our own and third-party cookies to analyze browsing habits in order to improve your experience and our services. You can find more information in our Cookie Policy | OK