The Privacy Notice of Caixa Seguridade Participações S.A. (“Company”) aims to demonstrate its commitment to the protection of your personal data and to provide transparency in the treatment of such data in line with the General Law for the Protection of Personal Data (LGPD). Below we will present how your information will be collected, used, protected, as well as what your rights are and how they can be exercised.
WHO WE ARE
This Notice applies to Caixa Seguridade Participações S.A, a company controlled by Caixa Econômica Federal. Participated companies and subsidiaries have their own privacy policies, appropriate to the products and services they provide.
THE INFORMATION WE COLLECT
In order for us to provide our services, it is necessary to collect some information. The Company may collect data provided directly by you or collected automatically. See below, in more detail, the ways of collecting information:
Personal data voluntarily provided by you: the Company will collect the personal data forwarded or informed when accessing one of our channels: websites, e-mail or telephone. For example: when you send us a message via email or website, you are likely to knowingly provide us with data such as
• Email address;
• Other personally identifiable personal information that you choose to provide.
Personal data provided by third parties: The Company may receive your personal data through third parties, whether partners or service providers, who have a relationship with you. It is also possible that the Company collects: data from public databases, made available by authorities (such as the Federal Revenue Service, for example) or by third parties, or even data made public by you on websites or social networks, always respecting your privacy.
Personal data automatically provided by you: the Company may automatically collect information through technologies such as cookies and identification of IP addresses, for statistical purposes and to improve communication with our visitors.
For all collection of personal data, the Company will always follow the following premises:
• Only information necessary for the provision of the services offered will be collected;
• If necessary, we will ask for authorization or notify you in advance about the collection of new data, along with due justification;
• The personal data collected will only be used in accordance with the informed purposes.
On our site, we maintain links to other sites on the internet because we believe they can help our visitors with certain functionality or content. However, this privacy notice is restricted to the services offered on the pages of this website. Thus, we are not responsible for the specific services, procedures and policies of websites to which we have a link and/or which have a link to ours.
Cookies are small files that are stored on your hard drive and that serve to improve the performance of the website, measure the audience, allow you to have a faster, more practical and individualized viewing experience, prepare data and statistical reports on the activities of the platforms of the Company, among other things.
The information collected and stored by cookies may refer directly to natural persons or even indirectly allow their identification, through, for example, making inferences and crossing with other information and, sometimes, through the formation of behavioral profiles. In the latter case, it is possible to consider the behavioral profile as personal data.
It is important to note that most browsers accept cookies by default. But, if you prefer, you can remove or reject cookies through your browser or device settings.
PURPOSE OF PROCESSING PERSONAL DATA
Below we present the most common purposes for which we process your personal data:
• performance of services and fulfillment of contracts or preliminary steps;
• meet legal or regulatory obligations;
• respond to inspections and audits;
• for the regular exercise of rights in judicial, administrative or arbitration proceedings;
• respond to questions, requests, complaints or compliments;
• storage of information for defense in judicial, administrative or arbitration proceedings;
• deployment, development, evaluation and improvement of our products and services;
• verify your identity to prevent and combat fraud, illegal or unauthorized activities;
• enable the offer of products or services by the Company or the CAIXA Conglomerate and partners;
• through authorization granted by you.
SHARING PERSONAL DATA
The Company shares your personal data in the treatment cases provided for in the LGPD, only when strictly necessary and always focusing on information security.
The most common situations in which your information is shared are:
i. With CAIXA Conglomerate companies, especially Caixa Econômica Federal, Caixa Corretora and Caixa Seguridade Affiliate companies;
ii. With partner companies and suppliers, in the development and provision of services available to you;
iii. With authorities, government entities or other third parties, for the protection of the Company’s interests in any type of conflict, including lawsuits and administrative proceedings;
iv. In the case of transactions and corporate operations involving the Company, in which case the transfer of information will be necessary for the continuity of services; or,
v. By court order or by the request of administrative authorities that have legal competence for its request.
MAINTENANCE OF PERSONAL DATA SECURITY
The Company is committed to protecting your personal data, which includes taking measures such as:
• Protection against unauthorized access;
• Restricted access for people to the place where personal information is stored; and
• Adoption of procedures so that agents, internal employees or external partners who process personal data undertake to maintain the confidentiality of information, adopting the best practices for handling this data, as determined in corporate policies and procedures.
The Company also has guidelines for data governance, information security, privacy and adopts institutional measures aimed at protecting personal data.
The Data Protection Policy and the Information Security Policy can be consulted on the Company’s website: https://www.ri.caixaseguridade.com.br/governanca-corporativa/estatuto-politicas-e-codigos/.
PERSONAL DATA STORAGE TIME
The personal data processed by the Company are eliminated after the end of their treatment, within the scope and within the technical limits of the activities, or when requested by you, except in cases of need to comply with a legal or regulatory obligation, respecting the service life cycle. of this obligation, transfer to a third party – provided that the data processing requirements are respected – and for exclusive use by the Company as Controller, when anonymized.
Your personal data will be securely deleted after the retention period has expired.
PERSONAL DATA HOLDER RIGHTS
The Company respects and guarantees the Holder the possibility of submitting requests based on the rights provided for in the LGPD:
i) Confirmation of the existence of treatment;
ii) Access to data;
iii) Correction of incomplete, inaccurate or outdated data;
iv) Anonymization, blocking or elimination of data that is unnecessary, excessive or treated in non-compliance with the LGPD;
v) Data portability to another service or product provider;
vi) Deletion of data processed with the consent of the Holder;
vii) Information sharing your data;
viii) Information on the possibility that the Holder does not provide consent and on the consequences of the refusal, when applicable;
ix) Revocation of consent
IN CHARGE OF PROCESSING PERSONAL DATA AND PRIVACY CHANNEL
The Director of Governance and Risks, Hebert Luiz Gomide Filho, is the Person in Charge of Personal Data Processing at Caixa Seguridade.
To clarify doubts about privacy, exercise the rights of the Holder of personal data or speak with the Person in Charge, send a request through the Privacy Channel, available at https://www.ri.caixaseguridade.com.br/contatos/privacidade/, or by e-mail email@example.com.
Privacy Notice update date: 08/23/2023.