This Privacy Policy contains essential information on how the personal data of clients and users is used, regardless of the channel or means (online or in person) IVENS Governance Advisors, Lda., in Portugal, chooses to interact.
Transparency is essential: it is clear what is done with personal data, the implications of such use and the rights of each person. All the information in this Privacy Policy is always available and can be consulted at any time, and it also describes each data processing process.
Furthermore, the transparency obligation provided for in the EU General Data Protection Regulation (GDPR) 2016/679, as well as in applicable national laws, is complied with.
Some terms used in this Privacy Policy:
When referring to “platform”, we include all channels or means, digital or physical, used for interaction, the main means being our website: https://ivensadvisors.com/
1. Who is the Entity Responsible for Processing your data?
Ivens Governance Advisors, Lda., hereinafter “IVENS ADVISORS” is a company based in Lisbon and registered in Portugal under number 514363592.
IVENS ADVISORS is the entity responsible or co-responsible for the collection and processing of your personal data, when it decides which data is collected, the means of processing and the purposes for which the data is processed.
Additionally, IVENS ADVISORS processes personal data as a Processing Entity, on behalf of and under the instructions of other responsible entities, in the context of our professional services.
2. Our commitment
This privacy policy reflects our commitment to (i) communicating transparently about the personal data we process and under what conditions; (ii) protecting the security and privacy of personal data; and (iii) providing appropriate mechanisms for exercising the rights of data subjects.
If you are our customer, potential customer, prospective employee, alumni, supplier, partner, or user of our websites or mobile applications, we recommend that you read this document.
Ivens Advisors promotes the protection of the confidentiality and privacy of the information entrusted to it. As part of this fundamental obligation, Ivens Advisors also promotes the appropriate protection and use of personal data (referred to as "personal data", "personally identifiable information" or "PII") collected through its website.
3. What personal data do we collect and process?
Essentially, personal data is any information that, directly or in combination with other data, can identify a natural person.
Categories of personal data that we process
Identification and contacts
Name, identification document number, NIF, signature, address, telephone number, or email address.
Biographical data
Date of birth, sex, nationality, place of birth, marital status, family group, academic qualifications, professional experience, Linkedin profile, or criminal record.
Financial data
NIB, income, or financial/real estate assets.
Relationship with Ivens Advisors
Data relating to the sending of invitations and publications by Ivens Advisors, comments by data subjects on Ivens Advisors' social media presence, or data subjects' responses to satisfaction questionnaires.
Opinions and preferences
Preferences regarding the sending of invitations and publications from Ivens Advisors, comments from data subjects on Ivens Advisors' social media presence, or data subjects' responses to satisfaction questionnaires.
Contents
Information contained in written communications between the data subject and Ivens Advisors.
Use of websites and applications
Pages visited, or information about the equipment used (e.g. IP address, geographic location, browser used).
Ivens Advisors may process other personal data as a responsible or co-responsible entity, including special categories of data, in the exercise of professional service provision activities.
Ivens Advisors obtains the personal data listed above through the following collection methods:
Data collection methods
Data provided by the holders
Data or content provided directly by the holders (i) in interactions with Ivens Advisors professionals, (ii) in letters or emails sent to Ivens Advisors, (iii) in defining preferences regarding Ivens Advisors communications, (iv) in participating in events, (v) in submitting applications to Ivens Advisors, or (vi) in responding to satisfaction surveys.
Data collected from social networks
Data relating to the interaction of data subjects on Ivens Advisors' social media presence, or on the data subjects' public profiles on social media (e.g. Linkedin, curriculum vitae to apply online for a job at Ivens Advisors, we will use the information you provide to us to verify available job opportunities).
Data collected from third parties
Data obtained by Ivens Advisors from its clients in the context of the provision of professional services or from other third parties (e.g. Banco de Portugal (BdP), public authorities, insurance companies).
Persistent cookies
Data relating to the use of Ivens Advisors websites and applications (e.g. pages visited, user preferences), obtained through cookies from Ivens Advisors or third parties.
4. Automatic collection of personal data
In some cases, Ivens Advisors and its service providers use cookies and other technologies to automatically collect certain types of data when you visit our website. Collecting this information will allow us to optimize your user experience and better understand and optimize the performance, usability and effectiveness of the Ivens Advisors website and evaluate the effectiveness of our marketing activities.
— IP addresses
An IP address is a number assigned to your computer whenever you access the Internet. It allows computers and servers to recognize each other and communicate with each other. The IP addresses from which visitors access our website may be logged for security and diagnostic purposes of our information systems. This information may also be used in aggregate form to see website trends and analyze performance.
— Cookies
Cookies may be installed on your computer or device whenever you visit our website and are used by the website to remember your computer or device.
On our website, a window will appear asking whether you wish to accept cookies or not. If you do not accept cookies, your computer or device will not be tracked for marketing purposes. A secondary type of cookie, user input cookies, may also be requested. These cookies cannot be blocked through the initial window. Your choice is saved in a cookie and is valid for a period of 365 days. To change this option, simply clear the cookies from your browser.
Although most browsers automatically accept cookies, you can choose whether or not to accept them through your browser settings (usually through Tools or Preferences). You can also delete cookies from your device at any time. However, please be aware that if you do not accept cookies, you may not be able to experience the full functionality of our website.
You can find more information about how to manage cookies through your browser's help file or through some websites, such as www.allaboutcookies.org .
Below is a list of the types of cookies used on our website:
Browser Performance
Our website has been developed using common Internet platforms. These platforms have embedded cookies that help with compatibility issues (e.g. to identify the type of browser used) and improve performance (e.g. faster loading of content).
Social sharing
We use third-party social media widgets or shortcuts to provide you with additional functionality for sharing content from our websites, on social networks and via email. Using these widgets or shortcuts may result in a cookie being placed on your device to facilitate your use of the services of these features, ensure that your interaction appears on our websites (e.g. the social share count cache is up to date) and record information about your activities on the internet and our website. We encourage you to carefully read the Privacy Information of each of our service providers before using them.
Our websites may also use third-party tools and widgets to provide additional functionality. The use of these tools and widgets may result in a cookie being placed on your device to facilitate your use of the services of these features and to ensure that your interaction with our websites appears appropriate.
Cookies do not identify your email address or otherwise identify you personally. We may obtain other means of identification through our analytics reports, such as IP addresses, but only to help us determine which areas of the Site our visitors prefer and not to identify individual visitors.
— Social media widgets and applications
The Ivens Advisors website may include features to facilitate sharing via external social media applications, such as the LinkedIn “Like” button. These applications may collect and use information about your use of the Ivens Advisors website (see details on “Social Sharing” cookies). Any personal information you provide through these applications may be collected and used by other members of these social networks and such interactions are governed by the privacy policies of the companies providing the applications. We have no control over these companies or their use of your information and we are not responsible for them or their use of your information.
Additionally, the Ivens Advisors website may host blogs, forums, crowdsourcing and other applications or services (collectively referred to as social media sources). The purpose of social media sources is to facilitate the sharing of knowledge and content. Any personal information you provide on any of Ivens Advisors’ social media resources may be shared by other users of those resources (unless otherwise stated at the time of collection), over which we have no control or limited control.
Children
Ivens Advisors recognizes the importance of protecting children’s privacy, especially in the interactive online world. Our website is not designed or intentionally directed to children under the age of 13. It is not our policy to intentionally collect or maintain information about anyone under the age of 13, except as part of a contract for the provision of professional services.
Options
In general, you are not required to provide any personal data when you visit our website, but Ivens Advisors may ask you to provide certain personal data so that you can receive additional information about our services and events. Ivens Advisors may also ask for your consent to certain uses of your personal data, and you may accept or decline such uses.
If you choose to subscribe to certain services or communications, such as an electronic newsletter, you may unsubscribe at any time by following the instructions included in each communication. If you decide to unsubscribe from a service or communication, we will attempt to remove your data promptly, although we may ask you for additional information before we can process your request.
As described above, if you wish to prevent cookies from identifying you while browsing our website, you can
reset your browser to refuse all cookies or to inform you when a cookie is being sent. However, please note that some areas of our website may not function properly if you choose to refuse cookies.
Links to other sites
Please note that the Ivens Advisors website may contain links to other websites, including websites maintained by other Ivens Advisors member companies that are not subject to this Privacy Policy, but rather to other privacy policies that may differ in some respects. We recommend that users read the privacy policy of each website visited before transmitting any personal data.
By registering on the Ivens Advisors website and navigating to other websites with your login, you agree to the use of your personal data in accordance with the Privacy Policy of the Ivens Advisors website you are visiting.
5. How we process personal data
Data processing is an operation or set of operations performed on personal data by manual or automated means, including collection, storage, use, copying and transfer.
At Ivens Advisors we process personal data lawfully, fairly and transparently and for specific purposes. Any additional secondary data processing is only carried out if (i) it is compatible with the purposes authorized and communicated to the data subjects or (ii) if it is subject to specific and explicit consent from the data subjects.
The following sections describe and illustrate the main purposes of processing at Ivens Advisors, framed within their respective legal bases.
Contract execution
Ivens Advisors carries out the data processing necessary for the conclusion, execution and management of contracts to which the data subject is a party, or for pre-contractual steps at the request of the data subject:
Acceptance of clients and work
Acceptance of clients, acceptance of continuation of clients, and acceptance of work, in accordance with Ivens Advisors policies and legal and regulatory rules (e.g. independence rules).
Recruitment
Preparation, evaluation and formalization of contracts and confidentiality agreements relating to the products or services to be provided by Ivens Advisors.
Service provision
Execution of the service contracted with the data subject.
Billing and collections from customers
Issuing invoices and managing collections.
Contracting services and paying suppliers
Supplier evaluation, contracting, renegotiation and termination of contracts with suppliers, evaluation of services provided, and payment to suppliers and service providers of Ivens Advisors.
Compliance with legal or regulatory obligation
Ivens Advisors carries out the necessary data processing to ensure compliance with the various legal and regulatory obligations to which it is subject, including in particular the Commercial Code, the Civil Code and tax legislation:
Provision of information and response to requests from sector regulators and public authorities
Provision of mandatory information and response to various requests from sector regulators (e.g. CMVM, OROC) and public authorities (e.g. BdP, Courts, AGT).
Prevention of money laundering and terrorist financing crimes
Verification of lists of individuals and entities subject to financial or commercial sanctions, or identification and reporting of suspicious transactions.
Accounting and Financial Reporting
Accounting record, and production and dissemination of Ivens Advisors' financial statements and reports.
Document archive management
Collection, classification and storage of electronic and physical documents with personal data in the documentary archive, which constitute mandatory evidence in the context of Ivens Advisors' activity.
Legitimate interest
Ivens Advisors carries out the necessary data processing to safeguard its legitimate interests:
Account and contact management
Customer segmentation, opportunity management and contact management of customers, potential customers, partners and suppliers.
Preparation of proposals
Preparation and submission of service proposals to clients or potential clients.
Direct marketing
Sending communications (e.g. email) to customers, potential customers and alumni related to the promotion of events, dissemination of specialized publications, and promotion of products/services.
Event management
Organization and execution of events by Ivens Advisors or supported by Ivens Advisors.
Assessment of service quality
Quality control of the services provided by Ivens Advisors to its clients, in accordance with Ivens Advisors policies.
Management control
Production of control and management information for Ivens Advisors.
Litigation management
Exercise of contractual or legal rights and defense in the event of emerging judicial or extrajudicial disputes.
Internal audit
Data collection and analysis in the context of the internal audit of Ivens Advisors processes and operations.
Management and security of information systems and facilities
Processes for managing and monitoring information systems and technological infrastructures, recording access and use events of systems, processes for detecting, analyzing and responding to potential information security incidents, controlling identities and access to Ivens' information systems, or controlling physical access to facilities.
Consent of the data subject
Ivens Advisors may carry out other processing of personal data when it has the express consent, in writing, orally or through an unequivocal, informed, free and for specific purposes of the data subject:
Customer satisfaction assessment
Assessment of customer satisfaction through interviews or specific questionnaires.
Market research
Collection and analysis of personal data in the context of studies or market analysis.
Personalize your website experience
Use of persistent cookies to record user activity and preferences on the Ivens Advisors website.
6. What are the retention and processing periods for personal data?
Ivens Advisors stores and processes personal data for as long as necessary and as long as the legitimate purposes for which the data are processed subsist, to comply with contractual, legal and regulatory obligations, or to protect the legitimate interests of Ivens Advisors:
7. What are your rights as a data subject?
Ivens Advisors guarantees the exercise of the rights of data subjects in relation to their processing.
Access
Holders have the right to access the personal data they have provided to Ivens Advisors or that result from the use of Ivens Advisors services, and the respective conditions of processing.
Rectification
Holders have the right to request the rectification of their personal data that is inaccurate or incomplete (e.g. address, email address, telephone contacts).
Opposition or withdrawal of consent
Data subjects have the right to object to data processing based on Ivens Advisors' legitimate interest or to withdraw the consent they have given for data processing based on consent.
Oblivion
Holders have the right to request the deletion of their personal data held by Ivens Advisors, provided that there are no valid grounds for its retention (e.g. compliance with a legal obligation, defense of Ivens Advisors in legal proceedings).
Limitation
Holders have the right to request the limitation of data processing, in particular when they contest the accuracy of the personal data or object to the processing and during the period in which the request is assessed by Ivens Advisors.
Portability
Clients have the right to receive the personal data they have provided to Ivens Advisors or that result from the use of services.
Not being subject to exclusively automated decisions
The Customer has the right to request human intervention or to contest decisions based on fully automated processing of personal data.
Complain to the CNPD
The data subject has the right to submit complaints to the CNPD regarding matters relating to the exercise of their rights and the protection of their personal data.
Data subjects may exercise their data protection rights, free of charge, by writing to the Head Office address : Ivens Advisors – Av- Álvares Cabral 63-2º, 1250-017 Lisbon, Portugal, or to the email address djpf@ivensadvisors.com. Ivens Advisors will respond to requests within a maximum period of 30 days, except for particularly complex requests. In such cases, Ivens Advisors will inform data subjects of the need to extend the response period by an additional maximum period of 30 days and the respective justification.
Whenever Ivens Advisors considers that it is not possible to respond to requests, data subjects will be informed of Ivens Advisors' reasons, within the timeframes established above.
8. What personal data we share
Ivens Advisors may transfer personal data to third parties in the context of its legitimate business activities:
Public Bodies and Institutions and supervision - CMVM, Banco de Portugal, AGT, Courts, whenever there is a legal or regulatory obligation to do so.
Service providers - Service providers acting on behalf of or under the instructions of Ivens Advisors (e.g. providers of document management and archiving services). In these cases, the transfer of personal data is subject to a specific contract that ensures that these entities process the data under the prior instructions of Ivens Advisors and comply with all legal obligations regarding data protection.
In its relationship with third parties, Ivens Advisors may transfer data to countries outside the European Union, provided that it has the necessary confidence that personal data is adequately protected, in accordance with rules formally defined through a contract or equivalent instrument.
9. How we protect personal data
Protecting the confidentiality and integrity of data is (i) a legal and regulatory obligation, and (ii) one of the pillars in building relationships of trust between Ivens Advisors and its clients, employees, regulatory entities and business partners.
Ivens Advisors has implemented appropriate organizational measures, processes and security systems to protect your personal data against unauthorized destruction, alteration and access, including: (i) mechanisms for controlling access to information systems and data; (ii) specialized security systems (e.g. firewall, antivirus, vulnerability management); (iii) mechanisms for recording actions carried out by employees and other users of information systems; (iv) data encryption, pseudonymization and anonymization mechanisms; (v) encryption measures for equipment and mobile devices; (vi) physical security measures to protect facilities (e.g. physical access control, video surveillance); and (vii) an awareness and training program for Ivens Advisors employees and partners on information security and personal data protection.
10. Changes to the privacy policy
Ivens Advisors reserves the right to make changes to this policy at any time to adapt it to best market practices or future legislative or regulatory changes. When we make changes to this statement, we revise the “updated” date at the top of this page. We recommend that you read this Privacy Policy periodically so that you are aware of how Ivens Advisors protects your information. The updated version will always be available for consultation on our website https://ivensadvisors.com/
11. Our contacts
Ivens Advisors is committed to protecting the privacy of your personal information. Any questions, comments or requests regarding the protection of personal data can be sent to the email address djpf@ivensadvisors.com.
You may also use this email address to communicate any concerns you may have regarding compliance with our Privacy Policy.
In any case, you always have the right to file a complaint with the National Data Protection Commission in Portugal.