PRIVACY POLICIES

We from Avero Nutrition use some personal data belonging to those who use our website. In doing so, we act as controller of this data and are subject to the provisions of Federal Law no. 13,709/2018 (General Personal Data Protection Law – LGPD).

We care about the protection of your personal data and, therefore, we provide this privacy policy, which contains important information about:

– Who should use our website;

– What data we collect and what we do with it;

– Your rights in relation to your personal data;

1. Data we collect and reasons for collection

Our website collects and uses some personal data from our users, in accordance with the provisions of this section.

1. Personal data collected

Nós coletamos os seguintes dados pessoais de nossos usuários:

IP address;

This data is collected at the following times:

When the user accesses the website;

This data is collected for the following purposes:

Guarantee the security and authenticity of access to the website.

2. Sensitive data

No sensitive data will be collected from our users, understanding those defined in arts. 11 et seq. of the Personal Data Protection Law. Therefore, there will be no collection of data on racial or ethnic origin, religious conviction, political opinion, membership of a trade union or organization of a religious, philosophical or political nature, data relating to health or sexual life, genetic or biometric data, when linked to a natural person.

3. Cookies

Cookies are small text files automatically downloaded to your device when you access and browse a website. They basically serve to identify devices, activities and user preferences.

Cookies do not allow any file or information to be extracted from the user’s hard drive, and it is not possible, through them, to access personal information that did not come from the user or the way in which they use the website’s resources.

a. Website cookies

Website cookies are those sent to the user and administrator’s computer or device exclusively by the website.

The information collected through these cookies is used to improve and personalize the user experience, and some cookies can, for example, be used to remember the user’s preferences and choices, as well as to offer personalized content.

b. Third-party cookies

Some of our partners may set cookies on the devices of users who access our website.

These cookies, in general, aim to enable our partners to offer their content and services to the user who accesses our website in a personalized way, by obtaining navigation data extracted from their interaction with the website.

The user can obtain more information about third-party cookies and the way in which data obtained from them is treated, in addition to having access to a description of the cookies used and their characteristics, by accessing the following link:

Google:

https://policies.google.com/privacy?hl=en-US

Meta:

https://www.facebook.com/privacy/policy/

The entities responsible for collecting cookies may transfer the information obtained to third parties.

c. Cookie management

The user may oppose the registration of cookies by the website, simply by disabling this option in their browser. More information on how to do this in some of the main browsers used today can be accessed from the following links:

Internet Explorer: https://support.microsoft.com/en-us/windows/internet-explorer-help-23360e49-9cd3-4dda-ba52-705336cc0de2

Safari:https://support.apple.com/safari

Google Chrome:

https://support.google.com/chrome/?hl=en#topic=7439538

Mozila Firefox:

https://support.mozilla.org/en-US/

Opera:

https://www.opera.com/help/tutorials/security/privacy

Disabling cookies, however, may affect the availability of some tools and functionalities on the website, compromising their correct and expected functioning. Another possible consequence is the removal of user preferences that may have been saved, compromising their experience.

4. Collection of data not expressly provided for

Occasionally, other types of data not expressly provided for in this Privacy Policy may be collected, provided that they are provided with the user’s consent, or that collection is permitted based on another legal basis provided for by law.

In any case, data collection and resulting processing activities will be communicated to website users.

2. Sharing of personal data with third parties

We do not share your personal data with third parties. Despite this, it is possible that we do so to comply with some legal or regulatory determination, or even to comply with an order issued by a public authority.

3.How long will your personal data be stored

Personal data collected by the website is stored and used for a period of time that corresponds to what is necessary to achieve the purposes listed in this document and that takes into account the rights of its holders, the rights of the website controller and the applicable legal or regulatory provisions.

Once the storage periods for personal data have expired, they are removed from our databases or anonymized, except in cases where there is the possibility or need for storage due to legal or regulatory provision.

4. Legal bases for processing personal data

Each personal data processing operation must have a legal basis, that is, a legal basis, which is nothing more than a justification that authorizes it, provided for in the General Personal Data Protection Law.

All of Our personal data processing activities have a legal basis that supports them, among those permitted by law. More information about the legal bases we use for specific personal data processing operations can be obtained from our contact channels, provided at the end of this Policy.

5.User rights

The website user has the following rights, granted by the Personal Data Protection Law:

– confirmation of the existence of treatment;

– access to data;

– correction of incomplete, inaccurate or outdated data;

– anonymization, blocking or deletion of unnecessary, excessive or processed data that does not comply with the provisions of the law;

– portability of data to another service or product provider, upon express request, in accordance with the regulations of the national authority, observing commercial and industrial secrets;

– deletion of personal data processed with the holder’s consent, except in cases provided for by law;

– information on public and private entities with which the controller shared data;

– information about the possibility of not providing consent and the consequences of refusal;

– revocation of consent.

It is important to highlight that, under the terms of the LGPD, there is no right to delete data processed based on legal bases other than consent, unless the data is unnecessary, excessive or treated in non-compliance with the law.

1. How the holder can exercise their rights

To ensure that the user who intends to exercise their rights is, in fact, the holder of the personal data subject to the request, we may request documents or other information that can assist in their correct identification, in order to protect our rights and the rights of third parties. This will only be done, however, if absolutely necessary, and the applicant will receive all related information.

6. Security measures when processing personal data

We employ technical and organizational measures capable of protecting personal data from unauthorized access and situations of destruction, loss, loss or alteration of that data.

The measures we use take into account the nature of the data, the context and purpose of the processing, the risks that a possible violation would generate for the user’s rights and freedoms, and the standards currently used in the market by companies similar to ours.

Among the security measures adopted by us, we highlight the following:

– Our users’ data is stored in a secure environment;

– We limit access to our users’ data, so that unauthorized third parties cannot access it;

– We use an SSL (Secure Socket Layer) certificate, so that data transmission between user devices and our servers is encrypted;

– We keep records of everyone who has, in some way, contact with our data.

Even if you do everything you can to avoid security incidents, it is possible that a problem may occur caused exclusively by a third party – such as in the case of attacks by hackers or crackers or, even, in the case of the user’s sole fault, which occurs, for example, when he himself transfers his data to a third party. Therefore, although we are, in general, responsible for the personal data we process, we are exempt from responsibility if an exceptional situation such as these occurs, over which we have no control.

In any case, if any type of security incident occurs that could create significant risk or damage for any of our users, we will inform those affected and the National Data Protection Authority about what happened, in accordance with the provisions of the General Data Protection Law.

7. Complaint to a supervisory authority

Without prejudice to any other administrative or judicial remedy, holders of personal data who feel, in any way, aggrieved, may lodge a complaint with the National Data Protection Authority.

8. Changes to this policy

This version of this Privacy Policy was last updated on: 04/19/2024.

We reserve the right to modify these rules at any time, especially to adapt them to any changes made to our website, whether by making new features available or by deleting or modifying existing ones.