Privacy Policy
FIO CRBZ Sociedade de Advogados, SP RL

About Us
Welcome to our privacy policy ("Privacy Policy"), which outlines how we handle and safeguard your personal data when you use our website (referred to as the "services").
These services are managed by FIO CRBZ Sociedade de Advogados, SP RL, located at Avenida 5 de Outubro, 56, 8th floor, 1050-058, Lisbon (referred to as "the Company", "we", "our", or "us"). The Company is responsible for the data processing activities detailed in this policy and acts as data controller.
Unless otherwise specified in this Privacy Policy, the terms used here have the same definitions as outlined in the European Union General Data Protection Regulation ("GDPR").

The personal data we collect
Categories of Personal Data Collected

We gather personal data for different purposes associated with our business operations as you utilize our services. In particular, we process:

Basic identification (e.g. name);
Contact details (e.g. e-mail address);
Communication data (e.g. details and content of your inquiries, e-mail exchanges);
Social media activity (e.g. social media profiles);
Professional details (e.g. CV, letter of motivation, employment history, professional qualifications, position and occupation);
Visual content (e.g. photos/testimonials);
Online identifiers (e.g. IP address, logfiles);
Survey and feedback information (e.g. testimonials).

You are under no obligation to provide your personal data. Nonetheless, it's important to be aware that we cannot deliver our services without the essential personal data required to fulfil the contractual obligations between you and us.

How we collect them
We acquire information about you as you engage with us. This includes:

Direct collection

When you submit your inquiries or feedback through our contact forms;
When you communicate with us via e-mail;
When you provide us with your personal details through our recruitment form;
When you subscribe to our newsletter;
When you provide testimonials to us.

Indirect collection

From our service providers;
From public sources, social media and internet searches.

Why do we collect personal data

Overview of our purposes for data processing

Our legal basis for collecting and processing personal data, as described in this Privacy Policy, depends on the category of personal data collected and the purposes for which it is collected.

Contractual Obligations: We collect and process personal data to fulfil our contractual obligations or to take pre-contractual measures related to a contract to be concluded with you. In particular, we rely on contractual obligations to:

To provide our services to you;

To provide you with customer support and respond to your inquiries;
To register and manage your application for employment opportunities.

Consent: We may rely on your voluntary consent, provided when we collect your personal data. In particular, we rely on your consent to:

To provide you with newsletters and other news, updates and marketing messages;
To publish your testimonials, including photos and job title;
To store your recruitment data for future contact.

Legitimate Interests: We use legitimate interests as a legal basis for processing your personal data, based on our assessment that the processing is necessary and proportionate and does not infringe on your interests or fundamental rights and freedoms. In particular, we rely on our legitimate interests to:

To maintain and improve our services, through your feedback;
To detect, prevent, and address security threats, as well as to prevent fraud and suspicious activities.

Legal Compliance: We process personal data when necessary to fulfil legal and regulatory obligations. In particular, we rely on the fulfilment of legal obligations to:

To comply with applicable regulations and legislation;
For the legal enforcement of claims and rights.

Our data processing in detail

Our contact forms

You can use the contact forms we provide you to contact us for any request. We will process the personal data included in your messages - such as your name, e-mail address and any other information you choose to provide us - only for answering your request.
We do so to take steps before entering a contract with you, at your request, or to perform an already existing contract with you.

Our vacancies
We showcase our vacancies on our website, allowing you to apply for them. To that end, we collect the personal data you provide us within the application form, namely your identification details, your contact information, as well as your professional and educational details. We also store your personal data for a period of 6 months after your application in order to process it. We do so to take steps at your request before entering an employment contract with you.

Newsletter Subscription
We send newsletters and various notifications via email and other communication channels and may employ third parties to facilitate their delivery.
In principle, you must provide explicit consent to receive newsletters and other notifications from us, unless such communication is permissible for other legal reasons. We implement a "double opt-in" approach for email consent, meaning you will receive an email containing a web link that you must click to confirm your consent. This process is designed to prevent any misuse by unauthorized third parties. We may also log this consent, including the Internet Protocol (IP) address, date, and time.
Our newsletters and notifications might include web links or tracking pixels, which register whether a specific newsletter or notification has been opened and which web links were clicked (for performance measurement). These web links and tracking pixels record the utilization of newsletters and other notifications. We use this statistical data, including measurements of success and outreach, to effectively and user-friendly provide newsletters and notifications, ensuring they are delivered consistently, securely, and reliably, tailored to the preferences of the recipients.
You have the option to unsubscribe from newsletters and other notifications at any time, enabling you to object to the usage data collection mentioned above. You can do this by directly contacting us or by following the unsubscribe link included in the footer of each newsletter you receive.

Links to third-party apps and websites
Our platform contains links to websites or apps that are not operated by us. When you click on a third-party link, you will be directed to that third-party's website or app. We have no control over the content, privacy policies, or practices of any of these third parties.
We also maintain a presence on social networks to communicate with our clients and prospective clients, as well as to provide information about our products and services. If you have an account on the same network, it is possible that your information and media are made available to us, for example, when we access your profile.
As soon as we transfer personal data into our own system, we are responsible for this independently. This is done to carry out pre-contractual steps or to fulfil a contract with you.
Below is the list of social networks on which we are present:

LinkedIn: Privacy Policy;
X (Twitter): Privacy Policy;
Instagram: Privacy Policy.

For how long do we store personal data
We retain personal data for the period necessary to fulfil the purposes for which it was collected, in accordance with the legal, regulatory and contractual obligations to which we are subject. Once this retention period is over, we delete the personal data or irreversibly anonymise it.

With whom we share personal data

Our service providers
We collaborate with third-party entities ("service providers") to support the functioning of our services. These service providers assist in various activities, such as analyzing service usage, facilitating payments, and providing IT infrastructure. They are granted access to your personal data solely to the extent required to carry out these tasks.

Categories of service providers that can access your personal data:

Cloud service, hosting and infrastructure providers;
IT and security services;
Software providers;
E-mail and communication services;
Online meeting providers;
Social media and content platforms.

Third-Country Transfers
Please note that we hire service providers located in countries outside the EU/EEA. These third countries may not offer a level of data protection equivalent to that of the EU/EEA.
To ensure the security of your personal data during these transfers, we fulfil applicable legal obligations by adopting appropriate safeguards. These safeguards include:

Transfer of data to countries that have received an adequacy decision from the European Commission.
Implementation of standard contractual clauses provided by the European Commission, in accordance with Commission Implementing Decision (EU) 2021/914 of 4 June 2021, as well as supplementary measures for the transfer, where we consider that such measures are necessary to guarantee a level of protection essentially equivalent to that of the EU.

In the event of a transfer to a third country where adequacy decisions or appropriate safeguards are absent, it is conceivable that authorities in the third country, such as intelligence services, could access the transferred data. Consequently, the enforceability of your data subject rights may not be guaranteed.
We and/or our service providers transfer your personal data to and process it in countries outside the EU/EEA. These countries include:

United States of America.

In cases where the transfer to a third country is based on the use of standard contractual clauses provided by the European Commission, you have the right to request a copy of the clauses under which your personal data is transferred to a third country. However, the contract may be redacted in those parts that must remain confidential (i.e. other people's personal data). You can request the applicable copies by contacting: info@fiolegal.com.

Data Disclosure
We may disclose your personal data when we have a sincere belief that such disclosure is essential for the following purposes:

To fulfil a legal obligation, which includes cases where such disclosure is required by law or in response to lawful requests from public authorities, such as a court or a government agency.
To safeguard the security of our services and safeguard our rights or property.
To prevent or investigate potential unlawful conduct related to our operations.

How we keep personal data safe
We implement reasonable technical and organizational security measures that we consider appropriate to safeguard your stored personal data from manipulation, loss, or unauthorized access by third parties. Our security measures are continuously updated to align with advancements in technology.
We place significant emphasis on internal data privacy. Our staff and engaged service providers are bound by confidentiality and must comply with relevant data protection laws. Moreover, they are granted access to personal data only to the extent necessary for the performance of their respective duties or obligations.

We value the security of your personal data; however, please bear in mind that no method of transmitting data over the internet or electronic storage can be guaranteed 100% secure. While we make every effort to employ commercially reasonable measures to protect your personal data, we cannot provide absolute security. We recommend employing antivirus software, firewalls, and similar tools to enhance the protection of your system.

Your Rights
You possess the following data protection rights. To exercise these rights, please reach out to us at the provided address or send an email to info@fiolegal.com. Please be aware that we may ask you to verify your identity before addressing your requests.

Right to Access: You have the right to request a copy of your personal data, which we will furnish to you in an electronic format.
Right to Correction: You can request us to rectify any inaccuracies or incompleteness in your data.
Right to Withdraw Consent: If you've given your consent for the processing of your personal data, you have the right to withdraw it at any time, affecting future processing. This applies, for example, when you wish to opt out of marketing communications. Once we receive your withdrawal of consent, we will no longer process your information for the purpose(s) you initially consented to, unless there exists another legal basis for processing.
Right to Erasure: You have the right to request the deletion of your personal data when it is no longer necessary for the purposes it was collected, or if it was processed unlawfully.
Right to Restrict Processing: You can request the limitation of our processing of your personal data in cases where you believe it to be inaccurate, processed unlawfully, or no longer needed for the original purpose, but cannot be deleted due to legal obligations or your own request.
Right to Data Portability: You can request that we transmit your personal data to another data controller in a standard format (e.g., Excel), if you provided this data to us and we processed it based on your consent or to fulfill contractual obligations.
Right to Object to Processing: If the legal basis for processing your personal data is our legitimate interest, you have the right to object to such processing based on your specific situation. We will respect your request, unless we have a compelling legal basis for the processing that outweighs your interests or if we need to continue processing the data for legal defense purposes.
Right to File a Complaint with a Supervisory Authority: If you believe that the processing of your personal data violates data protection laws, you have the right to lodge a complaint with a data protection supervisory authority. In the EU and EEA, you can exercise this right by contacting a supervisory authority in your country of residence, workplace, or where you believe the infringement occurred. You can find a list of the relevant authorities here: https://edpb.europa.eu/about-edpb/about-edpb/members.

We will respond to your requests within 30 days of receiving them. This response period may be extended if the request is particularly complex, which we will inform you of promptly. Within this period, we will respond to your request or inform you of the reasons why your request cannot be met.

Changes to This Privacy Policy
Our privacy policy may be updated from time to time. We advise the data subject to check this privacy policy periodically for any changes.
When possible, we inform data subjects before making these changes, notifying them at least 30 days before the changes come into force.
Changes to this privacy policy take effect from the moment they are published on this page.

Contact Us
If you have any inquiries or concerns regarding this Privacy Policy, please do not hesitate to contact us at:
FIO CRBZ Sociedade de Advogados, SP RL
Avenida 5 de Outubro, 56, 8th floor, 1050-058, Lisbon
info@fiolegal.com

Privacy Policy FIO CRBZ Sociedade de Advogados, SP RL

The personal data we collect Categories of Personal Data Collected

We gather personal data for different purposes associated with our business operations as you utilize our services. In particular, we process:

Basic identification (e.g. name);

Contact details (e.g. e-mail address);

Communication data (e.g. details and content of your inquiries, e-mail exchanges);

Social media activity (e.g. social media profiles);

Professional details (e.g. CV, letter of motivation, employment history, professional qualifications, position and occupation);

Visual content (e.g. photos/testimonials);

Online identifiers (e.g. IP address, logfiles);

Survey and feedback information (e.g. testimonials).

You are under no obligation to provide your personal data. Nonetheless, it's important to be aware that we cannot deliver our services without the essential personal data required to fulfil the contractual obligations between you and us.

​

How we collect them We acquire information about you as you engage with us. This includes:

Direct collection

When you submit your inquiries or feedback through our contact forms;

When you communicate with us via e-mail;

When you provide us with your personal details through our recruitment form;

When you subscribe to our newsletter;

When you provide testimonials to us.

Indirect collection

From our service providers;

From public sources, social media and internet searches.

Why do we collect personal data

Overview of our purposes for data processing

Our legal basis for collecting and processing personal data, as described in this Privacy Policy, depends on the category of personal data collected and the purposes for which it is collected.

Contractual Obligations: We collect and process personal data to fulfil our contractual obligations or to take pre-contractual measures related to a contract to be concluded with you. In particular, we rely on contractual obligations to:

To provide our services to you;

To provide you with customer support and respond to your inquiries;

To register and manage your application for employment opportunities.

Consent: We may rely on your voluntary consent, provided when we collect your personal data. In particular, we rely on your consent to:

To provide you with newsletters and other news, updates and marketing messages;

To publish your testimonials, including photos and job title;

To store your recruitment data for future contact.

To maintain and improve our services, through your feedback;

To detect, prevent, and address security threats, as well as to prevent fraud and suspicious activities.

Legal Compliance: We process personal data when necessary to fulfil legal and regulatory obligations. In particular, we rely on the fulfilment of legal obligations to:

To comply with applicable regulations and legislation;

For the legal enforcement of claims and rights.

​

​

Our data processing in detail

Our contact forms

LinkedIn: Privacy Policy;

X (Twitter): Privacy Policy;

Instagram: Privacy Policy.

With whom we share personal data

Categories of service providers that can access your personal data:

Cloud service, hosting and infrastructure providers;

IT and security services;

Software providers;

E-mail and communication services;

Online meeting providers;

Social media and content platforms.

Transfer of data to countries that have received an adequacy decision from the European Commission.

United States of America.

Data Disclosure We may disclose your personal data when we have a sincere belief that such disclosure is essential for the following purposes:

To fulfil a legal obligation, which includes cases where such disclosure is required by law or in response to lawful requests from public authorities, such as a court or a government agency.

To safeguard the security of our services and safeguard our rights or property.

To prevent or investigate potential unlawful conduct related to our operations.

Your Rights You possess the following data protection rights. To exercise these rights, please reach out to us at the provided address or send an email to info@fiolegal.com. Please be aware that we may ask you to verify your identity before addressing your requests.

Right to Access: You have the right to request a copy of your personal data, which we will furnish to you in an electronic format.

Right to Correction: You can request us to rectify any inaccuracies or incompleteness in your data.

Right to Erasure: You have the right to request the deletion of your personal data when it is no longer necessary for the purposes it was collected, or if it was processed unlawfully.

Right to Restrict Processing: You can request the limitation of our processing of your personal data in cases where you believe it to be inaccurate, processed unlawfully, or no longer needed for the original purpose, but cannot be deleted due to legal obligations or your own request.

Right to Data Portability: You can request that we transmit your personal data to another data controller in a standard format (e.g., Excel), if you provided this data to us and we processed it based on your consent or to fulfill contractual obligations.

We will respond to your requests within 30 days of receiving them. This response period may be extended if the request is particularly complex, which we will inform you of promptly. Within this period, we will respond to your request or inform you of the reasons why your request cannot be met. ​

Contact Us If you have any inquiries or concerns regarding this Privacy Policy, please do not hesitate to contact us at: FIO CRBZ Sociedade de Advogados, SP RL Avenida 5 de Outubro, 56, 8th floor, 1050-058, Lisbon info@fiolegal.com

Privacy Policy
FIO CRBZ Sociedade de Advogados, SP RL

The personal data we collect
Categories of Personal Data Collected

How we collect them
We acquire information about you as you engage with us. This includes:

Data Disclosure
We may disclose your personal data when we have a sincere belief that such disclosure is essential for the following purposes:

Your Rights
You possess the following data protection rights. To exercise these rights, please reach out to us at the provided address or send an email to info@fiolegal.com. Please be aware that we may ask you to verify your identity before addressing your requests.

We will respond to your requests within 30 days of receiving them. This response period may be extended if the request is particularly complex, which we will inform you of promptly. Within this period, we will respond to your request or inform you of the reasons why your request cannot be met.

Contact Us
If you have any inquiries or concerns regarding this Privacy Policy, please do not hesitate to contact us at:
FIO CRBZ Sociedade de Advogados, SP RL
Avenida 5 de Outubro, 56, 8th floor, 1050-058, Lisbon
info@fiolegal.com