Privacy Policy and Cookies
Advanced X Concepts, Lda.
This Privacy Policy explains the terms under which Advanced X Concepts, Lda., a commercial company, based in mainland Portugal, owner and administrator of the websites www.xpansiondesign.com and www.xpansion.pt, uses and processes the data and information of its readers and/or Users. The rules of collection, use and processing of data and information are in accordance with national legislation and the Regulation on the Protection of Personal Data 2016/679 of the European Parliament and of the Council of 27 April 2016. The new Privacy Policy is effective as of 25.05.2018.
Identification of the Data Controller
Advanced X Concepts, Lda, commercial company headquartered in Rua Júlio Dinis, nº 272, 6º, 6.1, 4050-318 Porto, holder of the single registration number 516 596 438.
Advanced X Concepts, Lda. (hereinafter referred to as Xpansion Design) undertakes to ensure the privacy and protection of its Clients and Users personal data (hereinafter referred to as “Users”) being responsible for the sites www.xpansiondesign.com and www.xpansion.pt (hereinafter referred to as “Sites”).
You can obtain more information about your rights and/or exercise them through the following contacts:
E-mail: dpo@xpansion.pt
Website: www.xpansiondesign.com e www.xpansion.pt
How we collect your personal data
Xpansion Design collects personal data from its Users in the following ways:
The personal data we handle
We collect, record, and store the following personal data, which will be provided freely and spontaneously by Users or collected automatically by IT technologies:
Name and Surname
Email Address
Date of Birth
Phone Number
Nationality
Region
Cookies and usage data
System logs;
IP Address.
Purposes your personal data/legal basis may be used
Users’ personal data is collected and stored, solely and exclusively for:
To allow interaction between Users/Clients and Xpansion Design in order to request the provision of services;
To allow the clarification of doubts regarding the services that Xpansion Design provides to its Clients;
Allow interaction with social networks and external platforms
Maintain communication between Xpansion Design and its Users/Clients;
The conclusion, execution and fulfilment of a contract with the User, including pre-contractual steps;
The fulfilment of legal obligations to which Xpansion Design is bound;
To provide information and contents of interest to the Users and to the Users who subscribe to the newsletter, when requested by them;
To improve the Site’s functioning including content management and prioritisation.
For the purposes of maintenance and operation of the Sites, regarding system logs or IP addresses.
Xpansion Design may also process Users’ personal data for statistical purposes, to control and measure traffic on the Sites and improve the content presented therein.
IMPORTANT: Xpansion Design does not and will not assign to third parties the personal data provided to them by Users/Clients, for any purpose whatsoever. Except when the personal data is requested by a public authority for reasons of public security, criminal or administrative procedure.
Cookies
What are “Cookies”?
Cookies are text files sent by the websites you visit and stored on your computer. The information they make available allows the sites to be more efficient, making it easier for users to access the information they are looking for by eliminating the need to repeatedly enter the same information. Cookies are not used to collect personal information, they only identify the computer used.
What Cookies we collect and store:
– User’s screen resolution
– Google Analytics
How do we keep your personal data safe
Our systems have a variety of security measures, including advanced encryption and authentication tools, to help protect and maintain the security, integrity and availability of your personal data.
From our internal organization, only 4 (four) Xpansion Design employees have access to the Users database, limiting access to the minimum necessary for the management and maintenance of the database.
This internal rule aims to minimize the number of accesses to the Users’ personal database, reducing the probability of unauthorized access to the stored data.
We keep an internal record of all queries and accesses to the database, which enables us to identify improper accesses and their Authors.
Data Retention Period
We keep your personal data for the time strictly necessary for the purposes for which they are collected. This way, the personal data collected and stored with the purpose of a contract’s conclusion and performance will be kept until full compliance.
In any case, the holder of the personal data may exercise his/her right to erasure, as explained below.
Data Breach
Xpansion Design is not responsible for the content accessed through any hyperlink that leads the User to navigate outside the www.xpansiondesign.com and www.xpansion.pt domains.
Xpansion Design stores User data on the servers of a Third Party service provider who guarantees a high level of data protection. This entity does not have access to the data that is hosted there.
The violation or attempted violation of the Xpansion Design database shall be duly reported to the Portuguese Data Protection Commission, within 72 hours (seventy-two hours), and shall lead to the criminal and civil liability of the Agent(s) concerned for the damage caused.
How can you change or withdraw your consent
The User may, at any time, change or revoke their consent, with effect for the future.
In case of revocation of the declarations of consent, the User will no longer be contacted and will no longer receive communications for the purposes described in this Privacy Policy.
Please use the email dpo@xpansionsesign.com to contact us if you wish to withdraw your consent.
Data subject rights
Users of the Site enjoy the following rights expressly enshrined in the General Data Protection Regulation (GDPR), Regulation (EU) No 679/2016 of 27 April
Right to Information – at the time of collection or processing, the holder of the personal data has the right to be informed about the purpose of the processing, the person responsible for the processing, the entities to which their data may be communicated, the conditions of access and rectification and which compulsory and optional data will be collected.
Right of Access – the holder of the personal data has the right to access them, without restrictions or delay, as well as to know what information is available about the origin of the data, the purposes of processing and the communication of the same to third parties.
Right of rectification – the personal data subject has the right to the rectification of personal data that have been collected and which are incorrect
Right of Erasure – the data subject has the right to request that their data ceases to be processed, be erased and deleted, under certain conditions, in the event that:
they are no longer necessary for the purpose for which they were collected;
the data subjects withdraw their consent or object to the processing of their data;
if the data processing does not comply with the legal provisions.
Right to restriction of processing – the personal data subject has the right to have their data limited to what is essential for the purpose of the processing
Right to Data Portability (data transfer) – the data subject has the right to receive their data, or to request their data transmission to another entity that becomes the new controller of their personal data (only if technically possible).
Right of objection – the data subject has the right to object, on request and free of charge, to the processing of your personal data for the purposes of direct marketing or any other form of prospecting and that your personal data is communicated to third parties, unless otherwise provided by law.
Right to Know of a data breach existence – the personal data subject has the right to be informed if there is a security breach that compromises their personal data.
Right of Complaint to a supervisory authority – the personal data subject has the right to complain not only to the company’s personal data controller, but also to the supervisory authority, the National Data Protection Commission.
If you exercise any of these rights we will analyse it and reply, hopefully, within 15 (fifteen) days.
Changes to this privacy policy
This Privacy Policy is effective from 01.06.2022 ,
We reserve the right to update or amend our Privacy Policy at any time, so please check this Privacy Policy regularly.
Any future changes will come into effect immediately after being posted on this page.
226091084
Skip to content
