Privacy and Personal Data Protection Policy

Personal Data Privacy Policy
The Lisbon school of Architecture IT center (CIFA) is responsible for the management, implementation and support of IT and communications services. This Privacy Policy explains how personal data is collected and processed in compliance with Regulation (EU) 2016/679 (GDPR) and applicable Portuguese law.

Data Privacy
We apply technical and organizational measures to ensure lawfulness, fairness, transparency, accuracy, security and restricted access to personal data.

Data Collection
We collect data provided directly by users, namely for account management and support of institutional information systems.

Purpose and Legal Basis
Data is processed for academic and administrative operations, legal obligations, institutional services, and when applicable, statistical analysis and communication activities with prior consent.

Data Retention
Data is retained only for the period required by academic, contractual or legal obligations and then anonymized or deleted when no longer necessary.

Data Sharing
CIFA may share data internally with authorized Faculty services whenever necessary for service delivery or legal compliance.

Data Subject Rights
You may request access, rectification, erasure, restriction, objection or portability by contacting rgpd@ulisboa.pt. You may also submit complaints to the Portuguese Data Protection Authority (CNPD).

Policy Changes
This policy may be updated at any time. Updates are published on this page and take immediate effect.