Tech Advogados will access personal data in the following situations:

• Through interaction with a client/partner: when the Client/Partner provides and inputs personal data necessary for the provision of services and use of the products supplied;
• Interaction with its employees: when its employees and/or contractors of any kind use its systems and platforms to comply with the duties and obligations arising from their contractual relationship;

In light of this, Tech Advogados has well-defined purposes for collecting personal data from our partners and clients. Below we present, in an organized manner, such purposes and the related information:

What personal data do we collect?

• Full name/Trade name;
• Date of birth/Date of incorporation;
• Age;
• Sex;
• Mother’s name;
• Father’s name;
• RG (national ID);
• CPF;
• CNPJ;
• Name of legal guardian (if underage);
• ZIP code;
• Full address;
• Gender;
• Ethnicity;
• Marital status;
• Profession;
• Contact phone;
• E-mail;
• Passport/RNE;
• Protocol and password for access to platforms;
• Tax data;
• CNAE;
• Operational data;
• Device information, such as IP address, location or provider;
• Usage information and browsing history, such as information on how the User browses within our services, browsing history and which Tech Advogados service features are most used.

For what purposes do we collect data?

• Phone, electronic or virtual service;
• Pre-scheduling and scheduling of meetings;
• Performing preliminary analyses of the information provided in order to offer a preliminary solution or the most suitable product;
• Compliance with legal obligations;
• Conducting satisfaction surveys;
• Providing responses to questions and requests;
• Sharing data with affiliated partners to facilitate and/or enable provision of the proposed services;
• Providing advertising and information about other related products from Tech Advogados or its partners that may be of interest to the client;
• Configuring and administering Client/Partner accounts;
• Providing technical assistance, support and training to the User;
• Internal research and development purposes and to improve, test and enhance the resources and functions of Tech Advogados’ services;
• Meeting internal and external audit requirements, including Tech Advogados’ information security obligations;
• Sending emails to: (a) confirm or cancel requests through the use of the platform; (b) communicate future changes this policy may undergo; and (c) disclose updates, changes, inclusion of new data sources and improvements to the platform;
• Exercising the rights of Tech Advogados, including but not limited to privacy, security, networks, systems and properties of Tech Advogados and/or third parties;
• Complying with requests from courts, law enforcement, regulatory bodies and other public institutions and authorities, including rules in force outside the user’s country of residence;
• Exercising the rights of Tech Advogados and defending against legal actions, as well as complying with any legislation or regulation applicable to Tech Advogados or third parties with whom we work, and for the proper performance of contracts executed between Tech Advogados and its clients and partners.

Cookies: Our website uses cookies, which are small text files placed on the electronic devices used by visitors during access, to enable a more pleasant browsing experience, allow access to restricted areas and make it possible to assess and improve the site’s performance.

A cookie is a small text file placed on a computer or other device, used to identify the Client/Partner and the device used and to collect information. Cookies can perform the following functions:

• Necessary Cookies: Essential to allow the Client/Partner to browse a platform and use its features;
• Performance Cookies: Collect information on how the User uses Tech Advogados’ platform and serve to improve navigation and enhance the experience. Information collected includes, for example, internet browsers and operating systems used, the domain name of the previously visited site, number of visits, average visit duration and pages viewed.
• Functional Cookies: Allow the platform to remember choices made by the Client/Partner (such as username or ID, language preference or the area/region where the Client/Partner is located) and provide enhanced, more personal features.
• Advertising Cookies: Track the Client/Partner’s browsing habits and are used to provide targeted advertising. These cookies also limit the number of times an ad is shown and measure the effectiveness of advertising campaigns. They also remember that the Client/Partner has visited a site and this information is shared with other organizations, such as advertisers.

At any time, the Client/Partner may disable cookies through their browser settings, by installing plugins available on the market, or by using other technologies they deem necessary.

In addition to cookies, Tech Advogados uses other tracking technologies, such as:

Web Server and Platform Logs: Tech Advogados’ servers automatically collect certain information to help administer and protect the services offered, as well as to analyze use and improve the Client/Partner’s experience. Information collected includes:

• IP address and browser type;
• Device information, including the Unique Device Identifier (UDID), MAC address, Identifier for Advertisers (IFA) and similar identifiers assigned by us or by third parties;
• Device operating system and other technical data;
• The city, state and country from which you access Tech Advogados’ platform, including for fraud prevention;
• Information or text typed;
• Links and buttons clicked.

Connections via Social Networks: Some Tech Advogados services may include social network features, such as Facebook “Like” buttons and widgets; “Share” button and interactive mini-programs.

Tech Advogados may allow the Client/Partner to use their own social network logins to access some of the services offered, in which case Tech Advogados may receive and store authentication information from those services.

We may need to share your data with third parties in certain situations, as explained below:

• Third parties in order to participate in the sale, merger, acquisition, restructuring, joint venture, assignment, or transfer of part or all of Tech Advogados’ business, in which case partner/client data will be considered an asset and transferred in a potential transaction;

Third parties that need data to protect the rights of Tech Advogados;

• Any individual or legal entity to whom partners/clients request the portability of their data.

As a rule, we store personal and general data for the time necessary to achieve the purposes reported in section 1. We also strictly observe the retention periods defined by law. Therefore, to determine the retention time for personal data, we consider the purposes for which the data were collected, as well as the existence of a law or regulation that requires retention and maintenance.

The security of the personal data entrusted to us is treated as a top priority. We therefore apply strict technical standards aligned with market best practices. Internally, we maintain a rigorous Security Policy (including administrative, technical, and physical protections), with a dedicated team responsible for managing data securely in accordance with legal provisions, regulatory requirements, technology changes, and other relevant factors that may influence how personal data is protected—so we stay ahead when it comes to information security.

Tech Advogados employs all reasonable market efforts to ensure the security of its systems and the data collected, using highly qualified and reputable Internet providers and database and storage servers, as well as security certificates (SSL) and software to prevent unauthorized access to systems, and standard methods to encrypt and anonymize collected data.

This Policy represents Tech Advogados’ effort to safeguard Client/Partner information. However, due to the very nature of the Internet, it is not possible to guarantee that malicious third parties will not succeed in improperly accessing stored information; if this occurs, Tech Advogados will be liable within the limits provided by law.

Furthermore, within a reasonable period to be defined by the National Data Protection Authority (“ANPD”), Tech Advogados shall notify the ANPD and the affected Client/Partner of any security incident that may entail risk or significant damage to the affected Client/Partner, mentioning at least:

• Description of the nature of the personal data affected;
• Information about the data subjects involved;
• Indication of the technical and security measures used to protect the data, subject to trade and industrial secrets;
• Risks related to the incident;
• Reasons for any delay, if the communication was not immediate; and
• Measures that have been or will be adopted to reverse or mitigate the effects of the damage.

We also encourage our partners and clients to do their part. We therefore recommend the following good security habits:

• Create strong passwords and change them regularly;
• Never share the password used in our services under any circumstances;
• Contact and/or disclose information only to duly affiliated and identified personnel of Tech Advogados, requesting prior identification;
• Be wary of links received via electronic message that are not from our official email address.

Please note that we cannot be held responsible for the acts of third parties, such as cases of misuse and sharing of your login and password data.

If you identify or become aware of anything that may compromise the security of your data, please contact us immediately through our Service Channel.

1. The LGPD establishes certain rights related to personal data that you may exercise. However, for your security, we subject such requests to prior validation of the requester’s identity, as well as a feasibility assessment by Tech Advogados, as we must ensure the confidentiality of our trade and industrial secrets and respect other legal limits.
2. Below is a summary of the rights ensured by the LGPD and some basic requirements—besides identity validation—for processing:
   
   

Tech Advogados does not intend to transfer any client/partner personal data collected to locations outside Brazil. If any of the situations below do not apply, clients/partners will be informed in advance by email, at which time the user may accept or not the transfer; in the event of disagreement, Tech Advogados may restrict access to systems.

International data transfers under the LGPD require guidelines to be established by the National Data Protection Authority (ANPD). Once defined, Tech Advogados undertakes to comply fully with them.

If you have questions, complaints, suggestions or requests (including regarding your rights), please feel free to contact us through our Service Channel.

This Policy shall be governed by, interpreted and enforced in accordance with the laws of the Federative Republic of Brazil, regardless of conflicts of such laws with the laws of other states or countries. The courts of São Paulo shall have jurisdiction to resolve any dispute arising out of this instrument, with the parties waiving any other venue, however privileged.