Privacy Policy
Introduction
Welcome to automar.pt! Your privacy is important to us, and we are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and store your information, as well as your rights under the General Data Protection Regulation (GDPR) and other applicable laws.
Automar.pt is a car sale platform based in Portugal, designed to connect sellers and buyers of vehicles in a secure and efficient manner. By using our website, you agree to the practices described in this Privacy Policy.
If you have any questions or concerns about this policy or your personal data, please contact us at
Data We Collect
To provide and enhance our services, we collect the following categories of data:
User Information:
Email address
Phone number
Nickname
First and last name
User Settings:
Email preferences (e.g., subscription to notifications)
Language settings
User Account Type:
User account type and predefined plan for this type
Advertisement balance
Profile Image:
User-uploaded profile picture
Advertisements:
Car details (e.g., make, model, year)
Encrypted seller contact information (phone number)
Seller name
Advertisement photos
Email Data:
Transactional and informational emails sent to the user (retained for 30 days) Links between user accounts and
Contact Seller Messages:
Information submitted via advertisement contact forms, including:
Sender’s name, phone number, and email address (retained for 30 days)
Message content (retained for 30 days)
Favorites:
Links between user accounts and favorite advertisements
Notifications:
System notifications regarding advertisements (retained for 180 days)
Payment Data:
Transaction details, including price, payment method, purchased items, and user ID
We are not storing any sensitive payment information, such as credit card details.
User Requests:
Data portability requests (data deleted within 30 days after fulfillment)
Account deletion requests
We collect this data directly from you via account registration, advertisement creation, interaction with our website, or communication through provided forms. Additional details on the purpose of collection and retention periods are outlined below.
How We Collect Data
We collect data in the following ways:
Directly from Users:
When you register for an account.
When you post advertisements or update your profile.
When you submit messages or inquiries via contact forms.
When you interact with the platform, such as saving favorites or requesting services.
Through Transactions:
When you make payments or purchase plans.
We ensure that all data is collected transparently, and only the information necessary for the operation and improvement of our services is requested.
Why We Collect Data
We collect and process your data for the following purposes:
To provide our services, including:
Posting advertisements.
Facilitating communication between buyers and sellers.
Managing user accounts and profiles.
To improve and personalize the platform, such as:
Saving user preferences.
Sending system notifications and updates.
To fulfill legal and contractual obligations:
Processing payments securely.
Retaining transaction records as required by law.
To ensure platform security and prevent misuse:
Monitoring for suspicious activities.
Prevent fraud, misuse, or abuse of the platform.
Addressing user requests, such as data portability or deletion.
We do not use your data for marketing purposes unless explicitly consented to by you.
Data Retention
We retain your data for as long as necessary to fulfill the purposes outlined above or as required by law. Below are the retention periods for each data category:
User Information:
Retained until the user requests deletion.
User Settings:
Retained until the user requests deletion.
User Plan:
Retained while the user account is active.
Profile Image:
Retained only active image while the user account is active.
Advertisements:
Retained while the advertisement is active or inactive on the platform.
Email Notifications Data:
Retained for 30 days.
Contact seller Messages:
Retained for 30 days.
Favorites:
Retained while the associated advertisement is active.
Notifications:
Retained for 180 days.
Payment Data:
Retained without a time-to-live (TTL) limit to comply with legal financial obligations. This data can be stored even if the account is deleted, in order to comply with legal or regulatory requirements.
User Requests:
Retained without a time-to-live (TTL) limit to comply with legal and financial regulations. Data collected within Data Portability requests Retained for 30 days following fulfillment.
All data is securely deleted or anonymized after the retention period expires.
Data Security
We prioritize the protection of your data and implement robust security measures, including:
Encryption:
All data is encrypted at rest and in transit to prevent unauthorized access.
Access Controls:
Data access is restricted to authorized personnel only.
System Monitoring:
Regular monitoring of systems for vulnerabilities and unauthorized activity.
Data Minimization:
We collect and retain only the data necessary for our services.
In the event of a data breach, we will notify you as soon as possible, within the legally required timeframe, and provide guidance on how to protect your data.
While we strive to protect your personal data, no system can guarantee complete security. If you suspect a breach of your data, please contact us immediately.
Your Rights
Under GDPR and other applicable laws, you have the following rights:
Access:
Request a copy of the personal data we hold about you.
Correction:
Request correction of any inaccurate or incomplete data.
Deletion:
Request the deletion of your account and associated data ("Right to be Forgotten").
Portability:
Request a copy of your data in a structured, commonly used, and machine-readable format.
Restriction:
Request the restriction of processing under certain conditions.
Objection:
Object to the processing of your data for specific purposes.
To exercise any of these rights, please contact us at . We will respond to your request within the timeframes required by law.
You can also proceed with Data Access/Portability and Deletion Using Data Management section in Persnal Profile.
You also have the right to lodge a complaint with the Comissão Nacional de Proteção de Dados (CNPD), the supervisory authority in Portugal, if you believe your rights have been violated.
Sharing Data with Third Parties
We do not share your personal data with third parties except in the following situations:
Legal Requirements:
To comply with legal obligations, court orders, or government requests.
Service Providers:
To trusted service providers who assist in the operation of our platform (e.g., payment processors), bound by strict confidentiality agreements.
We ensure that any third-party data processing complies with GDPR and other applicable laws.
Cookies and Tracking
Automar.pt does not use cookies or any tracking technologies to collect personal data or monitor user activity.
However, if we implement cookies or tracking technologies in the future, we will update this section to inform you about their use and obtain your consent as required.
Changes to the Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or operational needs. When we make significant updates, we will notify you through one or more of the following methods:
By posting the updated policy on our website.
By sending a notification to your registered email address.
The "Last Updated" date at the top of this policy will indicate the effective date of the latest changes. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your data.
Continuing to use of the platform after updates constitutes acceptance of the new terms
If you have any questions or concerns about the changes, please contact us at .
Contact Us
If you have any questions or concerns about this Privacy Policy or how your personal data is handled, please contact us at: .