PRIVACY POLICY AND PERSONAL DATA PROTECTION

This Privacy Policy (“PRIVACY POLICY”) governs the collection and processing of personal data in accordance with the General Data Protection Regulation (GDPR). It applies to personal data provided by customers, prospective customers, users, and individuals engaging with services—whether in physical or digital form—offered by DOROTECH LDA. TAX NUMBER 518029182.  Address: Rua Pedro Alvares Cabral 11 – Belmonte, Portugal.

DOROTECH  is responsible for handling personal data collected through various channels, including but not limited to, online forms, websites, simulators, applications, proposals, and other physical or electronic documents. 

The processing of this data is conducted in strict compliance with applicable legislation, particularly Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (GDPR), which governs the protection of individuals with regard to the processing of personal data and the free movement of such data.

This Privacy Policy serves as a general framework and may be supplemented, modified, or overridden in specific circumstances by additional policies, notices, or disclosures provided by DOROTECH concerning particular types of data processing.

1ST ARTICLE – DATA CONTROLLER AND PROCESSING RESPONSIBILITIES

DOROTECH, as identified above, operates as a service provider and determines the purposes and means of processing personal data. Consequently, under applicable data protection laws, DOROTECH may act as a Data Controller, Data Processor (Subcontractor), or Joint Controller, depending on the specific data processing activities.

The entity processes personal data supplied by the Data Subject, either directly or via third parties, and through the email based submission of documents in any form, or via form submissions on ResearchGoldenVisa.com, or via messenger service submissions, in any format.

The collection and processing of personal data during pre-contractual negotiations or contractual engagements are carried out strictly in accordance with data protection regulations, ensuring compliance with legal requirements for data controllers, processors, and joint controllers as defined in Article 4.

2ND ARTICLE – DATA PROTECTION CONTACT INFORMATION

For inquiries or concerns regarding personal data protection, the designated contact point is:

Address: Rua Pedro Alvares Cabral 11 – Belmonte, Portugal.

Email: hello@visadoro.com

3D ARTICLE – PRINCIPLES GOVERNING PERSONAL DATA PROCESSING

All personal data processed in the course of DOROTECH’s activities shall comply with the following principles in accordance with applicable laws:

  1. Lawfulness, Fairness, and Transparency – Data shall be processed lawfully, fairly, and transparently.
  2. Purpose Limitation – Data shall be collected for specified, explicit, and legitimate purposes and shall not be further processed in a manner incompatible with those purposes.
  3. Data Minimization – Data collected shall be adequate, relevant, and limited to what is necessary for the intended purposes.
  4. Accuracy – Data shall be accurate and, where necessary, kept up to date. Measures will be taken to rectify or erase inaccurate or incomplete data.
  5. Storage Limitation – Data shall be retained only for the period necessary for the specified processing purposes and within the legally permitted duration.

4TH ARTICLE – PURPOSE, LEGAL BASIS, AND DATA RETENTION PERIOD

Personal data shall be processed, held and shared in a lawful, fair, and transparent manner only, and only with the explicit consent of the Data Subject, and only to the extent required to assist the Data Subject with their request. We therefore explicitly required acceptance of data sharing with suppliers and related third-party entities for all contact form submissions.

Data shall be collected for specified, explicit, and legitimate purposes and shall not be further processed in a manner incompatible with those purposes.

Data collected shall be adequate, relevant, and limited to what is necessary for the intended purposes.

Data shall be accurate and, where necessary, kept up to date. Measures will be taken to rectify or erase inaccurate data.

Data shall be retained only for the period necessary for the specified processing purposes, and within the legally permitted duration. DOROTECH ensures that personal data is processed in accordance with these principles and applicable legislation.

 

5TH ARTICLE – COLLECTION OF DATA FROM EXTERNAL SOURCES

DOROTECH may collect information about the Data Subject from publicly accessible sources, government entities, industry associations, online platforms, or specialized third-party providers. 

This data collection is limited to what is relevant for providing consultancy, advisory services, and relocation guidance for individuals and businesses. Such information may be used to complement or verify details provided by the Data Subject, strictly within the scope of the specified processing purposes.

6TH ARTICLE – RIGHTS OF THE DATA SUBJECT

The Data Subject has the following rights concerning their personal data, which may be exercised by submitting a written request to the designated Personal Data Protection Contact:

  1. Right of Access – Obtain confirmation of whether DOROTECH is processing their personal data and access the respective data, subject to applicable legal provisions.
  2. Right to Rectification – Request correction or updating of inaccurate or outdated personal data.
  3. Right to Erasure (“Right to be Forgotten”) – Request deletion of personal data in cases where legal conditions for such erasure are met.
  4. Right to Restriction of Processing – Request the limitation of data processing under conditions specified by law.
  5. Right to Withdraw Consent – If processing is based solely on consent, withdraw such consent at any time without affecting the lawfulness of prior processing.
  6. Right to Object – Object to data processing based on DOROTECH’s or third parties’ legitimate interests, provided that compelling legitimate grounds do not override the data subject’s rights.

Requests must be submitted in writing to the Personal Data Protection Contact. DOROTECH will assess and respond to each request in accordance with GDPR requirements.

7TH ARTICLE – SECURITY OF PERSONAL DATA

DOROTECH implements appropriate technical and organizational measures to safeguard personal data against accidental or unlawful destruction, loss, alteration, unauthorized disclosure, or access. 

These security measures ensure the confidentiality, integrity, and availability of data while protecting it against unauthorized processing or misuse.

8TH ARTICLE – AMENDMENTS TO THE PRIVACY POLICY

This Privacy Policy may be updated periodically. Updates will be published on DOROTECH’s official website or communicated through other traceable means (such as email or postal mail). 

Prior explicit consent from the Data Subject is not required for these changes, but DOROTECH will provide appropriate notice, proportionate to the significance of the modifications.

9TH ARTICLE – ONLINE PLATFORM AND DATA PROCESSING

1. Website Access

DOROTECH’s official website is accessible at: www.visadoro.com.

2. Comments

When users leave comments on the website:

  • DOROTECH collects data from the comment form, the user’s IP address, and browser details to assist with spam detection.
  • An anonymized hash of the user’s email address may be sent to the Gravatar service to check for an associated profile image. Gravatar’s privacy policy is available at https://automattic.com/privacy/.
  • Once approved, the user’s profile picture is publicly displayed alongside their comment.

3. Multimedia and Geolocation Data

Users uploading images to the website should ensure no embedded geolocation data (EXIF GPS) is included, as site visitors may extract such data.

4. Contact Forms and Cookies

  • If a user leaves a comment, they may choose to save their name, email, and website in cookies for convenience. These cookies last one year.
  • When logging in, a temporary cookie is set to verify browser compatibility. It contains no personal data and is deleted upon browser closure.
  • Login cookies are stored for one year unless the user selects “Remember Me,” which extends the session for two weeks before automatic logout.

5. Embedded Content from Third-Party Websites

DOROTECH’s website may include embedded content (e.g., videos, images, articles) from external sources. Interacting with such content is equivalent to visiting the third-party website directly, and the third-party site may:

  • Collect user data,
  • Use cookies,
  • Integrate third-party tracking,
  • Monitor interactions, including if the user is logged into their account on that platform.

6. Data Access and Deletion Requests

Users with an account or those who have left comments may request an export file containing their stored personal data. They may also request data deletion, except for data retained due to legal, administrative, or security obligations.

All visitor comments may be subject to automated spam detection for security purposes.

/END/