At bysteel and bysteelfs your privacy is a matter of utmost importance. We are well known to the rights, freedoms and guarantees of personal data subjects. Our processing of personal data scrupulously complies with Regulation (EU) 2016/679 of the European Parliament and the Council of 27 April 2016. In line with our values your privacy will always be safeguarded.
Bysteel collects personal information, of a mandatory and optional nature using as a means the subscription form, accessible through the websites of the various companies.
In order to comply with all obligations, the processing of personal information is necessary in order to be able to formalize your registration in our database for contacts in the field of business relations.
Failure to do so may prevent or delay or block the registration process and, consequently, our contacts.
Under the data protection legislation in force in the European Union (the General Data Protection Regulation) the use of personal data must be justified under at least one legal basis for the processing of personal data, namely:
i. When you have consented to the processing of your personal data (for these purposes you will be presented with a consent form for the use of your data, consent that may be subsequently withdrawn);
ii. As far as processing is necessary to conclude a contract with you or carry it out;
iii. where processing is necessary to comply with the legal obligations to which bysteel and bysteelfs are subject;
iv. where processing is necessary to achieve a legitimate interest and our reasons for its use prevail over your data protection rights;
v. Where processing is necessary for us to declare, exercise or defend a right in legal proceedings against you, us or a third party.
We use your personal information as a result of the subscription to:
i. contact in the context of existing or existing business relationships,
ii. answer the questions posed in the contact forms,
iii. disseminate dstgroup newsletters,
iv. keep subscribers up to date with the dstgroup Services and v. disclose events in which dstgroup participates.
The categories of information we may ask you if you use the contact form include:
i. Identification data - Mandatory - (Name);
ii. Contacts - Mandatory - (Email and telephone contact);
We appreciate that you inform us of any changes in the information we have about you so that we can have correct and current information in our systems.
You may request the limitation of the processing of personal data where:
i. Challenge the accuracy of personal data
ii. The processing does not take place for the purposes of the purpose communicated in this privacy notice
iii. The Company no longer needs the data, for example because it deleted the publications;
iv. If you have opposed the treatment.
You may be ocbehind at any time to the processing of personal data, and the processing of you may cease. Withdrawal of consent does not affect the legality of the treatments previously carried out on the basis of consent or other legally required processing activities.
You also have the right to the payment of your information from the database of subscribers of publications, through the cancellation of the subscription of newsletters, which may occur at any time.
To exercise the rights indicated, please inform us through the contactdetails indicated below - dpo@dstgroup.pt
If you exercise any of these rights we will carry out your analysis and we will respond, we expect, within one (1) month.
We use a variety of security measures, including encryption and authentication tools, to help protect and maintain the security, integrity and availability of your personal data.
Although the transmission of data over the internet or website cannot guarantee complete security against intrusions, we and our service providers and business partners make every effort to implement and maintain physical, electronic and procedural security measures designed to protect your personal data in accordance with applicable data protection requirements. Among others, we have implemented the following:
i. Restricted personal access to your personal data is based on the criterion of 'need to know' and only within the scope of the purposes communicated;
ii. Transfer of data collected only in encrypted form;
iii. Storage of highly confidential data (such as information relating to credit card credit) only in an encrypted form;
iv. Protection of information technology systems through firewalls with a view to preventing unauthorized access to your personal data;
v. Permanent monitoring of access to information technology systems with a view to preventing, detecting and preventing misuse of your personal data.
vi. The company guarantees the use of the best techniques, organizational and security measures, to protect personal information avoiding its loss, its misuse, its alteration or destruction, ensuring its integrity, availability and confidentiality. All employees are required to keep personal data confidential. Only personnel authorized and bound by the duty of confidentiality and confidentiality should have access to this information.
vii. The data shall be kept for the period of time strictly necessary for the purposes of its processing (one year, in the case of data provided for recruitment purposes) or by legal or regulatory determination. During the retention period, integrity and access to data is guaranteed.
viii. Once the maximum retention period has been reached from the time of data collection, and if, within this period, you have not withdrawn your consent, your personal data will be irreversibly anonymised (and anonymised data may be retained) or will be destroyed securely.
As a rule, dstgroup does not transfer or share with third parties information relating to personal data, unless required to do so by legal or regulatory requirements.
dstgroup may subcontract service providers for situations where such a need exists or which considers that there is an added value. This prerogative implies the need to share information relating to personal data. dstgroup will take all necessary measures to ensure that service providers offer all safeguards, security and confidentiality of shared personal data. They act exclusively in accordance with instructions addressed to it by the dstgroup which implies the regulation of the existing relationship by contract.
For any questions related to the processing of your data, please contact us through the following contact:
Dstgroup
In the care of the DPO
Rua de Pitancinhos - Palmeira, 4700-727 Braga
Phone: 253307200
Email: dpo@dstgroup.pt
dstgroup is committed to collaborating in the search for the best and fairest resolutions for complaints regarding the processing of personal data that it may have submitted.
If you consider that dstgroup has not been competent to resolve the complaints submitted, you have the right to submit that complaint to the competent supervisory authority – The National Data Protection Commission – through its website with the following address: https://www.cnpd.pt