top of page

Privacy Policy

This version has been in effect since 10/05/2025.

Protecting the privacy of our clients and users is a top priority for Q-LIRI S.A. (hereinafter referred to as “the Company” or “Q-Liri”) and is considered a fundamental responsibility that we uphold.

Accordingly, this Privacy Policy (hereinafter “Policy”) aims to provide all data subjects — particularly users of this Website (“Users”) — with comprehensive information about the use of the website www.q-liri.com (hereinafter “Website”), including who Q-Liri is, the purposes for which we may process personal data, how we handle it, who we may share it with, how long we keep it, and how you can contact us and exercise your rights.

Q-Liri processes and stores personal data in accordance with best practices and data protection standards, and has implemented the necessary technical and organizational measures to comply with the General Data Protection Regulation (EU Regulation 2016/679 – GDPR), a directly binding legal instrument that applies to all individuals and entities, within or outside the EU, that process personal data of EU citizens. This policy also follows the provisions of Portuguese Law No. 58/2019, which implements the GDPR in the national legal system.

This Privacy Policy is the responsibility of Q-Liri, S.A., headquartered at Rua Armando Maria Henriques Carvalho, 58, Leiria District — Municipality of Pedrógão Grande — Parish of Vila Facaia, 3270-215 Vila Facaia. Q-Liri is the Data Controller, as defined by the GDPR, determining the purpose and means of processing personal data collected via the Website.

As Data Controller, Q-Liri is responsible for ensuring compliance with the principles outlined in Articles 5 and 25 of the GDPR, namely privacy by design and privacy by default.

By accepting this Privacy Policy, the user is informed about how their personal data is processed and may choose, freely and voluntarily, to provide the data necessary for registration on the Website.

Please read this Privacy Policy carefully. It has been written clearly and simply to facilitate understanding and allow you to make an informed decision about sharing your personal data with Q-Liri and using the Website.

What categories of personal data do we process?

When using the Website, the following categories of personal data may be collected and processed:

  • Identification data

  • Contact data

  • Professional information

  • Other information entered into open fields

Data collection channels

Q-Liri collects personal data directly through user interactions with the Website, such as form submissions or contact requests addressed to the Q-Liri team.

What is meant by personal data processing?

Processing of personal data means any operation or set of operations, whether automated or not, performed on personal data or sets of personal data, including collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure, dissemination, comparison, interconnection, restriction, erasure or destruction.

Applicable Data Protection Principles

Q-Liri ensures that all personal data processed will be:

  • Processed lawfully, fairly, and transparently;

  • Collected for specified, explicit, and legitimate purposes and not further processed in a manner incompatible with those purposes;

  • Adequate, relevant, and limited to what is necessary in relation to the purposes;

  • Accurate and kept up to date, with inaccurate data erased or rectified without delay;

  • Stored in a way that allows identification of the data subject only as long as necessary for the purposes;

  • Processed securely, including protection against unauthorized or unlawful processing, loss, destruction or damage, using appropriate technical and organizational measures.

Purpose and Lawfulness of Data Processing

Personal data may be processed for the following purposes:

  • Responding to contact requests or partnership proposals

  • Sending communications about training, events, and new content (with consent)

  • Improving website navigation and functionality

  • Analyzing site performance and usability

  • Fulfilling legal and digital security obligations

The lawful basis for processing personal data depends on the nature of the data and the relationship between Q-Liri and the data subjects.

The Website serves as a public platform to present Q-Liri’s services, team, projects, and results, and allows any user to contact the team via a dedicated form.

Additionally, personal data may be used to contact users, respond to support or rights-related requests, process usage statistics, develop new services, or send communications that may be of interest.

Data may also be processed to comply with legal obligations or in the context of ongoing legal proceedings.

If Q-Liri needs to process your data for purposes other than those listed here, you will be informed in advance and the applicable lawful basis will be ensured.

Data Sharing

  • Q-Liri may transmit your data to third parties acting as independent controllers when necessary to comply with legal, contractual, or judicial obligations.

  • Q-Liri does not transfer personal data to third countries outside the European Economic Area (EEA), meaning no international transfers occur under GDPR.

Data Security

Q-Liri is committed to ensuring the security of personal data and has implemented appropriate technical and organizational measures to protect personal data processed via the Website. These include:

  • Data encryption

  • Logical protection measures

  • Data backups

  • Physical access control

Compliance with these measures is mandatory for all parties involved in data processing.

Data Subjects’ Rights

Under applicable law, data subjects have the right to:

  • Access

  • Rectification

  • Erasure (“right to be forgotten”)

  • Restriction

  • Portability

  • Objection

To exercise these rights, please contact us at dpo@q-liri.com or send a registered letter to:

  • Q-Liri S.A., Rua Armando Maria Henriques Carvalho, 58, 3270-215 Vila Facaia, Portugal.

  • We will respond in writing within one month, extendable to two months in cases of complexity or high volume of requests.

  • You may also lodge a complaint at any time with the Portuguese Data Protection Authority (CNPD) at Av. D. Carlos I, 134 – 1º, 1200-651 Lisbon, Portugal, phone: +351 213 928 400.

Personal Data Breaches

If a data breach occurs and is likely to pose a risk to users’ rights and freedoms, Q-Liri will notify the competent supervisory authority.

If the risk is considered high, affected users will also be informed within 72 hours of becoming aware of the incident.

Notification may not occur if:

  • Adequate protective measures (e.g., encryption) render the data unintelligible;

  • Measures have been taken that eliminate the risk to data subjects;

  • Communication would involve disproportionate effort, in which case a public announcement will be made.

Changes to This Policy

This Policy may be updated periodically, for example, due to changes in applicable law. In the case of significant changes, users will be informed by email or via notification on the Website.

Applicable Law and Jurisdiction

This Policy, and all matters related to the collection, processing, or transmission of personal data, are governed by the GDPR and Portuguese data protection law.

Any disputes regarding the interpretation or execution of this Policy shall be subject to the exclusive jurisdiction of the Judicial Courts of the District of Leiria, without prejudice to any mandatory legal provisions.

bottom of page