Privacy Policy

1. Who is responsible for processing your data?

The data controller is:

Rotex – Confecções de Malhas, S.A.
Headquarters: Zona Industrial da Mangalaça, Pav. 6, 4740-544 Esposende, Portugal
VAT: 502 020 660
Phone: +351 253 962 974
General Email: comercial@rotexmalhas.com
Website: https://rotexmalhas.com

Whenever this Policy mentions “Rotex”, “we” or “our”, we refer to this entity.

2. What personal data do we collect and how do we obtain it?

Rotex only collects and processes personal data strictly necessary for the purposes outlined below, namely:

Contact and identification data

  • Name
  • Email address
  • Phone number
  • Company and position (when applicable)

Data related to commercial requests

  • Information about the request (type of item, quantities, deadlines, technical specifications)
  • History of contacts and communications

Data submitted via the website contact form

  • Data entered in the form fields
  • Message sent and any attachments

Data submitted via the Whistleblowing Channel

  • Information provided by the whistleblower
  • Facts and elements associated with the report
  • Other personal data that may be included in the description of events
    (The processing of this data is governed by specific rules indicated on the Whistleblowing Channel page, in conjunction with this Policy.)

Website browsing data (cookies and similar technologies)

  • Technical access data (date and time, IP address, browser type, device, pages visited)
  • Cookies strictly necessary for the website to function
  • Statistical or analytical cookies, when applicable and according to user preferences

Data is generally obtained directly from the data subject when:

  • They contact us through the website form
  • They send us emails or call us
  • They enter into contracts with us for the supply of goods or services
  • They use the Whistleblowing Channel

3. For what purposes do we use your data and on what legal basis?

We process your personal data for the following purposes and based on the following legal grounds:

Contact management and response to information requests

  • Purpose: To respond to contact requests, quotes, inquiries, and other requests made via the website, email, or phone.
  • Legal basis:
    • Legitimate interest of Rotex in responding to requests and managing relationships with potential clients and partners.
    • Execution of pre-contractual measures at the request of the data subject.

Management of commercial relationships with clients and suppliers

  • Purpose: Preparation and execution of contracts, orders, invoicing, logistics, and after-sales support.
  • Legal basis:
    • Execution of a contract or pre-contractual measures
    • Compliance with legal obligations (tax and accounting)

Compliance with legal obligations

  • Purpose: To comply with legal obligations, namely in fiscal, accounting, labor, occupational safety, and other areas applicable to the textile industrial activity.
  • Legal basis:
    • Compliance with a legal obligation to which Rotex is subject.

Management of the Whistleblowing Channel

  • Purpose: Receipt, recording, analysis, and follow-up of reports submitted through the Whistleblowing Channel, in accordance with applicable legislation on whistleblower protection and the company’s internal policy.
  • Legal basis:
    • Compliance with a legal obligation
    • Legitimate interest and public interest in ensuring compliance with legal norms, code of conduct, and ethics.

Website improvement and security

  • Purpose: Monitoring website functionality, information security, abuse and fraud prevention, and optimization of the browsing experience.
  • Legal basis:
    • Legitimate interest of Rotex to ensure proper functioning, security, and continuous improvement of the website.

Marketing and institutional communication (when applicable)

  • Purpose: Sharing news about the company, projects, sustainability initiatives, participation in fairs or events, provided the data subject has expressed interest in receiving this information.
  • Legal basis:
    • Consent of the data subject, when applicable
    • Legitimate interest, when it concerns limited B2B communication related to the professional role or position.

Whenever the legal basis is consent, you have the right to withdraw it at any time without affecting the lawfulness of the processing carried out up to that point.

How long do we keep your data?

Personal data is retained only for the period necessary for the purposes for which it was collected, namely:

  • Contacts and information requests: up to 2 years after the last relevant interaction, unless there is a contractual relationship or legal obligation requiring a longer period.
  • Client and supplier data: for the duration necessary for contract execution and, subsequently, for the legal retention period of accounting and tax documents (generally 10 years).
  • Data related to the Whistleblowing Channel: in accordance with the periods provided by applicable legislation and specific internal policies, keeping only what is strictly necessary for record-keeping, investigation, and compliance with legal obligations.
  • Cookies: according to the periods indicated in the browser settings and, if applicable, in the specific Cookie Policy.

After the above periods, data is deleted or anonymized whenever possible. 

Who can we share your data with?

Rotex does not sell or commercialize your personal data.

However, your data may be shared with third parties in the following situations:

Service providers

  • IT service and website hosting providers
  • Technical support or consultancy providers
  • Accounting firms and tax consultants

These providers generally act as subcontractors, processing data according to Rotex’s instructions and under written agreements ensuring confidentiality and data security.

Authorities and public entities

  • Tax authorities
  • Judicial or regulatory authorities
  • Other authorities to whom Rotex is legally required to disclose data

Other situations

  • When necessary to defend rights in judicial or administrative proceedings
  • In the context of audits or corporate transactions, always with appropriate confidentiality safeguards

Are there transfers of data outside the European Union?

As a rule, Rotex does not transfer personal data to countries outside the European Economic Area.

If, through certain service providers (e.g., email solutions, hosting, or other platforms), it becomes necessary to transfer data to third countries, Rotex will:

  • Only do so to countries with an adequacy decision by the European Commission, or
  • Ensure appropriate legal mechanisms are in place (e.g., EU-approved standard contractual clauses).

In these cases, additional measures will be adopted to ensure a level of protection essentially equivalent to that guaranteed by the General Data Protection Regulation (GDPR).

What are your rights?

As the data subject, you have the following rights under applicable law:

  • Right of access
    Know whether your data is being processed and, if so, obtain a copy and relevant information about the processing.
  • Right to rectification
    Request correction of inaccurate data or completion of incomplete data.
  • Right to erasure
    Request deletion of your data when:

    • It is no longer necessary for the purpose it was collected
    • Consent is withdrawn (when processing is based on consent) and no other legal basis exists
    • The processing is unlawful, among other cases provided by law
  • Right to restriction of processing
    In certain situations, you may request restriction of processing, e.g., when contesting the accuracy of the data.
  • Right to object
    Object to processing based on legitimate interests for reasons related to your particular situation. When processing is for direct marketing, you may object at any time.
  • Right to data portability
    Receive the personal data you provided in a structured, commonly used, machine-readable format, and request transmission to another controller, when applicable.
  • Right to withdraw consent
    If processing is based on consent, you may withdraw it at any time without affecting the lawfulness of processing carried out until then.
  • Right to lodge a complaint with a supervisory authority
    If you believe your rights have not been respected, you may file a complaint with the Portuguese Data Protection Authority (CNPD) at www.cnpd.pt.

How can you exercise your rights?

You can exercise your rights at any time by submitting a written request to Rotex via:

  • Email: comercial@rotexmalhas.com
  • Mail:

Rotex – Confecções de Malhas, S.A.
Zona Industrial da Mangalaça, Pav. 6
4740-544 Esposende
Portugal

Additional information may be requested to confirm your identity and ensure personal data is not disclosed to unauthorized persons.

How do we protect your data?

Rotex implements appropriate technical and organizational measures to protect personal data against:

  • Unauthorized access or disclosure
  • Accidental or unlawful loss, destruction, or damage
  • Improper alteration

Measures include:

  • Logical access controls
  • Use of security protection and monitoring systems
  • Access restrictions to data only for employees with a legitimate need to know
  • Internal awareness and training on data protection and confidentiality

Although these measures are in place, no system is completely risk-free. Rotex commits to detecting, responding to, and mitigating potential security incidents, complying with legal notification obligations when applicable.

Minors

The Rotex website is not intended for individuals under 18, and personal data of minors is not intentionally collected.

If you become aware of personal data of minors being collected without proper parental control, please contact Rotex so we can delete it.

Links to other websites

The Rotex website may contain links to third-party websites (e.g., partners or public entities). Rotex is not responsible for the privacy policies of these websites, and users should consult the respective policies whenever accessing external pages.

Cookies, Google Tag Manager, and Google Analytics

The Rotex website uses cookies and similar technologies to ensure proper functioning, improve the browsing experience, and gather usage statistics.

What are cookies?

Cookies are small text files stored on your device (computer, tablet, or mobile) via your web browser when visiting a website. These files allow the website to remember actions and user preferences for a certain period.

What types of cookies do we use?

The following types of cookies may be used:

  1. Strictly necessary cookies
    Essential for the website to function and allow basic features, such as navigating pages and accessing secure areas. Without these cookies, the site may not function properly.
  2. Performance and statistical cookies
    Used to collect anonymous information about how visitors use the website, e.g., most visited pages, errors, time spent on the site, etc. This data helps improve website functionality.
  3. Functionality cookies
    Remember your preferences (e.g., language or region) to improve your user experience.

If advertising or profiling cookies are used, their use will be clearly indicated and, if necessary, depend on your prior consent.

Google Tag Manager

The website may use Google Tag Manager (GTM), a service provided by Google that allows management of tracking tags and other scripts on the website from a centralized interface.

  • GTM itself does not collect personal data directly.
  • GTM is used to load and manage other tools, such as Google Analytics or third-party pixels.
  • These tools may collect data as described in their privacy policies, with data collection controlled by Rotex through tag settings.

Google Analytics

The website may use Google Analytics, a web analytics service provided by Google.

  • Google Analytics uses cookies to collect information about website usage, such as pages visited, time spent, traffic sources, and interactions with content.
  • Information generated by cookies about website use is generally transmitted and stored on Google servers. IP anonymization is applied whenever possible to reduce privacy impact.
  • Data collected via Google Analytics is used only for statistical analysis to improve content and browsing experience on the Rotex website.

Rotex does not use Google Analytics to identify individual users or cross this information with other data that could identify them.

More information on Google’s data processing and privacy options can be found directly on Google’s privacy and security pages.

Managing cookies by the user

Users can control and manage cookies at any time via their browser settings, including:

  • Blocking acceptance of all cookies
  • Blocking cookies from specific websites
  • Deleting cookies already stored on the device

Refusing certain types of cookies, especially strictly necessary ones, may affect website functionality and browsing experience.

If the website provides a cookie management banner or panel, users may also configure preferences for accepting or rejecting non-essential cookies (e.g., statistics or marketing cookies) through that interface.

Updates to this Privacy Policy

This Privacy Policy may be updated to reflect legislative changes or changes in how we process personal data.

Whenever significant changes are made, the new version will be made available on the website with the date of the update indicated.

This site is registered on wpml.org as a development site. Switch to a production site key to remove this banner.