“Personal data” is information relating to an identified or identifiable natural person. A natural person who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, electronic identifiers or elements of physical, physiological, genetic identity, mental, economic, cultural or social of that person.

Sodecia – Participações Sociais, SGPS, SA is the entity responsible for the processing of personal data. For questions about data protection, you can contact the Data Protection Officer (DPO) by email at dpo@sodecia.com.

Sodecia has implemented a Personal Data Protection System and an Information Security System. Sodecia is committed to comply with all applicable Community and national legal standards on data protection and information security. Technical and organizational measures deemed appropriate are implemented to ensure the security of data.

You have the right to request access, rectification or deletion of your personal data from the controller. You can request the limitation or opposition to the processing. You have the right to data portability, under the conditions provided by law. You can file a complaint with the Supervisory Authority. To exercise your rights, please contact dpo@sodecia.com.

To exercise your rights, you must contact the Data Protection Officer by email at dpo@sodecia.com. You can use the Form for the Exercise of the Rights of Data Subjects.

Personal data are kept only for the period necessary for the purposes that motivated their collection or subsequent processing. The specific retention period is specified in each of the Data Processing Information Sheets. The retention period for resumes and personal data of candidates processed by human resources management services is five years, by default.

Sodecia may use the services of third-party subcontractors, including entities based outside the European Union, for the provision of certain services, and this situation may imply access by these entities to such personal data. However, the personal data of the candidates are processed exclusively by the human resources management services of Sodecia, and there is no communication of data to third parties.

Cookies are small text files with relevant information that the devices used for access load through the internet browser when an online site is visited. For more information, see the Cookie Policy.

See the Data Protection Policy. See the Data Treatment Information Sheets.

It is a channel to communicate information about irregularities or wrongdoing occurred in the Society. Ensures the protection of personal data of whistleblowers, in accordance with the Whistleblower Protection Policy.

You can make a complaint through the Sodecia Complaints Platform. You can contact the Responsible for Complaints. You can use the Reporting Form.

Yes, Sodecia guarantees the protection of whistleblowers’ personal data under the terms of the Whistleblower Protection Policy.

An information security incident is an event that compromises the confidentiality, integrity or availability of information. You should report incidents through the communication channels available at https://sodecia.groupdpo.com/p/security/. Use the Information Security Incident Reporting Form.

It is a point of contact for information security and cyberspace incident management. Contact us through the channels available at https://sodecia.groupdpo.com/p/security/.

It is a program implemented to ensure compliance with current legal regulations, protecting the personal data of data subjects. For reports, use the Sodecia Reporting Platform or the Reporting Form.

The data protection policies are available at www.sodecia.com. See also the specific policies for applicants, suppliers and employees.

Information on the “Impressum” or Datasheet can be found on Sodecia’s corporate website. It includes information such as the main activity, share capital, countries of operation and contact details of the Data Protection Officer.