In accordance with Regulation (EU) 2016/679, of the European Parliament and of the Council, of April 27, 2016, regarding the protection of natural persons with regard to the processing of personal data and the free circulation of these data (General Data Protection Regulation - RGPD), Antonio Rafael Villasana Rodríguez, informs users of the application Harpia (hereinafter, the Application), about the processing of personal data, that they have voluntarily provided during the registration process, access and use of the service.

Antonio Rafael Villasana Rodríguez, with CIF/NIF nº: PT243818890 and address for notification purposes at: Incubadora de Empresas de Albergaria-a-Velha, R. Américo Martins Pereira, 3850-837 Albergaria-a-Velha, Aveiro Portugal (hereinafter, the Data Controller), is the entity responsible for the treatment of the data provided by the clients of the Application (hereinafter, the User/s).

To proceed with the registration, access and subsequent use of the Application, the User must provide -voluntarily-, data of personal character (essentially, identification and contact), which will be incorporated into automated media owned by the Data Controller. The collection, storage, modification, structuring and, where appropriate, elimination, of the data provided by the Users, will constitute treatment operations carried out by the Responsible, in order to guarantee the proper functioning of the Application, maintain the service provision and/or commercial relationship with the User, and for the management, administration, information, provision and improvement of the service. The personal data provided by the User -especially, the electronic mail or e-mail- may also be used to send bulletins (newsletters), as well as commercial communications of promotions and/or advertising of the Application, provided that the User has previously given his express consent for the reception of these electronic communications.

The treatment of the User's data is carried out with the following legal bases that legitimize it: • The request for information and/or the contracting of the services of the Application, whose terms and conditions are will make available to the User in any case, in advance, for express acceptance. • The free, specific, informed and unequivocal consent of the User, making this policy available to them of privacy, which you must accept by means of a statement or a clear affirmative action, such as marking a box provided for the purpose. In the event that the User does not provide the Data Controller with their data, or does so in an erroneous or incomplete manner, it will not be possible proceed to use the Application.

The personal data provided by the User will be kept in the systems and databases of the Responsible for the Processing, as long as the user continues to use the Application, and as long as he/she does not request its deletion. In order to purge the possible responsibilities derived from the treatment, the data will be kept for a period minimum of five years.

The data will not be communicated to any third party outside the Data Controller, except legal obligation or in any case, prior User's consent request. On the other hand, the Data Controller may give access or transmit the personal data provided by the User, to third parties service providers, with whom you have signed data processing commission agreements, and who only access to said information to provide a service in favor and on behalf of the Responsible.

The Data Controller, informs the User that, retains for a maximum period of 12 months the essential information to identify the origin of the hosted data and the time when the service began. The retention of this data does not affect the secrecy of communications and may only be used within the framework of a criminal investigation or to safeguard public safety, making themselves available to judges and/or courts or of the Ministry that requires them. The communication of data to the State Security Forces and Bodies will be done in accordance with the provisions of the regulations on the protection of personal data, and with the utmost respect for it.

The Treatment Manager adopts the necessary measures to guarantee the security, integrity and confidentiality of the data in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council, of April 27, 2016, regarding the protection of natural persons with regard to the processing of personal data and the free their circulation. Although the Responsible, makes backup copies of the content hosted on its servers, however, it is not responsible for the loss or accidental deletion of data by Users. Similarly, it does not guarantee the total replacement of the data deleted by the Users, since the aforementioned data could have been deleted and/or modified during the period of time that has elapsed since the last backup. The services provided or provided through the Application, except the specific backup services, do not include the replacement of the contents preserved in the backup copies made by the Data Controller, when this loss is attributable to the user; In this case, a rate will be determined according to the complexity and volume of the recovery, always subject to user acceptance. The replacement of deleted data is only included in the price of the service when the loss of content is due to causes attributable to the Controller.

The Data Controller, informs the User that they are assisted by the rights of access, rectification, limitation, deletion, opposition and portability, which you can exercise by request addressed to the email: harpia@avrsyscon.pt