Privacy Policy

THE E-REGISTRY CONSULTANCY AND CONFIGURATION OF ECOMMERCES LTDA, registered with the CNPJ under no. 26.954.573/0001-48, with its headquarters established at Rua do Algodão – 218, block 3-206, Marília/SP, CEP 17526-560, duly represented in this act by Roberta de Souza Araújo, (“we”, “our” or “us”) is committed to protecting the privacy of users (“you” or “your”) of our website and online services. This Privacy Policy describes how we collect, use, share and protect your personal information in accordance with the Brazilian General Data Protection Law (Law No. 13.709/18) and other applicable rules and resolutions.

1. Information Collected

We may collect the following personal information when you interact with our website or use our services:

· Personally identifiable information, such as name, telephone number, email address and data to form contracts.

· Contact information such as email address and telephone number.

· Other information voluntarily provided by you when using our services.

2. Use of Information

We use your personal information for the following purposes:

· Provide and maintain our services.

Legal Basis: Execution of contract (art. 7, V, of the LGPD) – Personal data may be processed when necessary for the execution of a contract to which the data subject is a party, or for preliminary measures related to a contract.

· Personalize your experience and respond to your individual needs.

Legal Basis: Legitimate Interest (art. 7, IX, of the LGPD) – Personal data may be processed when necessary to meet the legitimate interests of the controller or third parties, except in cases where the fundamental rights and freedoms of the data subject prevail, which require the protection of personal data.

· Process transactions and provide customer support.

Legal Basis: Execution of contract (art. 7, V, of the LGPD) – As in the first action, the processing of personal data can be justified by the need to fulfill contractual obligations.

· Send you communications related to our services, such as updates, notifications and newsletters.

Legal Basis: Consent (art. 7, I, of the LGPD) – Sending direct marketing communications generally requires the prior consent of the data subject.

· Comply with legal and regulatory obligations.

Legal Basis: Compliance with legal or regulatory obligation (art. 7, II, of the LGPD) – Personal data may be processed when necessary for compliance with a legal or regulatory obligation by the controller.

· Protect our rights, property or safety, as well as that of our users and third parties.

Legal Basis: Legitimate Interest (art. 7, IX, of the LGPD) – The processing of personal data may be justified by the legitimate interests of the controller or third parties, as long as it does not harm the fundamental rights and freedoms of the data subject.

3. Information Sharing

We may share your personal information with third parties only in the following circumstances:

· With third-party service providers who assist us in providing services. To perform our work proposal, we hire companies specialized in typing and processes. We always demand commitment to data protection and compliance with the LGPD.

· When required by law, subpoena or legal process.

· To protect our rights, property or safety, or that of our users and third parties.

4. Information Security

We implement rigorous security measures to ensure that your personal information is fully protected against any form of unauthorized access, misuse, alteration or destruction. Our security practices cover a number of areas and are constantly updated to meet the highest standards of data protection. To protect your information, we take a multi-faceted approach, which includes:

1. Strict Access Controls: We implement strict access controls to ensure that only authorized employees who have a legitimate need to access your information can do so. This is achieved through secure authentication systems and assignment of access privileges based on each individual’s job responsibilities.

2. Continuous Monitoring: We conduct continuous monitoring of our systems and infrastructure to detect and proactively respond to any suspicious activity or potential security breach. This allows us to quickly identify and mitigate any threats to the security of your data.

3. Security Updates and Patches: We keep our systems and software up to date with the latest security fixes and patches provided by manufacturers. This helps us close any known vulnerabilities and maintain the integrity of our security systems.

4. Security Awareness Training: All of our employees receive regular security awareness training to ensure they are aware of security best practices and know how to properly protect your personal information.

In addition, we restrict access to your personal data stored in our online systems to only authorized employees who need that information to perform their specific functions. We take all of these measures to ensure that your personal information is treated with the highest level of security and protection at every stage of our data processing process.

We would also like to inform you that as part of our security and business continuity procedures, we back up data to a secure cloud platform. These backups are maintained to ensure the integrity and availability of your data, in accordance with information security best practices. For more information on how your data is protected and managed, please contact us using the details provided in this privacy policy.

5. Your Privacy Rights

As established by the General Data Protection Law (LGPD), you have specific rights in relation to your personal information that is processed by us. These rights include:

1. Right of Access: You have the right to access and obtain information about what personal data we are processing about you and how it is being used.

2. Right of Rectification: If any personal information we hold is inaccurate, incomplete or out of date, you have the right to request that we correct or update it.

3. Right to Erasure (or “Right to be Forgotten”): You have the right to request that we delete your personal information from our systems and records, subject to certain exceptions provided for by law.

4. Right to Object to Processing: In certain specific circumstances, you have the right to object to the processing of your personal information, such as in the case of use for direct marketing purposes.

5. Right to Data Portability: You have the right to receive your personal data in a structured, commonly used and machine-readable format and the right to transmit those data to another controller, where technically feasible.

In addition to the rights mentioned in this “Privacy Notice”, you also have the right to request the restriction of the processing of your personal data, the right not to be subject to automated decisions, including profiling, which produce legal effects or similarly significantly affect the data subject, and the right to lodge a complaint with a competent data protection authority, in accordance with applicable law.

To exercise these rights or obtain further information about how your personal data is handled, please contact us using the details provided in this privacy policy. We are committed to ensuring that your privacy rights are respected and fulfilled in accordance with the provisions of the LGPD.

6. Changes to this Privacy Policy

This Privacy Policy may be updated periodically to reflect changes in our privacy practices. We encourage you to review this page regularly to stay informed about how we are protecting your information.

7. Contact

If you have any questions, concerns or comments about this Privacy Policy, please contact us at privacidade@ecadastros.com.br.

By using our website and services, you agree to the terms of this Privacy Policy.

E-REGISTRY CONSULTANCY AND CONFIGURATION OF ECOMMERCES LTDA