Privacy policy

TREATMENT OF PERSONAL DATA

The sole proprietor Manuel Pina Cruz (better identified below), owner and operator of the website www.nauzjewellery.com (hereinafter the "website") is concerned to ensure to the users of the website, its Customers and potential customers not only the full compliance with all legal obligations but also the total privacy of their personal data and the security of transactions carried out through the Online Store, in accordance with the General Regulation on the Protection of Personal Data ("RGPD"), Law no. No. 58/2019, of August 8, 2019 (law that ensures the implementation, in the national legal order, of the RGPD), Directive 2002/58/EC, of July 12, 2002 (directive concerning the processing of personal data and the protection of privacy in the electronic communications sector), Law No. 41/2004, of August 18 (law that transposes said Directive 2002/58/EC into national law), and other applicable legislation on privacy and protection of personal data.

ENTITY RESPONSIBLE FOR PROCESSING

For due and legal purposes, you can find the full identification and contact details of the entity in charge of processing personal data below:

Designation: Manuel Pina Cruz
Taxpayer Identification Number: 258851970
Address: Rua da Senhora da Luz 101, 4150-696, Porto, Portugal
Business License: 
E-mail address: info@nauzjewellery.com
Telephone contact: +351 917 944 883

TYPES OF PERSONAL DATA CATEGORIES PROCESSED

The sole proprietor handles the following categories of personal data which are provided by users through registration on the website:

Identification data: [name, tax identification number, address, telephone number, e-mail address];
Credit card data - name of card holder, card number, its validity and its security code - when paying with a credit card;

PURPOSE OF PROCESSING PERSONAL DATA

The sole proprietor may process personal data for the following purposes:
For processing orders and customer management;
For processing information requests and possible complaints;
For advertising campaigns, sending suggestions and news about the products;
For accounting, fiscal and administrative management;
For the fulfillment of legal obligations.

The sole proprietor shall process the personal data necessary for his activity, to the strict extent required by the nature of the contractual relationship established with the holder of the personal data.

If the Customer gives his express consent when creating his registration on www.nauzjewellery.com, the sole proprietor may send information on products that may be of interest to him.

For the purposes of direct marketing, i.e. in situations where the Customer has already purchased products from the sole proprietor, the sole proprietor may send direct marketing communications of analogous products by virtue of the legitimate interest of the Customer, through any communication channel, namely through the use of electronic mail, SMS, MMS.

TERM OF CONSERVATION OF PERSONAL DATA

The sole proprietor will retain the personal data of his clients for a period that may vary depending on the purpose for which the data is processed:

Sending commercial communications with consent: until exercise of the right of opposition or revocation of consent of its Customers, whichever is applicable.
For the purposes associated with the Online Store:
For as long as necessary to ensure full compliance with the contract concluded with Customers, including, without limitation, for warranty and after-sales assistance purposes;
During the legal deadlines, including tax deadlines, applicable;
For the provision of technical assistance and after-sales service:

For as long as necessary to ensure full compliance with the contract entered into with Customers, including, without limitation, for warranty and after-sales assistance purposes;

During the applicable legal time limits.

TRANSMISSION OF PERSONAL DATA

Customers' personal data may be communicated to third parties for the purpose of complying with the legal obligations applicable in each case, or in cases where this is necessary for the provision of the services to be contracted.Whenever the processing of personal data is carried out through external service providers, who act as subcontractors, we follow strict criteria in the selection of service providers in order to comply with their data protection obligations, the sole proprietor undertakes to sign a data processing agreement with them.

DATA SUBJECT RIGHTS

At any time, the Clients of the sole proprietor have the right to:

Access: the right of Clients to access their personal data that has been provided by them, without undue delay or cost;

Rectification: the right of Customers to demand that their data is accurate and up-to-date, and to request that it be rectified by the sole proprietor;

Forgetting: right that Customers have to demand the elimination of their personal data from the records of the sole proprietor when they are no longer used for the purposes for which they were collected, without prejudice, however, to the retention periods required by law;

Opposition: right that Customers have to oppose, free of charge, the processing of their personal data for direct marketing purposes;

Data Portability: the right of Customers to receive the personal data they have provided to the sole proprietor in a structured, commonly used and machine-readable format, and to transmit this data to another controller;

Limitation of Processing: the right of Customers to request the sole proprietor, under certain circumstances, to limit the processing of their data, in particular: (i) when they challenge the accuracy of their personal data, for a period allowing the sole proprietor to verify its accuracy; (ii) if the processing is unlawful and the Customers object to the erasure of the data, requesting, in return, the limitation of its use; or (iii) when the sole proprietor no longer needs the Customers' personal data for processing purposes, but such data is required by the Customers for the purposes of stating, exercising or defending a right in legal proceedings.

The exercise of these rights should be made to the sole proprietor at the email address www.nauzjewellery.com, at Rua de Gondarém, n.º 613, r/c direito, 4150-378 Porto. The exercise of these rights is free of charge.

AUTOMATED PROCESSING AND PROFILING

In order to justify and carry out the contractual relationship existing between the Customers and the sole proprietor, if decision-making procedures based exclusively on automated processing are used, the Customers have the right to object to this decision-making, including profiling, as long as it produces effects on their legal sphere or significantly affects them in a similar way.

COMPLAINT TO THE SUPERVISORY AUTHORITY

Clients of the sole proprietor also have the right to lodge a complaint with the Portuguese supervisory authority, the National Commission for Data Protection, without prejudice to their right to use other administrative or judicial channels if they consider that the sole proprietor, or any other person or entity handling their data on behalf of the sole proprietor, has violated any of their rights as a data subject.

ELECTRONIC COMMUNICATIONS

Clients may receive electronic communications containing information regarding advertising campaigns or sending suggestions, with each electronic communication allowing the Client to opt-out of continuing to receive these communications. If they decide to opt-out, the Clients' e-mail addresses will be eliminated from the contact list. As confirmation, Clients will subsequently receive an email confirming deletion.

TECHNICAL AND ORGANIZATIONAL MEASURES CONCERNING THE PROCESSING OF PERSONAL DATA

The sole proprietor will implement and maintain appropriate technical and organizational measures to protect the data against accidental or unlawful destruction, unauthorized disclosure or access, tampering or loss, thus striving to ensure the integrity and confidentiality of personal data. Such measures include mechanisms for backup copies, permissions and authorizations for access and reserved treatment, in order to prevent access by unauthorized third parties. The data provided by Customers is protected through the use of Shopify's technology.

The collection and processing of data is performed in a secure manner, which prevents its loss or manipulation. All data will be stored on a Shopify Secure Server. You can verify that your browser is secure if the padlock symbol appears or if the address begins with https instead of http. As an additional security measure, access is only via encrypted VPN, there is no access to the site without a VPN connection.

CHANGES TO THE PRIVACY POLICY

The sole proprietor may modify its Privacy Policy at any time. The most up-to-date version will always be available on this website and will regulate the use it makes of its Customers' information.

For any questions regarding the treatment of your data, please contact us at the address of the sole proprietor at Rua de Gondarém, n.º 613, r/c direito, 4150-378 Porto or at the e-mail address: info@nauzjewellery.com

Date of publication: 23-06-2023