LGPD — Data Protection

2. Data processing roles

The LGPD defines distinct roles:

3. Principles we follow

• Purpose and necessity: only necessary data.
• Transparency: clear information about data processing.
• Security: technical and organizational measures.
• Accountability: processing records and audit trails.
• Privacy by default: privacy controls are standard.

4. Data subject rights (art. 18)

Data subjects have the right to:

• Confirm the existence of processing
• Access their data
• Correct incomplete or outdated data
• Anonymize, block or delete unnecessary data
• Data portability
• Delete consent-based data
• Information about data sharing
• Be informed about not consenting and consequences
• Withdraw consent

Requests are handled within LGPD deadlines.

5. How to exercise your rights

• End customers: direct your request to the company serving you (Controller).
• Direct users: contact the DPO at [email protected].

6. Compliance features

GoSeny offers:

• Records of processing activities (ROPA)
• Personal data access audit trail
• Structured data subject request handling
• Data export, correction, anonymization and deletion
• Consent and legal basis records per contact
• Configurable retention policies
• Security incident management
• DPO channel and sub-processor list

7. Sub-processors and international transfer

Some sub-processors may process data outside Brazil. The list is detailed in the Privacy Policy.

8. Security

We use AES-256 encryption, MFA, per-client data isolation, role-based access control and monitoring.

9. Security incidents

In case of an incident with relevant risk, GoSeny will notify ANPD and affected data subjects.

10. DPO Contact

For more details, see our Privacy Policy.

• DPO: [email protected]
• GoSeny AI Technology — Florianopolis, Brazil