Skip to Content

Privacy

Privacy Policy

Last updated: June 2026

ITConect is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose and safeguard your personal data when you visit our website or engage our services, in accordance with the EU General Data Protection Regulation (GDPR) and Portuguese data protection law.

1. Data Controller

The data controller responsible for your personal data is Itconect (trading as ITConect), based in Funchal, Madeira, Portugal. For any privacy matter you can contact us at privacy@itconect.com.

2. Information We Collect

Information You Provide

We collect information you voluntarily provide when you:

  • Fill out our contact form or request a consultation
  • Subscribe to our communications
  • Engage us for professional services
  • Communicate with us via email or phone

This may include your name, email address, phone number, company name, job title and details about your business needs.

Information Collected Automatically

When you visit our website, we may automatically collect your IP address and browser type, the pages you visit and time spent on them, your referring source, and device and operating system information.

3. Legal Bases for Processing

Under the GDPR, we process your personal data on one or more of the following legal bases:

  • Consent (Art. 6(1)(a)) — for example, when you subscribe to our communications. You may withdraw consent at any time.
  • Performance of a contract (Art. 6(1)(b)) — to respond to your requests and deliver the services you engage us for.
  • Legitimate interests (Art. 6(1)(f)) — to operate, secure and improve our website and to contact businesses about relevant services, balanced against your rights.
  • Legal obligation (Art. 6(1)(c)) — to comply with accounting, tax and other legal requirements.

4. How We Use Your Information

  • Respond to your inquiries and provide requested services
  • Send project proposals, contracts and invoices
  • Deliver and improve our professional services
  • Send relevant communications about our services (with your consent)
  • Analyse website usage to improve user experience
  • Comply with legal obligations

5. Information Sharing and Processors

We do not sell, trade or rent your personal data. We may share it only in the following circumstances:

  • Service Providers (Processors): with trusted third parties who assist our operations (such as hosting, email and CRM), under data processing agreements and strict confidentiality.
  • Legal Requirements: when required by law or to protect our rights.
  • Business Transfers: in connection with a merger, acquisition or sale of assets.

Where a processor is located outside the European Economic Area, we ensure appropriate safeguards are in place, such as the European Commission's Standard Contractual Clauses.

6. Client Data and Data Processing Agreement

When you engage us for services, we may process personal data held within your business systems on your behalf. In that role we act as your processor and you remain the controller. A Data Processing Agreement (DPA) is available on request and governs that relationship. We maintain encrypted connections, access controls limited to authorised personnel, confidentiality agreements with all team members and secure disposal of data after project completion.

7. Cookies and Tracking

Our website uses cookies to remember your preferences, understand how visitors use our site, and improve functionality. You can control cookie settings through your browser. Disabling cookies may affect some website functionality.

8. Data Retention

We retain personal data only as long as necessary for the purposes set out in this policy or as required by law (for example, invoicing and accounting records are retained for the statutory period). Client project data is retained for the duration of the engagement plus any legally required retention period, after which it is securely deleted.

9. Your Rights

Under the GDPR you have the right to:

  • Access the personal data we hold about you
  • Request correction of inaccurate data (rectification)
  • Request deletion of your data (erasure)
  • Request restriction of processing
  • Data portability — receive your data in a structured, machine-readable format
  • Object to processing based on legitimate interests or direct marketing
  • Withdraw consent at any time, where processing is based on consent

To exercise these rights, contact us at privacy@itconect.com. We will respond within the timeframe required by the GDPR.

10. Right to Lodge a Complaint

If you believe we have not handled your personal data properly, you have the right to lodge a complaint with the Portuguese supervisory authority, the Comissão Nacional de Proteção de Dados (CNPD) — www.cnpd.pt — or with the data protection authority in your country of residence.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of those external sites and encourage you to review their privacy policies.

12. Changes to This Policy

We may update this Privacy Policy periodically. Changes will be posted on this page with an updated revision date.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us:

Email: privacy@itconect.com
Website: itconect.com