• +351 22 995 20 36
  • geral@oleotest.com
  • Maia, Portugal

Privacy and Data Protection Policy

The privacy of our customers and users is important to the companies of the Castro, Pinto & Costa Group, Lda., hereinafter referred to as CPC Group.

The CPC Group is committed to ensuring confidentiality and privacy in the collection and processing of data from its Customers and Users, complying with its obligations under the General Data Protection Regulation (GDPR), and has therefore developed this Privacy Policy.

This Privacy and Data Protection Policy helps you understand how the CPC Group collects, processes, and protects your personal data when you visit our websites and use our products and services. The CPC Group adopts best organizational and technical practices to preserve the confidentiality, integrity, and availability of the personal data it collects and processes, in strict compliance with applicable legislation. By providing your personal data to the CPC Group, you consent to its collection, processing, and disclosure in accordance with this Privacy and Data Protection Policy and with the rules and principles set out in the Terms and Conditions of the services provided.

 

General Provisions and Scope

 

The CPC Group is responsible for this Privacy and Data Protection Policy. This policy applies to this website, as well as to other CPC Group websites, forms, and documents that reference it.

Within the scope of this Privacy and Data Protection Policy, the following general concepts are defined:

    • Customer: any entity / company / institution / individual that purchases our products and/or services;
    • User: any visitor to this website or other websites belonging to the CPC Group and/or subscribers to our Newsletter.

The CPC Group reserves the right to update or modify this Privacy and Data Protection Policy at any time, namely to adapt it to national and international legislative changes. We recommend that all customers and users consult this page regularly.

 

What Are Personal Data

 

Personal Data means any information, regardless of its nature and format, including sound and image, relating to an identified or identifiable natural person (data subject).

An identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more specific elements of their physical, physiological, psychological, economic, cultural, or social identity.

 

Data Collected

 

The CPC Group collects data from its Customers and Users through the submission of forms provided for that purpose, in digital and/or physical format.

The CPC Group is responsible for the collection and processing of such data, determining the categories of data collected, how they are processed, and the purposes for which they are used.

All procedures, whether automated or non-automated, that allow the collection, organization, storage, modification, and transfer of personal data shall be considered “processing of personal data.”

 

Use of Collected Data

 

The data collected by the CPC Group is intended for communication with Customers and Users, processing information requests, statistical analysis, satisfaction surveys, as well as for direct marketing purposes.

The CPC Group does not sell or trade your data.

The user expressly authorizes the CPC Group to send information about products and services that may be of interest, using personal data for direct marketing purposes through any communication channel, including email, telephone, SMS, MMS, or other forms of automated calls. The CPC Group will not commercialize or share its customer database with third parties.

 

Access to Collected Data

 

The CPC Group does not disclose personal data of its Customers and Users to third parties without their consent, except:

    1. when such disclosure involves companies within the CPC Group;
    2. when necessary for employees, staff, suppliers, or business partners of the CPC Group to provide a product or service or perform a function on behalf of the CPC Group;
    3. when required or permitted by law.

The CPC Group will take reasonable precautions to ensure that employees or collaborators with access to personal data receive appropriate training for its proper processing, in compliance with this policy and applicable data protection obligations.

 

Data Security

 

The CPC Group has implemented the necessary technical and organizational measures to adequately protect your data against unauthorized processing and access.

In the event of a data breach, loss, or violation that is likely to result in a high risk to the rights and freedoms of Customers and Users, the CPC Group will:

    • Notify the supervisory authority within 72 hours of becoming aware of the incident;
    • Promptly inform the affected data subject(s).

 

Data Subject Rights

 

Under applicable legislation, as a data subject you are entitled, at any time, to:

    1. Access your personal data;
    2. Request rectification or completion;
    3. Object to data processing, except where strictly necessary for service provision and/or legal obligations;
    4. Request data portability;
    5. Request deletion of your data for marketing or telemarketing purposes.

You may request any of the above actions by sending an email to: dpo@cpc.com.pt

 

Cookies

 

Cookies are pieces of text information that a website transfers to an individual’s hard drive for record-keeping purposes.

As is common practice on most websites, we use cookies for various purposes: to improve your online experience, for analysis, and for marketing. You may disable cookies in your browser settings.

 

Changes to the Privacy Policy

 

The CPC Group reserves the right to amend or modify this Privacy and Data Protection Policy at any time, and such changes will be duly published.