PRIVACY POLICY TERMS
GENERAL INFORMATION This Privacy Policy contains information regarding the collection, processing, use, storage, protection, and deletion of personal data from clients of JOÃO ARMENTANO ARQUITETURA LTDA, CNPJ nº 59.818.930/0001-08, and its website, aiming to demonstrate absolute transparency on this subject and clarify to all interested parties the types of data collected, the reasons for collection, and how clients can manage or delete their personal information.
This document was prepared in compliance with the General Data Protection Law (Law 13.709/18) and may be amended due to regulatory updates; therefore, clients are advised to periodically review this section.
1 – WHAT INFORMATION IS COLLECTED AND WHY DO WE COLLECT IT? To perform our services, we require access to various registration data (personal and sensitive personal data) of our clients. Without this data, we cannot provide our services properly.
The personal data we collect to carry out services at João Armentano Arquitetura are:
Personal Data – Basic registration information collected via website access: a) Full name of the client; b) Email address; c) Data collected through cookies (for analytical and marketing purposes).
Personal Data – For registration and service initiation (collected directly from the client): a) Full name of the client; b) Email address; c) Files shared by the client or visitor (architectural projects, resumes); d) Interaction data via marketing/tracking cookies; e) Company name; f) CNPJ; g) Business address; h) Articles of incorporation; i) Legal representative’s data; j) Nationality; k) Marital status; l) Profession; m) CPF; n) RG; o) Residential address.
This information is necessary for identification, contact, and contract drafting for the services to be provided.
Additionally, we collect more sensitive information, such as:
a) Payment information chosen by the data subject (client): account debit, bank slip, or credit card, as well as the payment method (full or installment payments) for the service contracted with the company; b) Detailed information about architectural projects, measurements, addresses, as well as photos and videos necessary for analysis, planning, and execution of the contracted service.
2 – HOW IS THE INFORMATION COLLECTED? The personal and sensitive personal data of clients are collected when they contact João Armentano Arquitetura through our service channels to use the services offered. The collected data is used by the company’s employees to prepare studies, estimates, and monitor the execution of the respective service, stored in a system accessible only to João Armentano Arquitetura members.
3 – WHAT PRINCIPLES DO WE FOLLOW IN DATA PROCESSING? The information collected, processed, and stored by João Armentano Arquitetura adheres to the following principles:
a) Purpose, Adequacy, and Necessity: The information collected serves the specific purpose of preparing estimates, personalized customer guidance, and monitoring service execution. Our Privacy Policy was developed to align the company and website with LGPD rules, explaining that information will be used solely for the stated purpose.
b) Data Quality: João Armentano Arquitetura ensures the integrity of the data collected, used, and stored, ensuring its accuracy, timeliness, clarity, and relevance. Clients must provide truthful, accurate, and complete data, and may request corrections or updates at any time.
c) Security and Prevention: João Armentano Arquitetura is responsible for implementing technical and administrative measures to protect data from unauthorized access and accidental or illegal destruction, loss, alteration, communication, or dissemination.
d) Free Access and Non-Discrimination: João Armentano Arquitetura guarantees easy access to data subjects regarding their data, the form and duration of processing. Confidentiality is ensured, with personal data used exclusively by company members and never for discriminatory, illegal, or abusive purposes.
Data processing for purposes not covered in this Privacy Policy will only occur after prior communication with the client, ensuring the rights and obligations specified herein remain applicable.
4 – HOW LONG ARE PERSONAL DATA STORED? João Armentano Arquitetura collects and stores client data as follows:
- Data collected through website access is stored on the hosting server.
- Data sent via the contact tool is stored in the company’s email.
Additionally, interaction data (cookies) may be processed by third-party platforms, such as Google Analytics.
All data will be stored for the duration necessary to provide the service, as stated in Article 15, Section I of Law 13.709/18. Data can be removed or anonymized upon client request, except where otherwise mandated by law.
Data storage will comply with the minimum and maximum retention periods established by the Consumer Protection Code (Law nº 8.078/90), between 5 and 10 years, respectively.
5 – WHAT SECURITY PROCEDURES DO WE ADOPT TO PROTECT DATA? João Armentano Arquitetura is committed to implementing technical and organizational measures to protect personal data from unauthorized access and from accidental or illegal destruction, loss, alteration, communication, or misuse.
We use available market information security systems, firewalls, and encryption to reduce system vulnerabilities and prevent potential unauthorized access. Licensed antivirus software monitors all devices in real-time, notifying of possible threats and eliminating them.
Additionally, we have specialized IT support to guide us in system security maintenance and employee training.
We are committed to notifying clients in the event of a security breach of their data.
6 – IS PERSONAL DATA SHARED? João Armentano Arquitetura shares personal and sensitive personal data exclusively with its employees and service providers, for the sole purpose of analyzing required measures and performing the contracted service.
7 – WILL PERSONAL DATA BE TRANSFERRED TO THIRD PARTIES? João Armentano Arquitetura will transfer personal and sensitive data to designated service providers to perform the contracted service. Data is shared as needed for accurate registration and service execution. Each provider has its own privacy policy, which we recommend reviewing for further understanding.