Policy and Processing of Personal Data
If the USER does not comply with these directives, they must discontinue their access to the systems offered by FABRICADS.
1.Collection and Use of Personal Data and Activity Recording
1.1. Personal data is collected with consent of the USER.
1.2. The list of personal data collected and the respective purposes are set out in Annex I.
1.4. FABRICADS is not responsible for the accuracy, veracity or timeliness of the information provided by the USER, and the USER is responsible for providing them accurately or updating them whenever necessary.
1.5. FABRICADS can update and enrich the data.
1.6. FABRICADS guarantees the USER the right to correct incomplete, inaccurate or outdated data.
1.9. The consent provided by the USER is collected individually, clearly, specifically, legitimately and informed to the holder.
1.10. The USER can change its consent grants, grant new permissions or withdraw its consent to current issues by contacting FABRICADS, being advised of the consequences that the withdrawal of consent may cause.
1.11. The USER can contact directly through the electronic address [email protected] The data collected and the activities recorded may also be shared:
a) With competent judicial, administrative or governmental authorities, in the event of a request, requisition or court order;
b) With the control bodies that supervise FABRICADS, when requested;
c) In case of corporate transformations, such as merger, acquisition and incorporation, always observing the principle of transparency with the USER.
1.12.1. The USER is co-responsible for the secrecy and confidentiality of their personal data.
1.13. Internally, USERS’ data are only accessed by professionals duly authorized by FABRICADS, who are employees, service providers and partners.
2. Data Storage and Logging
2.1. The personal data collected and the activity records must be stored in a safe and controlled environment for the minimum period stipulated, according to the table below:
|PERSONAL DATA||STORAGE TERM||LEGAL GROUNDS|
|Registration data||10 years after the end of the relationship||Arts. 12 and 34 of the Consumer Protection Code (Law nº 8.078/90)|
|Digital identification data||6 months from the last access||Art. 15 of the Civil Rights Framework for the Internet (Law No. 12,965/14)|
2.2. The data can be deleted before this deadline in case of request by the USER. Data may be kept for a period longer than that provided for in this period, for reasons provided for by law, by court decision, for the purposes of accountability to control bodies or for other legitimate interests of FABRICADS, duly specified and informed to the data subject. At the end of the term and the legal need, the data must be deleted using safe disposal methods, or used anonymously for statistical purposes.
2.3. The data collected must be stored on their own servers or on service providers that comply with applicable personal data protection controls.
3. Compliance with user rights
3.1. The personal data collected and activity records must be stored in a safe and controlled environment for the minimum period stipulated, according to the table below:
3.2. The USER may request confirmation of the existence of treatment; access to your personal data; or the correction of your personal data, through the FABRICADS LGPD Service Channel, available at the email [email protected]
3.3. Through the LGPD Service Channel, the USER may also: (i) request the blocking of the use of their personal data; (ii) express opposition to the processing of your personal data carried out based on one of the hypotheses of waiver of consent, (iii) request the elimination of your personal data collected and recorded by FABRICADS at the end of its purpose of use or (iv) request reviewing automated decisions (v) requesting portability of personal data, (vi) requesting information about who the personal data was shared with, and (vii) information about the impact of the decision not to consent or to withdraw consent.
3.4. Even if the user does not grant or request the revocation of consent for the purposes related to sending information, FABRICADS may send transactional information related to the provision of services.
For auditing, security, fraud control and rights preservation purposes, FABRICADS may keep the USER’s registration history and data for a longer period in the cases that the law or regulatory rule so establishes, in order to render accounts to the control bodies, or to preserve the rights of FABRICADS or the data subject.
4.2. In the event of updates to this document that require a new collection of consent, FABRICADS must notify the USER through its systems capable of performing a new collection of consent or through the means of contact provided by it.
4.4. If outsourced companies process any data collected by FABRICADS, they must respect the conditions stipulated herein and the FABRICADS Information Security standards, as well as additional Policies and procedures.
5. Applicable law and jurisdiction
6.1. For the purposes of this document, the following definitions should be considered:
Cookies: Small files sent by FABRICADS systems, recorded on USERS’ devices, which store preferences and other information, in order to personalize USERS’ navigation on the SITE, according to your profile.
IP: Abbreviation for Internet Protocol. It is the alphanumeric set that identifies USERS’ devices on the Internet.
Session ID: Credential of a USER required to access FABRICADS systems and use its features.
USER: Natural person who accesses and/or uses the functionalities of FABRICADS systems.
Annex I – List of personal data and purposes of use
|TYPES OF DATA||PERSONAL DATA||PURPOSE OF USE OF REGISTRATION DATA|
|Full||name, e-mail, mother’s name, schooling, address, telephone, CNPJ and link to the company, CPF, Gender, Access password, date of birth and photo/image.||– Identify the User;
– Provide personalized service;
– Provide personalized service;
– Inform about news, features, content, news and other events relevant to the maintenance of the relationship as a USER;
– Promote and publicize FABRICADS products and services;
– Respond to USER requests and requests for information;
– Conduct research of interest to FABRICADS;
– Allow access to restricted areas of FABRICADS digital environments;
– Reporting to supervisory bodies in accordance with the law;
– Customize the customers’ environment in their navigation in FABRICADS’ digital environments.
|Transaction information Purchased||products and services and respective quantities, transaction date and period, invoice number||Credit the purchased products and services.|
|Digital identification data||IP Address and Logical Port of Origin, Records of interactions with digital environments, Screens accessed, device (operating system version, geolocation and other installed applications, if necessary), Session ID and Cookies.||– Identify the User
-– Administer, credit and send services acquired through digital environments;
-– Fulfill the obligations arising from the use of the services;
-– Promote and publicize products and services;
-– Carry out fraud prevention, customize the navigation experience in the channels, through georeferencing;
|Anonymized data Conduct||analysis and statistical studies|