Privacy Policy

Published on July 3, 2025

ETU Fire Safety Consultants, Lda. respects the privacy of its customers, users, and suppliers. This Privacy Policy describes who we are, for what purposes we may use your data, how we process it, with whom we share it, how long we retain it, as well as how you can contact us and exercise your rights. The rules set forth in this Data Protection Policy complement the provisions regarding the protection and processing of personal data set forth in the proposals prepared by ETU Fire Safety Consultants, Lda., as well as the rules set forth in the terms and conditions governing the provision of various services and which are duly published on this website. Your data is collected by ETU Fire Safety Consultants, Lda., hereinafter referred to as "ETU." ETU processes and stores personal data within the European Union ("EU") and adheres to best practices in the field of security and protection of personal data. To this end, it has taken the necessary technical and organizational measures to comply with the General Data Protection Regulation (Regulation (EU) 2016/679), which is a legislative act directly binding on individuals and legal entities that, whether resident in the EU or not, process data of European Union citizens. It ensures that the processing of personal data is lawful, fair, transparent, and limited to the authorized purposes. The privacy statement is the responsibility of ETU, which is considered the data controller for the purposes of the GDPR, and will determine the purpose and means of processing personal data submitted and collected online. It is further declared that, under the terms described in the 37th article of Regulation (EU) 2016/679, and taking into account the activity and type of data processed, the appointment of any Data Protection Officer (DPO) is not necessary, whilst maintaining all obligations in compliance with the regulation.

WHAT IS PERSONAL DATA?

Personal data is any information, of any nature and regardless of its medium, including sound and image, relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to a name, identification number, location data, online identifiers, or to one or more factors specific to their physical, physiological, genetic, mental, economic, cultural, or social identity.

WHAT DOES PERSONAL DATA PROCESSING CONSIST OF?

The processing of personal data consists of an operation or set of operations carried out on personal data or sets of personal data, using automated or non-automated means, namely collection, recording, organization, structuring, storage, adaptation, recovery, consultation, use, disclosure, dissemination, comparison, interconnection, limitation, erasure or destruction.

Our data protection policy ensures that data are: processed lawfully, fairly and transparently in relation to the data subject (“lawfulness, fairness and transparency”); collected for specific, explicit and legitimate purposes and cannot be further processed in a way that is incompatible with those purposes; adequate, relevant and limited to what is necessary in relation to the purposes for which they are processed; accurate and kept up to date whenever necessary, with all appropriate measures being taken to ensure that inaccurate data, taking into account the purposes for which they are processed, are erased or rectified without delay; stored in a form that permits the identification of data subjects only for the period necessary for the purposes for which they are processed; processed in a manner that guarantees their security, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, by adopting appropriate technical or organizational measures.

PURPOSES OF PERSONAL DATA PROCESSING

Ensuring, whenever necessary, the prior consent of the data subject, we will collect, among other information: first and last name; tax identification number; date of birth; email, telephone number, and address. In general, the collection of personal data is based on and intended for the management of the contractual relationship, the provision of contracted services, and the adaptation of services to the needs and interests of the customer or user, in particular for the purposes of accessing specific features of services and products, information services, the dissemination of newsletters, requests for information and contact, as well as information and marketing initiatives. Additionally, personal data may also be processed for the purposes of complying with legal obligations and for the investigation, detection, and prosecution of serious crimes.

COOKIES

Our website uses cookies or similar technologies to ensure the best user experience and to analyze trends, track user movements within the website, and gather demographic information about our user base as a whole. Our cookies record information such as Internet Protocol (IP) addresses, browser type, Internet Service Provider (ISP), referring/exit pages, files accessed on our website (e.g., HTML pages), operating systems, and date and time, to analyze website trends.

STORAGE PERIOD

The period of time for which personal data is stored and retained varies depending on the purpose for which the information is processed. Indeed, there are legal requirements that require data to be retained for a minimum period. Therefore, and whenever there is no specific legal requirement, data will be stored and retained only for the minimum period necessary to pursue the purposes for which it was collected or subsequently processed, as defined by law.

AGE OF MAJORITY

By accepting this privacy policy, you guarantee that you are 18 years of age or older.

USE OF PERSONAL DATA

ETU may contact you under the terms you have accepted (for example, to receive the newsletter) to present the goods and/or services it sells. The processing of such data is based on the consent given by the data subject. Access to personal data is strictly limited to ETU staff, subcontractors, or subcontractors.

SHARING OF PERSONAL DATA

ETU guarantees that it does not transfer data to countries outside the General Data Protection Regulation. ETU has entered into an Agreement with its subcontractors, under which they undertake not to transfer data to third countries. In certain situations, both ETU and its subcontractors and subcontractors may be required to disclose personal information in response to requests from supervisory authorities, in order to comply with GDPR requirements.

PROCESSING SECURITY

ETU is committed to ensuring the security of the personal data provided to it, having approved and implemented strict rules in this regard. Compliance with these rules is an obligation for all those who legally access the collected data. Given ETU's concern and commitment to protecting personal data, several technical and organizational security measures have been adopted to protect the personal data provided to it against dissemination, loss, misuse, alteration, unauthorized processing or access, as well as against any other form of unlawful processing. Additionally, third parties that, in the context of providing services, process the personal data of customers or users on behalf of ETU are required, in writing, to implement appropriate technical and security measures that, at all times, meet the requirements set forth in applicable legislation and ensure the protection of the data subject's rights (in particular, the protection of the privacy and personal data of customers and users).

ACCESS AND RECTIFICATION OR DELETION OF PERSONAL DATA

As a data subject, the customer or user has the right to request access to their data, and to request rectification and deletion. They may also restrict the processing of their data, object to it, and request data portability. This can be done directly or by written request using the contact details provided on the website's contact form. They may also request clarification from the ETU or file a complaint with the CNPD whenever they believe their rights are being violated.

RIGHT OF ACCESS

The holder of personal data has the right to obtain confirmation from ETU as to whether or not data concerning him or her are being processed and, where applicable, to access his or her personal data and access the information provided for by law.

RIGHT TO THE ERASURE OF DATA (“RIGHT TO BE FORGOTTEN”)

The data subject has the right to obtain from ETU the erasure of his/her data, without undue delay, and ETU has the obligation to erase personal data, without undue delay, when, in particular, one of the following reasons applies: a) the personal data are no longer necessary for the purpose for which they were collected or processed; b) the data subject withdraws his/her consent to the processing of data (in cases where the processing is based on consent) and there is no other basis for such processing; c) the data subject objects to the processing and there are no prevailing legitimate interests that justify the processing;

RIGHT TO LIMIT PROCESSING

The data subject has the right to obtain from ETU restriction of processing if, in particular, one of the following situations applies: a) the data subject contests the accuracy of the personal data, for a period enabling ETU to verify their accuracy; b) the processing is lawful and the data subject opposes the erasure of the personal data and requests instead the restriction of their use; c) ETU no longer needs the personal data for the purposes of the processing, but such data are required by the data subject for the establishment, exercise or defense of legal claims; d) the data subject has objected to the processing, until it is verified whether the legitimate grounds of the controller prevail over those of the data subject.

RIGHT TO DATA PORTABILITY

If the processing is based on the consent of the data subject and that consent has been given by automated means, the data subject has the right to receive the personal data concerning him or her that he or she has provided to ETU in a structured, commonly used and machine-readable format.

RIGHT OF OPPOSITION

In cases where data processing is carried out for the purposes of legitimate interests pursued by ETU, for direct marketing purposes or for profiling purposes, the data subject may also, at any time, object to the processing of his/her personal data.

MARKETING EMAILS

Data controllers are permitted, upon explicit consent, to send marketing emails to website users. Users may withdraw their consent at any time by clicking the dedicated link in each email sent.

CHANGES TO THIS POLICY

This privacy policy may be updated occasionally, for example due to changes in relevant legislation. If any significant changes are made, customers and users will be notified by email or via a website notification.

PRIVACY POLICY