This Privacy Policy describes how António Carrilho collects, uses, stores, and protects the personal data of users (hereinafter “User” or “Users”) on the website (hereinafter “Site”).

By using the Site, the User declares that they have read, understood, and accepted this Privacy Policy.

The entity responsible for processing personal data is:
António Carrilho
📧 info@antoniocarrilho.pt

Users may browse the Site without providing personal data.
However, data may be collected when the User:

• Fills out contact forms or information requests;
• Requests quotes or clarifications;
• Subscribes to newsletters or communications;
• Sends messages through the Site or other channels provided.

Depending on the form or service, the following data may be collected:

• Name;
• Email address;
• Phone number (when applicable);
• Information voluntarily inserted by the User in the message;
• Technical browsing data (IP, device type, browser, etc., through cookies — see Cookies Policy).

Personal data is used exclusively for:

• Responding to contact requests;
• Providing information about services, projects, or activities;
• Managing communications and newsletters (with consent);
• Improving browsing experience and Site performance (via cookies);
• Complying with legal obligations.

Personal data will not be used for other purposes without prior consent.

Personal data is processed based on:

• User consent (e.g., newsletter subscription or form submission);
• Legitimate interest (e.g., responding to spontaneous contact requests);
• Compliance with legal obligations (when applicable).

Personal data is stored only for the period necessary to fulfill the purposes for which it was collected, or to comply with applicable legal obligations.

Personal data is not shared with third parties, except when:

• Legally required;
• Necessary for contractual obligations;
• Subcontracted entities (e.g., hosting or email providers) ensure full GDPR compliance.

Data will never be sold or used for commercial purposes by third parties.

Appropriate technical and organisational measures are implemented to protect personal data against:

• Unauthorised access;
• Loss, destruction, or misuse;
• Unlawful alteration.

Users must also ensure the security of their own devices against viruses, malware, or unauthorised access.

Users may exercise their GDPR rights at any time:

• Right of access;
• Right to rectification;
• Right to erasure;
• Right to restrict processing;
• Right to object;
• Right to data portability;
• Right to withdraw previously given consent.

Requests must be sent to:
📧 info@antoniocarrilho.pt

Users may file a complaint with the competent supervisory authority:
Comissão Nacional de Proteção de Dados (CNPD)
www.cnpd.pt

This Policy may be updated at any time.
The most recent version will always be published on the Site and shall take immediate effect upon publication.