Privacy Policy
Last Updated: December 9, 2025
1. Who We Are
Fabizi, Sociedade Unipessoal por Quotas NIF: 517140217 Address: Praça Marquês De Pombal, 14, 1250-162 Lisboa, Portugal Email: info@fabizi.dev Website: https://fabizi.dev
We are a software development and technical consulting company. This Privacy Policy explains how we handle your personal information when you use our website.
2. What Information We Collect
When You Contact Us
When you fill out our contact form, we collect:
- Your name (required)
- Your email address (required)
- Your company name (optional)
- Your message (required)
- Technical information: IP address, date and time, browser type (collected automatically)
When You Visit Our Website
Our website automatically collects:
- Technical data: IP address, browser type, operating system
- Usage data: Pages you visit, time spent on pages
- Cookie data: Only essential cookies (see our Cookie Policy)
What We DON'T Collect
We do not use:
- Analytics or tracking tools
- Advertising cookies
- Social media tracking
- Third-party tracking technologies
We do not collect sensitive personal data (health information, biometric data, racial or ethnic origin, political opinions, religious beliefs, trade union membership, genetic data, or criminal records).
3. Why We Use Your Information
We use your information to:
- Respond to your inquiries submitted through our contact form
- Discuss potential projects and provide technical consulting services
- Comply with legal obligations under Portuguese and EU law
- Protect our systems against fraud and security threats
- Improve our website based on how people use it
4. Legal Basis for Processing
Under GDPR Article 6, we process your data based on:
- Your consent (Art. 6(1)(a)) - when you submit our contact form
- Legitimate interest (Art. 6(1)(f)) - to respond to inquiries, ensure security, and improve our website
- Contractual necessity (Art. 6(1)(b)) - to discuss and provide services to potential clients
5. Who We Share Your Data With
Service Providers
We share your data only with these trusted partners:
- Digital Ocean - Website hosting (EU data centers: Frankfurt, Amsterdam)
- Amazon Web Services (AWS) - Email delivery (EU region)
Both providers have Data Processing Agreements (DPAs) in place as required by GDPR Article 28.
Legal Obligations
We may share your data when required by:
- Portuguese or EU law
- Court orders
- Portuguese authorities (CNPD, police, tax authorities)
International Transfers
Our infrastructure is located in the EU. If we transfer data outside the EU/EEA, we use:
- Standard Contractual Clauses (SCCs) approved by the European Commission
- Adequacy decisions for countries with strong data protection
We do not transfer data to countries without proper data protection.
6. How Long We Keep Your Data
- Contact form submissions: Maximum 2 years
- Email correspondence: Maximum 2 years
- Technical logs: Maximum 90 days
- Legal/tax records: Up to 7 years (if required by Portuguese law)
After these periods, we securely delete or anonymize your data.
7. Your Rights
You have the right to:
Access Your Data (Art. 15)
Request a copy of your personal data.
Correct Your Data (Art. 16)
Fix any inaccurate or incomplete information.
Delete Your Data (Art. 17 - "Right to be Forgotten")
Request deletion when:
- Data is no longer needed
- You withdraw consent
- You object to processing
- Data was processed unlawfully
Restrict Processing (Art. 18)
Limit how we use your data in certain situations.
Data Portability (Art. 20)
Receive your data in a common, machine-readable format.
Object to Processing (Art. 21)
Object to processing based on legitimate interests.
Withdraw Consent (Art. 7(3))
Withdraw consent at any time (doesn't affect past processing).
8. How to Exercise Your Rights
Email: info@fabizi.dev Subject: "GDPR Data Request" Include: Your name, email, and specific request
We will respond within one month (can be extended to three months for complex requests). We may ask for ID verification to protect your data.
9. Data Security
We protect your data with:
- Encryption: TLS/SSL for data in transit
- Access controls: Only authorized personnel can access data
- Secure infrastructure: EU data centers with ISO 27001, SOC 2 certifications
- Regular security reviews: Ongoing assessment of our security measures
No internet transmission is 100% secure, but we do our best to protect your data.
10. Data Breaches
If a data breach affects your personal data, we will:
- Notify CNPD (Portuguese Data Protection Authority) within 72 hours
- Notify you without undue delay if the breach poses high risk to your rights
- Document all breaches
11. Children's Privacy
Our website is not intended for children under 16. We do not knowingly collect data from children. If we discover we have collected a child's data, we will delete it immediately.
Under Portuguese Law 58/2019, parental consent is required for processing children's data.
12. Cookies
We use only essential cookies needed for the website to work. See our Cookie Policy for details.
We do not use analytics, advertising, or tracking cookies.
13. Changes to This Policy
We may update this Privacy Policy to reflect:
- Changes in legal requirements
- New data processing activities
- Improvements to our privacy practices
Check the "Last Updated" date above. We will notify you of material changes.
14. File a Complaint
If you believe we violated your data protection rights, you can file a complaint with:
Portuguese Data Protection Authority (CNPD) Comissão Nacional de Proteção de Dados Av. D. Carlos I, 134, 1º 1200-651 Lisboa, Portugal Phone: +351 213 928 400 Email: geral@cnpd.pt Website: www.cnpd.pt
You may also contact your local EU data protection authority.
15. Contact Us
Email: info@fabizi.dev Address: Praça Marquês De Pombal, 14, 1250-162 Lisboa, Portugal Response Time: Within 48 hours
Legal Compliance: This Privacy Policy complies with:
- EU GDPR (Regulation 2016/679)
- Portuguese Law 58/2019
- ePrivacy Directive 2002/58/EC
Version: 2.0 Effective Date: December 9, 2025