PURPOSE
The Repinho Group Privacy Policy aims to clarify to users how their data is collected, stored, shared, and processed within our operations.
With over 35 years in the market, the Repinho Group has always been committed to ethical and quality performance. Through this Policy, we reinforce the trust established with our customers, employees, and partners, making clear the measures taken to comply with the General Data Protection Law - LGPD (Law No. 13,709/2018).
SCOPE
The Repinho Group Privacy Policy must be observed by all affiliated, related, controlled, and controlling companies.
The affiliated, related, controlled, and controlling companies of the Repinho Group are as follows
COMPANY
Repinho Reflorestadora Madeiras e Compensados Ltda.
Repinho Reflorestadora Madeiras e Compensados Ltda.
CNPJ
82.196.510/0001-40
82.196.510/0002-21
CITY STAT
Guarapuava – Paraná
Guarapuava – Paraná
TERMS AND DEFINITIONS
For a better understanding of this Policy, it is important to present some definitions of the General Data Protection Law - LGPD, which are:
(I) Personal data: information related to an identified or identifiable natural person, that is, any data that allows the physical person to be identified, even indirectly;
(II) Sensitive personal data: personal data about racial or ethnic origin, religious belief, political opinion, union membership, or membership of religious, philosophical, or political organizations, data related to health or sexual life, genetic or biometric data, when linked to a natural person;
(III) Data subject: natural person to whom the personal data that are the subject of processing refer;
(IV) Processing: any operation performed with personal data, such as collection, production, reception, classification, use, access, reproduction, transmission, distribution, processing, filing, storage, elimination, evaluation, or control of information, modification, communication, transfer, dissemination, or extraction;
(V) Controller: natural or legal person, public or private, who is responsible for the decisions regarding the processing of personal data;
(VI) Processor: natural or legal person, public or private, who carries out the processing of personal data on behalf of the controller;
(VII) Data Protection Officer (DPO): person appointed by the Repinho Group who will act as a communication channel to meet the internal demands and those of our customers, regarding the processing of personal data, as well as those that may come from the National Data Protection Authority, which can be contacted through the email: support@repinho.com.br.
LEGAL BASIS
The General Data Protection Law - LGPD was designed to ensure the security of individuals' personal data, preventing treatment for discriminatory purposes and different from those informed, as well as harmful and improper treatments.
For this purpose, the LGPD covers some hypotheses in which data treatments can occur, structuring guidelines and methods for these to be carried out correctly, respecting the privacy of the data subjects.
Therefore, Grupo Repinho may support its operations in the following legal hypotheses:
Consent (item I of article 7 and paragraph 1 of article 14);
Legal or regulatory obligation (item II of article 7);
Contract execution (item V of article 7);
Regular exercise of rights in a judicial, administrative or arbitral proceeding (item VI of article 7);
Protection of life (item VII of article 7);
Legitimate interest (item IX of article 7);
Credit protection (item X of article 7).
PERSONAL DATA COLLECTED
Grupo Repinho will collect personal data in order to provide its services within legal parameters. The types of personal data and the way Grupo Repinho collects it depend on how you interact with us and for what purpose.
It is important to note that certain data is essential for full access and use of the group's services and website. Therefore, if you choose not to provide them, it may affect your access and use of our platforms.
To learn more about the data collected and their respective purposes, the following describes how your data is treated by the group:
SOURCE DATA
Site navigation
https://www.repinho.ind.br
Institutional website
https://www.repinho.ind.br
DATA
Browsing data:
IP address, date and time of access and pages visited.
Data about the access device:
Operating system and browser type.
Contact:
full name, state, city and email.
Download materials:
Full name, state, city, email and profession.
Resume submission:
Full name, state, city, email, telephone.
GOAL
Access log:
Access logs are kept to eventually be provided to judicial authorities, if necessary.
Cookies:
Activate essential features, generate statistical information to improve websites and offer personalized advertising.
Contact data:
Your personal data will be used for the company to eventually keep in touch with you.
Email marketing:
For sending emails with content disclosures, product line news and invitations to events.
Grupo Repinho uses the data provided when you show interest in the products and services, through automatic or semi-automatic collection, to ensure quality service, provide a better experience on the platform, effective communication and maintenance of updated records.
Data used by the Repinho Group for the purposes of processing:
Navigation Data:
º To register the enabling of the functionality of cookies on the website;
º To assist in diagnosing and solving technical problems;
º To develop new features, improve your experience on available services;
º To generate access statistics.
Registration data:
º For user identification;
º To send products or communications related to the Repinho Group;
º For publicity and invitation to events;
º To assist in the diagnosis and solution of any technical problems;
º To develop new features and improvements on the website;
º To carry out investigations and measures to prevent and combat illicit acts, fraud, financial crimes and crimes of money laundering and/or financing of terrorism;
º To ensure compliance with a legal or regulatory obligation or ensure the regular exercise of the Repinho Group's rights. In these cases, the information may even be used and presented in judicial and administrative proceedings;
º To collaborate with the fulfillment of a court order, competent authority or supervisory body;
ºFor your identification and access to the group's plants;
º For internet access for visitors to the group premises.
PERSONAL DATA HOLDER RIGHTS
The following rights are established for data subjects, pursuant to article 18 of the General Law for the Protection of Personal Data:
(i) Confirm the existence of personal data processing and obtain, at any time, access to such data;
(ii) Request from Grupo Repinho the correction or update of data that is incomplete, inaccurate or outdated;
(iii) Require the deletion of data from Grupo Repinho's systems, within the minimum legal period related to data storage;
(iv) Request the traceability of your data by requesting information from public and private entities with which Grupo Repinho has carried out the shared use of data;
(v) Request the blocking or deletion of personal data, in case there is unnecessary, excessive collection, or improper treatment;
(vi) Revoke the consent, after granting it, as well as request the deletion of the data obtained under its protection.
In case of doubts on the part of the data subjects, it is recommended to contact the Repinho Group Data Officer (DPO) by email: support@repinho.com.br.
WHO ARE THE HOLDERS OF THE DATA PROCESSED BY Grupo Repinho?
As previously indicated, the ownership of those who share data with the Repinho Group is quite diverse and requires different treatments and protections. Therefore, the personal data processed are owned by:
º Employees and their dependents;
º Customers;
º Suppliers and third parties;
º Employees of contracted companies;
º Visitors of the Repinho Group website;
STORAGE OF PERSONAL DATA
It is extremely important that personal data are stored only for the period necessary to fulfill the purpose of the treatment, in safe and reliable places, either through physical systems or files, whose access is restricted to authorized persons.
In this sense, Grupo Repinho seeks to ensure the application of information security principles, with the objective of establishing rigid and standardized control measures that may be required of our partners, in addition to promoting a culture of privacy in the organization.
The processed data will remain stored by the Repinho Group during the contractual relationship, depending on the duration of the initial purpose or in accordance with the period established by legal or regulatory obligation.
USE OF COOKIES ON THE WEBSITE OF Grupo Repinho
Cookies can be described as small files inserted in the browser (such as Chrome, Mozilla and Internet Explorer) or users' device that allow to activate functionalities through the collection of basic information about them or their devices. It is important to highlight that a cookie does not give access to a computer or reveal information beyond the data that the user chooses to share. In line with Grupo Repinho's commitment to transparency and ethics, we inform you below of the types and functions of cookies present on our web platforms:
SHARING PERSONAL DATA
The Repinho Group only shares personal data in situations that are necessary and through the use of contractual guarantees and appropriate techniques for each situation. Some of these shares are mentioned below:
a) To other companies in the group, so that they can improve the products, services and solutions offered to customers and/or users, as well as to allow unified management of our entire portfolio.
b) Service providers, to help with anti-fraud analyses, payment intermediation, management of marketing campaigns, logistics, database enrichment and cloud storage, thus allowing our services to be provided with quality.
c) Judicial, police or government authorities, to comply with court orders, requests from administrative authorities, legal or regulatory obligations, as well as to act collaboratively with government authorities, in general to contribute to investigations involving illegal acts.
CONTRACTING SUPPLIERS/THIRDS
Suppliers or third parties that maintain a contractual relationship with the Repinho Group and need to process personal data must observe all the guidelines contained in this Policy. In addition, when they are classified as personal data operators, they must ensure that all treatments comply with the provisions of the General Law for the Protection of Personal Data - LGPD and the guidelines issued by the National Data Protection Authority (ANPD) and other competent bodies, and ensure that personal data is stored in secure repositories, implementing technical measures and tools that guarantee the integrity and security of information.
All commercial partners, including suppliers, third parties and service providers, must implement processes that guarantee assistance in responding to holders' requests in a timely manner. If these partners receive a direct request from the holders, they must notify the Data Officer (DPO) of the Repinho Group, through the contact support@repinho.com.br.
Eventually, Grupo Repinho will be able to audit the level of security applied by third parties and suppliers to certify that they meet the minimum requirements demanded by the group. And, after fulfilling their purpose, the personal data made available must be immediately discarded, the use of these for purposes other than those established by the Repinho Group being inadmissible.
The protection of personal data is a collective commitment, and Grupo Repinho expects its suppliers and third parties to comply with the provisions of the General Law for the Protection of Personal Data – LGPD and to implement a minimum structure related to the protection of personal data, being available for any support .
RESPONSIBILITY OF Grupo Repinho
The Repinho Group is committed to the privacy and protection of the personal data it processes as a result of the exercise of its activity, keeping them safe and processing data only for the stated purpose, ensuring that there is no excess or deviation in operations, always in accordance with the General Law for the Protection of Personal Data.
COMMUNICATION CHANNELS
For any information and/or requests regarding the Privacy and Protection of Personal Data, including the exercise of rights as holder of such data entrusted to the Repinho Group, you may contact the Data Officer (DPO) via email: suporte@repinho.com.br, by telephone number (42) 3629 8500, or by the address for written correspondence: Rua Vereador Sebastião de Camargo Ribas, nº 950, Industrial Guaratu, Guarapuava-PR, CEP 85045-796.
POLICY UPDATES
This Policy may undergo changes in the name of transparency and better adaptation to current regulations.
It is recommended that everyone review the content of this document from time to time to access the latest information on Grupo Repinho's privacy practices.