Techduto Solutions is committed to building innovative products and ensuring the highest level of corporate integrity and ethics in personal data treatment, in compliance with the General Data Protection Law (LGPD — Law No. 13.709/2018) and other applicable legislation.
Art. 1 — Identification of the Controller
Business Name: Techduto Solutions Industry and Trade Ltda.
CNPJ: 06.069.277/0001-57
Address: Av. Central, 620 — Chácaras Reunidas — São José dos Campos, SP, Brazil
Site: www.techduto.com.br | Email: privacidade@techduto.com.br
Techduto operates as Controller of personal data treated in its activities, according to the definition of Art. 5º, VI of the LGPD.
Art. 2 — Data Treatment Principles
Any data treatment by Techduto complies with the principles established in Art. 6º of the LGPD:
- Licitude, Lealdade and Transparência — we process data legally, in a loyal and transparent manner, clearly informing its purposes
- Limitation to Purpose — data is used exclusively for specific, informed, and legitimate purposes
- Minimization and Necessity — we collect only what is strictly necessary for the declared purposes
- Accuracy — we maintain data accurate and up-to-date throughout the retention period
- Pseudonymization and Limitation of Storage — we protect the identity of the titleholder and maintain data for the strictly necessary time
- Integrity, Confidentiality and Security — we protect data against unauthorized access, losses, and security incidents
- Responsibility (Accountability) — we document all protection measures and can demonstrate compliance when requested
- No Discrimination — no data treatment will be performed for illicit or abusive discriminatory purposes
- Free Access — we guarantee the titleholder easy and free access to information about the treatment of their data
- Prevention — we adopt proactive measures to prevent damages related to data treatment
Art. 3 — Collected Personal Data
3.1 Data Provided Directly by the Data Subject
- Full Name and Position
- Email Address and Phone / WhatsApp
- Company, Position and CNPJ (when applicable)
- Physical Address (for delivery or commercial registration)
- Date of Birth and Nationality (in formal registration contexts)
- Information contained in contact forms and budget request forms
3.2 Automatically Collected Data
- IP Address and approximate location data
- Browser type, operating system, and device
- Visited pages, time of stay, and site interactions
- Cookie data (detailed in Art. 9)
- WhatsApp session identifiers (via Tintim)
3.3 Data of Minors
The Techduto website is not directed at individuals under 18 years old. We do not intentionally collect personal data from minors. If we become aware of unintentional collection, the data will be deleted immediately.
Art. 4 — Purpose and Legal Basis of Treatment
| Purpose | Legal Basis (LGPD) |
|---|---|
| Respond to contact and budget requests | Art. 7º, V — Execution of contract |
| Send technical and commercial information requested | Art. 7º, V — Execution of contract |
| Communicate with clients and suppliers | Art. 7º, V — Execution of contract |
| Understand client profiles and promote products | Art. 7º, IX — Legitimate interest |
| Improve navigation experience on the site | Art. 7º, IX — Legitimate interest |
| Statistical traffic analysis (Google Analytics) | Art. 7º, IX — Legitimate interest |
| Management of attendance via WhatsApp (Tintim) | Art. 7º, V — Execution of contract |
| Marketing communications (newsletter) | Art. 7º, I — Consent |
| Compliance with legal and contractual obligations | Art. 7º, II — Compliance with legal obligation |
| Provide technical assistance and after-sales service | Art. 7º, V — Execution of contract |
Art. 5 — Data Sharing
The Techduto does not sell, rent, or commercialize personal data. Sharing occurs only in the following situations:
- Tintim (WhatsApp CRM): a WhatsApp-based customer service platform used for receiving and managing commercial leads. Data provided via WhatsApp is processed by this platform in accordance with its own privacy terms
- Essential Service Providers: hosting companies, email marketing platforms, Google Analytics — all with contractual obligations of confidentiality and compliance with the LGPD
- Brandt Group: a strategic partner with access to customer data only upon explicit consent from the data owner or for contract execution
- Competent Authorities: when required by judicial, regulatory, or legal order
Art. 6 — Storage and Security
The personal data is stored in secure servers in Brazil and/or in cloud providers with recognized security certifications. We employ cybersecurity practices based on market standards, reviewed periodically to face technological threats. The measures include:
- Cryptography in transit (HTTPS/TLS)
- Access control based on functions (minimum privilege)
- Security monitoring and access logs
- Periodic training of collaborators on data protection
- Periodic vulnerability tests and incident management
Art. 7 — Retention Period
Data is retained for the time necessary for the purpose that motivated the collection, or as required by applicable legislation:
- Contact and budget data: 5 years after the end of the commercial relationship
- Navigational data (server logs): 6 months
- Newsletter data: until consent is revoked
- WhatsApp customer service data: in accordance with Tintim platform policy
- Data for compliance with legal obligations: in accordance with applicable legal deadline (e.g. 5 years for fiscal/accounting data)
Art. 8 — Rights of the Holder
According to Arts. 17 to 22 of the LGPD, you have the right to:
- Confirmation: know if we treat your personal data
- Access: obtain a copy of the data we have about you
- Correction / Rectification: correct incomplete, inaccurate or outdated data
- Anonymization, blocking or deletion: of unnecessary, excessive or treated in contradiction data
- Portability: receive your data in a structured format for transfer to another supplier
- Information on sharing: know the operators and third parties with whom we share data
- Revocation of consent: at any time, without prejudice to the lawfulness of the previous treatment
- Opposition: contest treatments based on legitimate interest that cause damage
- Review of automated decisions: request human review of decisions made exclusively by automated processing that affect your interests (Art. 20, LGPD)
To exercise these rights, contact us by email at privacidade@techduto.com.br. We will respond within 15 working days.
Art. 9 — Cookies
What are cookies
Cookies are small text files stored in your browser that help us offer a better experience, analyze site usage, and personalize content. As is common practice on professional sites, this site uses cookies. You can prevent their configuration by adjusting your browser settings, but this may affect site functionality.
Types of cookies we use
| Type | Purpose | Examples | Required |
|---|---|---|---|
| Essential | Basic site functionality — session, security, forms | WordPress session, XSRF token | Yes |
| Analytics | Traffic analysis, visited pages, time spent | Google Analytics (_ga, _gid) | No |
| Marketing / Remarketing | Personalized ads and conversion analysis | Google Ads, LinkedIn Insight | No |
| Preferences | Remembering user settings and language | Theme preferences | No |
| WhatsApp / Tintim | Session identification for WhatsApp support | Tintim session cookie | No |
Google Analytics
This site uses Google Analytics for traffic analysis. Google Analytics collects data such as: visited pages, session duration, approximate location, device type, and browser. Data is anonymized and not linked to identifiable personal data. For more information: Google policies.
How to manage cookies
You can manage and revoke cookies in your browser settings at any time. Disabling non-essential cookies does not harm the site’s main functionality.
Art. 10 — External Links
Our site may contain links to third-party sites (GACC, Grupo Brandt, suppliers). Techduto is not responsible for the privacy practices of these sites. We recommend reading the privacy policies of each visited site.
Art. 11 — Changes to this Policy
This Policy may be updated periodically to reflect legal, technological, or operational changes. The “Last updated” date at the top of the document will indicate the current version. For material changes, we will notify the owners by email or site notice, when applicable.
Art. 12 — Contact and Data Protection Officer (DPO)
To exercise your rights, clarify doubts, report security incidents or revoke consents, contact our Data Protection Officer:
- Email: privacidade@techduto.com.br
- Phone: (12) 3202-1096
- Address: Av. Central, 620 — Chácaras Reunidas — São José dos Campos, SP
- Business hours: Monday to Friday, from 8am to 6pm
Techduto guarantees a reasonable response time and respects local legislation requirements. If we cannot resolve the issue directly, you can contact the National Authority for Data Protection (ANPD): www.gov.br/anpd.