Privacy Policy - Hidrolight

Privacy Policy

1 – Purpose

Hidrolight is committed to making users of its website aware of the personal data it may process.
Committed to respecting your privacy and to transparency, we have drawn up this privacy policy in order to provide you with a clear understanding of how your personal data is processed on our website.
It should be noted that this instrument provides information on how personal data collected exclusively on the Hidrolight’s website is processed . The other hypotheses for processing the data of employees, suppliers, outsourced service providers, job applicants, among others, can be found in the Hidrolight’s internal Privacy Policy, which can be requested by the data subjects via e-mail privacidade@hidrolight.com.br.

Personal data will only be processed for as long as it is necessary and appropriate for the purposes for which it is collected, and the processing will always comply with one of the legal bases provided for in the Brazilian General Data Protection Law.
Hidrolight requires all users of its website to read this document carefully before submitting their data in the registration forms. Your registration means that you have understood how we collect and process your personal data.

For more information about the processing of your personal data, please contact us via e-mail privacidade@hidrolight.com.br

2– Definitions

● Data subject: natural person to whom the personal data being processed refer;
● Personal data: information relating to an identified or identifiable natural person, for example, such as name, e-mail  address, telephone number, among others;
● Sensitive personal data: personal data on racial or ethnic origin, religious conviction, political opinion, membership of a trade union or religious, philosophical or political organization, data relating to health or sex life, genetic or biometric data, when linked to a natural person;
● Processing: any operation carried out with personal data, such as collection, production, reception, classification, use, access, reproduction, transmission, distribution, processing, archiving, storage, deletion, evaluation or control of information, modification, communication, transfer, dissemination or extraction.;
● Controller: a natural or legal person, whether governed by public or private law, who is responsible for decisions relating to the processing of personal data.;
● Data Protection Officer: person appointed by the controller and operator to act as a communication channel between the controller, the data subjects and the National Data Protection Authority. (ANPD);
● Operator: natural or legal person, public or private, who processes personal data on behalf of the controller;
● International data transfer: transfer of personal data to a foreign country or international body of which the country is a member.;
● National Data Protection Authority (ANPD): an organ of the federal public administration, part of the Presidency of the Republic, which has, among other functions provided for by Law no. 13.709/2018, to ensure the protection of personal data, to draw up guidelines for the National Policy for the Protection of Personal Data and Privacy, to supervise and apply sanctions in the event of data processing carried out in breach of the legislation, through an administrative process that ensures the right to an adversarial hearing, a broad defense and the right to appeal, and to promote awareness among the population of the rules and public policies on the protection of personal data and security measures.
● Shared use of data: communication, dissemination, international transfer, interconnection of personal data or shared processing of personal databases by public bodies and entities in compliance with their legal powers, or between these and private entities, reciprocally, with specific authorization, for one or more processing modalities permitted by these public entities, or between private entities.

3 – Principles applicable to data processing carried out by Hidrolight

● Purpose: processing carried out for legitimate, specific, explicit and informed purposes, without the possibility of further processing incompatible with those purposes.;
● Adequacy: compatibility of the processing with the purposes informed to the data subject, according to the context of the processing;
● Necessity: limitation of processing to the minimum necessary for the fulfillment of its purposes, covering data that is relevant, proportionate and not excessive in relation to the purposes of data processing.;
● Free access: ensure to data subjects easy and free consultation on the form and duration of processing, as well as on the completeness of their personal data.;
● Data quality: ensure to data subjects that the data is accurate, clear, relevant and up-to-date, in accordance with the need and purpose for processing it;
● Transparency: ensure to data subjects clear, precise and easily accessible information about the processing carried out and the respective processing agents, with due regard for commercial and industrial secrets.;
● Security: use of technical and administrative measures to protect personal data from unauthorized access and accidental or unlawful destruction, loss, alteration, communication or dissemination.;
● Prevention: adoption of measures to prevent the occurrence of damage as a result of the processing of personal data;
● Non-discrimination: data processing cannot be carried out for unlawful or abusive discriminatory purposes;
● Responsibility and accountability: demonstration by the agent of the adoption of effective measures capable of proving compliance with personal data protection rules, including the effectiveness of these measures.

4 – Hypotheses in which Data Processing is permitted

Article 7 of the LGPD sets out the cases in which the processing of personal data is permitted. These assumptions are called “legal bases” and they can be used either individually or together to support data processing. It is important to clarify that the legal bases for data processing are:
● consent;
● compliance with legal or regulatory obligations by the controller;
● the processing and shared use of data carried out by the public administration necessary for the execution of public policies provided for in laws and regulations or supported by contracts, agreements or similar instruments;
● studies carried out by research organizations, guaranteeing, whenever possible, the anonymization of personal data;
● the execution of a contract or preliminary procedures related to a contract to which the data subject is a party, at the request of the data subject;
● the regular exercise of rights in judicial, administrative or arbitration proceedings;
● the protection of the life or physical safety of the owner or a third party.

5 – Data collected, form and purpose of collection

Personal data
Hidrolight processes the data entered on the website https://hidrolight.com.br/.
This data will be provided directly by you via the “Work with Us” and “Whatsapp”.

● Personal identification (CPF and full name);
● Date of birth;
● Gender;
● Country of origin;
● Home location (zip code, state and city);
● E-mail;
● Mobile phone.
This data will be collected in order to contact the user by telephone or e-mail:
● Allow to receive applications. The tab provides a centralized location where candidates can send their CVs, simplifying the recruitment process.
● Transparency and communication with stakeholders. By inserting this field on the website, the company demonstrates transparency and shows that it values open communication with potential candidates and/or clients who want targeted service.

6 – Personal data storage period

The data collected on the Hidrolight website will be stored:
a) for the time required by law;
b) until the end of the processing of personal data, i.e. when the purpose has been achieved or when the data are no longer necessary or relevant to the achievement of the purpose or when the data subject has the right to request the end of the processing and the deletion of their data or when there is a legal determination to this effect;
c) for the time necessary to preserve Hidrolight’s legitimate interest, as the case may be;
d) for the time necessary to safeguard the regular exercise of Hidrolight’s rights.

7 – Controller of personal data

Hidrolight, as a rule, will be the controller of your personal data. For the purposes of the applicable legislation, the controller is the person responsible for decisions relating to the processing of personal data.
data.

8 – Data Protection Officer

Hidrolight appoints the company RTC, Privacy & Security as Data Protection Officer, enrolled with the Brazilian Corporate Taxpayer (CNPJ) under no. 36.570.041/0001-60, headquartered at Rua Coronel Cabral, 158 – Neighborhood Centro, City of Tubarão/SC, which can be contacted at the following e-mail address privacidade@hidrolight.com.br.

9 – Sharing your personal data

Hidrolight may, exceptionally, share your personal data with providers of software and other information technologies, for the purpose of generating registration and adopting any measures essential to the operation of the functionalities offered on the site intended for communication with the user.

10 – Rights concerning to your personal data

You have various rights in relation to your personal data, which Hidrolight undertakes to ensure, including:

● confirmation of the existence of processing and access to data;
● the correction of incomplete, inaccurate or outdated data;
● the anonymization, blocking or deletion of unnecessary, excessive or improperly processed data;
● portability to another service or product provider, upon express request;
● information on public and private entities with which the controller has shared data.

11 – Storage and Security

Hidrolight is committed to the security of your personal data. The parent company takes every precaution to maintain this protection, employing security systems and procedures adopted by the market to protect its data.
It should also be pointed out that the controller will notify the national authority and the data subject of any security incident that could lead to significant risk or damage to data subjects.

12 – Doubts

If you believe that your data has been used in a way that is incompatible with this Policy or with your choices as a data subject, or if you have any other questions, comments or suggestions, please contact us at the following e-mail address privacidade@hidrolight.com.br.

13 – Changes

Hidrolight reserves the right to amend this Privacy Policy at any time, by publishing the updated version on this page, in order to ensure that it reflects the actual processing of personal data carried out by us.

This Privacy Policy comes into force on November 28, 2023.

Subscribe to the Hidrolight newsletter

Subscribe to our newsletter and stay up to date with our news.