We collect and use some personal data belonging to those who use our website. In doing so, we act as the controller of such data and are subject to the provisions of Federal Law No. 13,709/2018 (General Data Protection Law - LGPD).
We take care of the protection of your personal data and, therefore, we provide this privacy policy, which contains important information about:
What data we collect and what we do with it;
Your rights regarding your personal data;
How to contact us.
Data we collect and reasons for collection
Our website collects and uses some personal data from our users, in accordance with the provisions of this section.
1.1. Personal data expressly provided by the user
We collect the following personal data that our users expressly provide us when using our website:
Full name;
Address data;
Phone numbers;
Email address.
The data provided by our users are collected for the following purposes:
So that we can send offers to our customers;
So that customers can request quotes;
So that we can contact customers.
1.2. Sensitive data
We do not collect sensitive data from our users, as defined in arts. 11 and following of the Personal Data Protection Law. Thus, there will be no collection of data on racial or ethnic origin, religious belief, political opinion, membership in a union or organization of a religious, philosophical, or political nature, data concerning health or sexual life, genetic or biometric data, when linked to a natural person.
1.3. Collection of data not expressly provided for
Occasionally, other types of data not expressly provided for in this Privacy Policy may be collected, provided that they are supplied with the user's consent, or even that the collection is permitted based on another legal basis provided for by law.
In any case, the collection of data and the resulting treatment activities will be informed to the users of the site.
Sharing of personal data with third parties
We do not share your personal data with third parties. However, it is possible that we may do so to comply with some legal or regulatory determination, or even to comply with an order issued by a public authority.
How long your personal data will be stored
The personal data collected by the site are stored and used for a period of time that corresponds to the necessary to achieve the purposes listed in this document and that considers the rights of their holders, the rights of the site controller, and the applicable legal or regulatory provisions.
Once the storage periods of personal data have expired, they are removed from our databases or anonymized, except in cases where there is the possibility or need for storage due to legal or regulatory provisions.
Legal bases for the processing of personal data
Each personal data processing operation needs to have a legal basis, that is, a legal basis, which is nothing more than a justification that authorizes it, provided for in the General Data Protection Law.
All our personal data processing activities have a legal basis that supports them, among those permitted by law. More information about the legal bases we use for specific personal data processing operations can be obtained from our contact channels, informed at the end of this Policy.
User rights
The user of the site has the following rights, conferred by the General Data Protection Law:
Confirmation of the existence of treatment;
Access to data;
Correction of incomplete, inaccurate, or outdated data;
Anonymization, blocking, or elimination of unnecessary, excessive data, or data treated in non-compliance with the provisions of the law;
Data portability to another service or product provider, upon express request, in accordance with the regulation of the national authority, observing commercial and industrial secrets;
Elimination of personal data processed with the consent of the holder, except in the cases provided for by law;
Information about public and private entities with which the controller carried out shared use of data;
Information about the possibility of not providing consent and about the consequences of the refusal;
Revocation of consent.
It is important to highlight that, under the LGPD, there is no right to eliminate data processed based on legal bases other than consent, unless the data are unnecessary, excessive, or treated in non-compliance with the law.
5.1 How the holder can exercise their rights
To ensure that the user who intends to exercise their rights is indeed the holder of the personal data subject to the request, we may request documents or other information that may assist in their proper identification, in order to safeguard our rights and the rights of third parties. This will only be done, however, if absolutely necessary, and the applicant will receive all related information.
Security measures in the processing of personal data
We employ technical and organizational measures capable of protecting personal data from unauthorized access and situations of destruction, loss, misplacement, or alteration of such data.
The measures we use take into account the nature of the data, the context and purpose of the treatment, the risks that an eventual breach would generate for the rights and freedoms of the user, and the standards currently employed in the market by similar companies.
Among the security measures adopted by us, we highlight the following:
Our users' data are stored in a secure environment;
We limit access to our users' data so that unauthorized third parties cannot access them;
We use SSL (Secure Socket Layer) certificate, so that data transmission between users' devices and our servers takes place in an encrypted manner;
We keep records of all those who, in any way, have contact with our data.
Although we do everything in our power to avoid security incidents, it is possible that a problem motivated exclusively by a third party occurs - such as in the case of hacker or cracker attacks or, even, in case of exclusive fault of the user, which occurs, for example, when they themselves transfer their data to a third party. Thus, although we are generally responsible for the personal data we process, we disclaim responsibility if an exceptional situation occurs over which we have no control.
In any case, if any type of security incident occurs that may generate risk or relevant damage to any of our users, we will communicate the affected parties and the National Data Protection Authority about the occurrence, in accordance with the provisions of the General Data Protection Law.
Complaint to a supervisory authority
Without prejudice to any other administrative or judicial remedy, the holders of personal data who feel in any way aggrieved may lodge a complaint with the National Data Protection Authority.
Changes to this policy
This version of this Privacy Policy was last updated on: 01/07/2021.
We reserve the right to modify these rules at any time, especially to adapt them to any changes made on our site, either by providing new functionalities, or by suppressing or modifying those already existing.
Whenever there is a modification, our users will be notified of the change.
How to contact us
To clarify any doubts about this Privacy Policy or about the personal data we process, contact our Personal Data Protection Officer through one of the channels mentioned below:
Email: contato@villagermania.com.br
Phone: 47 3301-4500
Postal address: Rua Antonina, 265, Encano do Norte, Indaial - CEP: 89085-164
