Privacy and Personal Data Protection Policy

 Welcome to the Estik website!

What is the purpose of this Policy?

The purpose of this policy is to protect the personal data of those who visit the Estik website. Estik is aware of the need to protect and adequately manage the personal information collected, as well as that shared by our customers, suppliers, service providers, partners and employees, and is concerned about your privacy and consequently protects your personal data. In addition, this Policy will help you understand what types of information we may collect, how this information may be used and with whom the information may be shared, adopting the appropriate measures to ensure the protection of personal data, in compliance with applicable legislation.

We collect your personal data to enable the development of our activities and, especially, to maintain a good relationship with you. We are aware that when we collect it, it will be under our responsibility, therefore, we have prepared this Policy to inform you how your personal data is treated and to ensure transparency in all the actions we carry out.

We would like to point out that if you are unable to read this Policy in full, or if you have any questions, please contact us by email at: dpo@dataguide.com.br

What terms or acronyms do you need to understand?

To correctly understand this Policy, we need you to understand some terms:

• We: whenever we use the expression “we” and its variations, we are referring to the company that owns the website you are using;

• Personal data: all information related to you, both information that quickly allows your identification (such as name, email or ID), and information that indirectly allows your identification (such as address and IP protocol).

• Processing of personal data: whenever we use this expression and its variations, we are referring to any and all actions that can be performed with your personal data (for example: collection, processing, dissemination, access, storage, among others).

• Purpose: the purpose for which we use your personal data, the objective of collecting and processing personal data.

• LGPD: acronym for the General Data Protection Law – legislation that guides and directs all our actions while processing your personal data.

What personal data do we collect?

In order to carry out our activities and establish a relationship with you, we need to collect your personal data, which will be provided when:

Data collected	Purpose	What is the legal basis for using your personal data?
Personal Data for Contact [Name, email and telephone number]	Through the “Contact” form we use this data when you express interest in one of our solutions and wish to speak to us.	Consent or Legitimate Interest
Candidate Personal Data [Name, email, telephone number and other professional information mentioned in the document sent by the candidate]	Through the “Work with Us” form on the website, we collect data from candidates interested in joining the team.	Legitimate Interest
Personal Browsing Data	Data used to carry out marketing and advertising actions, based on the analysis of which of our products may interest you; to provide personalized content and/or services according to your profile and characteristics; to personalize your experience while using our website; and to maintain and, in some cases (read the section “with whom we share your personal data”) share, analytical and statistical data on the visits and characteristics of visitors to our website so that the results of our interaction with you can be quantified and monitored.	Consent, when dealing with optional cookies. Legitimate interest

We may occasionally use your data for purposes not provided for in this Policy, but these will be within your legitimate expectations. Any use of your data for purposes that do not comply with this prerogative will be done with your prior authorization.

Other types of data not expressly provided for in this Privacy Policy may occasionally be collected, provided that they are provided with the user's consent, or that the collection is permitted or required by law.

Do we use Cookies?

We use cookies! They are text files sent by the website to your computer/device and stored there; they contain information related to the navigation of the website. In short, cookies are used to improve the user experience on our page (as per our cookie banner).

The cookie banner allows the user to manage the cookies collected, being able to consent or not to their use, except for those strictly necessary for the functioning of the website. We do not share this data with third parties, other than those responsible for the cookies themselves.

Personal data is collected through automated technologies, such as cookies and web beacons, when:

Status	Personal data provided
During and after visiting/using the website	Logging
	IP address
	Location
	Mobile device identifier
	Information about your computer equipment
	Consumer behavior
	Interaction behavior with the content we provide
	Duration of your visit
	Information about the content you search for

 

You can adjust your browser settings to disable or delete cookies. If cookies are enabled, we (and the third parties mentioned above) will issue cookies when you interact with our website.

We use the following cookies on our website:

Cookie	Domain	Purpose	Description	Duration
_gcl_au	estik.com.br	Analytics	Google Tag Manager sets the cookie to experiment advertisement efficiency of websites using their services.	3 months
test_cookie	estik.com.br	Advertisement	doubleclick.net sets this cookie to determine if the user’s browser supports cookies.	15 minutes
_ga	estik.com.br	Analytics	Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site’s analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.	1 year, 1 month and 4 days
_gid	estik.com.br	Analytics	Google Analytics sets this cookie to store information on how visitors use a website while also creating an analytics report of the website’s performance. Some of the collected data includes the number of visitors, their source, and the pages they visit anonymously.	1 day
_gat_gtag_UA_*	estik.com.br	Analytics	Google Analytics sets this cookie to store a unique user ID.	1 minute

 

How long do we store your personal data?

We store and maintain your information until the purpose (information in the item above) for which it was collected is achieved. Once the purpose is achieved, the personal information is deleted. However, at any time you can request the deletion of your personal data, especially in cases where: a) you decide to revoke the consent you gave us; b) the data processed is considered unnecessary or excessive; c) when there is a legal requirement to do so.

Whenever you request the deletion of your personal data, we will do our best to comply with your request, however, in some circumstances, the personal data will not be deleted, especially in cases where the personal data is processed because the Law itself requires us to do so (for example: if you request the deletion of your IP address within 6 months after visiting our website, we will not be able to delete it because the Law requires us to store it for 6 months).

What measures do we use to ensure the security of your personal data?

From the moment we collect your personal data, we are fully responsible for processing and storing it in accordance with strict cybersecurity protocols. The following are part of the measures we implement to keep your data safe:

a.) protection against unauthorized access;

b.) restricted access only to employees, suppliers and partners who really need to access it due to the functions they perform;

c.) contractual requirement that all our employees, suppliers and partners have the knowledge and adequate level of data protection and act in compliance with the LGPD;

d.) Information Privacy Program;

e.) Frequent security checks (including tests against hacker intrusions) of our internal storage systems;

f.) complementary technical measures and automated security controls, based on the best information security practices, following the ISO27001/27701, NIST and OWASP standards.

 

With whom do we share your personal data?

The information collected is for our exclusive use for the purposes mentioned herein, therefore, it will not be sold to third parties under any circumstances.

However, we may disclose your personal data in the good faith belief that such action is necessary for:

• Legal compliance. Including (i) legal processes and requests; (ii) establishing or exercising our legal rights or defending ourselves in legal proceedings; or (iii) as required by law; and

• Provision of Services by Third Parties. We may also work together with other companies in various activities to facilitate our service, to perform services related to the Website and/or event, or even to assist us in analyzing how our service is used, such as the companies that provide the cookies we use on our website. These companies receive your data only to the extent necessary to provide the contracted services. We emphasize that our contracts are guided by the data protection standards of the Brazilian legal system, prohibiting these third parties from disclosing or using the data for any other purpose.

If you would like more information about the sharing of your personal data, please contact us at the following email address: marketing@estik.com.br 

 

Is your personal data transferred to other countries?

We only transfer your personal data internationally when we contract with third parties to store certain data, and specifically when these third parties maintain servers in other countries. We contractually require these third parties to adopt appropriate and suitable standards to ensure the physical and cybersecurity of your personal data and your privacy.

 

Personal data of minors

We do not knowingly collect data from minors under the age of 18. If you are a parent or guardian of a minor and become aware that the minor has provided personal data on our website, please contact us at the following email address: marketing@estik.com.br 

What are your rights?

Data subjects have certain rights regarding their personal data and may exercise them at any time, in compliance with the provisions of the LGPD, by simply sending an email to: marketing@estik.com.br  or accessing the "Contact" tab on the website.

 

The data subjects have the following rights:

a.) Confirmation as to whether or not we process your personal data;

b.) Access to your personal data, if processed by us;

c.) Correction of incomplete, outdated or inaccurate personal data;

d.) Blocking, anonymization or deletion of unnecessary personal data or that you consider to be processed irregularly;

e.) Portability of your personal data, when applicable;

f.) Deletion of personal data, even if processed regularly;

g.) Information on the sharing of your data with other companies or with public entities/bodies;

h.) Information on the consequences of not consenting to a certain processing of personal data (for example: when you do not accept our cookie settings, you have the right to know the consequences of not accepting);

i.) Revocation of consent;

j.) Objection to any data processing that you consider to be irregular.

Responsible for processing personal data

On this website, the person responsible for processing the personal data collected is ESTIK. 

Personal data protection officer

Our personal data controller is Data Guide – Consultoria e Soluções em Proteção de Dados, a private legal entity registered with the CNPJ under no. 39.317.591/0001-60, with email: dpo@dataguide.com.br 

You can contact us at any time to:

• request information;

• fulfill your rights;

• recommend suggestions.

 

Updates to this Policy

We reserve the right to update or modify this Policy at any time and without prior notice, always aiming to improve the relationship we have with you and enhance the measures we implement to keep your data safe and your rights met. Therefore, you are invited to periodically visit this Policy. We emphasize that we will always publish the new revised version on our website.