Solo Pesquisa de Mercado & Usabilidade LTDA
CNPJ 33.779.345/0001-44

1. Introduction

Solo Pesquisa de Mercado & Usabilidade LTDA values the privacy and security of information belonging to clients, research participants, employees, and partners. This Policy describes how we collect, use, store, and protect personal and corporate data, in compliance with the Brazilian General Data Protection Law (LGPD – Law No. 13,709/2018).

2. Information Covered by this Policy

Research Data: Personal information collected through quantitative, qualitative, and usability studies. Whenever possible, data is anonymized and used exclusively for research purposes.

Corporate Data: Information related to institutional accounts (email, contacts, drive, calendar, and other resources associated with Google Workspace Enterprise).

Human Resources Data: Information related to employees, third-party vendors, and freelancers contracted on a project basis.

3. Security and Access to Information

Access to data is granted based on the role and necessity of each employee, vendor, or freelancer.

Temporary accounts are assigned an expiration date corresponding to the contract duration. Upon termination of the relationship, all access is revoked and deactivated.

Passwords must contain at least 8 characters, including numbers and special characters, and must be updated periodically.

Documents and files shared with clients and partners should preferably be exchanged via Google Drive. In exceptional cases, they may be sent via email in a secure format (e.g., PDF).

4. Use and Retention of Client Data

Data collected or used in projects will be retained in accordance with the terms established in each client contract.

In the absence of a specific contractual clause, the retention period will be agreed upon with the client and documented in writing.

If data is associated with accounting records, retention periods required by applicable tax laws will prevail.

5. Data Disposal

When client or company data is no longer necessary and there is no legal or contractual obligation to retain it, it will be securely and confidentially disposed of.

6. Data Subject Rights

In accordance with LGPD, data subjects have the right to:

• Confirm the existence of data processing

• Request access, correction, updating, or deletion of their data

• Withdraw previously granted consent

7. Compliance and Penalties

All employees, vendors, freelancers, and partners must read, agree to, and comply with this Policy.

Failure to comply may result in disciplinary measures, including contract termination or legal liability.

8. Exceptions

Any exception to this Policy must be previously approved by the management of Solo Pesquisa de Mercado & Usabilidade LTDA.