Test now

Privacy Policy

Version – Revision Date – History – 10/17/2024

1 – Introduction

We promote and uphold values aimed at protecting personal data and information.

By responsibly handling the information entrusted to us, we not only safeguard the privacy of those who have provided their data but also ensure that it is processed securely and in compliance with applicable laws.

In respect of the principles of openness and transparency, this Policy outlines the methods and procedures adopted for the processing of your personal data, informing you about the security measures in place and the rights you, as the data subject, can exercise.

2 – Definitions

For better understanding of this document, the following definitions apply:

  • Personal Data: Any information related to an identified or identifiable natural person.
  • Sensitive Personal Data: Personal data concerning racial or ethnic origin, religious beliefs, political opinions, trade union membership, or membership in a religious, philosophical, or political organization; data related to health or sexual life; genetic or biometric data linked to an individual.
  • Anonymized Data: Data that has undergone technical processing so that the data subject can no longer be identified.
  • Data Subject: The natural person to whom the personal data being processed relates.
  • Data Processing: Any operation performed on personal data, such as collection, production, reception, classification, use, access, reproduction, transmission, distribution, processing, archiving, storage, elimination, evaluation or control of information, modification, communication, transfer, or extraction.
  • Database: A structured set of personal data, established in one or multiple locations, in electronic or physical format.
  • Controller: A private legal entity responsible for making decisions regarding the processing of personal data.
  • Processor: A natural or legal person, public or private, who processes personal data on behalf of the controller.
  • Data Protection Officer (DPO): The individual appointed by the controller and processor to act as a communication channel between the controller, data subjects, and the National Data Protection Authority (ANPD).
  • Consent: A free, informed, and unequivocal expression by which the data subject agrees to the processing of their personal data for a specific purpose.
  • Elimination: The deletion of data or sets of data stored in a database, regardless of the procedure used.
  • International Data Transfer: The transfer of personal data to a foreign country or an international organization of which the country is a member.
  • Shared Use of Data: The communication, dissemination, international transfer, interconnection of personal data, or shared processing of personal databases by public agencies and entities in compliance with their legal duties, or between these entities and private organizations, reciprocally, with specific authorization for one or more permitted processing modalities.

3 – Data Controller

For the provision of customer service in dental clinics, decisions regarding the collection and processing of your personal data are the responsibility of DOCTOR IA SOLUÇÕES TECNOLÓGICAS EM INTELIGÊNCIA ARTIFICIAL INOVA SIMPLES (I.S.), registered under CNPJ No. 58.216.686/0001-32, located at Rua Visconde de Inhaúma, No. 134, 20th Floor, Room 2001 (Part), ZIP Code 20.091-901, Rio de Janeiro, RJ, Brazil.

The institutional email is [email protected], and the contact phone number is +55 (21) 97197-8101.

4 – Data Processors

The processing of data is carried out by the companies specified below, which are committed to protecting your personal data in accordance with the limitations set by DOCTORIA and applicable legislation.

5 – Data Collection and Processing

We collect and process personal data in the following situations:

  • Directly from the data subject when filling out forms, using our platform, or interacting with our services.
  • Automatically through cookies and tracking technologies when you visit our website or use our applications.
  • From third parties, including service providers, business partners, and publicly accessible sources, always in compliance with applicable laws.

The processing of personal data is carried out for purposes such as:

  • Providing and improving our services.
  • Complying with legal and regulatory obligations.
  • Ensuring the security and integrity of data.
  • Carrying out marketing and communication activities, where consent is required.

6 – Types of Personal Data Processed

The categories of personal data we process may include:

  • Identification data: Name, date of birth, CPF (Brazilian Tax ID), RG (Identity Document), passport number.
  • Contact data: Address, email, phone number.
  • Professional and academic data: Occupation, employer, education level.
  • Health-related data: Medical history, prescriptions, treatments, solely for the purpose of dental care and in compliance with legal requirements.
  • Financial data: Payment information, invoicing, transaction history.
  • Technical data: IP address, cookies, usage data related to our platforms and services.

7 – Legal Basis for Processing

The processing of personal data is carried out based on the following legal grounds:

  • Consent, when expressly provided by the data subject.
  • Performance of a contract, when processing is necessary for service execution.
  • Compliance with legal or regulatory obligations, such as tax or health regulations.
  • Legitimate interest, in cases where processing is necessary for operational efficiency and service improvement, ensuring the fundamental rights of the data subject.
  • Protection of health, particularly in dental services.

8 – Data Retention Period

Personal data is stored only for the time necessary to fulfill the purposes for which it was collected, in compliance with legal and regulatory obligations. After this period, data is deleted or anonymized.

The retention period varies depending on:

  • Legal obligations.
  • The existence of active services and contracts.
  • The need to preserve records for dispute resolution or fraud prevention.

9 – Security Measures

We implement technical and administrative measures to protect personal data against unauthorized access, loss, alteration, or destruction. These measures include:

  • Data encryption.
  • Access controls and restricted permissions.
  • Secure storage and backup.
  • Regular security audits.

Despite our efforts, no digital security system is entirely infallible. Therefore, we recommend that users take personal security precautions, such as using strong passwords and keeping their access credentials confidential.

10 – Data Subject Rights

You, as a data subject, have the following rights under the applicable data protection laws:

  • Access: Obtain confirmation of whether we process your personal data and access the data we hold.
  • Correction: Request correction of incomplete, inaccurate, or outdated data.
  • Anonymization, blocking, or deletion: Request anonymization, blocking, or deletion of unnecessary, excessive, or unlawfully processed data.
  • Portability: Request the transfer of data to another service provider, when technically feasible.
  • Withdrawal of consent: Revoke consent at any time, affecting future processing.
  • Objection to processing: Object to processing based on legitimate interest, under certain circumstances.
  • Review of automated decisions: Request review of decisions made solely by automated means.

To exercise these rights, you can contact us via [email protected]. Requests will be handled in accordance with legal timeframes.

11 – International Data Transfers

When necessary, personal data may be transferred to countries with different data protection regulations. In such cases, we ensure compliance with the applicable legal requirements, adopting safeguards such as standard contractual clauses, adequacy decisions, or other mechanisms permitted by law.

12 – Use of Cookies and Similar Technologies

Our website and services use cookies to improve user experience. Cookies are small files stored on your device that help us analyze usage patterns, remember user preferences, and enhance service security.

You can manage cookie preferences through your browser settings. However, disabling some cookies may affect the functionality of certain features.

For more details, see our Cookie Policy.

13 – Policy Updates

We may update this Privacy Policy periodically to reflect changes in legislation or our practices. Any modifications will be posted on our website with the revised version’s effective date.

We encourage you to review this Policy regularly to stay informed about how we handle your data.

14 – Contact Information

If you have any questions, requests, or complaints regarding the processing of your personal data, please contact us at:

  • Email: [email protected]
  • Phone: +55 (21) 97197-8101
  • Address: Rua Visconde de Inhaúma, No. 134, 20th Floor, Room 2001 (Part), ZIP Code 20.091-901, Rio de Janeiro, RJ, Brazil

We are committed to protecting your privacy and responding to your requests promptly and transparently.

DoctorIA Technological Solutions in Artificial Intelligence

Brazilian National Registry of Legal Entities: 58.216.686/0001-32

All rights reserved.

Quick access

About

Privacy Policy
Terms and Conditions

Contact

Facebook Instagram