Who we are
Blossom Translations® strives to maintain the loyalty and trust of those who visit our website, and of our clients and suppliers.
1. Client, supplier and collaborator information
Visitors to our website are not required to provide personal data. However, those interested in our services may contact us using the contact form provided, in which case some information will be stored to establish communication. The lawful basis for the processing of your data is the provision of the services you request or to take the necessary steps to fulfil that request. We collect, store and use your personal data to prepare quotes, provide the translation, copywriting, revision or consulting services you request or to comply with legal requirements. We will not use your personal data for marketing purposes.
We collect information from clients, suppliers, collaborators, information processors and potential clients with legitimate interest.
Personal data types
The data we collect may include your name, postal address, e-mail address, telephone number, taxpayer identification number, payment and delivery terms, financial data and bank account details. The information collected shall only be stored for the duration of the business relationship or for as long as required to comply with legal or tax obligations.
Data related to quotes shall be stored for up to six months. Regarding completed work, we are obliged to retain your personal data for five years to comply with tax obligations, after which time all related e-mails will be deleted.
Third party access
Where a text is sent to a colleague for revision or editing, the text will be anonymised so that your information does not appear, or the colleague will be asked to sign a non-disclosure agreement. Colleagues will be informed of their legal duty of confidentiality and professional secrecy.
Other parties may have access to your personal data for administrative purposes, including our website, e-mail, web hosting services, and the Moloni financial services system. All parties shall comply with the GDPR (please also see the section below on security measures).
Your rights and obligations
We take all precautionary measures to ensure the security, integrity and confidentiality of your personal data, in accordance with the GDPR regarding the processing of personal data and the free movement of such data.
You have the right of access, right to rectification, right to erasure, and the right to object to the processing of your data, as per the GDPR.
To exercise your rights, please contact us using the contact information provided above so that we can comply with your request as soon as possible, within one month of the date on which we receive your request.
Please send an e-mail to firstname.lastname@example.org if you have any questions about how we process your personal data. You also has the right to lodge a complaint with the Portuguese supervisory authority or that of the country where you live.
We take all preventive measures to ensure that your personal data is protected.
The equipment used for storing and processing personal data is updated whenever possible.
Computer and device updates:
We have antivirus software installed on the equipment we use to store and process data to prevent theft or the destruction thereof.
Firewalls are installed on all devices used for storing or processing data to prevent unauthorised remote access by third parties.
Backups of personal data are created periodically on a device other than the one used for day-to-day work.
Backups are stored in a secure location, separate from the computer containing the original files, to ensure that data can be recovered in the event of loss or damage.
Where backups are created using electronic means, data is encrypted to ensure the confidentiality of personal data in the event of unauthorised access by third parties.
All electronic systems used for processing personal data are password protected.
Personal data breach
In the event of a data breach or unauthorised access, we will notify the Portuguese Data Protection Authority (CNPD) within 72 hours.
The notice will include all information necessary to clarify the circumstances under which such a breach or unauthorised access occurred and
will be submitted via the Portuguese Data Protection Authority's website https://www.cnpd.pt/index.asp
Note that by doing so some of the services on our website might not function properly.
We use Google Analytics, a third-party web analytics service, based on our legitimate interest (i.e., interest in the analysis, optimisation and economic performance of our online offering, in accordance with Article 6(1)(f) of the GDPR). Google Analytics stores standard internet log information and details of standard visitor patterns. We use Google Analytics to see how many visitors view the different parts of the site.
Information is processed anonymously, that is, without identifying visitors. We do not attempt or allow Google to search for the identity of visitors to our website. The information generated by Google cookies relating to our online products is transmitted and stored by Google on servers in the United States. Google is certified under the Data Processing Agreement for European websites and ensures compliance with European data protection laws.