+351 933 809 371 info@noveris.pt

GLOBAL VISION MANAGEMENT CONSULTING

EXCELLENCE IN SERVICE, VALUE MAXIMIZATION
TALK TO US

YOUR IDEAS, OUR EXPERIENCE, YOUR BUSINESS

TALK TO US

ACCOUNTING IN SUPPORT OF MANAGEMENT AND TAXATION

DO THE MATH
TALK TO US

HUMAN RESOURCES

 

THE EMPLOYEE MOTIVATION, THE SUCCESS OF THE COMPANY

TALK TO US

INFORMATION AND COMMUNICATION TECHNOLOGIES

SOLUTIONS ACCORDING TO THE PARTICULAR NEEDS OF CLIENTS.
TALK TO US

Flyer Download

Get our flyer.
DOWNLOAD
ABOUT US
NOVERIS is a company dedicated to the promotion and development of advisory services in the administrative, accounting and tax areas, directed to the target market of micro, small and medium enterprises.

MISSON

Development of a service with a strong added value, creating the necessary conditions for the focus of the clients in the core business to which they are dedicated, providing controlled costs, tranquility, total security and speed in administrative processes.
WE VALUE:

  • Excellence in service provided.
  • Responsibility and suitability.
  • Professional ethics.
  • Merit.
 
SKILLS
Critical element for the development of a perceived service delivery as excellent is the diversity of the experiences that are acquired by the multiplicity of the areas of activity in which they are involved.
CLIENT LONGEVITY
We measure the quality of our services by the LONGEVITY of our presence with the clients.
SERVICES
NOVERIS is a company dedicated to the promotion and development of advisory services in the administrative, accounting and tax areas, directed to the target market of micro, small and medium enterprises.

CREATION OF YOUR BUSINESS.

The moment our support is most critical is in starting up the business project.

The vast experience of NOVERIS allows us to suggest solutions ranging from the positioning of the project in the market to the implementation of management and control methods, through the choice of legal form in terms of taxation.

A good idea is always the one that comes true.

ACCOUNTING AND TAXATION

Frequently considered by micro and small companies a necessary evil, an obligation originated by the need to render accounts to the Tax Authority, accounting plays a fundamental and indisputable role in the success of the business project.

We propose, therefore, through our “SC” contract to provide the data to support the knowledge of the route of your business, along with the design of a fiscal economy strategy to the legal limit of what the tax administration considers aggressive planning.

Paying less taxes then passes through the business strategy and decisions made throughout the year.

For this, this service provides:

The organization and preparation of the accounting according to the SNC (Accounting Standardization System); The preparation and submission of the statutory and statutory financial statements, including in the financial report others that prove adequate for the evaluation of the specific project; The control of compliance with all tax obligations inherent to the activity developed.

HUMAN RESOURCES

One of the components of this motivation is the remuneration status.
We deal with the issues raised by the allocation of remunerations in all its aspects, including legal and legal.

In this area, our “SH” type contract gives clients:

  • Individual employee registration
  • Employee enrollment in social security
  • Processing of salaries and issue of receipts
  • Issuance of DRI social security and DMR declarations to the Tax Authority, accompanied by TSU and IRS withholding notes
  • Elaboration of the SR – Single Report of the Company’s Social Activity
  • Employee vacation map registration
  • Control of incomes of external collaborators and preparation of the annual declaration of the same
  • Elaboration and delivery to the Tax Authority of the annual summary map of remunerations to external collaborators (IRS model 10)

SUPPORT FOR MANAGEMENT

We share with you our experience so your company can be more competitive.

Our follow-up to your business is permanent, so you can make the best decisions.

Access through your reserved area on our website to indicators that together we can define as the most adjusted to your business, promote the questioning and consequently the attitude leading to the best strategy for the intended growth.

INFORMATION TECHNOLOGIES

Computer solutions to support the administrative and management areas is another of the services provided.

In SMEs, particularly in micro-enterprises, the use of information and communication technologies almost exclusively rests on the use of the internet, email and billing software.

NOVERIS seeks to stimulate the use of digital based information systems by providing visual basic for applications (VBA) tools that meet the particular needs of each customer, complementing the standard applications used.

CONTACT US
DO YOU HAVE A TECHNICAL QUESTION? ASK OUR SPECIALISTS.
ASK A QUESTION
General Data Protection Regulation

The organization should ensure that decision makers and key people in the organization are aware of the entry into force of the RGPD. They need to assess the impact this can have and identify areas that may cause compliance issues under the RGPD.

Implementing the GDPR could have significant resource implications, particularly for larger and more complex organizations. The RGPD can be difficult to comply with, especially if it leaves its implementation to the last minute.

DO YOU KNOW THAT

  • The General Data Protection Regulation (RGPD) comes into force on 25 May to give EU citizens greater control over their personal data and their use.
  • The RGPD requires rethinking how the clients’ personal data or the curriculum vitae of current and future employees are handled
    regardlesss of the existence of an controller or team responsible for the implementation and maintenance of the RGPD, the changes motivated by it must be communicated to all elements of the company in order to be properly informed of its obligations and aware of its responsibilities
  • Human Resources, Information Technology and Finance are the areas whose work practices are most affected by the RGPD
  • The RGPD particularly safeguards the rights of children and provides, among others, the following rights of individuals:
    To be informed; Of Access; Of Rectification; Of deletion; Of portability of the data
  • The RGPD determines that data breaches must be notified to the competent control authorities within 72 hours after the company has become aware of it and that offense of this rule may result in a fine for SMEs, the value of which may between € 1000 and € 1,000,000 or 2% of their turnover if it is higher.

Information you hold

The organization should begin by identifying what personal data it has, its origin and who it shares with them. It may be necessary to perform a survey of the existing data in the entire organization or in specific areas of the organization.

The RGPD, in addition to requiring a record of personal data processing activities, extends the rights to protect personal data for a networked world.

For example, if an organization verifies that you have incorrect personal information you will need to inform third parties with whom you have shared this data so that they can correct their own records, which can only be done if they know the personal information they have, its origin, sharing.

The organization will therefore have to trace the course of personal data, which in turn will facilitate compliance with the principle of accountability in the RGPD, which requires organizations to be able to demonstrate to data protection authorities and that all personal information is safe, for example through effective policies and effective procedures.

Communicating privacy information

In time of the RGPD implementation it is convenient to review the privacy policy, and if necessary make the necessary changes.
In addition to the disclosure of your identity and the purposes for which the organization collects the data, through the usual privacy policy, the RGPD requires disclosure of other requirements when collecting personal data, such as the lawful basis for processing such data, the retention period and the information that individuals have a right to complain to the CNPD if they disagree with the way the organization is handling their data.

The RGPD requires the information to be provided in clear, easy-to-understand and concise language.

Individuals’ rights

The organization should check its procedures in order to guarantee all the rights individuals, including the right to delete their personal data or its free availability in a commonly used digital format.

The GDPR includes the following rights for individuals:

  • the right to be informed;
  • the right of access;
  • the right to rectification;
  • the right to erasure;
  • the right to restrict processing;
  • the right to data portability;
  • the right to object; and
  • the right not to be subject to automated decision-making including profiling.
  • The right to data portability only applies: to personal data an individual has provided to a controller;
  • When processing is based on the individual’s consent or in the fulfill of a contract;
  • when processing is carried out by automated means.

Subject access requests

The organization should update its procedures of handling requests, accordingly the new rules:

  •  In most cases you will not be able to charge for complying with a request.
  • Requests must be comply within one month.
  • Requests can be refused or charged for they are manifestly unfounded or excessive.
  • In the case of a refusal of a request, it must be

justified and inform the individual that it has the right to complain to the supervisory entity or to the judicial appeal.

Lawful basis for processing personal data

The organization must identify the legal basis for its activity of processing personal data in accordance with RGPD, and update its privacy policy statement.

Under RGPD the individuals rights varies depending on the legal basis for the processing of their personal data. The most obvious example is that people will have a reinforced right to have their data deleted when consent is used as the legal basis for processing.

The organization, in addition to explain the legal basis for the processing of personal data in its privacy policy statement, will also have to do so when it responds to a request for access to the data. It should be possible to verify the types of processing activities that the organization performs as well as identify the legal basis for that. The organization must document its legal basis meeting RGPD accountability requirements.

Consent

The organization must review whether existing consents conform to the RGPD standard and whether these are properly documented.

Consent must be given in a way that results in a free, specific, informed and explicit expression of willingness by which individuals accepts, by declaration or unequivocal positive act, that the personal data are treated. Silence, pre-validated options or omission are not forms of obtaining consent. Multiple purposes for data processing imply an equal number of manifestations of will. It must also be separate from other terms and conditions, and will need to have easy and intuitive way for consent to be withdrawn.

Children

The organization must assess the need to implement a system for verifying the age of the individuals and obtaining the consent of the parents holding the parental responsibility of the child.

For the first time, RGPD provides special protection for children’s personal data, particularly in the context of commercial Internet services that include social networks. The RGPD sets the age at which a child can give his or her own consent in 16 years, although in Portugal the draft law provides for the reduction of this limit for 13 years. Before the age of 13, consent shall always be given by the holder of parental responsibility.

This could have significant implications if the organization offers services to children online and collects their personal data, since consent has to be verifiable and that when collecting children’s data the privacy policy should be written in language that children can easily understand.

Data breaches

The organization must make sure it has the correct procedures for detecting, reporting and investigating a personal data breach.

The RGPD introduces the duty of the organization to report to the CNPD and in some cases to individuals, the violation of certain types of personal data. The organization only has to notify the CNPD of a violation where it could result in a risk to the rights and freedoms of individuals. For instance, if it could result in discrimination, reputation damage, financial loss, loss of confidentiality or any other significant economic or social disadvantage for individuals.

Where a breach is likely to result in a high risk to the rights and freedoms of individuals, the organization, where possible, will also have to notify those concerned directly.

The organization must evaluate the types of personal data it possesses that may be required to notify the CNPD or affected individuals in the event of a breach of such data. Failure to report a breach when required to do so could result in a fine, as well as a fine for the breach itself

Data Protection by Design and Data Protection Impact Assessments

It has always been a part of good practice to adopt a privacy-by-project approach and conduct a privacy impact assessment as part of this same project.

The RGPD now makes it mandatory to respect the principles of data protection from the design and protection of data by default, imposing in certain circumstances the evaluation of the impact of data protection – DPIA

A DPIA will be required in situations where data processing is likely to result in high risk for individuals, for example:

  • where a new technology is being deployed;
  • where a profiling operation is likely to significantly affect individuals; or
  • where there is processing on a large scale of the special categories of data.

If a DPIA indicates that data processing is of high risk and the organization, whether by available technology or the associated costs, does not feel able to minimize such risks, it should consult the CNPD on the compliance of the processing operation with the RGPD.

The organization should therefore assess the situations in which a DPIA will be required. Who’s going to do that? Who needs to be involved? If the process will be performed internally or outsourcing?

The organization should also consult the guidelines of the CNPD as well as those of the Article 29 Working Party of Directive 95/46 / EC, and find out how to implement it better in the organization.

Data Protection Officers

The Data Protection Officer has the followiong function in the organization:

  • Inform and advise all those involved in the processing of data of their obligations under the RGPD and other provisions;
  • Control compliance with the RGPD;  Provide advice on DPIA The organization must consider whether it is required to formally appoint a Data Protection Officer (DPO) and, if so, nominate it: a DPO must be designated:
  • When it comes to a public authority (with the exception of the courts)
  • When the organization carries out regular and systematic monitoring of individuals on a large scale
  • When the organization performs large-scale processing of sensitive data, such as health records, or information on criminal convictions

The Article 29 Working Party of Directive 95/46 / EC produced guidelines on the designation, position and tasks of DPOs

It is most important that someone in the organization, or an external data protection advisor, takes responsibility for the compliance of your data with the RGPD, having the knowledge, support and authority to effectively perform its role.

International

If the organization operates in more than one EU member state, the organization should define which primary control authority it will report to.

The lead authority is the national supervisory authority where the main establishment is located, i.e. where the central administration of the organization within EU, or where decisions on data processing are taken and implemented.

This is only relevant where you carry out cross-border processing – i.e. you have establishments in more than one EU member state or you have a single establishment in the EU that carries out processing which substantially affects individuals in other EU states.

FILL GDPR COMPLIANCE - QUIZ
LOCATION
We are located in the center of the city of Porto.

NOVERIS

Assessoria de Gestão, Lda
Rua de Júlio Dinis, 748 4º Sala 412
4050-027 Porto

CONTACT
Use the following means to get in touch with us.

ADDRESS

Avenida de França 256 8º andar – Edifício Capitólio, 4050-276 Porto

HOURS

Mon. to Fri.: 09h . 18h

TELEPHONE

+351 933 809 371

EMAILS

info@noveris.pt

8 + 9 =

WE’RE HERE TO HELP. CALL +351 933 809 371

Partnership:
Resolution of disputes

Dispute Resolution:
In the event of a dispute, the consumer may appeal to this Dispute Resolution Entity.

 

 

Privacy policy
Personal information we collect:
 NOVERIS – Assessoria de Gestão, Lda collects information provided by its clients or for interaction with third parties, indispensable for effective performance of service provision that is assigned;

How we use personal information:
The personal information exchanged with NOVERIS – Assessoria de Gestão, Lda in any way, will be kept in the strictest confidentiality and in compliance with the European and / or national legislation applicable in each case, regarding data protection and privacy of information;

Sharing of personal information:
NOVERIS – Assessoria de Gestão, Lda shares the personal information provided by its clients in strict compliance with the instructions for use received, resulting from the subscribed service contract or by legal imposition;

Where we store personal information:
Personal information collected by NOVERIS – Assessoria de Gestão, Lda will be stored on the premises of its headquarters and possibly elsewhere that proves convenient in order to create redundancy to protect data in case of failure, accident and other problems;

Retention of personal information:
 By providing information to NOVERIS – Assessoria de Gestão, Lda, you are freely and voluntarily authorizing its incorporation into our database and its use in accordance with the principles of this Privacy Policy, as well as to keep it according with the purposes for which such information is intended, during the period legally required or for statistical or historical purposes;

How to access and control your personal information:
With the exception of information whose integrity and file is provided for by law, the NOVERIS – Assessoria de Gestão, Lda undertakes to provide access, modify or delete the information in its possession;

Contact Information:
Any questions, complaints or doubts regarding the privacy of information should be addressed to the Data Protect Auditor email dpa@noveris.pt

Legal notice (no site)

  • The information provided on this site is not exhaustive and may contain some inaccuracy or suffer from outdated. It should therefore not be considered a guarantee of any kind and information on services should be understood as it is.
  • The site information can be changed or suffer update at any time and without notice.
  • The information provided to NOVERIS – Assessoria de Gestão, Lda, with the exception of that covered by the Privacy Policy or whose use is not authorized by users and / or clients, will not be considered confidential.