Gustavo Fernandes- Contemporary Art – Painting & Sculpture

Online Store

Privacy Policy

1. Introduction

This Privacy Policy describes how personal data is collected, used, and protected on the website gustavofernandes.pt, in accordance with the General Data Protection Regulation (GDPR) and other applicable legislation.

By using this website or providing your personal data, the user accepts the practices described in this Policy.

2. Data Controller

The data controller is:

Gustavo Fernandes
Elospark II, Estrada de São Marcos, 33 Atelier 4
2735-522 Agualva Cacém
Email: geral@gustavofernandes.pt
Phone: +351 966 225 162

3. Personal Data Collected

The following data may be collected:

a) Data provided by the user:

  • Name
  • Email
  • Phone number
  • Billing and/or delivery address
  • Tax Identification Number (when applicable)
  • Information entered in forms

b) Data collected automatically:

  • IP address
  • Browsing data
  • Device type
  • Cookies (see Cookie Policy)

4. Purpose of Data Processing

Personal data is processed for the following purposes:

  • Order processing
  • Payment management
  • Shipment of artworks
  • Responding to contact requests
  • Invoicing
  • Compliance with legal obligations
  • Sending commercial communications (when authorized)

The data will not be used for purposes incompatible with those described above.

5. Legal Basis

The processing of data is based on:

  • Performance of a contract (purchase and sale of artworks)
  • Compliance with legal obligations
  • Consent of the data subject (newsletter, communications)
  • Legitimate interest (website improvement and security)

6. Data Retention

Personal data will be retained:

  • For the period necessary to perform the contract
  • For the legally required period for tax and accounting purposes
  • Until consent is withdrawn (in the case of commercial communications)

After this period, the data will be deleted or anonymized.

7. Data Sharing

Data may be shared with:

  • Shipping companies (for delivery of artworks)
  • Payment platforms (Stripe, PayPal, etc.)
  • Web hosting services
  • Accounting services

Data sharing is limited to what is strictly necessary.

No sale or transfer of data to third parties for commercial purposes takes place.

8. Data Subject Rights

Under the GDPR, the user has the right to:

  • Access their data
  • Rectify inaccurate data
  • Erasure (“right to be forgotten”)
  • Restriction of processing
  • Object to processing
  • Data portability
  • Withdraw consent

To exercise any of these rights, a request must be sent to:

📩 geral@gustavofernandes.pt

The request will be answered within the maximum legal period of 30 days.

9. Security

Appropriate technical and organizational measures are implemented to protect personal data against:

  • Unauthorized access
  • Loss
  • Disclosure
  • Alteration

However, no data transmission over the internet is completely secure.

10. Cookies

The website uses cookies to improve the user experience.
For more information, please consult the Cookie Policy.

11. Policy Updates

This Privacy Policy may be updated periodically.

We recommend reviewing this page regularly.

12. Complaints

The data subject may lodge a complaint with:

National Data Protection Commission (CNPD)
www.cnpd.pt

More about this Artwork