Privacy Policy
Last updated · June 2026
This policy explains how Binarypotential, LDA (brand XBIN) processes your personal data when you visit this site, contact us or hire our IT services, under the GDPR (Regulation (EU) 2016/679) and Portuguese law.
01 · Data controller
The controller of the data collected through this site is Binarypotential, LDA, tax and legal-person number 514 114 800, with registered office at Avenida da Abelheira, 41 – Bloco 3 R/C, 4900-926 Viana do Castelo, Portugal.
For any privacy matter, or to exercise your rights, contact us at [email protected]. We are not legally required to appoint a Data Protection Officer (DPO) — Art. 37 GDPR and Law 58/2019 of 8 August — but all data-protection requests are handled through that address.
02 · Data we collect
We only collect what you provide and the minimum technical data needed to run and secure the site:
- Identification and contact: name, company, email and phone, given in the form, by email or by phone.
- Message content: the reason and text of your request, to prepare an appropriate reply.
- Technical data: IP address, browser, language, date and time — for security and abuse prevention.
- When delivering IT services, configuration and access data of the client systems, processed under the service agreement.
We do not collect special-category (sensitive) data or data from minors, and we do not carry out profiling or automated decision-making with legal or similarly significant effects (Art. 22 GDPR).
03 · Purposes and legal basis
- Replying to requests and preparing proposals — pre-contractual steps (Art. 6(1)(b) GDPR).
- Providing and managing the contracted IT services — performance of the contract (Art. 6(1)(b)).
- Invoicing and tax/accounting duties — legal obligation (Art. 6(1)(c)).
- Security, diagnostics and abuse prevention — legitimate interest (Art. 6(1)(f)).
- Audience measurement / analytics, should we adopt it — only with your consent (Art. 6(1)(a)).
04 · Retention
We keep contact data for 12 months where no engagement follows. Where a contract exists, we keep it for the duration of the relationship and, afterwards, for the legally required period (up to 10 years for tax purposes). Technical security logs are kept for up to 12 months.
05 · Processors and recipients
Your data is accessed only by XBIN staff on a need-to-know basis and by processors acting on our behalf under a data-processing agreement (Art. 28 GDPR):
- Website hosting: OVH, in data centres within the European Union.
- Email and productivity: Microsoft 365 (Microsoft).
- Client-management and support tools used to handle your request.
Messages sent through the contact form are delivered to our mailbox by email (Microsoft 365) and are not stored in any database on this site. We do not sell or share your data for marketing. We may disclose data to public authorities where legally required. The site embeds Google Maps, loaded only with your consent; in that case Google (Google Ireland Ltd.) may receive your IP address. Web fonts are served from our own server. See the Cookie Policy.
06 · International transfers
As a rule your data is processed within the EU/EEA. Where a processor involves a transfer outside the EEA (e.g. certain Google or Microsoft services), it takes place under appropriate safeguards, namely the European Commission’s Standard Contractual Clauses.
07 · Your rights
Under the GDPR and Law 58/2019, at any time you may exercise the rights of access, rectification, erasure, restriction, portability and objection, and withdraw consent. Email [email protected]; we reply within 30 days (extendable by a further 60 days in complex cases).
You may also lodge a complaint with the Portuguese supervisory authority — the CNPD (Av. D. Carlos I, 134, 1.º, 1200-651 Lisbon · +351 213 928 400).
08 · Security
We apply technical and organisational measures appropriate to the risk: encryption in transit (HTTPS/TLS), access control, form protection and regular backups. In the event of a high-risk breach we comply with the notification duties under Art. 33–34 GDPR.
09 · Cookies and changes
This site uses only technically necessary cookies, plus the Google Maps embed loaded with your consent — details in the Cookie Policy. This policy may be updated whenever there are technical or legal changes; the date at the top reflects the latest revision.