Privacy Policy

Version: 1.0 | Last Update: December 2024

1. Introduction

TRYPLEEZ, S.A. (hereinafter “pleez”), with head offices at Calçada 31 de Janeiro, n.º 1, 7580-098 Alcácer do Sal, is a data-driven platform designed to optimize restaurant delivery management.

2. Purpose

• Align the Privacy Strategy: Ensure that pleez remains up-to-date with emerging laws.
• Ensure Awareness & Transparency: Provide clear explanations of how personal data is collected.
• Promote Data Protection Rights: Ensure that data subjects can exercise their rights easily.
• Continuous Improvement: Foster ongoing enhancements to security and data protection.
• Enhance Protection Mechanisms: Improve breach response and communication.
• Strengthen Trust: Reinforce transparency and accountability in privacy practices.

3. Scope of Application

This Policy applies exclusively to the processing of personal data carried out by pleez, including all subsidiaries, affiliates, and joint ventures.

4. Definitions

For the purpose of this Policy, personal data refers to any information relating to an identified or identifiable natural person.

5. Data Protection Principles

• Lawfulness, Fairness & Transparency: All processing activities will comply with legal requirements.
• Purpose Limitation: Data shall only be collected for specific and legitimate purposes.
• Data Minimization: Only necessary personal data will be collected and processed.
• Accuracy: pleez ensures that personal data is accurate and up-to-date.
• Storage Limitation: Data will not be kept longer than necessary.
• Integrity & Confidentiality: Adequate security measures will be in place to protect data.
• Accountability: pleez is responsible for compliance and risk assessment.

6. Data Protection Rights

pleez ensures that data subjects can exercise their rights under applicable data protection laws, including:

• Right of Access: Users can request access to their personal data.
• Right to Rectification: Users can request corrections to inaccurate or outdated data.
• Right to Erasure: Users may request deletion of their personal data under certain conditions.
• Right to Restriction of Processing: Users can limit the processing of their data in specific cases.
• Right to Data Portability: Users can request their data in a structured format.
• Right to Object: Users can object to processing for direct marketing or other reasons.
• Automated Decision-Making: Users can opt out of decisions made solely by automated processes.

7. Data Protection Obligations

pleez is committed to ensuring all personal data is processed in compliance with data protection laws. Key obligations include:

• Privacy by Design: Data protection is integrated into development procedures.
• Data Protection Impact Assessments: pleez evaluates high-risk processing activities.
• Record of Processing Activities: A comprehensive log of data processing activities is maintained.
• Processors & Third Parties: pleez ensures external processors comply with data protection laws.
• International Data Transfers: pleez follows EU regulations for cross-border data transfers.

8. Employee Privacy Notice

This notice details how pleez processes personal data of employees for HR management, payroll, benefits, and other work-related processes.

9. Technical and Organizational Measures

pleez applies necessary security measures, including:

• Antivirus software, firewalls, and data loss prevention systems.
• Restricted sharing of non-authenticated files.
• Secure password management and regular audits.
• Encrypted data transfers via secure networks.

10. Data Breach

pleez follows strict protocols for handling data breaches and notifies authorities within 72 hours when required.

11. Final Provisions

This Policy will be periodically reviewed and updated to remain compliant with legal changes. Questions about this policy can be directed to [email protected].

Download Full Privacy Policy (PDF)