Privacy Policy

CA is committed to protecting the privacy of all users of our website, and has prepared this Privacy Policy in order to demonstrate its commitment and respect for the personal data of its users, having also adopted the best practices as regards security techniques and the protection of personal data (the “Privacy Policy”), as further described below.

Please read the Privacy Policy carefully, because accessing our website and providing your personal data implies being aware and providing express prior acceptance of the conditions contained herein, i.e., by providing your personal data within the scope of this website, you consent to the collection and processing of such data in accordance with the rules set out herein.

CA clarifies that simply browsing or accessing the website does not necessary imply the collection of your personal data or cookies. However, we note that our website also uses cookies, so it has a Cookies Policy, which you should also consult.

1. Personal Data

Personal data means any information, of any nature and regardless of its support, relating to an identified or identifiable natural person.

We clarify that an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier, such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Through this website and depending on the purpose, as mentioned below, the following personal data may be collected: (i) name, (ii) data of birth, (iii) contact details (telephone and email), (iv) company represented and (v) information necessary and relevant to the assessment of the aptitude of applicants to work at CA, such as professional experience, academic qualifications (together, the “Personal Data”).

2. Personal Data Controller

The entity responsible for the collection and processing of Personal Data for the purposes mentioned below is CA – Cambule and Américo, Sociedade de Advogados.

If you believe that any information contained in this Privacy Policy is not clear and transparent or for any other reason you deem relevant, you may contact us to the following email address:

3. Purpose of Personal Data Processing

The collection and processing of Personal Data on the website is intended for: (i) recruitment and selection of applicants and (ii) sending, upon request by the user, proposals for services and/or quotes (as well as information concerning CA’s products and/or services) (jointly referred to as “Purposes”), therefore the completion of the form corresponding to any of the Purposes and/or the sending of the curriculum vitae, in the case of collection and processing of Personal Data for the purpose of recruitment and selection of applicants, corresponds to the express prior consent to the processing of the Personal Data provided.

If the user provides express prior consent to the processing of his/her Personal Data (such consent may be withdrawn at any time – see paragraph 5 below), CA undertakes to carry out the processing of Personal Data only to the extent and for the time necessary to achieve the Purposes.

Therefore, CA does not request nor does it encourage anywhere the sending of Personal Data relating to philosophical or political beliefs, political party or trade union affiliation, religious faith, private life and racial or ethnical origin, as well as the processing of data concerning health or sex life, including genetic data. If this data is provided to CA, CA shall not be held liable for its processing under this Privacy Policy.

Without prejudice to other forms of contact with CA, failure to provide the Personal Data by the user prevents CA from considering the user for the purposes of recruitment/submission of proposals and/or quotes or other information, as applicable.

4. Storage of Personal Data

The period of time during which Personal Data is stored and kept varies in accordance with the Purposes.

Therefore, the Personal Data processed for the recruitment and selection of applicants may be kept for the period necessary to fulfil the purpose (for example, if the applicant joins CA, his/her Personal Data shall be processed for the purpose of human resources management; if the applicant does not join CA, such data may be kept in reserve for future recruitment processes, without prejudice to the data subject’s right to request the erasure of his/her data at any time, as indicated in section 5. below).

The Personal Data processed for the purpose of submitting proposals for services and/or quotes or information regarding CA’s new products and/or services shall be kept for a period of one (1) year after the last contact with the Personal Data subject, without prejudice to the possibility of applying longer periods when the situation justifies it (and in proportion to such situation), namely to safeguard the rights of CA.

5. Right of access, rectification, erasure, limitation of processing and right to portability of Personal Data

At any time, the user has a right of access to his/her Personal Data, as well as to its rectification, erasure, portability, limitation and/or opposition to processing – accordingly, the user may exercise any of these rights by addressing CA in writing, using the address of the registered office or through the following email:

Without prejudice to the foregoing, the user will always have the right to submit any complaints to the authority with jurisdiction for this purpose.

6. Security in the Processing of Personal Data

Personal Data shall be processed and stored in computers and on paper.

CA is committed to ensuring the security and protection of the Personal Data you send to us through the website, and has adopted appropriate technical and organisational measures for this purpose, in particular: (i) password protection, (ii) use of digital certifications, (iii) restrictions on physical entry to the locations of the servers that store Personal Data; (iv) firewalls, (v) secure communication via https protocol. CA informs that these security measures are reviewed and updated according to the needs and the state of the art on these matters.

If, for any reason, a security breach occurs that causes, accidentally or unlawfully, the destruction, loss, alteration, unauthorised disclosure or access to Personal Data, CA shall notify the relevant authorities without undue delay and, whenever possible, up to 72 hours after becoming aware thereof, under the terms of the applicable law. Likewise, CA shall notify the Personal Data breach to the respective Personal Data subject, under the terms of the applicable law.

Notwithstanding the security measures adopted by CA, we warn users that they must adopt additional security measures, namely ensuring the existence of an active firewall, and updated antivirus and anti-spyware software.

7. Communication of Personal Data to Third Parties

CA, within the scope of its activity, may use third parties to provide certain services. Such third parties may be located within or outside the European Union. Sometimes, the provision of these services involves access by these entities to the Personal Data of users.

When this happens, CA shall take appropriate measures to ensure that the entities that have access to the Personal Data are reputed and offer high guarantees in this regard, which shall be duly provided for and safeguarded in writing in the agreement to be entered into between CA and the third party/parties.

Consequently, any entity subcontracted by CA shall process the Personal Data of users in CA’s name and on its behalf, undertaking to take the necessary technical and organisational measures to protect the Personal Data against accidental or unlawful destruction, accidental loss, unauthorised alteration or disclosure of, or access, and against any other form of unlawful processing.

In any case, CA remains liable for the processing of Personal Data.

Where necessary, and within the scope of the sub-contracting of third parties by CA, the Personal Data may be transferred to outside the European Union, under the terms and conditions permitted by applicable legislation.

8. Access to third-party websites

This Privacy Policy does not apply to third-party websites. Therefore, whenever you visit another website from CA’s website, you should always read that website’s Privacy Policy and verify whether you agree with its terms before providing your data.

CA shall not be liable for the Privacy Policy, nor for the content made available on third-party websites.

9. Changes to the Privacy Policy

CA reserves the right, at any time, to make adjustments or changes to this Privacy Policy, and these changes must be duly published on this website. The version published on the website is the one currently in force.