Privacy policy

Get to know our privacy policy and how important it is for Bevolt to process your personal data.

IDENTIFICATION OF THE DATA CONTROLLER

Bevolt is the entity responsible for processing the personal data of its customers, whether by automated or non-automated means, from its collection, organization, storage, use, to its elimination.

INFORMATION AND CONSENT

The General Data Protection Regulation (Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016, hereinafter referred to as "GDPR") presents all the fundamental rights and principles recognized in the Charter of Fundamental Rights of the European Union, including respect for private and family life, home, and communications, the protection of personal data, freedom of thought, conscience, and religion, freedom of expression and information, and cultural, religious, and linguistic diversity.

It applies to all private and public organizations located in EU member states or subcontractors located in the EU that process personal data of individual data subjects residing in the territory of the European Union, regardless of their nationality or place of residence.

Under legal terms, "personal data" means any information of any nature and regardless of its medium, including sound and image, relating to an identified or identifiable natural person, so the protection does not cover the data of legal persons.

By accepting this Personal Data Protection and Privacy Policy, the data subject provides informed, express, free, and unequivocal consent for the personal data provided to be included in a file under the responsibility of the brand, whose processing under the GDPR complies with appropriate technical and organizational security measures. The data included in this base file is solely the data provided by the data subject at the time of their contact, which is collected and processed automatically by the brand.

NECESSITY AND PURPOSES OF PROCESSING PERSONAL DATA

Your personal data is processed because it is necessary for the negotiation, conclusion, and/or execution of a contract, for compliance with legal obligations imposed on the brand, for the pursuit of the legitimate interests of the company, or because they have been consented to.

The personal data we process will only be used for the following purposes:

  1. a) Negotiation and processing of the purchase and sale of products and provision of services, including the fulfilment of tax obligations.
  2. b) Communication with customers and clarification of doubts.
  3. c) Processing of information requests.
  4. d) Processing of complaints.
  5. e) Prevention and combating fraud.
  6. f) Requesting feedback on purchased products or services.
  7. g) Conducting satisfaction surveys.
  8. h) Collection of debts resulting from supplies and services, based on either the execution of contracts or their legitimate interest in enforcing their right to collect such debts.


TRANSFER OF PERSONAL DATA

The brand may communicate personal data to third parties contracted by it for the fulfilment of the purposes described above.

SECURITY MEASURES

Bevolt states that it has implemented and will continue to implement the necessary technical and organizational security measures to ensure the security of personal data provided to it, to prevent their alteration, loss, processing, and/or unauthorized access, considering the current state of technology, the nature of the data stored, and the risks to which they are exposed. Personal data is processed with the legally required level of protection to ensure their security and to prevent their alteration, loss, processing, or unauthorized access, considering the state of technology. Bevolt, whenever it accesses any personal data, undertakes to:

  1. a) Store them through legally required technical and organizational security measures that guarantee their security, thereby preventing their alteration, loss, processing, or unauthorized access, in accordance with the state of technology at any given time, the nature of the data, and the possible risks to which they are exposed.
  2. b) Use the data exclusively for the previously defined purposes.
  3. c) Ensure that the data are processed only by workers whose intervention is necessary for the provision of the service, and they are obliged to maintain confidentiality and secrecy.


DATA RETENTION PERIOD

The data retention period varies according to the purpose for which the data was collected, always being retained for the minimum period necessary. If you have entered into a purchase contract for products with us, your data will be kept for the duration of the contract plus the prescription and expiration periods of the associated rights. Personal data collected by the brand through the contact form is intended for processing information requests, contact, and communication and will be kept for as long as necessary for this purpose.

WE INFORM YOU THAT YOU HAVE

  1. a) The right to access personal data concerning you – the data subject has the right to obtain from the data controller confirmation as to whether personal data concerning them is being processed and, if so, the right to access their personal data and the information provided for in the General Data Protection Regulation.
  2. b) The right to rectify your data – the data subject has the right to obtain from the data controller without undue delay the rectification of inaccurate personal data concerning them.
  3. c) The right to erasure of your data – the data subject has the right to obtain from the data controller the erasure of their personal data without undue delay, and the data controller is obliged to erase personal data without undue delay when, among other reasons, one of the following grounds applies:
  4. a) The personal data is no longer necessary for the purposes for which it was collected or processed.
  5. b) The data subject withdraws consent on which the processing is based (where processing is based on consent) and there is no other legal ground for the processing.
  6. c) The data subject objects to the processing and there are no overriding legitimate grounds for the processing.
  7. d) The right to restrict processing concerning the data subject – the data subject has the right to obtain from the data controller restriction of processing where one of the following applies:
  8. The accuracy of the personal data is contested by the data subject, for a period enabling the data controller to verify the accuracy of the personal data.
  9. The processing is unlawful, and the data subject opposes the erasure of the personal data and requests the restriction of their use instead.
  10. The data controller no longer needs the personal data for the purposes of the processing, but they are required by the data subject for the establishment, exercise, or defence of legal claims.
  11. If the data subject has objected to processing, pending the verification whether the legitimate grounds of the data controller override those of the data subject.
  12. e) The right to object to processing – when processing is carried out for the purposes of the legitimate interests pursued by the data controller, the data subject has the right to object at any time on grounds relating to their situation to the processing of personal data concerning them. The data controller shall no longer process the personal data unless the data controller demonstrates compelling legitimate grounds for the processing that override the interests, rights, and freedoms of the data subject or for the establishment, exercise, or defence of legal claims.
  13. f) The right to data portability – the data subject has the right to receive the personal data concerning them which they have provided to a data controller, in a structured, commonly used, and machine-readable format, and have the right to transmit those data to another data controller without hindrance from the data controller to which the personal data have been provided if:
  14. The processing is based on consent or on a contract; and
  15. The processing is carried out by automated means.
  16. g) The right to withdraw consent at any time – if the processing of data is based on consent, the data subject has the right to withdraw their consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
  17. h) The right to lodge a complaint with a supervisory authority – the data subject has the right to, at any time, lodge a complaint with the supervisory authority: Comissão Nacional de Proteção de Dados (CNPD) National Data Protection Commission (CNPD) – Rua de São Bento, No. 148, 3rd Floor, 1200-821 Lisbon; Phone – +351 213 928 400 (cost of a call to the national landline); Fax – +351 213 976 832 (cost of a call to the national landline); Email – geral@cnpd.pt

If you wish to exercise any of the rights mentioned from a) to g), you should contact us in writing, either via email at info@Bevolt.pt or by phone at +351 256 318 273 (weekdays from 9 AM to 6 PM).