Privacy and Data Protection

Privacy and Data Protection

At FlawLegs, we care about our customers and all individuals with whom we maintain relationships. Therefore, when it comes to personal data, this care does not differ.

This section has been created with the aim of answering frequently asked questions and providing guidance on how to exercise your rights regarding privacy.

Frequently Asked Questions: What is LGPD, and what is its objective?

Answer: The General Data Protection Law (LGPD), Law No. 13,709/2018, establishes rules for the processing of personal data of individuals, with the aim of protecting the fundamental rights of freedom and privacy.

To whom does LGPD apply?

Answer: LGPD protects the data of individuals.

Who must comply with LGPD?

Answer: LGPD applies to any company or person handling data of individuals located in Brazil, regardless of the medium (whether through the internet or a physical establishment).

What are personal data?

Answer: Personal data is information that allows the direct identification of an individual (name, ID, home address, etc.) or indirectly (data recorded during access to applications and websites or behavior profiles that allow identification).

What are sensitive personal data?

Answer: They are data about racial or ethnic origin, religious beliefs, political opinions, affiliation to unions or organizations of a religious, philosophical, or political nature, data related to health or sexual life, genetic or biometric data, when linked to an individual.

Who is the data subject?

Answer: It is the individual to whom the personal data refers (customers, employees, service providers, etc.).

What does the term "data processing" mean?

Answer: Data processing is a broad concept that includes any type of operation performed with personal data. Common processes in various companies generally include collection, use, access, processing, storage, and transmission or transfer of personal data.

Who are the parties involved in data processing?

Answer: Generally, processing involves two types of agents: (i) the Data Controller and (ii) the Data Processor. The controller determines what will be done with the collected data and the purpose of the processing. The Processor is the one who processes data on behalf of the Controller and in accordance with their instructions.

What is the Processor?

Answer: The Processor is the person appointed by the Controller and/or the Processor to act as a communication channel between the Controller, data subjects, and the National Data Protection Authority (ANPD), the entity responsible for overseeing, implementing, and supervising compliance with LGPD.

In what situations does LGPD allow the processing of personal data?

Answer: The processing of personal data can only be carried out in the following situations:

With the consent of the data subject.

To comply with a legal or regulatory obligation.

By the Public Administration for the execution of public policies.

To conduct studies by research organizations.

For the execution of contracts or preliminary procedures related to a contract in which the data subject is a party, at the request of the data subject.

For the regular exercise of rights in judicial, administrative, or arbitration proceedings.

For the protection of the life and physical integrity of the data subject or third parties.

For the protection of health in procedures carried out by health professionals, health services, or health authorities.

When necessary to meet the legitimate interests of the controller or third parties, except in cases where the fundamental rights and freedoms of the data subject requiring the protection of personal data prevail.

For credit protection.

What are the rights of data subjects under LGPD?

Answer: According to LGPD, you have the right to:

Confirm the existence of the processing of personal data. Request access to your personal data. Correct, complete, or update incorrect, incomplete, or outdated personal data.

Request anonymization, blocking, or deletion of unnecessary, excessive, or data processed in violation of LGPD.

Request data portability to another service provider or product.

Request the deletion of personal data processed with the consent of the data subject, except in cases where storage is allowed by law.

Obtain information about public and private entities with which the company has shared data.

Obtain information about the possibility of not granting consent and the consequences of such refusal.

Revoke previously granted consent.

Where can I send requests to exercise my rights under LGPD?

Answer: You can exercise your rights through the following contact channel or by sending a request to the email contactolobousk@gmail.com. Where can I find documents related to personal data protection? For more information about the processing activities carried out by FlawLEgs, check our Privacy Policy, where details are provided on:

The information we collect and process about you and why.

With whom we share your data and for what purposes.

The form and location of data storage.

The types of cookies used and their purposes.

What your rights are and how you can exercise them.

How can I contact in case of doubts about LGPD or data protection?

Answer: You can send your doubts related to data protection and the processing of personal data to the email contactFlawLegs@gmail.com.