TERMS OF USE

At ZH Soluções Especialista (4MDG), privacy and security are priorities, and we are committed to the transparency in the treatment of personal data of our users/customers. Therefore, this Privacy Policy establishes how the collection, use, and transfer of customer or other individuals’ information who access or use our website is done.

By using our services, you understand that we will collect and use your personal information as described in this Policy, under the Data Protection laws (LGPD, Federal Law 13,709/2018), consumer provisions of Federal Law 8078/1990, and other applicable Brazilian legal norms.

In this way, ZH Soluções Especialistas, hereinafter referred to simply as “4MDG”, registered under CNPJ/MF No. 11.955.326.0001-99, as the Data Controller, commits to the provisions set forth in this Privacy Policy.

1. What data do we collect about you and for what purpose?

Our website collects and uses some of your personal data to enable the provision of services and improve the user experience.

1.1. Personal data provided by the data subject

• Name, Phone, Email, and Company to express your interest in knowing the commercial offers of our company.

2. How do we collect your data?

In this regard, the collection of your personal data occurs as follows:

• Via form through spontaneous and consented typing by the user.

2.1. Consent

It is with your consent that we process your personal data. Consent is the free, informed, and unequivocal manifestation by which you authorize 4MDG to process your data. Thus, in accordance with the General Data Protection Law, your data will only be collected, processed, and stored with prior and express consent.

Your consent will be obtained specifically for each purpose described above, demonstrating the commitment to transparency and good faith of 4MDG towards its users/customers, following the relevant legislative regulations.

By using 4MDG’s services and providing your personal data, you are aware of and consenting to the provisions of this Privacy Policy, as well as understanding your rights and how to exercise them.

At any time and at no cost, you may revoke your consent.

It is important to highlight that the revocation of consent for data processing may imply the impossibility of properly performing certain functionality of the website that depends on the operation. Such consequences will be informed in advance.

3. What are your rights?

4MDG ensures its users/customers their rights as data subjects provided for in Article 18 of the General Data Protection Law. Thus, you can, free of charge and at any time:

• Confirm the existence of data processing, in a simplified or clear and complete format.
• Access your data, and request them in a readable copy in printed or electronic form, secure and reliable.
• Correct your data by requesting editing, correction, or updating.
• Limit your data when unnecessary, excessive, or processed in non-compliance with the legislation through anonymization, blocking, or deletion.
• Request the portability of your data, through a report of your registration data that 4MDG processes about you.
• Delete your data processed based on your consent, except in cases provided for by law.
• Revoke your consent, disallowing the processing of your data.
• Be informed about the possibility of not providing your consent and the consequences of refusal.

4. How can you exercise your rights as a data subject?

To exercise your rights as a data subject, you should contact 4MDG through the following available means:

• Via email at atendimento@4mdg.com.br

To ensure your correct identification as the data subject of the personal data subject to the request, we may request documents or other evidence that can prove your identity. In this case, you will be informed in advance.

5. How and for how long will your data be stored?

Your personal data collected by 4MDG will be used and stored for the time necessary to provide the service or for the purposes listed in this Privacy Policy, considering the rights of data subjects and controllers.

In general, your data will be kept as long as the contractual relationship between you and 4MDG persists. After the storage period for personal data has ended, they will be deleted from our databases or anonymized, except as legally provided for in Article 16 of the general data protection law, namely:

I – compliance with a legal or regulatory obligation by the controller; II – study by a research entity, with data anonymization whenever possible; III – transfer to a third party, provided that the data processing requirements set out in this Law are met; or IV – the exclusive use of the controller, prohibited from access by third parties, and provided that the data is anonymized.

That is, personal information about you that is essential for compliance with legal, judicial, and administrative determinations and/or for the exercise of the right to defense in judicial and administrative proceedings will be retained, regardless of the deletion of other data.

The storage of data collected by 4MDG reflects our commitment to the security and privacy of your data. We employ technical protection measures and solutions to ensure the confidentiality, integrity, and inviolability of your data. In addition, we also have appropriate security measures to the risks and control of access to stored information.

6. What do we do to keep your data safe?

To keep your personal information secure, we use physical, electronic, and managerial tools aimed at protecting your privacy.

We apply these tools considering the nature of the personal data collected, the context and purpose of the processing, and the risks that any breaches would pose to the rights and freedoms of the data subject collected and processed.

Among the measures we adopt, we highlight the following:

• Only authorized individuals have access to your personal data.
• Access to your personal data is only granted after a commitment of confidentiality.
• Your personal data is stored in a secure and suitable environment.

4MDG is committed to adopting the best practices to prevent security incidents. However, it is necessary to emphasize that no website is entirely secure and free from risks. It is possible that, despite all our security protocols, incidents may occur exclusively due to third parties, such as cyber-attacks by hackers, or also due to the negligence or imprudence of the user/customer.

In case of security incidents that may generate significant risk or damage to you or any of our users/customers, we will notify the affected parties and the National Data Protection Authority about the incident, in accordance with the provisions of the General Data Protection Law.

7. With whom can your data be shared?

In order to preserve your privacy, 4MDG will not share your personal data with any unauthorized third party.

Moreover, there are other situations in which your data may be shared, including:

I – Legal determination, request, requisition, or court order, with competent judicial, administrative, or governmental authorities. II – Cases of corporate movements, such as merger, acquisition, and incorporation, automatically. III – Protection of 4MDG’s rights in any type of conflict, including judicial ones.

7.1. International data transfers

Some of the third parties with whom we share your data may be located or have facilities located in foreign countries. In these conditions, in any case, your personal data will be subject to the General Data Protection Law and other Brazilian data protection legislation.

In this regard, 4MDG is committed to always adopting efficient cybersecurity and data protection standards, in the best efforts to comply with legislative requirements.

By agreeing to this Privacy Policy, you agree to this sharing, which will occur according to the purposes described in this instrument.

8. Cookies or browsing data

4MDG uses Cookies, which are text files sent by the platform to your computer and stored therein, containing information related to website navigation. In short, Cookies are used to improve the user experience.

By accessing our website and consenting to the use of Cookies, you acknowledge and accept the use of a navigation data collection system using Cookies on your device.

4MDG uses the following Cookies: Navigation, Preference, and Search.

You can, at any time and at no cost, change permissions, block, or refuse Cookies. However, revoking consent for certain Cookies may impair the correct functioning of some platform features.

To manage your browser’s cookies, simply do so directly in the browser settings, in the Cookies management area. You can access tutorials on the topic directly at the links below:

• If you use Internet Explorer.
• If you use Firefox.
• If you use Safari.
• If you use Google Chrome.
• If you use Microsoft Edge.
• If you use Opera.

You can find more information about the Cookies we use and how they work in our Cookies Policy, available at this link (https://www.4mdg.com.br/privacy/).

9. Changes to this Privacy Policy

The current version of the Privacy Policy was formulated and last updated in: June/2021.

We reserve the right to modify this Privacy Policy at any time, especially to adapt to any changes made on our website or in legislative scope. We recommend that you review it frequently.

Any changes will take effect from their publication on our website, and we will always notify you of the changes made.

By using our services and providing your personal data after such modifications, you consent to them.

10. Responsibility

4MDG foresees the responsibility of the agents involved in the data processing processes, in compliance with articles 42 to 45 of the General Data Protection Law.

We commit ourselves to keeping this Privacy Policy updated, observing its provisions and ensuring compliance.

Additionally, we also commit to seeking technical and organizational conditions securely capable of protecting the entire data processing process.

If the National Data Protection Authority requires the adoption of measures regarding the data processing carried out by 4MDG, we undertake to follow them.

10.1 Disclaimer of liability

As mentioned in Topic 6, although we adopt high security standards to prevent incidents, no website is entirely risk-free. In this sense, 4MDG is not responsible for:

I – Any consequences arising from users’ negligence, recklessness, or negligence regarding their individual data. We guarantee and are responsible only for the security of the data processing processes and compliance with the purposes described in this instrument.

We emphasize that the responsibility for the confidentiality of access data lies with the user.

II – Malicious actions by third parties, such as hacker attacks, except in the case of proven negligent or deliberate conduct by 4MDG.

We emphasize that in the event of security incidents that may generate significant risk or damage to you or any of our users/customers, we will notify the affected parties and the National Data Protection Authority about the incident and fulfill the necessary measures.

III – Inaccuracy of the information entered by the user/customer in the records necessary for the use of 4MDG’s services; any consequences arising from false or maliciously entered information are entirely the responsibility of the user/customer.

11. Data Protection Officer

4MDG provides the following means for you to contact us to exercise your rights as a data subject: (via email).

If you have any questions about this Privacy Policy or about the personal data we process, you can contact our Data Protection Officer through the following channels:

[atendimento@4mdg.com.br]