General Data Protection Regulation

The trust of our customers and the security of the data passing through the e-GDS platform has always been and will always be a reason for special attention at XYZT, SA.

XYZT, SA has always been concerned with personal data and its protection, understanding that in business these are often fundamental to its proper execution.

As part of the entry into force of the new regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 (RGPD), on 25 May 2018, we have made all the necessary changes to the e-GDS - Global Distribution Solutions platform so that, with the greatest confidence and security for all, the necessary records that are the basis of compliance are made.
By allowing the processing of the data you provide, the customer has access to a more personalised and appropriate set of services and information/communication for you and your company. Therefore, we can be more efficient throughout our service.
e-GDS collects from its customers the personal data strictly necessary for the proper performance of the service, either in person or remotely, either by filling out forms or by sending automated e-mails.
The personal data collected will be processed by e-GDS for the following purposes:
  • The establishment of commercial relationships between customers and e-GDS, for example: the opening of licences, the execution and implementation of software-as-a-service contracts.
  • The historical archiving of installed products/services or, important information that may be required by customers. For its management, e-GDS will use the digital archive platform (CRM) for the purpose of commercial contact or technical support.
  • Compliance with obligations related, in particular, to tax matters;
  • The data collected by all digital channels, as a result of their use by Customers, are also intended to improve navigation on these channels and adapt them to the device that is used (computer or mobile equipment), using cookies which, in any case, can be deactivated by Customers.
  • Data processing by e-GDS shall remain as long as necessary for the commercial relationship established with its Customers. At the end of the commercial relationship, personal data will be kept for the mandatory legal periods or until they are time-barred (by law, the rights and obligations arising therefrom). In any case, when the relationship ends with the Customers, the data will no longer be used for commercial treatment.
Information Rights: Information rights mean the right of the customer to be informed (among other things) about the purpose of the use of the data, about who can be communicated, about what their rights and conditions are and about the data that is mandatory.

The Right of Access: The Customer's right to access their own personal data provided to them without restriction, delay, or high costs, as well as to know all the available information on the origin of such data.

The Right of Rectification: is the Customers right to demand that their data be accurate, updated and may request rectification from the e-GDS.

The Right of Deletion (or "forgetting"): This is the right of Customers to demand the deletion of personal data in our records when they are not used for the correct purposes, without prejudice to the measures of deadlines provided by law.

The Right to Limitation of Processing: It means the right of customers to say in specific circumstances the limitation of the processing of data by e-GDS, in particular when they verify its accuracy if the processing was unlawful and the customer does not agree to the deletion of data by requesting a limitation of its use, or when e-GDS no longer needs the customer's personal data for processing, but such data should be required by the customer for the purposes of exercising a declaration or defense of the judicial right.

To exercise any of their rights, customers may contact compliance@e-gds.com.

Without prejudice to any other administrative or judicial need, all data subjects have the right to lodge a complaint with a supervisory authority, in particular in the Member State of their habitual residence, their place of work or the place where they have been alleged, if the data subject considers that the processing of personal data concerning him or her infringes the General Data Protection Regulation (Regulation (EU) 2016/679) and other applicable national law. In Portugal, the supervisory authority is the National Commission for Data Protection.
The Customer will no longer enjoy the benefits associated with data processing which may be penalising or even make the service unviable.
The customer can change the terms of their consent at any time in the restricted area or by contacting the e-GDS team.

XYZt, SA has appointed a data protection officer who can be contacted directly by letter to the DPO at Rua D. João IV 399 1º Sala 3 4000-302 Porto, or to the following email address: compliance@e-gds.com.

Any change to these terms will be published on this page.

Any alteration to these terms will be published on this site.