Legal

Privacy Policy

This Policy describes how we collect, use, share and protect personal data while operating Contrasync.

Last updated: 20/04/2026

1. What we collect

We collect data to provide and improve the platform. The main types include:

  • Sign-up and profile data: name, email, phone, tax ID (where applicable) and avatar.
  • Company and operational data: legal/trade name, company tax ID, contracts, parties involved, time logs, compliance settings and uploaded documents.
  • Tax data (where applicable): information required to issue and manage electronic service invoices and other product features.
  • Session and security data: IP, browser, operating system, session identifier and security-related events (e.g. login alerts).
  • Technical data: logs, error records and metrics for diagnostics, stability and fraud prevention.

2. How we use it

  • Operate Contrasync (accounts, contracts, hours, compliance, documents and notifications).
  • Provide support and operational communications (e.g. notices and confirmations).
  • Ensure security, auditing and fraud prevention.
  • Improve features, performance and reliability.
  • Comply with applicable legal and regulatory obligations.

Where applicable, use may include external integrations required for specific features (for example, issuing electronic service invoices).

3. Sharing

We share data only when necessary to provide the service, such as:

  • Between clients and service providers, to the extent needed to perform contracts, compliance and operational routines.
  • With infrastructure and operations providers (e.g. hosting and storage) to keep the platform running.
  • With external integrations used by you, where applicable.
  • With authorities where there is a legal obligation or a valid order.

4. Cookies and similar technologies

We may use cookies and similar technologies to keep sessions active, increase security and improve the browsing experience. Depending on the environment and settings, some cookies may be essential for the service to work.

5. Retention

We keep data for as long as needed to fulfill the purposes of this Policy, operate the service and comply with legal obligations. Where applicable, you may request deletion or anonymization, subject to record-keeping obligations.

6. Security

We adopt technical and organizational measures to protect personal data. No system is fully immune to risk; we therefore recommend that you protect your credentials and report any suspicion of misuse.

7. Your rights

You may have rights under the LGPD, such as confirmation of processing, access, correction, portability, deletion, information about sharing and withdrawal of consent, where applicable.

For details about your rights and how to request them, see the LGPD page.

8. Contact

For questions about privacy and personal data, reach out through the contact channel on the site.