Legal
Privacy Policy
This Policy describes how we collect, use, share and protect personal data while operating Contrasync.
Last updated: 20/04/2026
Contents
1. What we collect
We collect data to provide and improve the platform. The main types include:
- Sign-up and profile data: name, email, phone, tax ID (where applicable) and avatar.
- Company and operational data: legal/trade name, company tax ID, contracts, parties involved, time logs, compliance settings and uploaded documents.
- Tax data (where applicable): information required to issue and manage electronic service invoices and other product features.
- Session and security data: IP, browser, operating system, session identifier and security-related events (e.g. login alerts).
- Technical data: logs, error records and metrics for diagnostics, stability and fraud prevention.
2. How we use it
- Operate Contrasync (accounts, contracts, hours, compliance, documents and notifications).
- Provide support and operational communications (e.g. notices and confirmations).
- Ensure security, auditing and fraud prevention.
- Improve features, performance and reliability.
- Comply with applicable legal and regulatory obligations.
Where applicable, use may include external integrations required for specific features (for example, issuing electronic service invoices).
3. Sharing
We share data only when necessary to provide the service, such as:
- Between clients and service providers, to the extent needed to perform contracts, compliance and operational routines.
- With infrastructure and operations providers (e.g. hosting and storage) to keep the platform running.
- With external integrations used by you, where applicable.
- With authorities where there is a legal obligation or a valid order.
5. Retention
We keep data for as long as needed to fulfill the purposes of this Policy, operate the service and comply with legal obligations. Where applicable, you may request deletion or anonymization, subject to record-keeping obligations.
6. Security
We adopt technical and organizational measures to protect personal data. No system is fully immune to risk; we therefore recommend that you protect your credentials and report any suspicion of misuse.
7. Your rights
You may have rights under the LGPD, such as confirmation of processing, access, correction, portability, deletion, information about sharing and withdrawal of consent, where applicable.
For details about your rights and how to request them, see the LGPD page.
8. Contact
For questions about privacy and personal data, reach out through the contact channel on the site.