LGPD - General Data Protection Law

Last updated: 30 de dezembro de 2025

Ondofy is in compliance with the General Data Protection Law (Law No. 13.709/2018). This page describes how we handle your personal data.

1. Data Controller

Ondofy is the controller of personal data collected through our services, being responsible for decisions regarding the processing of such data.

2. Processing Purposes

We process your personal data to provide security analysis services, communication, service improvement and compliance with legal obligations.

3. Legal Basis

Data processing is based on consent, contract execution, compliance with legal obligation, protection of life and health protection.

4. Data Retention

We retain your personal data only for the time necessary to fulfill the purposes for which they were collected or as required by law.

5. Data Subject Rights

You have the right to confirmation, access, correction, anonymization, portability, deletion, information about sharing and revocation of consent.

6. Security Measures

We implement technical and administrative measures to protect your data against unauthorized access and accidental or unlawful situations of destruction, loss or alteration.

7. Data Protection Officer (DPO)

To exercise your rights or clarify doubts about data processing, contact us through the form available on our website.