1
2
3
4
5
6
7
8
9
10
11
12
BACK HOME

Privacy Policy

Effective Date: 
1/11/2025

Introduction

Welcome to Brilean's Privacy Policy. Brilean, lda. is a Digital Product Studio dedicated to creating innovative digital products and technological solutions. Your privacy is of utmost importance to us. This policy explains how we collect, use, disclose, and protect your personal information, in compliance with the European Union's General Data Protection Regulation (GDPR) (Regulation (EU) 2016/679).

By using our services or visiting our website, you agree to the practices described in this Privacy Policy. We recommend that you read this document carefully to understand our practices regarding your personal data.

Who are we

Brilean acts as the data controller for your personal information, meaning we are responsible for ensuring its lawful and secure processing in accordance with applicable data protection regulations. If you have any questions regarding this Privacy Policy or how your data is handled, please contact us using the details bellow.

  • Adress: Praça 1º de maio nº93, 4900-534 Viana do Castelo, Portugal
  • Phone: +351 258 820 445
  • E-mail: hello@brilean.com
  • VAT: 514 401 257

Definitions

For the purposes of this Privacy Policy, the terms below shall have the following meanings:

  • Personal Data: Any information relating to an identified or identifiable natural person ("data subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
  • Processing: Any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.
  • Controller: The natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of the processing of personal data.
  • Processor: A natural or legal person, public authority, agency or other body which processes personal data on behalf of the controller.
  • Consent: Any freely given, specific, informed and unambiguous indication of the data subject's wishes by which he or she, by a statement or by a clear affirmative action, signifies agreement to the processing of personal data relating to him or her.
  • GDPR: General Data Protection Regulation (Regulation (EU) 2016/679).

Principles of Personal Data Processing

Brilean commits to processing your personal data in accordance with the following fundamental principles of the GDPR:

  • Lawfulness, fairness, and transparency: Data is processed lawfully, fairly, and in a transparent manner in relation to the data subject.
  • Purpose limitation: Data is collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes.
  • Data minimization: Data is adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed.
  • Accuracy: Data is accurate and, where necessary, kept up to date; every reasonable step is taken to ensure that personal data that are inaccurate, having regard to the purposes for which they are processed, are erased or rectified without delay.
  • Storage limitation: Data is kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed.
  • Integrity and confidentiality: Data is processed in a manner that ensures appropriate security of the personal data, including protection against unauthorised or unlawful processing and against accidental loss, destruction or damage, using appropriate technical or organisational measures.
  • Accountability: The controller is responsible for, and able to demonstrate compliance with, the principles outlined above.

Personal Data We Collect

Brilean may collect and process the following types of personal data, depending on your interaction with us:Data Provided Directly by You

  • Identification and Contact Data: Name, email address, phone number, address, job title, and company name, when you contact us through our website, email, phone, or fill out forms to request information about our services, quotes, or to apply for a job vacancy.
  • Communication Data: Content of communications you send us, including emails, chat messages, and call records, when you interact with our customer support or sales team.
  • Application Data: Information contained in your resume (CV), cover letter, and any other documents you provide when applying for a position at Brilean, including professional history, academic background, skills, and references.
  • Client/Partner Data: Information necessary for contract management, invoicing, and service provision, including payment details, service history, and communication preferences, when you become our client or partner.

Automatically Collected Data

  • Website Usage Data: Information about how you use our website, including your IP address, browser type, operating system, pages visited, time spent, URL referrers, and clickstream data. This data is collected through cookies and similar technologies (see section 6 - Cookie Policy).
  • Device Data: Information about the device you use to access our website, such as device model, unique identifiers, and mobile network information.
  • Location Data: Approximate location information derived from your IP address, or, with your consent, more precise location data provided by your device.

Data from Other Sources

  • Social Networks: If you interact with us through social media platforms, we may collect information that you allow us to access through your privacy settings on those platforms.
  • Business Partners: We may receive personal data from business partners with whom we collaborate in providing services or developing projects, always in compliance with applicable data protection laws.
  • Public Sources: We may collect information from publicly available sources, such as company websites or directories, for business prospecting or information verification purposes.

Cookie Policy

This website uses cookies solely for the purpose of improving and optimizing the experience of its users.

Cookies are very small files that contain relevant information for the navigation of this website. These files are uploaded by the device used to access this website (smartphone, computer, tablet, etc.) through the web browser during the user’s visit to the website.

Cookies allow

  • Ensure the correct functioning of web pages.
  • Save user preferences (e.g., chosen language, font size, etc.).
  • Obtain information about the browsing experience provided to you.
  • Obtain anonymous statistical information about pages visited by users, or time spent on the website.

The purposes of using Cookies on this website

The use of cookies allows the navigation of the website to be constantly optimized in order to provide a high quality experience that exceeds the quality obtained in the previous visit by the user.Types of CookiesAccording to their permanence:

  • Session cookies: They expire the moment the web browser window is closed. They are used to link user actions during the session.
  • Persistent cookies: They expire when your task or function is fully performed, its validity expires, or is manually removed by the user. They will be reactivated at each visit to the website.

According to their purpose

  • Strictly necessary or essential: Essential for the operation of the website. Activated in response to user actions such as sign-in or form filling.
  • Performance: Collect statistical data on the performance of the website. No user data is collected.
  • Functionality: Support website features and can store user information, such as chosen language or customization.
  • Advertising or specific target: Record pages viewed and links followed to provide relevant advertising content. This information may be shared with third parties.

Blocking the use of cookies

You may disable the browser’s cookie functionality or limit the use of cookies for a particular service. Changes can be made in the 'Options' or 'Browser Preferences' section.

Consequences of blocking cookies

By partially or totally blocking cookies, some features and/or services may not function correctly or behave differently than expected. If cookies are blocked, access to certain areas of the website may be restricted and the user experience may degrade.

Additional warranties and withdrawal of acceptance

Brilean is not responsible for the content and accuracy of the privacy policies of any third-party components included on this website. Cookie usage may be subject to user acceptance during their visit or browser installation/update. This acceptance may be revoked at any time via browser settings.

Changes to the Cookie Policy

Brilean reserves the right to modify this Cookie Policy in accordance with legal or regulatory requirements. Significant changes will be communicated to users. We encourage users to review the Cookie Policy periodically.

Purposes of Personal Data Processing

Brilean collects and processes your personal data for the following purposes:

  • Service Provision: To manage and execute contracts for the provision of digital product development services, consulting, and other technological solutions requested from us.
  • Communication and Support: To respond to your inquiries, information requests, quotes, and to provide technical or customer support.
  • Marketing and Communications: To send newsletters, information about our services, events, and other marketing communications that may be of interest to you, with your prior consent, when required by law.
  • Recruitment: To manage your job application process at Brilean, including evaluating your qualifications and communicating with you about the status of your application.
  • Website and Service Improvement: To analyze the use of our website and services, identify trends, and improve functionality and user experience.
  • Security and Fraud Prevention: To protect our systems and data against unauthorized access, fraud, and other illicit activities.
  • Compliance with Legal Obligations: To comply with applicable legal and regulatory obligations, including tax, accounting, and data protection requirements.

Legal Basis for Processing

The processing of your personal data by Brilean is based on the following legal grounds, as per the GDPR:

  • Contract Performance: Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract (e.g., service provision, application management).
  • Compliance with Legal Obligation: Processing is necessary for compliance with a legal obligation to which Brilean is subject (e.g., tax obligations).
  • Legitimate Interests: Processing is necessary for the purposes of the legitimate interests pursued by Brilean or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data (e.g., service improvement, security, direct marketing based on pre-existing relationship).
  • Consent: The data subject has given consent to the processing of his or her personal data for one or more specific purposes (e.g., sending newsletters, use of certain types of cookies).

Sharing and Disclosure of Personal Data

Brilean may share your personal data with the following categories of recipients, only when strictly necessary and in compliance with this Privacy Policy and applicable data protection laws:

  • Third-Party Service Providers: We may engage third-party companies and individuals to facilitate our services (e.g., website hosting, data analytics, email marketing services, customer support). These third parties will have access to your personal data only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
  • Business Partners: In certain situations, we may share data with business partners with whom we collaborate on projects or joint offerings, always with your consent or when such sharing is necessary for the performance of a contract.
  • Legal and Regulatory Authorities: We may disclose your personal data if we are required to do so by law or in response to a valid request from a public authority (e.g., court, government agency).
  • Business Transfers: In the event of a merger, acquisition, sale of assets, or insolvency process, your personal data may be transferred as part of the company's assets.

Brilean does not sell or rent your personal data to third parties.

Data Security

Brilean implements appropriate technical and organizational security measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption: Use of encryption to protect data in transit and at rest, where applicable.
  • Access Control: Restricting access to personal data only to employees, contractors, and agents who need to know that information to operate, develop, or improve our services, and who are subject to confidentiality obligations.
  • Network Security: Implementation of firewalls, intrusion detection systems, and other network security technologies.
  • Backup and Recovery: Regular data backups and implementation of disaster recovery plans.
  • Audits and Assessments: Conducting regular security audits and risk assessments to ensure the effectiveness of security measures.

While we strive to protect your personal data, no data transmission over the Internet or electronic storage system is 100% secure. We cannot guarantee the absolute security of your data.

International Data Transfers

Your personal data is predominantly processed within the European Economic Area (EEA). However, in some situations, your data may be transferred to countries outside the EEA that do not offer an equivalent level of data protection to that of the GDPR. In such cases, Brilean will implement appropriate safeguards to ensure your personal data is protected, such as:

  • Standard Contractual Clauses approved by the European Commission.
  • Binding Corporate Rules (BCR).
  • Approved Codes of Conduct or Certification Mechanisms.

You will be informed about any international data transfers and the safeguards applied.

Data Retention

Brilean retains your personal data only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. The criteria used to determine retention periods include:

  • The duration of our relationship with you and the provision of our services.
  • The existence of a legal obligation to retain the data (e.g., tax laws).
  • The need to resolve disputes or enforce our agreements.
  • The existence of consent for a longer retention period.

After the applicable retention period ends, your personal data will be securely deleted or anonymized.

Your Rights (Data Subject Rights)

In accordance with the GDPR, you have the following rights regarding your personal data:

  • Right of Access: The right to obtain from Brilean confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, access to the personal data and information regarding the processing.
  • Right to Rectification: The right to obtain from Brilean, without undue delay, the rectification of inaccurate personal data concerning you and the right to have incomplete personal data completed.
  • Right to Erasure ('Right to be Forgotten'): The right to obtain from Brilean the erasure of personal data concerning you without undue delay, in certain circumstances (e.g., the data are no longer necessary in relation to the purposes for which they were collected).
  • Right to Restriction of Processing: The right to obtain from Brilean restriction of processing, in certain circumstances (e.g., contesting the accuracy of the data).
  • Right to Data Portability: The right to receive the personal data concerning you, which you have provided to Brilean, in a structured, commonly used and machine-readable format and have the right to transmit those data to another controller without hindrance from us.
  • Right to Object: The right to object, on grounds relating to your particular situation, at any time to processing of personal data concerning you, including objecting to processing for direct marketing purposes.
  • Right to Withdraw Consent: The right to withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
  • Right to Lodge a Complaint with a Supervisory Authority: The right to lodge a complaint with the National Data Protection Commission (CNPD) or another competent supervisory authority, if you consider that the processing of your personal data infringes the GDPR.

To exercise any of these rights, please contact us using the contact details provided in section 2 of this policy. We may request additional information to verify your identity before processing your request.

Changes to This Privacy Policy

Brilean reserves the right to update or modify this Privacy Policy at any time, in accordance with changes in data protection legislation or our data processing practices. Any significant changes will be communicated through our website or by other appropriate means. The date of the last update will be indicated at the beginning of the document.

We recommend that you periodically review this policy to stay informed about how we protect your data.

Contact Us

If you have any questions about this Privacy Policy or our privacy practices, please contact us:

By mail: Praça 1º de maio nº93, 4900-534 Viana do Castelo, Portugal

By phone: +351258820 445

By e-mail: hello@brilean.com