Privacy Policy

Last updated: 24/04/2026

1. Introduction

Infomance is committed to protecting your privacy. This policy describes how we collect, use, and protect your personal information in compliance with LGPD (Brazil) and GDPR (EU).

2. Data Collected

We collect the following types of data:

  • Account data: name, email, company, password (encrypted)
  • Usage data: API requests, endpoints accessed, timestamps
  • Payment data: processed by Stripe, we do not store card data
  • Technical data: IP address, browser, device

3. Purpose of Processing

We use your data to:

  • Provide and maintain our services
  • Process payments and billing
  • Provide technical support
  • Improve our products and services
  • Comply with legal obligations

4. Data Sharing

We share data only with:

  • Stripe: payment processing
  • Analytics services: aggregated and anonymous usage
  • Legal authorities: when required by law

5. Data Retention

We keep your data while your account is active or as needed to provide services. After cancellation, data is retained for 90 days for backup purposes, then permanently deleted.

6. Security

We implement technical and organizational measures to protect your data, including encryption in transit (TLS) and at rest, access controls, and security monitoring.

7. Your Rights

You have the right to:

  • Access your personal data
  • Correct inaccurate data
  • Request deletion of your data
  • Data portability in structured format
  • Object to processing in certain circumstances

8. Cookies

We use essential cookies for service functionality and analytics cookies to understand usage. You can configure your browser to refuse cookies, but this may affect functionality.

9. International Transfer

Your data may be processed on servers outside your country. We ensure international transfers follow adequate protection mechanisms under LGPD and GDPR.

10. LGPD (Brazil)

For users in Brazil, Infomance acts as data controller under Law 13.709/2018 (LGPD). The data protection officer can be contacted at [email protected].

11. GDPR (European Union)

For EU users, we process data based on consent or contract performance. You can exercise your rights under GDPR Articles 15-22 by contacting [email protected].

12. Changes to this Policy

We may update this policy periodically. We will notify you of significant changes via email. We recommend reviewing this page regularly.

13. Contact

To exercise your rights or clarify privacy questions:

Email: [email protected]

DPO: [email protected]