Leonor Azedo

PrivacyPolicy

Last updated: June 18, 2026

1. Introduction

Leonor Azedo ("we") is committed to protecting your personal data. This policy explains what data we collect, how we use it, and your rights under the EU General Data Protection Regulation (GDPR) and applicable Portuguese data protection law.

2. Data controller

Entity: Leonor Azedo

Address: [insert business address here]

Email: la@leonorazedo.com

3. Data we collect and how

Contact form

When you submit our contact form, we collect your name, email address, and any message you choose to include.

This data is transmitted by email to our team through Resend (resend.com) and used exclusively to respond to your enquiry. Providing this data is voluntary — if you choose not to provide it, we will not be able to respond to your request.

Site navigation

We do not use cookies, tracking pixels, or analytics tools. We do not collect any data about how you browse our site.

4. Legal basis for processing

We process your data on the following legal grounds:

Pre-contractual measures and contract performance: To respond to enquiries and organise your commissioned projects.

Legitimate interest: To operate, manage, and maintain our communications securely and efficiently.

Legal obligation: Whenever the retention of billing records is required by Portuguese law.

5. Subprocessors

We use the following service providers to operate this site. Each one processes data exclusively on our behalf and under our direct instructions:

Resend (resend.com): Delivers emails generated by our contact form.

Vercel (vercel.com): Hosts this site. May process connection metadata, such as IP addresses, as part of normal hosting and security operations.

Sanity (sanity.io): Manages our site content. Sanity does not process visitor personal data.

Important note: We do not sell, rent, or share your personal data with third parties for commercial or advertising purposes.

6. Data retention

Enquiries: Data is retained only for as long as strictly necessary to fulfil the purpose for which it was collected.

Financial records: Billing and accounting data is retained for the legal period of 10 years, as required by Portuguese tax law.

7. Data security

We adopt appropriate technical and organisational measures to protect your data against unauthorised access, loss, or destruction. All data submitted through our contact form is transmitted via encrypted HTTPS connections. Access to your data is strictly restricted to staff who require it to perform their duties.

8. Your rights

Under the GDPR, you have the following rights:

Access: Right to access the personal data we hold about you.

Rectification: Right to request correction of inaccurate or incomplete data.

Erasure ("right to be forgotten"): Right to request deletion of your data, subject to legal retention obligations.

Restriction and objection: Right to restrict or object to processing in certain circumstances.

Portability: Right to request a structured digital copy of the data you have provided.

Withdrawal of consent: Right to withdraw consent at any time, where processing is based on it.

To exercise any of these rights, contact us at la@leonorazedo.com. We will respond within a maximum of 30 days.

9. Automated decisions

We do not use automated decision-making systems nor carry out profiling with your data.

10. Changes to this policy

We may update this privacy policy periodically to reflect changes in our practices or legal obligations. The updated version will always be available on this page.

11. Supervisory authority

If you consider that your rights have not been respected, you have the right to file a complaint directly with the supervisory authority in Portugal:

Comissão Nacional de Proteção de Dados (CNPD)

Av. D. Carlos I, 134 - 1.º, 1200-651 Lisboa

Website: www.cnpd.pt