Privacy Policy

We attach great importance to the protection of your personal data and collect, process and use your personal data exclusively in accordance with the principles described below and in compliance with the statutory data protection provisions. 
 

Controller

The company responsible for data processing on this website shall be

]init[.DCP - Digital Communication Portugal, Unipessoal Lda,
Avenida da Liberdade Nr. 38 2º 1269-039 – Lisbon, Portugal
E-Mail: init.dcp@init.pt
Fon: +351 929 341 653
 

Nature, scope and purpose of the processing of personal data

When visiting the website

When you visit our website for information purposes, the servers located in Germany store only the personal data that your browser transmits to our servers in a log file on the basis of Art. 6 (1) lit. f GDPR.

The following data is collected when you visit our website and stored by us until automated deletion:

  • data and time of access;
  • name and URL of the retrieved file;
  • website from which access is made;
  • operating system of your computer, and browser used by you;
  • IP address;
  • name of your Internet service provider.
     

The collection and processing of this data regarding date, time, name and URL of the accessed file, website from which the access takes place, is done for the purpose of enabling the use of the website (connection establishment), to deliver the contents of our website correctly and to ensure system security and stability on a permanent basis. Data processing with regard to information on the operating system and browser used, as well as the name of the Internet service provider, is used to enable the technical administration of the network infrastructure and the optimization of our Internet offering, as well as for internal statistical purposes. The IP address is only evaluated in the event of attacks on our network infrastructure and for statistical purposes. The processing of this data is based on our legitimate interest in protecting our website from unauthorized access. At the same time, we want to constantly improve our offer for our customers and therefore rely on statistical evaluations.
 

Processing and storage in the European Union

Data centre operation

The data is stored on servers of ]init[ AG, Köpenicker Str. 9, 10997 Berlin, Germany. ]init[ AG is an application, service and hosting provider for regional and international customers in the eGovernment and business sectors. The data centre infrastructure of ]init[ AG is certified according to ISO 27001 on the basis of IT-Protection.

Storage duration and deletion

We processe and store personal data of the data subject only for the period of time required to achieve the purpose of storage or if required by the GDPR or other regulations due to e.g. special retention periods (storage period). In the case of a visit to our website, your data will be stored for a maximum of 7 days for the purpose of detecting and defending against attacks.

If the purpose of storage no longer applies or if a prescribed storage period expires, the personal data will be routinely blocked or deleted in accordance with the statutory provisions.

Links

This privacy policy does not extend to websites linked from our website that are not operated by us. We have no influence on whether these sites also comply with our data protection and security standards. The content of linked pages is the sole responsibility of their providers. Obviously illegal content was not identifiable at the time of linking using a reasonable standard of review. If we become aware of any infringements, such links will be removed immediately.

Cookies

No cookies are set when you visit our website.  For information on cookies when using YouTube, please see the comments on YouTube below.

eTracker web statistics

On this website, data is collected and stored using technologies from etracker GmbH (www.etracker.com) for statistical purposes only. We do not create user profiles from this data and do not use it for retargeting.

We use the technologies provided by etracker for this purpose, which do not set cookies.

The data thus generated is processed and stored by etracker exclusively in Germany and is thus subject to strict German and European data protection laws and standards. etracker has been independently audited and certified in this regard and awarded the  ePrivacyseal data protection seal of approval.

Data processing is carried out on the basis of the legal provisions of Art. 6 para.1 lit. f GDPR (legitimate interest). Our concern in the sense of Art. 6 para. 1 lit. f GDPR (legitimate interest) is the optimization of our online offer and our web presence. To protect your privacy, we have activated the shortening of the IP address in the etracker technology. In this way, a direct personal reference is excluded. We do not use the data in any other way, combine it with other data from etracker or pass it on to third parties.

You can object to the aforementioned data processing at any time by clicking on the slider. The objection has no adverse consequences. If no slider is displayed, the data collection is already prevented by other blocking measures.

Social Media

Data processing through social networks

We maintain publicly accessible profiles on social networks. The social networks used by us in detail can be found below.

Social networks such as X (formerly Twitter), etc. can generally analyze your user behavior extensively when you visit their website or a website with integrated social media content (e.g., like buttons or advertising banners). By visiting our social media presences, numerous data protection-relevant processing operations are triggered. 

In detail:

If you are logged into your social media account and visit our social media presence, the operator of the social media portal can assign this visit to your user account. However, your personal data may also be collected under certain circumstances if you are not logged in or do not have an account with the respective social media portal. In this case, this data collection takes place, for example, via cookies that are stored on your terminal device or by recording your IP address.

With the help of the data collected in this way, the operators of the social media portals can create user profiles in which your preferences and interests are stored. In this way, you can be shown interest-based advertising inside and outside the respective social media presence. Provided you have an account with the respective social network, the interest-based advertising may be displayed on all devices on which you are or were logged in.

Please also note that we cannot track all processing on the social media portals. Depending on the provider, further processing operations may therefore be carried out by the operators of the social media portals. For details, please refer to the terms of use and data protection provisions of the respective social media portals.

We would like to point out that when using social media portals, your data may be processed outside the area of the European Union. For the USA, there is an adequacy decision of the EU Commission, the Trans-Atlantic Data Privacy Framework (TADPF). Providers certified under TADPF have committed to comply with European data protection principles and are marked "TADPF certified" below. In the case of providers not covered by the TADPF, it cannot be guaranteed that data processing is subject to the same level of protection as within the EU. In this respect, there is a certain risk that it will be more difficult for you to enforce your rights with regard to the personal data concerning you. In addition, there is no data protection supervision in the USA comparable to that in the EU. Furthermore, there is a risk of disproportionate access to user data by state security authorities, against which no effective legal protection is regularly available.

We expressly draw your attention to this. An overview of TADPF certified providers can be found here: Participant Search at dataprivacyframework.gov.

Legal basis

Our social media presences are intended to ensure the most comprehensive presence possible on the Internet. This is a legitimate interest within the meaning of Art. 6 (1) lit. f GDPR. The analysis processes initiated by the social networks may be based on different legal bases, which are to be specified by the operators of the social networks (e.g. consent within the meaning of Art. 6 (1) lit. a GDPR).

Responsibility and assertion of rights

If you visit one of our social media sites (e.g. X), we are jointly responsible with the operator of the social media platform for the data processing operations triggered during this visit. In principle, you can assert your rights (information, correction, deletion, restriction of processing, data portability and complaint) both vis-à-vis us and vis-à-vis the operator of the respective social media portal (e.g. vis-à-vis X).

Please note that despite the joint responsibility with the social media portal operators, we do not have full influence on the data processing operations of the social media portals. Our options are largely determined by the corporate policy of the respective provider.

Storage time

The data collected directly by us via the social media presence is deleted from our systems as soon as the purpose for storing it no longer applies, you request us to delete it, revoke your consent to store it, or the purpose for storing the data no longer applies. Stored cookies remain on your terminal device until you delete them. Mandatory legal provisions - in particular retention periods - remain unaffected.

We have no influence on the storage period of your data, which is stored by the operators of social networks for their own purposes. For details, please contact the operators of the social networks directly (e.g. in their privacy policy, see below).

Individual social networks

Instagram

We have a profile on Instagram. The provider is Meta Platforms Limited, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland. The headquarters of Meta Platforms, Inc. is 1601 Willow Road Menlo Park California 94025, USA (TADPF certified).
For details on how they handle your personal information, see the Instagram Privacy Policy.

LinkedIn

We have a profile on LinkedIn. Provider is LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, Ireland, Headquarters Sunnyvale, California, USA .
LinkedIn uses advertising cookies. If you want to disable LinkedIn advertising cookies, please use the following link: Link.
For details on how they handle your personal information, please refer to LinkedIn's privacy policy.

YouTube (Google)

We have a profile on YouTube. The provider is Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland. YouTube is a company affiliated with Google LLC (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; "Google") (TADPF certified).

We use YouTube in extended privacy mode. According to YouTube, this mode means that YouTube does not store any information about visitors to this website before they watch the video. As soon as you start a YouTube video on this website, a connection to YouTube's servers is established. This tells the YouTube server which of our pages you have visited. If you are logged into your YouTube account, you enable YouTube to assign your surfing behavior directly to your personal profile. You can prevent this by logging out of your YouTube account.

After clicking on the respective embedded video, the information that you have accessed our website is passed on to the aforementioned website operator and cookies are set on your computer by the aforementioned website.

If you are logged in to the aforementioned website during a visit to our website, the transmitted data will be assigned to your respective user account. If you want to prevent a website operator from linking information to your user account in this way, please log out of the aforementioned website before clicking on the respective video.

A connection to the YouTube server will only be established if you give us your consent in the upstream consent window. With consent, a local cookie is stored that enables immediate loading of the YouTube preview. Thus, as described in the previous section, data may be transmitted to Google in the USA. For the USA, an adequacy decision of the EU Commission is in place, the Trans-Atlantic Data Privacy Framework (TADPF). Google LLC has certified itself in accordance with the TADPF and has thus undertaken to comply with European data protection principles.

The use of cookies or comparable technologies takes place with your consent on the basis of Art. 6 para. 1 lit. a GDPR. The processing of your personal data is carried out with your consent on the basis of Art. 6 para. 1 lit. a GDPR. Insofar as data processing is based on your consent, you have the right to revoke your consent for the future at any time in accordance with Art. 7 (3) GDPR. The lawfulness of the data processing until the time of your revocation remains unaffected.

You can revoke your consent at any time via the following opt-out:
Delete YouTube-Cookie 

For more information about the collection and use of data by YouTube and Google, about your rights in this regard and options for protecting your privacy, please see YouTube's privacy policy at https://www.youtube.com/t/privacy.
 

YouTube is used in the interest of an attractive presentation of our online offers. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f GDPR. If a corresponding consent has been requested (e.g. consent to the storage of cookies), the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a GDPR; the consent can be revoked at any time. You can find out more about cookie usage by YouTube in Google's Cookie-Policy. You can change your settings at any time under YouTube privacy policy.

Data Protection for Applicants

We process the personal data that you provide in the application process. This includes your name, address, date of birth, telephone and mobile numbers, e-mail addresses, channel through which you became aware of us and the personal data resulting from your application documents and in the context of job interviews.

We process applicant data in accordance with Art. 6 para. 1 lit. b GDPR exclusively for the purpose of the application process (implementation of pre-contractual measures as part of the application process).

Data that you enter as part of the application process will be stored for a maximum of six months.

As an applicant

Your application documents are usually processed electronically by sending your application documents to our HR department by e-mail. Your data will only be used internally for the ongoing application process.

If we conclude an employment contract with you as an applicant, the data transmitted will be stored for the purpose of implementing the employment relationship in compliance with the statutory provisions, Art. 6 para. 1 lit. b GDPR.

If the controller does not conclude an employment contract with the applicant, your data will be stored for 6 months after completion of the application process. This is usually done to fulfil legal obligations or to defend against any claims arising from legal regulations. We are then obliged to delete or anonymise your data. In this case, the data will only be available to us as so-called metadata without direct personal reference for statistical analyses (e.g. proportion of women or men in applications, number of applications per period, etc.).

Application by e-mail or post

If you apply by e-mail or post, the data and files you provide (application) will be sent to our HR department. Only a small group of authorised employees in the HR department will have access to your application. Please note that applications sent by email are not encrypted. We therefore ask you to refrain from providing sensitive data or to send your application by post.

We look forward to receiving your application to 
e-mail: cv@init.pt
resp.
Postal address: 
]init[.DCP 
R. de Augusto Rosa 79
4000-098 Porto
Portugal

Contact/enquiry

If you would like information about an advertised position, questions about the application process or would like to find out more about ]init[.DCP, you are welcome to call us or send us an e-mail. We will only process the data that you provide to us when you contact us.

Your rights as data subject

  • Right of access (Art. 15 GDPR)
    You have the right to request confirmation as to whether personal data concerning you is being processed. If this is the case, you have a right to information about this personal data and to the information listed in detail in Art. 15 GDPR.
  • Right to rectification (Art. 16 GDPR)
    You have the right to request without undue delay the rectification of any inaccurate personal data concerning you and, where applicable, the completion of any incomplete data.
  • Right to erasure (Art. 17 GDPR)
    You have the right to request that personal data concerning you be erased without delay, provided that one of the reasons listed in detail in Art. 17 GDPRapplies.
  • Right to restriction of processing (Art. 18 GDPR)
    You have the right to request the restriction of processing if one of the conditions listed in Art. 18 GDPRapplies, e.g. if you have objected to the processing, for the duration of the review by the controller.
  • Right to data portability (Art. 20 GDPR)
    In certain cases, which are detailed in Art. 20 GDPR, you have the right to receive the personal data concerning you in a structured, common and machine-readable format or to request the transfer of this data to a third party.
  • Right of withdrawal (Art. 7 GDPR)
    If the processing of data is based on your consent, you are entitled to revoke your consent to the processing of your personal data at any time in accordance with Art. 7 (3) GDPR. Please note that the revocation is only effective for the future. Processing that took place before the revocation is not affected.

Right to object to data collection in special cases and to direct advertising (Art. 21 GDPR)

If the data processing is carried out on the basis of Article 6 paragraph 1 letter f GDPR, you have the right to object to the processing of your personal data at any time for reasons arising from your particular situation; this also applies to profiling based on these provisions. The respective legal basis on which processing is based can be found in this data protection declaration. If you lodge an objection, we will no longer process your personal data concerned, unless we can prove compelling reasons for processing which are worthy of protection and which outweigh your interests, rights and freedoms, or unless the processing serves to assert, exercise or defend legal claims (objection in accordance with Art. 21 Para. 1 GDPR). If your personal data are processed for the purpose of direct marketing, you have the right to object at any time to the processing of personal data concerning you for the purpose of such marketing, including profiling, insofar as it is linked to such direct marketing. If you object, your personal data will no longer be used for the purpose of direct advertising (objection according to Art. 21 para. 2 GDPR).

Right to complain to a supervisory authority (Art. 77 GDPR)

Pursuant to Art. 77 GDPR, you have the right to lodge a complaint with a supervisory authority if you are of the opinion that the processing of data concerning you violates data protection provisions. The right of complaint can be asserted in particular before a supervisory authority in the Member State of your habitual residence, your place of work or the place of the alleged infringement.

Assertion of your rights

If you wish to exercise your rights as a data subject, please contact ]init[ DCP.

 

This data protection declaration is currently valid and dated 01.04.2024.