Privacy Policy

Learn how we handle your personal data under the Brazilian General Data Protection Law (LGPD).

1. Introduction

This policy describes how RASYS processes your personal data in accordance with the Brazilian General Data Protection Law (LGPD — Law 13.709 of 2018).

RASYS is committed to protecting the privacy and Personal Data of its clients, partners and visitors. This Privacy Policy describes how we collect, use, store and protect your personal information in compliance with LGPD.

Depending on the context of the processing, RASYS may act as CONTROLLER and/or PROCESSOR of personal data, as defined by LGPD.

As CONTROLLER, RASYS is committed to protecting the privacy and Personal Data of its clients, partners, vendors and visitors when it determines the purposes and means of processing, particularly in the scope of its administrative, commercial and institutional activities.

As PROCESSOR, RASYS may process personal data on behalf of its clients, in accordance with their instructions and applicable contracts, in the context of providing network, server and technology infrastructure management services.

2. Personal Data Collected

RASYS may collect and process personal data directly or through its clients, depending on the nature of the relationship and its role in the processing, including:

  • Identification data: name, CPF/CNPJ (Brazilian tax IDs), address, phone number, email
  • Browsing data: IP address, browser type, pages visited, time on site
  • Communication data: messages sent via contact forms, WhatsApp or email
  • Professional data: job title, company, area of activity (where applicable)
  • Data processed in client environments: when RASYS acts as PROCESSOR, as defined by the contractual scope

As a rule, RASYS does not process sensitive personal data as defined by art. 5, II of LGPD, unless such processing is required to comply with a legal obligation or is expressly determined by the client controller.

3. Purposes of Processing

Personal data is processed for clear, legitimate purposes consistent with RASYS's role, including:

  • Provision of network and server management services
  • Customer support and technical assistance
  • Sending commercial proposals and quotes
  • Communication about service updates
  • Compliance with legal and regulatory obligations
  • Continuous improvement of our services and website

4. Legal Basis for Processing

Personal data processing follows the legal bases set out in LGPD, according to the role performed by RASYS in each operation, including:

  • Consent: when you fill out contact forms or subscribe to our newsletter
  • Contract performance: for the provision of contracted services
  • Legitimate interest: for service improvements and relevant communications
  • Legal obligation: to comply with tax and regulatory requirements

5. Data Sharing

Personal data may be shared, subject to RASYS's role in the processing, with:

  • Service providers: companies that assist in our operations (hosting, email, etc.), always under contracts ensuring data protection
  • Public authorities: when required by law or court order
  • Business partners: only with your prior consent

We do not sell, rent or trade your personal data.

6. Data Security

We implement technical and organizational measures to protect your personal data, including:

  • Encryption of data in transit (HTTPS/SSL)
  • Restricted access controls for authorized personnel only
  • Continuous monitoring of our systems
  • Regular backups and recovery plans
  • Staff training and awareness on data protection

7. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes described in this policy, following these criteria:

  • Client data: for the duration of the contract and for the applicable legal period after its termination
  • Contact/lead data: for up to 24 months after the last contact
  • Browsing data: for up to 12 months, unless a different legal obligation applies
  • Tax data: for the legal period of 5 years

8. Data Subject Rights

Under LGPD, you have the following rights regarding your personal data:

  • Confirmation and access: to know whether we process your data and to access it
  • Correction: to request correction of incomplete or inaccurate data
  • Anonymization or erasure: to request anonymization or deletion of unnecessary data
  • Portability: to receive your data in a structured format
  • Withdrawal of consent: to withdraw your consent at any time
  • Objection: to object to processing under certain circumstances

To exercise your rights, please contact us at: [email protected]

When RASYS acts as PROCESSOR, requests may be forwarded to the client CONTROLLER, without prejudice to the support provided by RASYS as required by LGPD.

9. Cookies and Similar Technologies

Our website uses Cookies to improve your browsing experience. Cookies are small files stored on your device that allow us to:

  • Remember your preferences
  • Analyze site traffic
  • Personalize content

You may configure your browser to refuse Cookies, but this may affect some features of the site.

10. Changes to This Policy

This Privacy Policy may be updated periodically to reflect changes in our practices or in applicable law. We recommend that you review this page regularly. Relevant changes may be communicated through RASYS's official channels. The date of the last update will always be indicated at the end of this document.

11. Contact

For questions related to privacy and data protection, please contact our Data Protection Officer (DPO):

Last updated: January 2025