Privacy Policy

Last updated: 02/10/2024

Introduction

Welcome to Autentic Serviços Financeiros. We as a cryptocurrency OTC (Over-the-Counter) and P2P (Peer-to-Peer) service provider, we are committed to protecting and respecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website and use our services, in accordance with the Brazilian General Data Protection Law (Lei Geral de Proteção de Dados – LGPD, Law No. 13,709/2018).

By accessing or using our services, you agree to the collection and use of information in accordance with this policy.

 

Autentic Privacy Policy

1. Definitions

For the purposes of this Privacy Policy:

  • Personal Data: Any information related to an identified or identifiable individual.
  • Data Subject: The individual to whom the personal data relates.
  • Processing: Any operation performed on personal data, such as collection, use, storage, or deletion.
  • Controller: The person or entity that determines the purposes and means of processing personal data.
  • Processor: The person or entity processing personal data on behalf of the controller.

2. Data We Collect

We may collect the following types of personal data to provide our services:

  • Identification Information: Full name, date of birth, nationality, gender, document numbers (e.g., CPF, passport), and photographs for KYC (Know Your Customer) purposes.
  • Contact Information: Email address, phone number, and physical address.
  • Financial Information: Bank account details, cryptocurrency wallet addresses, and transaction history.
  • Usage Data: Information related to how you interact with our services, such as IP address, browser type, access times, and referring website addresses.
  • Device Information: Information about your device, including unique device identifiers and network data.

3. How We Collect Personal Data

We collect your personal data in the following ways:

  • Directly from You: When you provide information by completing forms on our website, registering for an account, engaging with customer support, or submitting identification documents for KYC purposes.
  • Automatically: Through the use of cookies and other tracking technologies when you interact with our website or services.
  • From Third Parties: We may receive your personal data from third-party partners or service providers (e.g., credit bureaus, financial institutions) when required to verify your identity or process transactions.

4. Purposes of Data Processing

We use your personal data for the following purposes:

  • To Provide Services: To facilitate cryptocurrency transactions, including P2P and OTC trades.
  • KYC and AML Compliance: To verify your identity and comply with legal obligations under anti-money laundering (AML) regulations.
  • Communication: To contact you about account-related matters, updates to our services, and marketing communications (with your consent).
  • Fraud Prevention: To detect, prevent, and mitigate fraudulent or illegal activities.
  • Security: To protect the security of our website and services.
  • Legal Obligations: To comply with legal requirements and respond to regulatory requests.

5. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Consent: When you voluntarily provide information for marketing purposes or to register an account.
  • Contractual Obligations: To fulfill the terms of service and execute transactions.
  • Legal Obligations: To comply with legal and regulatory requirements (e.g., AML, KYC).
  • Legitimate Interests: For purposes such as fraud prevention, service improvement, and communication related to our services.

6. Data Sharing and Disclosure

  • We may share your personal data with:

    • Service Providers: Third-party companies that provide services such as identity verification, payment processing, and technical support, to help us operate our business.
    • Regulatory Authorities: When required by law or legal process, we may disclose your data to comply with governmental or regulatory obligations.
    • Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your personal data may be transferred to the acquiring entity.

    We will never sell your personal data to third parties for commercial purposes.

    Information: Retained for as long as your account remains active.
  • KYC Information: Retained for the period required by applicable laws and regulations (typically 5 years after account closure).

Once your data is no longer required, we will securely delete or anonymize it.

7. Data Retention

We will retain your personal data only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, or as required by law (e.g., for tax, AML, and audit purposes).

  • Account Information: Retained for as long as your account remains active.
  • KYC Information: Retained for the period required by applicable laws and regulations (typically 5 years after account closure).

Once your data is no longer required, we will securely delete or anonymize it.

8. Data Security

We implement appropriate technical and organizational measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption: Encryption of sensitive data such as financial information.
  • Access Controls: Restriction of access to personal data to authorized personnel only.
  • Monitoring: Continuous monitoring of systems for potential security vulnerabilities.

While we strive to protect your personal data, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

9. Your Rights Under LGPD

As a data subject under the LGPD, you have the following rights:

  • Right to Access: You can request access to the personal data we hold about you.
  • Right to Rectification: You can request corrections to inaccurate or incomplete data.
  • Right to Deletion: You can request the deletion of your personal data when it is no longer necessary for the purposes it was collected, subject to legal retention requirements.
  • Right to Restriction: You can request the restriction of processing under certain circumstances.
  • Right to Data Portability: You have the right to receive your personal data in a structured, commonly used, and machine-readable format.
  • Right to Withdraw Consent: Where processing is based on your consent, you have the right to withdraw it at any time.

To exercise these rights, please contact us at the page https://autenticservicosfinanceiros.site/contact-us/

10. Cookies

We use cookies and similar tracking technologies to enhance your experience on our website. Cookies help us track user behavior, analyze website traffic, and personalize content.

You can manage your cookie preferences through your browser settings.

 

11. International Data Transfers

We may transfer your personal data to countries outside of Brazil. In such cases, we ensure that appropriate safeguards, such as Standard Contractual Clauses (SCCs), are in place to protect your data in compliance with applicable laws.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We encourage you to review this page periodically for any updates.