This Privacy Policy explains how personal data may be processed in the context of the T-PRISM website, including website browsing and the use of digital forms made available through the website.
Whenever this document refers to “T-PRISM”, it refers to the project, website, content and digital communications associated with the project Toilet Platform for Real-time Integrated Sensing, Monitoring and Analysis.
This policy applies to the processing of personal data under Regulation (EU) 2016/679, the General Data Protection Regulation, and other applicable data protection legislation.
1. Data controller
Exotictarget, Lda, a private limited company, NPIC 515206415, hereafter identified as ablute_, with headquarters in R. Salvato Feijó, Torre Active Centre, 4900-415 Viana do Castelo, is the entity responsible for processing personal data collected through this website.
2. Scope of this policy
Personal data is any information, of any nature and regardless of its support, including sound and image, relating to an identified or identifiable natural person. An identifiable person is considered to be a person who can be identified directly or indirectly, in particular by reference to an identifier, such as a name, an identification number, location data, electronic identifiers, or to one or more specific elements of the identity physical, physiological, genetic, mental, economic, cultural or social of that natural person.
This Privacy Policy applies to personal data processing carried out in connection with this website, including browsing and use of the website, completion of contact forms, institutional, scientific, technical or partnership information requests, digital interactions made available through the website, communications related to dissemination, communication or project follow-up activities. The T-PRISM website is currently primarily informational. It does not provide user accounts, login areas, restricted user areas, online stores or a public user database.
This policy applies to the processing of personal data carried out under Regulation (EU) 2016/679 (GDPR) and other applicable data protection legislation.
3. Personal data that may be collected
3.1 Data provided directly by the user
The contact form available on the website may collect data voluntarily provided by the user, such as name, organization, email address, subject, message content, and any other data voluntarily provided by the user.
3.2 Technical and browsing data
Even when the website is informational, the hosting provider, technical infrastructure provider or related service providers may collect technical data necessary for the operation, security and maintenance of the website, including: IP address, date and time of access, pages visited, browser type, operating system, device used, traffic source, and/or technical logs required for security, performance and maintenance.
This technical data may be processed to ensure the security, availability, integrity and proper functioning of the website.
3.3 Cookies and similar technologies
The website may use cookies that are strictly necessary for the site to function and, if measurement, performance or marketing tools are activated, such technologies should only be used in accordance with the configuration actually implemented and, when required by law, after obtaining the applicable consent.
4. Purposes of processing
Personal data may be processed for the following purposes: to respond to contact requests; to manage requests for commercial or institutional information; to improve the user experience of the website; to ensure security, fraud prevention and technical integrity; to comply with legal obligations; and to defend the company's rights in administrative, judicial or extrajudicial proceedings. Your personal data may be treated by ablute_ within the scope of its marketing strategies, for all types of communications during and after the end of the project.
The processing may be based, as appropriate, on the execution of pre-contractual due diligence, the legitimate interest of Exotictarget, Lda. in managing its website and activity, the consent of the data subject, or compliance with legal obligations to which the company is subject.
Exotictarget may have to share some of your personal data with the other co-promotors of the T-PRISM Project, as long as they respect an equivalent policy regarding the protection of personal data, and the competent authorities to which it is legally obliged to disclose information during legal proceedings or to detect technical and/or security problems, such as legal entities or competent Control Authorities.
5. Data retention
Without prejudice to legal, regulatory, or judicial determinations to the contrary, the collected personal data will be kept only for the for the period necessary for the purposes that justified its collection or subsequent processing.
6. Recipients and Subcontractors
Personal data may be processed by service providers that support ablute_ in the operation of the website, hosting, technical maintenance, email, recruitment, analysis, cloud or IT support, with these third parties acting as subcontractors whenever they process data on behalf of the company.
Data may also be disclosed to public authorities, courts, regulators, consultants or other third parties when necessary for compliance with legal obligations or for the declaration, exercise or defense of rights.
7. International Transfers
If any service provider is located outside the European Economic Area or processes data in a third country, ablute_ will seek to ensure the adoption of legally required appropriate safeguards, such as adequacy decisions, standard contractual clauses or other mechanisms permitted by applicable legislation.
8. Your rights as a data subject
Under the law, you may request access, rectification, erasure, limitation of processing, objection to processing and data portability, of the data collected. You may also withdraw your consent at any time, without compromising the legality of the processing carried out based on the consent previously given.
For contact purposes regarding privacy and data protection, users can use the email address info@ablute.pt. Requests concerning the exercise of data protection rights should identify the data subject and clearly describe the request.
9. Information Security
ablute_ adopts appropriate technical and organizational measures to protect personal data against destruction, loss, alteration, disclosure or unauthorized access, taking into account the nature of the data processed, the context of the processing and the associated risks. The website may operate with secure communication protocols, including HTTPS/TLS, without this completely eliminating all risks inherent in the use of the internet.
10. Links to third-party websites
The website may contain links to external pages. ablute_ is not responsible for the privacy practices, content, or security of these third-party websites. It is recommended to read their respective policies before sharing personal information in these environments.
11. Cookies and analytical measurement
If the website uses statistical analysis tools, such as Google Analytics or equivalents, their use should reflect the technical configuration actually implemented on the website. When the installation of cookies or identifiers that are not strictly necessary depends on consent, processing should only occur after a valid choice by the user in the preference management mechanism.
If the website uses only strictly necessary cookies, these may be used to enable essential functionalities, security, load balancing, remembering technical preferences, and basic session management.
12. Updates
This Privacy Policy may be updated at any time to reflect legal, technical, organizational, or operational changes. The most recent version will be available on the website.
Version 1.0, May 6th 2026