Privacy

By using this website and/or communicating electronically with Pontes, Baptista & Associados, PBA (“PBA”), personal data may be collected and processed, and such processing is governed by this Privacy Policy. This policy aims to ensure that data is processed transparently, lawfully, and securely, in accordance with the General Data Protection Regulation (GDPR) and other applicable legislation.

The data controller responsible for processing personal data is:

Pontes, Baptista & Associados, PBA – SROC, Lda
Head Office: Chiado, Rua Alecrim, 26, 1st Floor, Office IV, 1200–018 Lisbon, Portugal
Email: geral@pb-sroc.com
Phone: +351 213 479 397

If you have any questions regarding the processing of your data, you may contact us directly using the contact details provided above.

The personal data that may be collected and processed by PBA includes:

• IP address, cookies, and similar technologies – We use cookies to ensure the proper functioning of the website and to enhance user experience. These are technical data and do not directly identify the user. More information is available in our [Cookies Policy].
• Data provided directly by the user – Name, email address, company, position, and other professional or contact information submitted through the contact form on the website, for the purposes of:
  • Scheduling a meeting with PBA;
  • Requesting information about our services;
  • Establishing initial communication with the PBA team.

PBA processes personal data for the following purposes:

• Managing and responding to contact or information requests;
• Sending newsletters, legal updates, or event invitations (with prior consent);
• Sharing institutional content and promoting PBA’s activity;
• Enabling access to and proper functioning of the website;
• Complying with legal and regulatory obligations.

In the case of events, registration may involve the recording and possible capturing of participant images, which may be used by PBA for informational and promotional purposes via its institutional channels (website, social media, digital platforms, etc.).

Data processing is based on the following legal grounds, depending on the specific case:

• User consent – for sending informational communications, newsletters, or participation in events;
• Performance of pre-contractual or contractual measures – when the user requests information about our services;
• Compliance with legal obligations;
• PBA’s legitimate interests – such as the continuous improvement of its services and communications.

Data will be retained only for as long as strictly necessary to fulfil the purposes for which it was collected, or until the data subject exercises their right to object or request erasure.

PBA does not disclose personal data to third parties, except:

• When required to comply with legal or judicial obligations;
• When necessary for the provision of services by partners acting on behalf of PBA, provided that such partners offer adequate security and confidentiality safeguards;
• With the user’s explicit consent, in contexts such as events organised with third parties.

Data will not be transferred outside the European Economic Area, except where legally required or with the appropriate safeguards as established by law.

In accordance with applicable legislation, users may exercise the following rights at any time:

• Access their personal data;
• Rectify inaccurate or incomplete data;
• Erase data (“right to be forgotten”), where applicable;
• Restrict or object to data processing;
• Data portability;
• Withdraw consent, without affecting the lawfulness of processing carried out prior to such withdrawal.

To exercise these rights, users may contact us in writing via email at geral@pb-sroc.com, or by post to:
Chiado, Rua Alecrim, 26, 1st Floor, Office IV, 1200–018 Lisbon, Portugal,
along with proof of identity.

If you believe your data is being processed unlawfully, you may lodge a complaint with the Portuguese Data Protection Authority (CNPD).