Skip to content Skip to footer

Privacy Policy

1. Our commitment

Compliance with personal data protection legislation and respect for data holders rights regarding their personal data is a priority for us.

2. The data controller and the data protection officer

The Sunvilog, Logistics and Transits, Ltd. based in Travessa das Lages, 174, 4410-308 Canelas – V.N. Gaia Portugal, with the unique registration number and legal person number 504473255 (hereinafter referred to as Sunvilog, Lda), collects and processes personal data of its clients, which are mostly legal persons, being the provision of services to natural persons residual.

Sunvilog, Lda is not legally required to appoint a Data Protection Officer.

3. Personal data, personal data holders and categories of personal data

Pursuant to the Regulation, personal data means information relating to an identified or identifiable natural person (‘data holder’); A natural person  can be identified, directly or indirectly, in particular by reference to an identifier, such as a name, identification number, location data, electronic identifiers or one or more specific elements of the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.


Examples of personal data collected:

Identification data                          Examples

Identification and contacts            Name, Tax ID, Address, Email Address,                                   

                                                          Phone number   

Financial data                                 Billing address; bank account number; credit

                                                          or debit card numbers; name and 

                                                          information of account or bank card holders

Service                                              Products and / or services purchased

Electronic Identification Data       Cookies or similar technologies and activity



This personal data are provided to us directly by the data holder or through a third part, as a rule when performing contracts relating to the carriage of goods.


4. Rationale, Purposes and Duration of Processing of Personal Data

Data provided by clients are processed for the following purposes: provision of services contracted in the course of our business; customer management, accounting, tax and administrative management; litigation management; network and system management; control of information security and physical security; compliance with legal obligations and marketing and sales.


5. What is the term of retention of personal data?

Personal data of customers are retained for the period necessary to provide services, billing and compliance with applicable legal obligations. To this extent, there are different retention periods, depending on the purpose for which the data is intended, observing Sunvilog, Lda, in any case, the principles of necessity and minimization of retention time.


6. Rights of the personal data holder

The data holder is entitled to access, rectification, cancellation and opposition:

a) The right of access is whether your data are being processed, the purposes, the recipients (in particular, in the case of transfer to third countries), the intended storage period, the existence of the right to request to the controller the rectification, deletion or limitation of the processing of personal data with regard to the data subject, or the right to oppose such processing and who may make a complaint to a supervisory authority.

b) The right of rectification means the holder has the right to obtain, without unreasonable delay, the rectification of inaccurate personal data.  Taking into account the purposes of processing, the data holder  is entitled to have his or her incomplete personal data completed, including by an additional declaration.

c) The right of cancellation (also known as ‘deletion’ or ‘forgetting’) means that the holder has, under certain circumstances provided in the RGPD, the right to obtain from the controller the deletion of his personal data without undue delay, and the controler has the obligation to delete personal data without undue delay.

d) The right of objection means that the data holder has the right to object at any time, on grounds relating to his particular situation, to the processing of his personal data based on legitimate interests or a public interest. The controller shall cease the processing of personal data, unless he gives compelling and legitimate reasons for such processing which outweigh the data holders interests, rights and freedoms, or for the purpose of declaring, exercising or defending a right in a judicial process.

The data holder has the right to withdraw his consent at any time. The withdrawal of consent does not compromise the legality of the treatment based on the consent previously given.

The data holder has the right not to be subject to any decision made exclusively on the basis of automated processing, including profiling.

The data holder has the right to receive  his personal data  that he has provided to a controller in a structured, for everyday use and automatic reading and the right to transmit such data to another controller, the person to whom the personal data have been provided cannot prevent it if: (a) processing is based on the consent given pursuant to Article 6 (1) (a) or Article 9, 2 (a) or in a contract referred to in Article 6 (1) (b); and (b) the treatment is performed by automated means. In exercising its right to data portability, the data holder has the right to have personal data transmitted directly between the controllers, wherever this is technically possible.

7. Violation of Personal Data

In the event of a breach of personal data that may pose a high risk to the rights and freedoms of the data holder, the data holder has the right to be informed of the breach of personal data.

8. Complaint to a supervisory authority

The data holder has the right to complain to the national supervisory authority which in Portugal is the National Data Protection Commission (CNPD). CNPD’s contacts are as follows:


· Address: Rua de São Bento 148 – 3rd, 1200-821 Lisbon


· Phone (+351) 213928400


· Fax: (+351) 213976832


· Privacy Line: (+351) 213930039


· Email:



9. Exercise rights under the RGPD

To exercise any of your foregoing rights, you may send an email to the following address:, or by communication by any other means, addressed to the above data protection officer.


We undertake to respond to your request within 30 days. If it is necessary to extend this deadline, we will inform the data holder in writing.



Information is provided and rights are exercised free of charge. However, if requests by a data holder are manifestly unfounded or excessive, in particular because of their repetitive nature, the controller may require a reasonable fee to be paid taking into account the administrative costs of providing the information or communication, or taking the requested measures; or refuse to comply with the request.



10. How we protect your data – technical and organizational measures

Given the nature, scope, context and purposes of data processing, as well as the risks to the individuals rights and freedoms, Sunvilog, Lda has implemented and maintains the appropriate technical and organizational measures to ensure and be able to demonstrate that the treatment is carried out in accordance with this Regulation. Thus, to protect personal data subject to processing, Sunvilog, Lda, has implemented and the following measures:


 a) the use of antivirus, firewalls and user validation;


(b) authentication based access control and tracking system;


c) physical security measures, such as control of access to facilities, lockable lockers;


d) Pseudonymization and data encryption;



11. Cookie Policy

Cookies are a used tool by web servers to store and retrieve information about their visitors. They consist in a unique text file identifier that some servers refer to your device to record information about what they have been doing on their pages, thus improving the quality and security of the web page.  Which may vary from session time to a specified future date from which they cease to be operational. Cookies collect generic information, such as how users come to and use the sites or the area of ​​the country / countries through which they access the site, etc. Cookies retain only information related to your preferences. At any time you may allow, block or delete cookies on your device by configuring your Internet browser options.