TiJUBU PRIVACY POLICY
Welcome to the incredible journey of you becoming you.
TiJUBU and Truleadership, Unipessoal, Lda., its legal entity, (collectively, “TiJUBU”, “Truleadership”,“Trulea”, “Company”, “the Services,” “we,” “us,” or “our”) welcome you (the “User”, “you” or “your”) to our website at https://tijubu.com/ as well as to any additional website, webpages (such as landing pages for marketing purposes) and/or mobile applications owned and/or operated by TiJUBU (collectively, the “Site”), that allows for free or trial version or demo, or usage by the paying customer's (the “Customer”) end users to our web-based and mobile platform (collectively, the “Service” or “Services”).
This page is used to inform website visitors regarding our policies with the collection, use, and disclosure of Personal Information if anyone decided to use our Service, the site. If you choose to use our Service, then you agree to the collection and use of information in relation with this policy. The Personal Information that we collect are used for providing and improving the Service. We will not use or share your information with anyone except as described in this Privacy Policy.
The terms used in this Privacy Policy have the same meanings as in our Terms and Conditions, which is accessible at https://tijubu.com/terms-of-service unless otherwise defined in this Privacy Policy.
1. Controller of the Personal Data Processing
The entity responsible for processing personal data is the company Truleadership, Unipessoal, Lda. registered under the single identification and legal person number PT516202367, with registered office at Rua do Açúcar, 76, Armazém 4, 1950-009 Lisbon (“TRULEA” or the "Controller").
2. Purposes of Personal Data Processing
The Controller, within the scope of its activities, processes personal data for the following purposes (the "Purposes"):
(i) Website User Management;
(ii) Assistance to requests for clarifications and complaints, within the scope of Client’s support;
(iii) Performing of the purchase contract of products or services subscribed by the Client through the Website;
(iv) Compliance with legal obligations vis-à-vis the authorities or other relevant public entities;
(v) In case TRULEA has obtained prior and specific consent from the User, for marketing purposes, namely:
. Newsletters
. Sending of materials such as articles, papers, brochures
. Invitation to events, such as conferences, congresses, festivals, lectures
. Promotional actions.
3. Personal Data
In this Policy, the term "Personal Data" means the set of information that relates to the User and that allows us to identify, directly or indirectly, the User, and may include the following data:
(i) Identification data: name, surname, gender, age / date of birth;
(ii) Profession: role, function, company, sector of activity, size of the company;
(iii) Contacts: email address, phone / mobile phone number, address and location;
(iv) Language and country from which you are contacting;
(v) Economic and transactional information (for example, payment or card data for subscription or purchase of products or services);
(vi) Connection data, geolocation and / or navigation (in the case of interacting via mobile phone);
(vii) Data on areas, subjects/topics of interest as well as user preferences; and
(viii) Other personal data that may be collected should it be deemed necessary for the Purposes of the processing.
The Controller is not accountable for the truthfulness, omissions, inaccuracies and falsehoods of the personal data transmitted to it.
The personal data collected may be processed by computer and in an automated or non-automated way, guaranteeing in all cases strict compliance with personal data protection legislation.
4. Retention of Personal Data
The Controller processes User's personal data for the purposes identified above based on the following lawful basis and for the following storage periods:
With regard to newsletters, the processing of personal data only starts when the respective data subject submits the subscription form, and ends at any time by unsubscribing by clicking a specific link available in all newsletters. When removing the subscription, the data subject will receive a notification email confirming the removal of their data from the newsletter mailing list.
5. Rights of the Data Subjects
The data subjects shall have the right, at any time, to obtain clear, transparent and easily understandable information on how the Controller uses their personal data, to access their personal data and to request for their rectifying, erasure, portability, restriction and to oppose to the processing.
The User has the right to request the deletion of their account and associated personal data. Once the account is deleted, all personal data will be automatically removed from our systems, unless required to retain it for legal purposes. To delete their account, the User can access the “My Profile” section and find the deletion option at the bottom of the about me tab.
In case the lawfulness basis for the processing of their personal data is consent, data subjects are entitled to withdraw their consent at any time. The withdrawal of consent does not compromise the lawfulness of the processing carried out on the basis of the consent previously given.
The exercise of any of these rights shall be done, in writing, through communication addressed to the Controller, either to the address of its registered office located at Rua do Açúcar, 76, Armazém 4, 1950-009 in Lisbon, or to the following e-mail: dataprotection@tijubu.com.
In addition, the personal data subjects will always be able to file any complaints they deem necessary with the competent authority (currently the CNPD – Comissão Nacional de Proteção de Dados).
6. Security in the Processing of Personal Data
The Controller is committed to ensure the security, integrity and availability of personal data of its Users. To this effect, it has adopted the following measures:
(i) Antivirus, firewall and anti-malware software;
(ii) Differentiated access profiles according to the function/position of the person accessing the information systems;
(iii) Access to information systems through username and a personal and non-transferable password;
(iv) Implementation of password quality rules;
(v) Detection of unauthorized access to information systems and physical facilities;
(vi) Elimination of user profiles of the Clients that terminate their relationship (labour or others), as well as all privileges or access rights granted to such users;
(vii) Execution of periodic backups; and,
(viii) Execution of periodic intrusion tests.
The Controller informs that these security measures will be reviewed and updated according to the needs and requirements of these matters.
Should a breach of security occur for any reason, which causes accidental or unlawful destruction, loss, alteration, unauthorised disclosure or access to personal data, the Controller undertakes, in accordance with applicable law, to notify the competent authorities without undue delay and, whenever possible, within 72 hours of becoming aware of such an occurrence.
In addition, and under the terms referred to in the previous paragraph, the Controller undertakes to report the violation of personal data to the respective subject.
7. Communication of Personal Data to Third Parties
Whenever, in the context of its Services or the Purposes described in this Policy, the Controller shares User's personal data with subcontracted third parties, it undertakes, under the terms of the contracts to be signed with them, to adopt the necessary and appropriate measures in order to ensure that all entities, that have access to such personal data, offer high guarantees of security, limiting the communication of personal data to the minimum required.
Where necessary, and in connection with the employment of third parties by the Controller, personal data may be transferred outside the European Economic Area (the “EEA”) for locations that may not guarantee the same level of protection. However, if applicable, the Controller will only transfer personal data outside the EEA, in accordance with the following measures:
(i) When the transfer is made to a location or through a method or in circumstances that the European Commission considers to ensure adequate protection of personal data;
(ii) When it has implemented data protection standard contractual clauses approved by the European Commission or a competent supervisory authority; or,
(iii) When none of the above apply, but the law still authorizes such a transfer, for example, if it is necessary for the declaration, exercise, or defence of a right in a judicial proceeding.
8. Privacy Policy Changes
The Controller reserves the right to make changes to this Privacy Policy at any time, and such changes will be duly published on the Website.