When you visit the website www.oportosurfboardclub.com, we automatically collect some information about your device, including information about your browser, IP address, anonymous demographic information, age, gender, interests and favorites, and some of the cookies that are installed on your device. In addition, as you browse the site, we collect information about the individual web pages or products you view, which sites or search terms directed you to the site, and information about how you interact with this website.
To access most of the information on this website, it is not necessary to provide personal data, but some of the services provided require such data. We collect and store personal information, such as email address, name, address, country, and telephone number, which the User voluntarily makes available on the website www.oportosurfboardclub.com, for commercial transactions, sending forms, or by subscribing to Newsletters. Additional information, including tax information, payment information (credit card numbers) may be required for certain transactions.
The use of the data collected on the website has the main objective of adding value to the client, giving him knowledge about the news and activities related to our sector, informing our clients of new products, services, and campaigns, as well as of our aspiration and motivation.
We can also contact you to help resolve any issues related to your orders and may contact you by email, phone, text messages, or mail.
We may also anonymously use the personal data you provide to us for internal business purposes, such as producing statistics and developing marketing plans. We may collect and store certain non-personally identifiable information about the interactions between the holders of personal data and the website www.oportosurfboardclub.com.
A good relationship between the customer and all of our after-sales services is one of our goals.
HOW DO WE COLLECT THIS INFORMATION
They are data files that are placed on your device or computer that allows us to locate and target your preferences and that allows you to make better use of the website. The cookie will be stored on your computer's hard drive until you remove it. We may also use temporary or “session” cookies to help you navigate our websites, which expire when you abandon it. You can configure your browser to notify you of the existence of cookies or to automatically reject them. The "help" option on the toolbar of most browser programs will tell you how to stop accepting new cookies. For more information about cookies and how to disable them, visit http://www.allaboutcookies.org.
There is information about internet access terminals, such as PCs, Tablets, or Mobile Phones, both in terms of hardware and software that can be collected automatically by our websites. This information can include IP addresses, browser type, domain names, access times, and addresses of the sites that refer. This information is used by our website for the operation of its services, to guarantee the quality of the service, and to obtain general statistics on the use of the website.
CONFIDENTIALITY AND INFORMATION SECURITY
Our website is hosted on the Wix.com platform. Wix.com provides an online platform that allows us to sell products and services to our customers. Your information can be stored in the Wix.com database. Wix.com stores your information on secure firewall servers.
Wix.com complies with PCI DSS (Payment Card Industry Data Security Standards (PCI DSS) rules and is recognized as a tier 1 vendor.
PCI DSS is an information security standard for organizations or companies that accept credit card payments. This standard helps to create a secure environment, improving the quality of cardholder data, and reducing credit card fraud.
HANDOVER OR DATA TO THIRD PARTIES
REGULATION (EU) 2016/679 OF THE EUROPEAN PARLIAMENT AND OF THE COUNCIL OF 27 APRIL 2016
(GENERAL DATA PROTECTION REGULATION)
- By publishing this Privacy and Confidentiality Policy, data subjects guarantee the right to know what treatments are done on their data.
- Each person has the right to request information about the type of treatment to which their data is subject.
- Each person is entitled to request rectification of incorrect data and filling in incomplete data.
- Each person has the right to request their erasure. The erasure of the data is still mandatory in the following situations: when the data are no longer necessary for the purpose that motivated their collection or treatment; when the holder withdraws consent to the treatment (provided there is no other basis for such treatment); when the holder opposes the treatment and there are no prevailing legitimate interests to justify such treatment; to comply with a legal obligation under European Union or Member State law to which the person responsible is subject.
The right to erase (“right to be forgotten”) has to be reconciled with the legal obligations that we must ensure regarding official entities, which in this case overlap. For example, the duty to maintain invoices issued.
- Each person can object to the erasure of his personal data and request to limit his treatment in the future.
- Each person may object to the use of his data for the purpose of direct marketing.
- Each person can request that the data be transferred to another company/entity.
NOTIFICATION OF PERSONAL DATA VIOLATIONS TO THE DATA SUBJECT
In case of a personal data breach which is likely to indicate a high risk to the rights and freedoms of each person, the Data Protection Officer shall communicate, in plain and simple language, the said breach to the data subject without undue delay, making known the possible known risks and the measures implemented and planned to minimize or nullify the possible impact.
Communication to the data subject shall not be obligatory if the controller has implemented appropriate protection measures and provide the personal data incomprehensible if he has taken subsequent measures to ensure that the high risk to the rights and freedoms of data subjects, or if such communication involves a disproportionate effort. In such a case, public communication or a similar measure will be carried out through which data subjects are informed equally effectively.
For this reason, we recommend that you check this Policy whenever you visit our website or our mobile applications.