PT
Home

Privacy Policy

Last updated: 12 May 2026

1. Data Controller

  • Trading name: Orto Sis Medicina Dentária
  • Legal name: {{TODO: Full legal name}}
  • VAT number (NIF): {{TODO: NIF}}
  • Address: R. Teixeira Lopes 204 sala 1, 4430-999 Vila Nova de Gaia, Portugal
  • Phone: +351 927 503 777
  • GDPR contact email: {{TODO: GDPR contact email}}

2. Data We Collect

We collect the following personal data:

  • Contact form: name, email address, phone number (optional), and message.
  • Strictly necessary cookies required for the website to function (language preference). We do not use tracking or advertising cookies.

3. Purposes and Legal Basis

Personal data is processed for the following purposes:

  • Responding to contact requests: processing necessary for steps taken at the data subject's request prior to entering into a contract, or for the legitimate interest of the practice in responding to contacts received (GDPR Art. 6(1)(b) and (f)).

4. Recipients of Personal Data

Personal data may be shared with the following sub-processors:

  • Web3Forms (Bromo Pte. Ltd.): sub-processor used to handle contact form submissions. Access to data is limited to what is strictly necessary for form forwarding.
  • Cloudflare, Inc. (USA): website hosting provider. Data transfers to the USA are covered by Standard Contractual Clauses (SCCs) pursuant to GDPR Art. 46.
  • Practice staff: authorised team members who handle incoming contact requests.

5. Retention Periods

  • Contact requests: retained for 12 months after the request is resolved, unless a legal obligation requires a longer retention period.
  • Technical logs: retained for 6 months.

6. Your Rights

You have the right, at any time, to:

  • Access your personal data;
  • Rectify inaccurate data;
  • Request erasure of your data ("right to be forgotten");
  • Restrict processing in certain circumstances;
  • Receive your data in a portable format;
  • Object to processing based on legitimate interest.

To exercise these rights, please contact us at: {{TODO: GDPR contact email}}.

You also have the right to lodge a complaint with the Comissão Nacional de Proteção de Dados (CNPD), the supervisory authority in Portugal, at www.cnpd.pt.

7. International Transfers

Some of the sub-processors listed above (Web3Forms, Cloudflare) are based outside the European Economic Area (EEA). Transfers of data to these countries are carried out on the basis of Standard Contractual Clauses (SCCs) approved by the European Commission pursuant to GDPR Art. 46, or equivalent transfer mechanisms that ensure an adequate level of protection.

8. Cookies

This website uses only strictly necessary cookies:

  • Language preference: a session cookie that remembers the language selected by the user. This does not require consent under Art. 5 of the ePrivacy Directive, as it is strictly necessary for the service requested.

No tracking, advertising, or analytics cookies are used. No cookie banner is displayed because there are no cookies that require one.

9. Changes to This Policy

This Privacy Policy may be updated from time to time. The date of the last update is shown at the top of this page. We recommend checking this page periodically to stay informed of any changes.