If you wish to contact IEP regarding these digital platforms, you may do so using the following email address RGPD@iep.pt.
COLLECTING AND PROCESSING OF PERSONAL DATA, PRINCIPLES AND GOALS
IEP is responsible for processing personal information about users collected directly through various means. IEP undertakes to implement appropriate technical and organizational measures to protect the personal data of its users against accidental, unlawful, loss, alteration, dissemination or unauthorized access.
An appropriate level of security is considered to be in effect regarding the data handling risks, given the sensitive nature of the data to be protected.
IEP may therefore collect and store information that voluntarily and with consent has been passed on to you, including, but not limited to, individualized personal information such as name, address, e-mail address, and telephone number. Prior to the processing and collection of personal data directly from the respective holders, IEP shall provide all necessary information regarding such processing and shall collect the relevant authorization for that purpose.
DATA HOLDER RIGHTS
The data provided by the users will be processed by IEP in accordance with the applicable legislation, namely:
a) Handled in a lawful manner, respecting the principle of good faith;
b) Collected for specific, explicit and legitimate purposes, and cannot be further processed;
c) Accurate and, where necessary, up-to-date, and appropriate measures shall be taken to ensure that inaccurate or incomplete data is erased or rectified, taking into account the purposes for which it was collected, or for which it will be subsequently processed;
d) Stored in such a way as to enable the holders to be identified only for the period necessary for the purpose of collecting or further processing. The data requested on these digital platforms is not considered, under the applicable legislation, to be sensitive data and therefore its inherent restrictions are not applicable.
The user’s personal data is collected and entered by IEP into an automated file for activities related to its digital platforms.
The data collected may be transmitted to other companies owned by IEP, which are located within the European Union, to carry out any activities included in the websites’ initiatives. The collection and processing of personal data will be carried out in accordance with applicable Portuguese law, and any authorizations that are necessary for this purpose will be previously obtained from the National Data Protection Commission. Under the law, IEP has taken the necessary steps to ensure that the data provided is protected against access or use by unauthorized third parties. However, IEP warns of the residual risk of unauthorized access through the Internet.
There are other types of information, in this case non-personal and non-individualized, which is recorded only to help keep websites useful and ensure a good browsing experience for visitors. This is statistical information that is usually by definition recorded through the browser window such as: the website address of the website that brought you directly to the IEP website, most visited website pages, type of browser, operating system, etc.
INFORMATION SECURITY AND USAGE
IEP is committed to ensuring the privacy of registered users. IEP does not sell or rent any personal data submitted by registered users to third parties.
Despite IEP’s efforts to protect your personal data, as it is collected through an open network – the Internet – it can circulate in the network without security, running the risk of being seen and used by unauthorized third parties.
PERSONAL DATA STORAGE TIME LIMIT
After the collection of individualized personal information, which has been voluntarily transmitted to it, IEP shall store and keep it until otherwise instructed, or until required by law. Saving this information allows IEP to continue to provide uninterrupted personalized services.