Privacy Policy

Last Updated: July 21, 2025

1. Who We Are

This Privacy Policy applies to the website and services offered by Digital Lisbon, a registered brand of Reflexo Magnético Unipessoal Lda (NIF: 517731258), located in Lisbon, Portugal. We provide digital services including website design, photography, videography, digital marketing, and specialized software platforms ("Services").

2. Information We Collect

We collect information to provide and improve our services. This data falls into two categories:

2.1. Information You Provide Directly

• Contact Information: When you fill out our contact form, email us, or call us, we collect your name, email address, phone number, and any other information you provide in your message.
• Client Information: When you engage our Services, we collect necessary information to establish a contract, manage our projects, and process payments.
• Client Project Data: As part of our Services (e.g., web design, marketing), we may be given access to data by you, our client. We process this data solely on your behalf and as instructed by you.

2.2. Information We Collect Automatically

• Usage and Analytics Data: When you visit our website at digitallisbon.pt, we automatically collect information about your device and your interaction with our site. This includes your IP address, browser type, operating system, referral URLs, pages viewed, and dates/times of visits. We use tools like Google Analytics for this purpose.

3. Service-Specific Data Processing: Restaurant Platform

This section applies specifically to clients who use our restaurant management platform and its Google Business Profile integration.

3.1. Information We Collect for the Service

• Account Information: Your name, email address, phone number, and role (e.g., 'restaurant-owner', 'restaurant-staff').
• Restaurant Data: All information you provide about your restaurant, including its name, address, menu items, prices, table layouts, and opening hours.

3.2. Google Business Profile Integration

Our Service allows you to connect your restaurant's Google Business Profile to our platform. This connection requires your explicit consent via Google's OAuth consent screen. By using this feature, you authorize us to access and use information from your Google Account as described below.

• What data we access from Google:
  • Your basic Google profile information (name, email) to identify and link your account.
  • A list of the Google Business Profiles you own or manage, so you can select the correct one to connect.
• How we use this data:
  • The primary purpose is to allow you to synchronize your restaurant's information. You can use our platform to update your opening hours, menu, and manage reservations, then push these updates directly to your Google Business Profile. This helps you keep your public information accurate from a single place.
  • We store a secure authentication token provided by Google to maintain this connection.
• How we share this data:
  • We do not share your Google account information or business data with any third parties, other than sending updates back to your own Google Business Profile at your explicit request.

Our application's use and transfer of information received from Google APIs will adhere to the Google API Services User Data Policy, including the Limited Use requirements.

4. How We Use Your Information (General)

We use the data we collect for the following purposes:

• To Provide Our Services: To deliver the website design, photography, or other digital services you have contracted with us.
• To Communicate With You: To respond to your inquiries, send you project updates, provide customer support, and send invoices.
• To Improve Our Website: To analyze how users interact with our site so we can improve its functionality and user experience.
• For Marketing: To send you information about our services, promotions, or news, but only where we have your explicit consent to do so. You can opt-out at any time.
• To Comply with Legal Obligations: To meet our legal, tax, and accounting responsibilities.

5. Cookies and Tracking Technologies

Our website uses cookies to enhance your experience. Cookies are small text files stored on your device. We use them to operate our site, analyze performance, and for marketing. You can manage your cookie preferences through the cookie consent banner on our site or via your browser settings.

6. How We Share Your Information

We do not sell your personal data. We may share your information only in the following circumstances:

• With Service Providers: We may share information with third-party vendors who help us operate our business, such as cloud hosting providers (e.g., Vercel, AWS), payment processors, and email service providers. These providers are contractually bound to protect your data.
• For Legal Reasons: We may disclose your information if required to do so by law or in response to a valid request by public authorities.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction.

7. Your Data Protection Rights (GDPR)

As a data subject under GDPR, you have the following rights:

• The right to access a copy of your personal data.
• The right to rectification to correct any inaccurate data.
• The right to erasure (the "right to be forgotten").
• The right to restrict processing of your data.
• The right to data portability.
• The right to object to processing.

To exercise any of these rights, please contact us using the details below.

8. Data Security and Retention

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, loss, or destruction. We retain your data only for as long as necessary to fulfill the purposes for which it was collected or to comply with legal requirements.

9. International Data Transfers

Your information may be processed in countries other than your own. If we transfer data outside the European Economic Area (EEA), we will ensure that appropriate safeguards, such as Standard Contractual Clauses, are in place to protect your data.

10. Changes to This Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by a "Last Updated" date and will be effective as soon as it is accessible. We encourage you to review this policy frequently.

11. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us: