Privacy Policy
1. ABOUT US
|
ENTITY |
ASSOCIAÇÃO NACIONAL DAS FARMÁCIAS (hereinafter, ANF) |
|
HEADQUARTERS |
Travessa de Santa Catarina, 1, 1200-403 Lisboa |
|
NIPC (Tax ID) |
500 885 494 |
|
DPO |
ANF has appointed a Data Protection Officer who can be contacted via email at dpo@anf.pt |
2. WHAT IS THIS POLICY ABOUT?
2.1. This Privacy Policy explains how we collect and process the personal data that are necessary to make the Website and the services indicated on the Website available.
3. WHAT ARE PERSONAL DATA?
3.1. Personal data are all information (regardless of the nature or format) relating to a person and that identifies that person, as well as all information that makes a person identifiable.
3.2. A person is considered identifiable if they can be identified, directly or indirectly, in particular by reference to an identification number or to other specific elements of their physical, physiological, mental, economic, cultural, or social identity.
3.3. Examples of personal data we collect include name and email.
4. HOW WILL YOUR PERSONAL DATA BE COLLECTED?
4.1. Your personal data will be collected through:
(a) Forms that you complete on the Website, namely contact registration forms, newsletter subscription requests, and/or event or initiative registration forms;
(b) Your activity on the Website, for example, newsletter subscription, language selection;
(c) Communication and interaction between the Website and your device, namely through cookies, pixel tags, or other similar technologies installed on your device;
(d) Messages you send to us through the contact details provided or through other means.
4.2. ANF undertakes to process your data lawfully and legitimately.
4.3. ANF will not sell, rent, or share your personal data with third parties, except in the cases clearly identified in this Policy.
5. HOW WILL YOUR PERSONAL DATA BE USED?
5.1. ANF will use personal data for the following purposes:
a. To respond to contact and information requests;
b. To send communications with information about ANF's activity and/or companies owned by or related to ANF;
c.To manage and improve the Website; and
d. To ensure security, prevent fraud, or prevent misuse of the Website.
6. WHO IS RESPONSIBLE FOR USING YOUR DATA AND WHY?
6.1. ANF is the entity responsible for the processing of your personal data.
6.2. The legal basis for data processing may differ depending on the purpose and context of the processing.
6.3. Details are as follows:
| PURPOSE | LEGAL BASIS |
| Responding to contact and information requests | Legitimate interest of ANF in responding to contact and information requests placed through the communication channels provided on the Website. |
| PURPOSE | LEGAL BASIS |
| Sending communications with information about ANF's activity and/or companies owned by or related to ANF | Consent when you subscribe to the newsletter available on the Website |
| PURPOSE | LEGAL BASIS |
| Ensuring security, preventing fraud, or preventing misuse of the Website | Legitimate interest of ANF in ensuring that the WEBSITE is used securely by its users and that no situations of fraud or illicit activities occur |
7. WHAT PERSONAL DATA DO WE COLLECT?
7.1. To provide the Website and your selected services, the following personal data will be collected:
|
PURPOSE |
DATA |
|
Responding to contact and information requests |
Identification data (name), Contact data (email), Data included in the request. |
|
Sending communications about ANF's activity and/or related companies |
Identification data (name), Contact data (email). |
|
Managing and improving the Website |
Cookie data (statistical information on clicks and access). |
|
Ensuring security and preventing fraud or misuse of the Website |
System usage data (IP identifier, approximate access location, date/time of access, activity logs), Cookie data (statistical info). |
8. WHAT ARE COOKIES, TRACKING PIXELS AND OTHER SIMILAR TECHNOLOGIES?
8.1. Cookies are small files that collect information and are stored on your device through your browser, allowing certain functionalities of the Website to operate and remaining stored for different periods of time.
8.2. Cookies may be strictly necessary for the functioning of the Website, for example, to:
(a) Identify and authenticate you; or
(b) Remember your usual preferences; or
(c) Allow you to complete tasks without having to re‑enter information (for example, when you change pages or return to a page, such as with form data, shopping carts, etc.); or
(d) Carry out, enable, facilitate, or support communications from or through the Website; or
(e) Provide certain functionalities you have requested; or
(f) Ensure the security of information systems and/or prevent fraud.
8.3. Strictly necessary cookies will be stored on your device and do not require consent.
8.4. Cookies may also be used to collect information, for example:
(a) Advertising (or tracking) cookies will be used to tailor advertising and marketing based on your behaviour and profile, adjusting the ads shown to you;
(b) Third‑party cookies will be used by Third Parties to collect your browsing information across different websites, creating profiles;
(c) Performance (or analytics) cookies will be used to measure and obtain statistics on Website usage, such as the number of unique visitors, detection of search engine keywords, identification of navigation aspects such as visit duration, most‑visited pages, or most‑accessed content.
8.5. Advertising (or tracking) cookies, third‑party cookies, and performance (or analytics) cookies will be stored on your device after your acceptance and prior consent, which may be withdrawn at any time through specific tools and/or your browser.
8.6. These tools include an external connection to the tool’s server and allow your behaviour to be tracked in order to obtain data for online marketing, analytics, and also for remarketing.
8.7. When you visit the destination website, this action is recorded and noted in the log files of the tool’s server, and may include various information about you, such as your operating system, session duration, or IP address.
8.8. These tools will be stored after your acceptance and prior consent, and this consent may be withdrawn at any time through specific tools and/or your browser.
9. HOW WE USE COOKIES AND SIMILAR TECHNOLOGIES
9.1. The following table describes how these tools are used on the Website:
STRICTLY NECESSARY
|
Name |
Origin |
Duration |
Purpose |
|
.AspNetCore.Antiforgery... |
Website |
Session |
CSRF protection (form security) |
|
TS01d0c967 |
Website |
Session |
Security, load balancing, and attack protection |
ADVERTISING / THIRD-PARTY / PERFORMANCE
|
Name |
Origin |
Duration |
Purpose |
|
_ga |
Google Analytics |
~400 days |
Distinguish users and measure stats |
|
ga* |
Google Analytics |
~400 days |
Maintain session state and interactions |
|
_pk_id.* |
Matomo |
~390 days |
Identify unique visitors |
|
_pk_ref.* |
Matomo |
~180 days |
Store visit source (referrer) |
|
_pk_ses.* |
Matomo |
30 min |
Store temporary session data |
|
eg_params |
E-Goi |
30 days |
Track marketing campaigns and click sources |
10. HOW DO WE PROTECT YOUR PERSONAL DATA?
10.1. To keep your personal data secure, we have adopted various technical and organizational security measures to ensure the confidentiality, integrity, and availability of your personal data.
10.2. Some of the measures we have implemented include:
(a) Access control to the systems where your data are processed;
(b) Employees only access data when they have a need-to-know;
(c) Employees have different access permissions depending on their role;
(d) Employees are subject to confidentiality obligations;
(e) Use of strong credentials and authentication mechanisms to access these systems;
(f) Storage of your data on servers maintained in controlled environments with access control;
(g) Browsing on the Website protected by encryption, such as Transport Layer Security (TLS, a security protocol that protects telecommunications over the internet).
10.3. If a security incident occurs that leads to a breach of your personal data, ANF will implement the necessary corrective measures to prevent it from recurring and will comply with its legal obligations regarding notifications and communications to be made.
10.4. Although we take the precautions we consider appropriate to protect your personal data, it is important to understand that no security system is completely impenetrable.
10.5. We remind you to take certain precautions when browsing and using the Website, namely:
(i) not sharing your access credentials to the Website with other people,
(ii) ending your session whenever you close the browser,
(iii) avoiding the use of public or shared networks.
11. HOW LONG DO WE KEEP YOUR PERSONAL DATA?
11.1. Your personal data will be kept for the period necessary for the purposes for which they are intended, as listed in this Privacy Policy. Thus:
|
PURPOSE |
PERIOD |
|
Responding to contact and information requests |
Up to six (6) months after your request has been completed |
|
Sending communications with information about ANF’s activity and/or companies owned by or related to ANF |
From the moment you give your consent until you withdraw that consent |
|
Managing and improving the Website |
For the duration of the cookies used or until you withdraw consent |
|
Ensuring security, preventing fraud, or misuse of the Website |
For five (5) years |
11.2. The periods indicated do not prevent the retention of personal data beyond those timeframes in the following situations:
(a) while the limitation period for any rights related to that purpose has not yet expired;
(b) for the purposes of the establishment, exercise, or defense of ANF’s rights in legal proceedings;
(c) while a final judgment has not yet been issued in any legal decision related to that purpose;
(d) for compliance with new legal obligations to which ANF becomes subject;
(e) for compliance with orders or acts issued by authorities within the scope of judicial proceedings or within their powers and competences, provided that such proceedings are duly identified and justified.
11.3. After the end of the retention period, all personal data collected will be deleted or anonymized.
12. WHAT ARE YOUR RIGHTS?
12.1. Within the limits of the law, you may request the following rights:
- ACCESS
To confirm whether your personal data are being processed and, if so, the right to access those personal data. - RECTIFICATION
To rectify inaccurate personal data and complete incomplete personal data. - ERASURE
To erase your personal data in accordance with the law. - RESTRICTION
To restrict processing if one of the situations described in the law applies. - OBJECTION
To object to the processing of your personal data. - PORTABILITY
To receive the personal data concerning you that you have provided, in a structured, commonly used, and machine-readable format. - WITHDRAW CONSENT
To withdraw consent previously given for certain processing activities. - COMPLAINT TO THE SUPERVISORY AUTHORITY
If you believe that the processing of your data violates data protection law, you have the right to lodge a complaint with the National Data Protection Commission (Comissão Nacional de Proteção de Dados).
13. HOW TO EXERCISE YOUR RIGHTS?
13.1. You may request the rights of access, rectification, erasure, restriction, objection, and portability by contacting Infosaúde at the email dpo@anf.pt.
13.2. You may withdraw your consent for:
(a) Receiving communications with information about ANF’s activity and/or companies owned by or related to ANF: by clicking “Remove”/“Unsubscribe” in each communication.
(b) Managing and improving the Website: by opening the Cookie Management Tool, which you can access through the link located in the footer of the Website and/or the floating button, and adjusting your preferences; or through your browser settings, by disabling cookies and other tools; or by using a blocking tool that can be added as a browser extension.
13.3. You may lodge a complaint with the National Data Protection Commission (CNPD) using the forms or contact details available at www.cnpd.pt.
14. WHEN ARE PERSONAL DATA DISCLOSED TO THIRD PARTIES?
14.1. ANF may use service providers (subcontractors) for (i) system support and maintenance, and (ii) support for ANF’s activities.
14.2. ANF ensures that these service providers implement appropriate security measures to protect your personal data and that they are only provided with the personal data necessary for the execution of the contracted services.
14.3. ANF may also disclose your personal data to third parties for processing for their own purposes, namely:
(a) Companies owned by or related to ANF, with whom ANF shares services or has partnerships for carrying out events and/or services;
(b) Other partners (with your prior authorization);
(c) Legal representatives and courts, for the purposes of representation, assertion, exercise, or defense of Infosaúde’s rights in legal proceedings;
(d) Judicial authorities or competent criminal police bodies, within the scope of a duly identified legal proceeding, in compliance with a substantiated order from the competent judicial authority.
15. THIRD‑PARTY WEBSITES
15.1. The Website may contain links to other websites, which may collect and process your personal data for their own purposes.
15.2. The processing carried out by those websites is the exclusive responsibility of the owners of those websites. ANF has no responsibility for their policies and/or practices, and therefore we recommend reading their privacy policies.
16. DATA TRANSFERS OUTSIDE THE EUROPEAN UNION
16.1. By default, this Website does not transfer personal data outside the European Union.
16.2. If personal data are transferred to countries outside the European Union, the legal requirements will be complied with regarding (i) the adequacy of the destination country, or (ii) the existence of appropriate safeguards to carry out such transfers, namely standard contractual clauses approved by the European Commission and, if necessary, the implementation of supplementary measures to ensure adequate protection of your personal data.
17. MINORS’ DATA
17.1. The Website is not directed at children under thirteen (13) years of age, and therefore we ask that such minors do not provide us with personal data.
18. SPECIAL CATEGORIES OF PERSONAL DATA
18.1. ANF requests that you do not send or disclose any information related to (i) your physical or mental health, including information about the provision of healthcare services or information that reveals your health status; (ii) your racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data, or data regarding your sexual life or sexual orientation.
18.2. If you nevertheless send or disclose such categories of personal data to us, they will be immediately deleted.
19. CHANGES TO THE PRIVACY POLICY
19.1. ANF reserves the right to adjust or amend this Privacy Policy at any time, and such changes will be made public.
20. CONTACTS
20.1. If you have any doubt or question related to this Privacy Policy, please contact us at the email dpo@anf.pt.
21. VERSION
21.1. LISBON (PORTUGAL), 24 February 2026