HomeSpecialtiesTeamClinicAgreementsCasesDigital museum
Language

Privacy Policy

This policy explains how we process the personal data collected through this website, under the General Data Protection Regulation (GDPR) and Portuguese Law no. 58/2019.

Last updated: May 28, 2026

1. Who is responsible for processing

The controller of your data is Clínica de Serviços Dentários Dr. Cautela, Lda. (Clínica Cautela), with its registered office at Avenida Conde Valbom, nº 6 Galeria / 1º Andar, 1050-068 Lisboa, Portugal, company tax number (NIPC) 504 345 915.

For any question regarding data protection or the exercise of your rights, contact us by email at geral@clinicacautela.com or by telephone on +(351) 218 202 320.

2. What data we process and for what purpose

We process only the data necessary for each purpose. Through this website, that comes down to:

  • Appointment requests and contact. When you fill in the booking form or write to us, we collect your name, email, phone number and the details you provide (specialty, doctor, preferred date and time of day, and your message). We use them only to reply and to arrange your appointment.
  • Usage analytics (with your consent). If you allow it, we use analytics cookies to understand, in aggregate, how the website is used and to improve it. Details in the Cookie Policy.

We ask you not to include health data or any other sensitive information in the message field. If you wish to share clinical information, we will do so securely in the context of your appointment.

3. Legal basis

  • Appointment requests and contact: pre-contractual steps taken at your request and our legitimate interest in replying to you (Article 6(1)(b) and (f) GDPR).
  • Analytics cookies: your consent (Article 6(1)(a) GDPR and Article 5 of Law no. 41/2004), which you may withdraw at any time.

4. Who we share data with (processors)

We do not sell your data. We use providers that process data on our behalf, under contract and on our instructions:

  • Resend (Resend, Inc.), to deliver to the clinic the emails generated by appointment requests. This provider is based outside the European Economic Area (United States), so the transfer relies on the appropriate safeguards provided for in the GDPR (standard contractual clauses).
  • PostHog, for usage analytics, only if you allow it. We use the service's European infrastructure, with the data hosted in the European Union.

We may also disclose data to public authorities where the law requires it.

5. How long we keep your data

We keep data only for as long as necessary for the purposes for which it was collected, in line with the storage limitation principle (GDPR and Article 21 of Law no. 58/2019). Appointment requests and messages are kept for the period needed to handle them and for any follow-up; once no longer needed, they are deleted, unless they give rise to a clinical relationship or the law requires their retention. Analytics data is processed in aggregate and your consent is revalidated periodically (see the Cookie Policy).

6. Your rights

As a data subject, you have the right to:

  • access your data and obtain a copy;
  • rectify inaccurate or incomplete data;
  • request the erasure of your data;
  • restrict or object to certain processing;
  • request data portability;
  • withdraw your consent at any time, without affecting the lawfulness of processing already carried out.

To exercise these rights, contact us at geral@clinicacautela.com. We reply within the period provided for by law.

7. Complaints

If you consider that the processing of your data breaches the law, you have the right to lodge a complaint with the supervisory authority, the Comissão Nacional de Proteção de Dados (CNPD) (the Portuguese data protection authority), Av. D. Carlos I, 134, 1º, 1200-651 Lisboa, telephone +351 213 928 400, email geral@cnpd.pt, www.cnpd.pt.

8. Clinical data

Patients' clinical records are processed in the context of the provision of healthcare, on their own legal basis (Article 9(2)(h) GDPR) and subject to professional secrecy and the rules applicable to healthcare establishments. That processing is distinct from the use of this website and is explained to you in the course of your clinical care.

9. Security

We adopt appropriate technical and organisational measures to protect your data against unauthorised access, loss or disclosure, including the secure transmission of forms and restricted access to information.

10. Changes to this policy

This policy may be updated to reflect legal changes or changes to our services. The version in force is always the one published on this page, with the date of the last update shown at the top.