Terms and Conditions
CIMPOR guarantees the protection of the data entrusted to it by the users of its website, the collected information is dealt with under the appropriate legislation, namely the General Data Protection Regulation & Law No , 58/2019, of August the 8th.
In this policy CIMPOR provides information on the rules, principles & good practice that it observes within the context of the processing of the personal data shared with it & the user is informed of their rights & the means to exercise them.
The user of this website guarantees that he/she is of legal age & that the personal data provided by him/her is true, accurate, complete & up to date. Whenever providing data of any third party, the user guarantees that they have obtained the respective prior consent of the third party & holder of the personal data in question , providing him/her with the necessary information to obtain an informed consent, namely the terms & conditions mentioned above.All definitions provided relating to personal data protection refer to the exact terms contained in the GDPR.
Cimpor processes personal data based on the following principles:
Personal data is processed lawfully, fairly and transparently;
The respective collection of data is carried out only for duly determined, explicit and legitimate purposes;
The data collected is limited to data that is considered strictly necessary and kept only for the length of time required for the purposes for which it is processed;
Only employees and Group partners whose roles so require have access to personal data processed;
Personal data is processed confidentially;
2. The purposes of data processing
Cimpor will process your personal data manually and/or automatically for the following specific purposes:
Complying with legal obligations
Performance of Contracts and management of business relationships
Labor recruitment processing
- Legitimate interest
3. Data processing conditions
CIMPOR commits to only processing personal data when at least one of the conditions provided for in the data protection legislation is met, specifically:
The data subject has freely given its informed, specific, unambiguous, express prior consent to his/her data processing;
Personal data must be processed to execute and perform a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract;
Personal data must be processed for compliance with a legal obligation to which Cimpor is subject;
Personal data must be processed to secure CIMPOR's legitimate interests
4. Data controller
The relevant data controller shall be the company within the Cimpor group which determines the purposes and means of the personal data processing.
5. Period of retention of personal data
In line with the aforementioned principles, CIMPOR retains personal data according to the purpose for which it was collected only for the period of time necessary to fulfil such purposes in accordance with the law. CIMPOR has established procedures to ensure that personal data is pseudonymised or deleted once the retention period has elapsed.
6. Rights of Data Subjects
Under the applicable law, you shall have the following rights regarding the processing of your personal data:
Right of access;
Right to rectification;
Right to erasure (‘right to be forgotten’);
Right to restriction of processing;
Right to data portability;
Right to object;
Right to withdraw data protection consent.
The right to erasure is limited to such data, which is not necessary for the purposes of our legitimate interests and which is not stored and processed due to our legal obligations.
Furthermore you shall have to right to file a complaint with the competent data protection authority which is the General Data Protection Regulation (GDPR).
7. Safety measures
CIMPOR implemented appropriate technical and organisational measures against any violation of personal data that may accidentally or unlawfully cause the destruction, loss, alteration, disclosure or unauthorised access tothe personal data transmitted, stored or subject to any type of processing by CIMPOR.
This commitment to protecting personal data also requires that whenever personal data is shared with other entities, these entities adopt technical and organisational measures that ensure the same level of protection of the personal data as provided by Cimpor.
It is, however, the user's responsibility to ensure that his/her device (computer, laptop, smartphone) is adequately protected against harmful software and computer viruses through the secure configuration of the navigation programme, not using software of dubious origin, and ensuring his/her antivirus software is up to date, measures without which he/she faces a greater risk of his/her personal data and access passwords being accessed and used by unauthorised third parties.
8. Transmission of personal data to other entities
Personal data may be shared with subcontractors for processing for and on behalf of CIMPOR. Such subcontractors must always adhere to the technical and organisational measures necessary to adequately protect personal data belonging to users. Data may also, where necessary, be shared with companies within the Group as well as public authorities (Tax Authority, legal authorities, the police, etc.) under the terms and conditions set out in the applicable legal rules.
9. Cross-border processing
Any transfer of personal data to companies within the Group located in countries outside the European Union may only take place within the framework of an intergroup agreement, which will ensure that all data is transferred in strict compliance with the applicable legal rules.
Data subjects who wish to exercise any of the aforementioned rights or clarify any issues relating to the protection of their own privacy and that of all personal data processed by CIMPOR can do so via the following contact details:
Email to DPOCIMPOR@CIMPOR.COM
Postal address: C/O Data Protection Officer, Av. José Malhoa no.22, Pisos 6 a 11, 1099-020 Lisbon