Respecting your privacy and protecting personal data is a matter of trust, a value that SparkleIT holds in high regard. We are committed to respecting fundamental rights and freedoms.
This policy outlines our commitments within our daily activities to ensure the responsible use of personal data.
Personal data (hereafter “personal data”) refers to any information that may relate to an identified or identifiable natural person, directly or indirectly.
The handling of personal data is governed by Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons regarding the processing of personal data and the free movement of such data, hereafter known as “GDPR.”
According to Article 12 of the GDPR, individuals must be informed of their rights in a concise, transparent, comprehensible, and accessible way.
Definitions
To clarify this policy:
- Data Controller: SparkleIT
- Processor: Any individual or entity processing personal data on behalf of SparkleIT
- Data Subjects: All SparkleIT clients or contacts
- Recipients: Individuals or entities that receive personal data from SparkleIT. Recipients may include SparkleIT employees or external entities (partners, vendors, banks, etc.).
Use and Collection of Personal Data
To use the SparkleIT site, certain information is required. Failing to provide this data may prevent SparkleIT from processing your request to use a service or obtain service information.
SparkleIT collects personal data both online and offline, and this policy applies regardless of how the data is collected.
Your personal data may be used by SparkleIT for the following purposes:
- To enable you to use SparkleIT services and receive support;
- To grant you access to the full functionality of SparkleIT websites;
- To respond to your inquiries about SparkleIT services;
- To identify your needs to provide the most suitable services;
- To provide an interactive and personalized experience on the website;
- Any other related purposes listed above.
By providing your email address or phone number, you expressly authorize SparkleIT to use it, along with other useful personal data, to send you messages for commercial or marketing purposes.
SparkleIT may also use your email address or phone number to notify you of important service-related changes.
Retention of Personal Data
All personal data collected is retained for a limited period based on processing purposes and retention timelines required by applicable law.
For example:
- Cookies: 13 months;
- Technical Data: 1 year from collection;
- Advertising Data: 6 months to 1 year from collection, depending on the timeline;
- Banking Data: Deleted after the transaction, unless the client has provided express consent; if disputed, retained for 13 months post-debit date;
- Anti-Money Laundering: 5 years from collection.
Non-Disclosure
SparkleIT will not sell, share, or communicate personal data to third parties unless stated otherwise below.
Your personal data may be shared with third parties acting on our behalf within a specific processing context and in line with the purposes for which it was initially collected.
These third parties are obligated to process it in accordance with this policy. They are not permitted to sell or disclose it to other third parties.
However, personal data may be disclosed to third parties if required by law or regulation or necessary for legal or judicial proceedings.
Once the retention periods have expired, data will either be deleted or anonymized, notably for statistical use. It may be retained in cases of pre-litigation or litigation.
Security and Confidentiality
We are committed to maintaining the quality, confidentiality, and integrity of your personal data.
To secure and protect the personal data we collect, we use both technical means (protected resources with standard security measures such as firewalls, shared protected networks, adapted physical hosting, etc.) and organizational measures (restricted and nominative access controls, procedures, security policies, etc.).
Before processing your personal data, we take all reasonable measures to protect it from loss, misuse, unauthorized access, disclosure, alteration, or destruction.
Individuals who access your personal data are subject to confidentiality obligations and disciplinary and/or other sanctions if they fail to meet these obligations.
However, despite our efforts to protect your personal data, SparkleIT cannot guarantee complete security due to unavoidable risks involved in online data transmission that fall outside reasonable control.
We also urge caution to prevent unauthorized access to your personal data. You are responsible for maintaining the confidentiality of any information transmitted through SparkleIT’s site.
Transfer of Personal Data Abroad
For any authorized transfers within the European Union, the protection of your personal data is ensured by the signing of agreements with EU-based entities or by other mechanisms recognized by applicable law.
Your Rights
Under applicable regulations, you have the following rights:
- Right of Access: You may obtain information about the processing of your personal data and request a copy of this data.
- Right to Rectification: If you believe that your personal data is inaccurate or incomplete, you may request its modification.
- Right to Erasure: You may request the deletion of your personal data within the limits allowed by regulation.
- Right to Restriction of Processing: You may request that the processing of your personal data be limited.
- Right to Object: You may object to the processing of your personal data for personal reasons.
You have an absolute right to object to the processing of your personal data for commercial promotion, including profiling for that purpose.
- Right to Data Portability: Where applicable, you may request that personal data you have provided be returned to you or transferred to a third party.
- Right to Specify Posthumous Directives: You may define instructions regarding the storage, erasure, or communication of your data after your death.
- Right to Withdraw Consent: If you have consented to the processing of your personal data, you have the right to withdraw this consent at any time.
You may exercise the above rights by sending mail to: SparkleIT, Praça da Liberdade, Piso 1, Fraction 2, 4900-040 Viana do Castelo, Portugal.
In accordance with applicable regulations, you may lodge a complaint with the relevant supervisory authority, the CNPD (Portuguese Data Protection Authority) in Portugal.
Updates
This Privacy Policy may be updated as needed by SparkleIT or as required by law or regulation.
Additional Information
Information on our cookie policy and IT security is available on our website.