A. Data Controller
A. Data Controller: The Data Controller of personal data is Greenvolt – Energias Renováveis, SA, with Tax Number 506042715, headquartered at Rua Luciana Stegagno Picchio, nº 3, 1549-023 Lisboa, Portugal, with the following contacts:
Email: [email protected]
B. Data Protection Officer
The Data Controller has appointed a Data Protection Officer who can be contacted via [email protected].
C. Personal Data Processed
This information applies to all personal data collected by the Data Controller, including name of the data subject, job title, company, e-mail, and country, as part of the Brand Enthusiasts Program, starting in November 2024.
D. Purpose of Processing and Legal Basis
The Data Controller will process the data manually and/or automatically, for the following purposes:
- Managing registration and enrollment in the Brand Enthusiasts Program;
- Sending electronic communications related to participation in the program.
E. Data Retention Period
The Data Controller will retain the personal data only for the time necessary to achieve the purposes for which they were collected, for which a period of 3 years is determined.
F. Exercise of Rights
The data subject may, at any time, request from the Data Controller access to the personal data concerning him/her, as well as their rectification or erasure, and the restriction of processing concerning the data subject, or the right to object to processing, and the right to data portability, in accordance with the laws governing the processing of personal data.
- The exercise of Rights must be done through the email [email protected] or directly with the Data Protection Officer, through the email [email protected].
The data subject may also enforce his/her rights with the National Data Protection Commission.
G. Withdrawal of Consent
The data subject’s acceptance that his/her data may be processed or transferred shall always be revocable, with no retroactive effect. To revoke the consent given, the data subject may contact the Data Controller through the contact means identified in point A.
H. Personal Data Protection Measures
The Data Controller applies various technical and organizational measures appropriate to protect the personal data of the data subjects that it considers sufficient and adequate to ensure the protection of personal data against their destruction, accidental loss, alteration, dissemination, or unauthorized access, accidental or unlawful, as well as the necessary, sufficient, and adequate measures to ensure the accuracy, integrity, and confidentiality of personal data and an appropriate level of technical and organizational security in relation to the risks inherent in the processing and nature of the personal data, including placing them in an encrypted folder with exclusive access by authorized Greenvolt members.
