Oplium treats all personal data processing for achieving business obligations such as different purposes. The means of acquisition, legal base of processing, usage, disclosure and retention may differ
“Personal Data” can be understood as any information related to an identified or identifiable person demanding protection of General Personal Data Protection.
The following policy describes how we collect and use your personal data and how we provide information about the right of data owners.
4. Which personal data are collected
We provide different categories of personal data we use below:
– Name and last name;
– Personal attributes such as age, gender, place and date of birth, country and picture;
Generated ID processed by federal body such as CPF and ID number, Brazilian work card (for Brazilians), PIS/PASEP (Program of Social Integration) and passport (for foreigners and Brazilian if necessary)
– Home information as address and phone numbers;
– Information about education;
– Professional Information such as work position, address and business phone numbers, functional identification number (FIN), employing record, pre-employment examination, dismissals examination and periodicals;
– Financial data as bank details, fixed income and credit score;
– Identifiable information from children (less than 12 years old), such as name, age, gender and address;
– Health data such as medical registration number and health insurance plan;
– Computer system information such as IP address, MAC address, device information model and version and operational system;
– Reported data about navigation in mobile devices such as geolocation and IP address;
– Legal information;
– Among others;
– Providing consulting services relating to technology and safety information, forensic investigation, among other services we provide to our costumers, a number of contract preparations, reports, analysis and other documentation related to our activities;
– Third parties, service providers and suppliers;
– New employment staff;
– Defense in judicial and administrative proceedings;
– Compliance with legal obligations we were held due the activities we perform;
– Creation of opportunities and presenting our solutions to our costumers and potential costumers;
– Financial and accounting management in order to invoice issues for the services provided and payment services monitoring;
– Sending invitations, publications and additional releases;
– Registration control of visitations in our units;
– User support;
Oplium can act as a crane operator to perform activities of data processing of our clients and all Personal Data collected are used – for provision services or their supply.
Personal Data are handled based on legal basis of Consent; Compliance with legal obligations; Exercise of the right; Contract execution; and legitimate interest (LGPD).
Personal Data will be kept while contracts with Oplium lasts as owner of the data or the costumer. After the financial year has ended, all data will be kept as long as it takes to ensure all legal obligations and exercise of rights, included for audit purposes of all our activities.
5. How personal data are collected
Personal Data are mainly collected as follows:
– Personal Data provided by the account holder — All Personal Data are collected to start and maintain a continuous commercial relationship with the data subject on electronic channels to include in our electronic systems and only been maintained by Oplium and its development partners.
– Personal Data provided by third parties — We also handles Personal Data provided by third parties. For example, received data by public officials in bankruptcy proceedings or provided by our customers or legal entities related to its workers and third parties who are providing services in general.
6. Data sharing with third parties in Brazil and abroad
We share your personal data with third parties when we able to do it in the terms of the current law into a contract that binds. When we share your data to third parties, we take safety measures contractually established that security measures and procedures adopted to your personal data accepted by properly legislation.
Personal Data can be transferred to:
– Third parties which provide services related to various applications and functionalities;
– Third parties which help us to provide services to our customers;
– Our customers;
– Insurance companies and freelancers that performs related activities to us;
– Public entities, regulatory agencies or third parties that should receive data by virtue and regulations required by law;
A “cookie” is a small file containing a string of characters or numbers and stored by the browser. The text file is then sent back to the server each time the browser requests a page from the server. Cookies are not tied to personal information which identify user, personal data stored about the user may be linked to stored information collected by cookies.
Session cookies are technically necessary for the proper functioning of the website and cannot be disregarded on our systems. These cookies are typically activated only in response to a user action for example a service request, privacy preferences, form-filling and login. You can set your browser to decline cookies or notify you when you receive a cookie, giving you the chance to decide whether to accept it. However, some website features may be lost. These cookies do not provide any personal identifiable information of its owner.
8. Personal Data safety measures
Oplium Information Security Policy is updated regularly in a consistent way according to best practices of the information security policy.
In conformity with the best information security policy practices, Oplium take protective measures with your personal data, such as: Secure the confidentiality, providing transparency, secure data isolation, personal data subject rights, surveillance and safety communications incident.
9. Data owner rights
Data owner can exercise the rights of access executed by Legal Representative
Their rights consist of:
– Confirmatory application of the processing personal data;
– Access to data;
– Correction of inaccurate, outdated or incomplete data;
– Restrict or delete unnecessary, excessive or non-conformity data in accordance with the current law;
– Data portability to any other service provider;
– Proprietary information in the possession of public or private entities with whom we share your data;
These requests may be made in the e-mail firstname.lastname@example.org.
Inaccurate or outdated personal data will be corrected once the data subject report inconsistent data. The information you provide us will be held in our records as a historical documentation.
This Policy may be updated periodically. We recommend that you visit this page to check whether if has been updated.