POLICY FOR APPLICATION OF THE GENERAL DATA PROTECTION REGULATION
Privacy policy
This privacy policy describes the purposes for which ISTA uses user data, how it collects, processes, shares and retains the respective personal data and how to contact us and exercise its rights.
ISTA respects the user's privacy and processes personal data in accordance with the laws. ISTA reserves the right to update or modify its Privacy Policy at any time, namely, in order to adapt it to legislative changes.
Collection of Personal Data
Personal data is collected in the face-to-face registration or by filling in the forms available on our website. ISTA collects personal data, such as name, address, civil and tax identification number, telephone numbers. Data are collected with consent and when necessary to comply with applicable legal obligations. Data relating to minors is collected with the consent of the guardians. We are not responsible for verifying age, but we do the verification by deleting minors' data without the parental consent.
​
Treatment of Personal Data
The collected data is processed by computer, and ISTA may contact you, if consent has been given, to disclose our institute's training offer. In strict compliance with the legislation on the protection of personal data, being stored in specific databases, created for this purpose and, under no circumstances, will the collected data be used for any purpose other than that for which consent was given by the party the data subject.
Use of Collected Information
The data collected through online forms are treated in order to answer questions, requests or provide information. The data collected in person is used for issuing declarations and certificates, creating a record in our database, disseminating a training offer (provided there is consent to do so), proof of academic qualifications necessary for the purpose of attending training courses, enrollment in training courses, issuing of due accounting documents, sending certificates via post office.
Security and Protection
We only record personal data that is strictly necessary for processing our courses. All communication between the server and your internet browser is encrypted using SSL / TLS technology. To maintain the security of your personal data, we implement a set of measures when a user enters the portal, submits or accesses your information. ISTA does not disclose any personal data of its customers and users to third parties without their consent, except when required by law.
​
Term of Retention of Personal Data
ISTA's policy is to retain data only for as long as necessary for the purposes for which it was collected. Whenever there is no specific legal requirement, data will be stored and preserved only for the minimum period necessary for the purposes for which it was collected or further processed, or for the period of time authorized by the National Data Protection Commission, after which they will be eliminated.
Exercise of Rights
Under the terms of the Personal Data Protection Law, the data subject is guaranteed the right to access, update, rectify, delete (forget), portability and oppose the use of your personal data, which you can do in the following ways: by contacting ISTA directly, by phone, email or in person at our facilities.
If you believe that your data is not being processed in accordance with applicable law, we remind you that you have the right to complain to the respective supervisory authority.
Contacts
ISTA-Instituto de Artes e Letras de Albufeira, Lda. Is responsible for the processing of your personal data. and we can be contacted through:
headquarters: Avenida do Ténis, nº 13, 8200-011 Albufeira;
Telephone: 930 488 577;
email: geral@ista-albufeira.pt
(Last updated June 3, 2019)