A Cimenteira do Louro, S.A.

Introduction

A Cimenteira do Louro, S.A. (ACL), respects your privacy and is committed to protecting your personal data, in accordance with the General Data Protection Regulation (Regulation (EU) 2016/679, "GDPR") and Law No. 58/2019.

  • A CIMENTEIRA DO LOURO S.A., in accordance with this Policy and its Responsibility for data protection and privacy of Data Subjects, complies with all the fundamental principles of personal data processing as formulated in article 5 of the GDPR, namely as to its lawfulness, fairness, transparency, purpose limitation, data minimization, accuracy, storage limitation, integrity, confidentiality and availability.

  • A CIMENTEIRA DO LOURO, S.A. ensures compliance with all the Principles set out, highlighting them in the context of the personal data collection and processing activities carried out through the services and functionalities made available on the websites www.aclweb.pt and www.itcomindustrial.com. Any entity that is legally entitled to do so may request A CIMENTEIRA DO LOURO S.A. to demonstrate compliance with the Principles for the processing of personal data.

Entity Responsible for the Processing

A CIMENTEIRA DO LOURO S.A., headquartered at RUA PADRE DOMINGOS JOAQUIM PEREIRA, Nº 1284 – LOURO - AP. 163 - E.C. FAMALICÃO, 4760-563 V.N. FAMALICÃO, Portugal, is the entity responsible for the processing of personal data collected through the websiteswww.aclweb.pt and www.itcomindustrial.com

Email: acl@aclweb.pt
Phone: +351 252 301 900

The Data Protection Officer (DPO) can be contacted via email: dpo@aclweb.pt

Categories of Data Processing

We may collect and process:

  • Identification and contact data (name, email, telephone, address).

  • Billing and financial data (NIF, IBAN, bank details).

  • Browsing and usage data (IP address, logs, cookies).

  • Marketing data and preferences (consents, communication history).

  • Applications: CV, experience, evaluations.

  • Other data provided voluntarily.

Purposes and Legal Bases (Lawfulness)

The personal data collected is intended exclusively for the purposes informed at the time of collection and is processed on the basis of the following legitimacy:

  • Purpose: Service and contact requests
    Examples of data: Identification, contact, content of the request
    Legal basis (Art. 6 GDPR): Legitimate interest (6/1f) or pre-contractual measures (6/1b)
    Shelf life: Up to 24 months after order closure


  • Purpose: Pre-sales and proposal management
    Examples of data: Identification, contact, interaction history
    Legal basis (Art. 6 GDPR): Legitimate interest (6/1f)
    Shelf life: 2 years after last interaction


  • Purpose: Contractual relationship with customers/suppliers
    Examples of data: Identification, invoicing, payments
    Legal basis (Art. 6 GDPR): Contract performance (6/1-b) + legal obligations (6/1-c) (6/1-c)
    Shelf life: Up to 10 years (tax obligations)


  • Purpose: Recruitment/Applications
    Examples of data:s CV, identification, reviews
    Legal basis (Art. 6 GDPR): Pre-contractual measures (6/1b) or consent (6/1a) for future vacancy
    Shelf life: 12 months (not admitted)


  • Purpose: Private area / registration
    Examples of data: Identification, credentials
    Legal basis (Art. 6 GDPR): Contract Execution (6/1-b)
    Shelf life: While the account is active + 12 months


  • Purpose: Newsletter/marketing communications
    Examples of data: Name, email
    Legal basis (Art. 6 GDPR): Consent (6/1a), with double opt-in
    Shelf life: Until withdrawal of consent


  • Purpose: Analytics and website improvement
    Examples of data: Online identifiers, events
    Legal basis (Art. 6 GDPR): Consent (6/1a) (not strictly required)
    Shelf life: See Cookies Policy

Note: Whenever we resort to legitimate interest, we carry out a weighting evaluation. The data subject may, at any time, withdraw the consent given without compromising the lawfulness of the processing prior to the withdrawal.

Data Retention

The personal data collected by A CIMENTEIRA DO LOURO S.A. in the context of the services and functionalities made available through the www.aclweb.pt and www.itcomindustrial.com websites have their retention period informed at the beginning of their collection activity or in accordance with the table above, depending on their purpose. In general, personal data will only be kept for the period necessary for the purposes of processing that have been informed to the Data Subject as a basis for the collection and subsequent processing activities or until the Data Subject exercises any of his or her rights in accordance with Art. 18 GDPR.

Assent

Consent is free, informed, unambiguous. Registered via online forms, with non-pre-selected checkboxes and using records with date, time, and whenever possible with the accepted version of the policy.

Rights of Data Subjects

Data subjects have the right to:

  • Access, rectification and deletion of your data.

  • Restriction or Objection to Processing.

  • Data portability, where applicable.

  • Withdraw the consent previously given (does not affect the previous lawfulness).

  • Submit a complaint to the supervisory authority:
    National Data Protection Commission (CNPD) – www.cnpd.pt
    Av. D. Carlos I, 134 - 1.º, 1200-651 Lisbon | Tel.: +351 213 928 400

The exercise of these rights can be carried out by email dpo@aclweb.pt or by mail to the address of the head office. The deadline for replying is 30 days, which can be extended in complex cases in accordance with Article 12 GDPR.

Recipients of Data and Communication of Data to Third Parties

Within the scope of the services and functionalities made available on the www.aclweb.pt and www.itcomindustrial.com websites and the activities of collection and processing of the personal data of the Data Subjects, A CIMENTEIRA DO LOURO S.A. does not transfer personal data to third parties that are not subcontractors, except within the scope of strict compliance with legal obligations that may be identified. Likewise, data will not be transferred to third parties for purposes other than those that were initially informed to the Data Subjects and for which they have given their consent. We may use service providers (subcontractors) who process personal data on our behalf, namely in hosting, technical support, marketing, tax and legal advice. We ensure that we only use entities that provide sufficient guarantees of compliance with the GDPR, through contracts that impose obligations of confidentiality, security and limited use of data. We maintain processing agreements (Art. 28 GDPR) and audit technical and organisational measures.

International Transfers

If the transfer of personal data outside the European Economic Area is necessary, this will only be carried out when adequate safeguards of protection exist, namely:

  • European Commission adequacy decision.

  • Standard contractual clauses approved by the European Commission.

  • Binding corporate rules.

Security Measures

With the technical support of its subcontracting entities, CIMENTEIRA DO LOURO S.A. applies in its www.aclweb.pt and www.itcomindustrial.com the necessary and appropriate technical measures to guarantee the integrity and confidentiality of the personal data of the Data Subjects, in order to protect their personal data collected and stored from negligent or intentional use. The technical measures implemented protect personal data against its loss, destruction, misuse, alteration, unauthorized access, improper disclosure or unlawful processing.

Appropriate technical and organisational measures for the protection of personal data:

  • Encryption and access control.

  • Regular backups.

  • Monitoring of security incidents.

  • Training of employees in data protection.

  • We reinforce minimization, need-to-know, and privacy by design/default.

In the event of a personal data breach, we will comply with arts. 33 and 34 GDPR, notifying the CNPD and, if necessary, the data subjects.
The Data Subjects are responsible for following good security practices in accessing the services and functionalities provided by www.aclweb.pt and www.itcomindustrial.com namely in the secure maintenance of their access credentials to private areas, in updating and maintaining their operating systems and personal computers in accordance with the manufacturers' indications and in the installation and use of security applications such as antivirus, among others.

Cookies and Similar Technologies

We use cookies to ensure essential functionalities, improve the experience and, with consent, for statistics and marketing.

  • The details (list of cookies, provider, purpose, duration) are available in the Cookie Policy and in the Preference Center.

  • Granular consent: Essential, Functional, Analytical, Marketing.

  • The user can revoke/change consent at any time.

Minors under 16

Our services are not intended for children under the age of 16. Acceptance of this policy is only possible by individuals of legal age. If we identify or are communicated to us data of minors, it will be deleted immediately.

Impact Assessments

We carry out Data Protection Impact Assessments (DPIAs) in accordance with Art. 35 GDPR.

Policy Updates and Revisions

This Privacy Policy may be updated from time to time for legal, regulatory or operational reasons. The date of the last update will be indicated, and, where relevant, holders will be informed of significant changes.

Version: 2.0 — Date: [19/09/2025] — Replaces the version of 22/01/2021

X

Subscribe to our

Newsletter

Subscribe Cancel