Sodecia Group Data Protection Platform

Public Information Sheet

Platform Overview

The Sodecia Group Data Protection Platform operates at https://sodecia.groupdpo.com  as our central hub for data protection services and information. This platform demonstrates our commitment to transparency and compliance with the General Data Protection Regulation (GDPR) and applicable national data protection legislation across all jurisdictions where we operate.

Our platform serves as the primary access point for data subjects, employees, business partners, and other stakeholders to exercise their rights, access information about data processing activities, and engage with our data protection framework.

Current Platform Capabilities

Company and Contact Information

The platform provides comprehensive information about all 19 companies within the Sodecia Group structure, including complete contact details, registered offices, tax identification numbers, and corporate relationships. This information enables stakeholders to identify the appropriate data controller for their specific situation and understand our corporate data processing framework.

Data Protection Officer Services

Professional data protection services are provided by our appointed Data Protection Officer, Manuel Melo, who can be contacted through multiple channels available on the platform. The Data Protection Officer operates with full independence as required under Articles 37-39 of the GDPR and maintains direct reporting relationships with the Board of Directors of Sodecia – Participações Sociais, SGPS, S.A.

Contact information includes dedicated email addresses (dpo@sodecia.com and manuel.melo@dataprotectionofficer.help), telephone services [(+351) 213 243 750], and secure online communication channels through the platform interface.

Rights Exercising Services

The platform provides functional mechanisms for exercising all rights guaranteed under the GDPR, including access, rectification, erasure, restriction of processing, data portability, and objection to processing. These services operate through secure online forms with appropriate identity verification procedures to ensure legitimate requests are processed efficiently.

All rights requests are processed within the legal timeframe of one month as required under Article 12 of the GDPR, with professional assessment of applicable legal bases and comprehensive responses provided in clear, accessible language.

Processing Information and Transparency

Comprehensive information about our data processing activities is available through dedicated information sheets covering our primary processing contexts, including employment relationships, supplier management, candidate processing, and website operations. These information sheets fulfill our transparency obligations under Articles 13 and 14 of the GDPR.

The platform hosts essential data protection policies covering general data protection principles, employment context processing, supplier relationship management, and recruitment processes. These policies are designed to provide clear, accessible information about how we process personal data and the rights available to data subjects.

Incident Reporting and Communication

Secure channels are available for reporting data protection incidents or security concerns, with immediate escalation to Data Protection Officer level and coordination with regulatory notification requirements where applicable. Our incident management procedures ensure compliance with Articles 33 and 34 of the GDPR regarding notification to supervisory authorities and communication to data subjects.

Language Support

The platform currently operates in English and Portuguese, ensuring accessibility for stakeholders across our primary operational regions. English serves as the primary language for international operations, while Portuguese provides comprehensive support for our Portuguese operations and Portuguese-speaking stakeholders.

[Additional language support is planned for future development phases, including German, Spanish, Italian, Czech, and Slovak to serve all operational jurisdictions.]

Platform Security and Data Protection

The platform implements appropriate technical and organizational measures to ensure secure processing of personal data and protection of stakeholder communications. Security measures include encryption for data transmission, role-based access controls, audit logging capabilities, and regular backup procedures to ensure information availability and integrity.

All personal data processed through the platform is handled in accordance with our comprehensive data protection policies and GDPR requirements, with specific attention to data minimization, purpose limitation, and retention period compliance.

Continuous Improvement and Development

The Sodecia Group Data Protection Platform operates under active improvement management to ensure responsiveness to stakeholder needs and regulatory developments. Regular content reviews, stakeholder feedback collection, and performance monitoring contribute to ongoing service enhancement.

[Our development roadmap includes enhanced functionality, expanded language coverage, and entity-specific services planned for future implementation phases.]

Support and Assistance

Professional support is available through our Data Protection Officer for all platform-related inquiries, rights exercising assistance, policy clarification, and general data protection guidance. Support services operate through multiple channels including direct email communication, telephone consultation, and secure online messaging through the platform interface.

For immediate assistance or complex inquiries, stakeholders are encouraged to contact our Data Protection Officer directly through the contact information provided on the platform.

Regulatory Compliance and Legal Framework

The platform operates under professional Data Protection Officer oversight ensuring independence, compliance, and continuous improvement in accordance with GDPR requirements. Our data protection framework maintains active coordination with supervisory authorities across all operational jurisdictions and regular legal review to ensure ongoing compliance with evolving regulatory requirements.

[Enhanced legal frameworks and compliance demonstration tools are planned for future development phases.]

Regulatory Compliance and Legal Framework

The platform operates under professional Data Protection Officer oversight ensuring independence, compliance, and continuous improvement in accordance with GDPR requirements. Our data protection framework maintains active coordination with supervisory authorities across all operational jurisdictions and regular legal review to ensure ongoing compliance with evolving regulatory requirements.

[Enhanced legal frameworks and compliance demonstration tools are planned for future development phases.]

For current support, information, or assistance regarding the Sodecia Group Data Protection Platform, please contact our Data Protection Officer through the channels provided on the platform or visit https://sodecia.groupdpo.com .

Last updated: August 2025

SODECIA
Powered by  GDPR Cookie Compliance
Privacy Overview

This website uses cookies so that we can provide you with the best user experience possible. Cookie information is stored in your browser and performs functions such as recognising you when you return to our website and helping our team to understand which sections of the website you find most interesting and useful.