Charming Point’s privacy and personal data protection policy intends to inform holders and users of the general rules for processing personal data and special categories of personal data, which are collected and processed in strict respect and compliance with the provisions of legislation. protection of personal data in force at any given time, namely Regulation (EU) 2016/679 of the European Parliament and of the Council, of 27 April 2016 (hereinafter referred to as GDPR).
Charming Point respects best practices in the field of security and protection of personal data and special categories of personal data, having taken the necessary technical and organizational measures in order to comply with the GDPR and ensure that the processing of personal data and special categories of personal data is lawful, fair, transparent and limited to authorized purposes.
In this privacy and data protection policy, Charming Point aims to guarantee and protect the rights of our users and those who visit our domain or any of the subdomains belonging to Charming Point, namely with regard to the privacy of the personal data of its users, making known the procedures of action and responsibility.
The data collected will not be processed for any purposes other than those specified here.
Charming Point reserves the right to update or modify its privacy and data protection policy at any time, namely in order to adapt it to legislative changes.
Additionally, this privacy and data protection policy is extended to its subcontractors who, within the scope of the process, will need to have access to the data, in compliance with the provisions of the RPGD.
By visiting our website at www.charming-point.com or any of its subdomains you are consenting to the terms of our privacy policy.
Scope
Charming Point’s privacy policy concerns personal data and special categories of personal data collected in person or when browsing the website www.charming-point.com.
Charming Point’s privacy policy does not extend to any other entities unrelated to its legal personality.
personal data
For the purposes of the GDPR, any information of any nature and regardless of its support, including sound and image, relating to an identified or identifiable natural person is considered personal data. A natural person who can be identified, directly or indirectly, namely by reference to a name, identification number, location data, identifiers electronically or to one or more specific elements of their physical, physiological, genetic, mental, economic, cultural or social.
Special categories of personal data
For the purposes of the GDPR, special categories of personal data are considered to be any data that reveals racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, as well as the processing of genetic data, biometric data to identify a person unambiguously, data relating to health or data relating to a person’s sex life or sexual orientation.
data typology
The information recorded by Charming Point can be divided into two generic typologies: those that are collected automatically by computer systems, and those that are provided by the user on the website and/or in person with our services.
Automated collection data – Cookies – are text files with digital information that are stored on the user’s hard drive after accessing a web page . The next time the user accesses the previously visited page, that file signals its presence.
Charming Point uses cookies on its website to store information such as your personal preferences when you visit our website . This may include a simple popup , or a link to various services we provide, such as forums.
The user has the power to turn off his cookies , in his browser options , or by making changes to the Anti-Virus program tools , such as Norton Internet Security. However, this may change the way you interact with our website , or other websites . This may or may not affect your ability to log in to programs, sites or forums on our and other networks.
The data requested from users; name, telephone number, email address and diagnosis are registered and processed through computer systems.
Manual collection takes place with authorization and consent presented in person on physical support by the holder.
Additionally, Charming Point, due to tax obligations, records and processes data intended for accounting registration activities, as well as those relating to current and commercial activities.
The recording and processing of this data is carried out to the extent of available means and resources, in compliance with and in accordance with the provisions of the RGPD.
Entity that processes the data
Charming Point is responsible for registering and processing the personal data of its holders.
Data processing
The processing of personal data and special categories of personal data, consists of an operation or a set of operations carried out on personal data or sets of personal data, through automated means, or not, namely the collection, registration, organization, structuring , conservation, adaptation, retrieval, consultation, use, dissemination, diffusion, comparison, interconnection, limitation, erasure or destruction.
The processing of personal data by Charming Point is governed by the principles of lawfulness, loyalty and transparency, in strict respect for the privacy, rights, freedoms and fundamental guarantees of its holders.
In this context, Charming Point undertakes to maintain the confidentiality of the data collected, to the extent of the state of the available technology, confiding the information processed by this means and additionally adopting the necessary measures, within its reach, to avoid its loss, misplacement. or improper handling.
Personal data is collected within the scope of process management and under the terms of the Law.
Charming Point, within the scope of its activities, processes personal data and special categories of personal data, necessary for the provision of services, processing data such as name, telephone number and email address.
data transfer
Charming Point guarantees not to transfer, in any way, means or purpose, any data of its holders and users.
Cases of sharing personal data with subcontractors and partners of Charming Point are safeguarded, within the scope of the management of the process, and if this is required for the purpose of complying with legal obligations, namely to police, judicial, tax and regulatory entities. .
Charming Point has implemented appropriate technical and organizational measures in order to process personal data, meet the requirements imposed in article 28 nr. requirements for data processing under the Law.
Preservation of personal data
The period of time during which personal data are stored and preserved may vary according to the purpose for which the information is processed, always taking into account compliance with the legal stipulations in force.
Legal requirements prevail that oblige data to be kept for a minimum period of time. Thus, and whenever there is no specific legal requirement, the data will be stored and kept by Charming Point, for a minimum period of 10 (ten) years, counting from its last use, or from the last interaction with its owner and user, necessary time period for the pursuit of the purposes that motivated its collection or its subsequent processing, in the terms defined by law.
Right of the data subject
As users of Charming Point, the holders of personal data and special categories of personal data are guaranteed, at any time, the right to access, rectify, update, limit and erase their personal data and special categories of personal data (unless to data that are legally unavailable for deletion), the right to object, to the withdrawal of consent, without compromising the lawfulness of the treatment carried out under that consent, as well as the right to data portability.
For these purposes, the holder or user must request the updating of the data, its correction or definitive elimination (forgetting) in a simple way, simply by sending an email expressing that wish, sent to any of Charming Point’s electronic addresses or by written to Charming Point headquarters.
In the case of oblivion requests, the removal will be carried out as soon as possible, estimating a period not exceeding 15 (fifteen) days for such removal to take effect.
Charming Point reserves the right to withhold its minimum information where an underlying legal reason to do so prevails.
Safety
Charming Point implements and implements all security measures within its reach, to the extent of its resources, to ensure the protection of electronic communications, but cannot definitively guarantee the inviolability of the systems. Although communications over the internet can be encrypted, we cannot guarantee that there will be no malicious attacks and/or that, in this context, the information will not be visualized. Sending information electronically is never completely secure.
Privacy policy update
Charming Point reserves the right to modify this privacy and personal data protection policy without prior notice, however, it undertakes to communicate the respective changes as soon as possible, especially when they represent a decisively fracturing change in the use of our services.
right of complaint
Without prejudice to being able to submit complaints directly to Charming Point, through the contacts made available for this purpose – email or in person – the user can complain directly to the Control Authority, in this case the National Data Protection Commission (CNPD), using the contacts made available by this entity for this purpose at www.cnpd.pt.
legal framework
General Data Protection Regulation (EU)2016/679 of the European Parliament and of the Council of 27 April 2016.
Last update
December 15, 2021