Our Privacy Commitment

1. Our Privacy Commitment

At, O Segredo do Mar – Têxteis e Vestuário Lda (hereinafter referred to as OSDM, ‘us’ or ‘our’), we understand that the use of your personal data requires your trust. The confidentiality and integrity of your personal data is one of our main concerns. We are subject to the highest privacy standards and will only use your personal data for clearly identified purposes.

All personal information collected will be used to managed your requests and/or the your services agreed with us.

When using the website: www.osdm.pt (hereinafter “website”), some personal data may be collected. In this case you will be invited to read and accept our Privacy Policy conditions. When needed your express consent will also be requested. A Cookies Policy is available at the same address.

Our Privacy Policy, as well as the collection, processing or transmission of Personal Data, are governed by GDPR – Regulation (EU) 2016/679 of the European Parliament and the Council of 27 April 2016 and by the applicable legislation and regulations in European Union and Portugal.


2. Data Protection Officer

OSDM has appointed a Data Protection Officer (DPO). If you have any questions or suggestions regarding our policies or the personal data processes implemented, please contact us by sending us an email to: info@osdm.pt 

Or by sending us a letter to:

A/C Data Protection Officer

Rua de Santa Luzia 161 
4250-417 Porto | Portugal


3. Collection and Purposes of Processing of Personal Data

Your personal data will be collected and processed by OSDM in the following situations:

  • Website
    Access to and navigation on the website does not necessarily imply the provision of personal data. However, there are certain website features that imply the provision of personal data, for example (i) if you wish to submit a question or suggestions using the contacts tab; (ii) if you send us your CV (Curriculum Vitae); (iii) if you propose a new Project on the projects tab; (iv) or the subscription of the newsletter or marketing campaigns. If you wish to contact OSDM through the website, we will collect a set of personal data, which are processed for the following situations:


  • In addition to the website, personal data may be collected and processed by OSDM in the following situations:


OSDM assumes that the data collected is accurate and correct and that it was shared and authorized by the respective data holder. If you are under 16 years of age we will need the permission of your parents or guardians to collect your personal data.


4. Lawfulness for the processing of personal data

All the information collected is recorded, used and protected in accordance with current EU Data Protection Legislation. Under which, the processing of personal data must be justified by at least one legal basis. Your data will be processed on a legal basis under the terms of the General Data Protection Regulation (GDPR) and for the following purposes:

  • Contractual obligations within our B2B clients – Art. 6º(1) al. b) – GDPR

  • Respond to information requests and questions, applications for open positions, analyse Project requests, and to send you our Newsletter – Art. 6º(1) al. b) – GDPR

Whenever you use the “Contacts” tab on our website, and/or subscribe our Newsletter, the processing of your data takes place on the basis of your consent – Art 6º (1) al. a) – GDPR.

  • Compliance with legal obligations – OSDM is subject to a multitude of legal obligations. We may need to transmit personal data to governmental and/or supervisory authorities for compliance with a legal obligation – Artº6 (1) al. c) – GDPR.

  • Promotional communications, campaigns and vouchers are based on consent – Art. 6º, (1) al. a) – GDPR.

We may request your consent for additional use of your data, in accordance with the purpose described in the respective Declaration of Consent.

You may withdraw your consent at any time (in accordance with point 5. Data Holder Rights).

We will collect your personal data to the extent necessary to comply with the described above. In addition, we will process your personal data to the extent necessary to manage legal and/or judicial actions.

5. Data Holder Rights

As a data holder you have the right to request access to your personal data; to ask for your personal data to be deleted; to request to rectify the personal data we hold; to request to cancel or limit the processing of your personal data, you will also have the right to object to the processing of your data, (requests subject to legally established conditions verification):

  • you may exercise your rights free of charge by sending us an email to: info@osdm.pt
  • by sending the request by post to:
    Data Protection Officer
    Rua de Santa Luzia 161
    4250-417 Porto | Portugal


Your request will be treated with special care so that we can ensure compliance with your rights. You may be asked to confirm your identity in order to ensure, you are in fact the data holder.

You should be aware that in certain cases (e.g. due to legal requirements, resolving disputes, preventing fraud, for our legitimate interests and enforcing our agreements) your request may not be satisfied immediately. In any case, you will be informed of the measures taken to this end within one month from the moment the request is made.

  • Complaints

If you believe the processing of your personal data violates the legal regime in force, you also have the right to file a complaint to a data protection regulatory authority:
List of All Supervisory Authorities in Europe


6. Cookies Policy

Cookies may be used on this website to improve performance and browsing experience, speed and website efficiency and to eliminate the need to repeatedly enter the same information. For additional details please check the Cookies Policy.

You can delete cookies at any time or automatically blocking it from your browser. However, disabling cookies may prevent some services from working properly, affecting partially or totally the website experience.

For more information about cookies, including setting your browser to reject them, please visit www.allaboutcookies.org.


7. Data Sharing with third parties

To achieve the purposes mentioned in this Privacy Policy, OSDM may share personal data to the following third party categories:

8. Transfer of Personal Data to third countries

For reasons of service efficiency, some of the OSDM providers may be located in territories outside the European Economic Area (EEA). In such cases, we guarantee that your personal data will be treated in accordance with the appropriate security measures, in compliance with the legal requirements applicable in the European Union, such as by entering into Standard Contractual Clauses approved by the European Commission.


9. Retention Period of Personal Data

Your Personal Data will be retained for the time period needed to comply the purposes for which it was collected and/or for the necessary period to comply with our obligations under European laws and/or other laws and regulations to which OSDM has to respond.

If the user has given his consent to the processing of his personal data for marketing purposes, such data will be kept until the consent is revoked.


10. How we keep your personal data secure

We use a variety of security measures, including encryption and authentication tools, to help protect and maintain the security, integrity and availability of your personal data.
Although the transmission of data via the internet or website cannot guarantee complete security against intrusion, we and our service providers have made the best efforts to implement and maintain physical, electronic and procedural security measures designed to protect your personal data in accordance with the applicable data protection requirements. Among others, we have implemented the following:

  • All data transmitted on the website uses the SSL (Secure Socket Layer) standard. SSL is a proven secure standard. You can confirm that the connection is secure by using the https attachment: // (…) in the browser address and/or the browser lock icon;
  • Restricted personal access to your personal data based on the criterion of granularity and only within the scope of the purposes communicated;
  • Transfer of data collected only in encrypted form;
  • Storage of highly sensitive data only in encrypted form;
  • Protection of IT systems through firewalls in order to prevent unauthorized access to your personal data;
  • Permanent monitoring of access to information technology systems in order to prevent, detect and prevent the misuse of your personal data.


11. Privacy Policy Update

We may change this Privacy Policy from time to time to reflect changes in legal and/or business needs. We recommend that you review this Policy for possible changes each time you visit our website.


Date of last update: June 2023