BRIDDGE SERVIÇOS DE TECNOLOGIA E ANÁLISE DE DADOS LTDA., headquartered in São Paulo/SP, at Avenida Ordem e Progresso, 157 – Suite 212 – Várzea da Barra Funda, ZIP code 01141-030, registered under CNPJ no. 52.804.748/0001-40 (“Briddge”), provides this Privacy Policy (“Privacy Policy”) with the objective of offering a transparent view of the practices related to the Processing of Personal Data by Briddge, whether through our website (https://briddge.co) or through services provided to our clients, while also demonstrating our commitment to your privacy and the protection of your Personal Data, and ensuring that you, as the owner of Personal Data, clearly understand how Briddge uses and processes this Personal Data.
Briddge may process your Personal Data in various ways, as specified below, in accordance with the General Data Protection Law (“LGPD”), always aiming to balance the proper provision of our services with the fulfillment of legal obligations regarding the Personal Data it controls.
- When and to whom does this Privacy Policy apply?
1.1. This Privacy Policy applies to the Processing of Personal Data carried out by Briddge, in the capacity of Personal Data Controller, during your navigation on our website (https://briddge.co), when you contact us. If you are our client, that is, when we provide services to you (“Services”), Briddge acts as a Personal Data Processor.
1.2. This Privacy Policy also applies to anyone whose Personal Data is processed by Briddge and aims to inform and provide awareness about how this Personal Data is processed and how you can exercise your rights as a Personal Data Owner. New services may be developed and offered by Briddge, and if necessary, if there is a significant change in how we process Personal Data, we will provide further information and/or update this Privacy Policy.
- Definitions
Controller: natural or legal person, public or private, who is responsible for decisions regarding the Processing of Personal Data;
Anonymized Data: Personal Data relating to the Data Subject that can no longer be identified, considering the use of reasonable technical means available at the time of its Processing.
Personal Data: information relating to an identified or identifiable natural person;
Sensitive Personal Data: Personal Data about racial or ethnic origin, religious belief, political opinion, union membership or membership of a religious, philosophical, or political organization, data related to health or sexual life, genetic or biometric data, when linked to a natural person;
Data Protection Officer: person designated by the Controller and Processor to act as a communication channel between the Controller, Data Subjects, and the National Data Protection Authority (ANPD);
LGPD: General Data Protection Law (Law No. 13.709/2018);
Processor: natural or legal person, public or private, that processes Personal Data on behalf of the Controller;
Services: services of enabling connectivity of insured motor vehicles so that in case of events such as theft or qualified robbery, Briddge may attempt to recover the connected vehicles subject to specific contracts with Briddge’s clients;
Data Subject: natural person to whom the Personal Data that is subject to Processing refers;
Processing: any operation carried out with Personal Data, such as collection, production, reception, classification, use, access, reproduction, transmission, distribution, processing, archiving, storage, elimination, evaluation or control of information, modification, communication, transfer, dissemination, or extraction.
Website
| Collection Points | Contact Form | Third-Party Cookies |
| Collected Data | Registration data, such as name, email, phone, company name | Navigation data, such as IP, date, time of access, user actions on the website |
| Purpose of Processing | Enable contact between the natural person or legal representative of the legal entity and Briddge | Statistics on navigation data |
Provision of Services
| Collection Points | Provision of Services and Contract |
| Collected Data | Upon contracting Services by the Client: Registration data, such as name; CNPJ; CPF; email; mobile number; business sector; and address During provision by the Client for execution of Services: Registration data, such as name; CNPJ; CPF; email; mobile number, address; Vehicle data, such as license plate, chassis, brand, manufacturing model, year; occurrence data involving the vehicle; and insurance policy data. |
| Purpose of Processing | Fulfill the obligations arising from our Services, in accordance with contractually established obligations |
3. Personal Data Processed and its purposes
3.1. You are aware that you cannot insert Sensitive Data in the “Contact” collection point of our website. If you provide any Sensitive Data, your message will be automatically disregarded and discarded, and your request will not be processed.
3.2. In the Processing of Personal Data, Briddge uses the legal bases provided by the LGPD, such as compliance with a legal or regulatory obligation; execution of a contract or preliminary procedures related to a contract, legitimate interest.
- Hypotheses of sharing Personal Data
4.1. The processed Personal Data will not be published or marketed in any form or medium to third parties, except with your prior and express consent, or by force of law, court order, or government authority.
4.2. However, we may share Personal Data with third-party suppliers or service providers to Briddge, such as hosting providers, software-as-a-service providers, cloud storage providers, dispatchers, accountants, paralegals, translators, companies for sending and dispatching communications, and other subcontractors, business partners, and vehicle recovery companies.
4.3. These third parties will receive the collected data solely to fulfill the purposes for which they were collected and must ensure the protection of Personal Data and privacy in the same manner as Briddge and are obligated to preserve the confidentiality of the Personal Data they access.
4.4. Briddge may also, observing the applicable legal bases, share the collected Personal Data with competent judicial, police, administrative, or governmental authorities, whenever there is a legal requirement, request, court order, or to respond to inquiries or investigations or the need to defend its interests.
4.5. We may also share your Personal Data with third parties in the case of corporate restructuring, such as mergers, demergers, incorporations, or other cases of control transfers of Briddge.
- Links to Third-Party Websites
We may present content with links to third-party websites or applications or third-party accounts on social media. In this case, you should read the respective privacy policies and terms of use to understand how these third parties collect and process your Personal Data. Briddge is not responsible for the Processing of Personal Data conducted by third parties or for the content they disseminate.
- Cookies
6.1. Cookies are small text files stored in your browser or device that allow for the automatic collection of data, for example, to recognize user authentication details and administration area settings, to adapt the website and its navigation to your specific needs. Thus, the information saved in this text file helps the website recognize the user and their browser when accessing it again.
6.2. Cookies, concerning their storage time in your browser, can be: (i) persistent, meaning they remain on your device for a certain period, or (ii) session cookies, meaning temporary cookies that are deleted from your device when the browser is closed. Our site uses both types of cookies.
6.3. You can consult and delete cookies through your browser settings or install a program that performs this functionality. However, doing so may cause some areas of our website to not function properly.
- Your rights as a Personal Data Subject
7.1. Concerning the Processing of Personal Data, you may request the following information or actions:
Confirmation of the existence of Processing or access to the data; Correction of incomplete, inaccurate, or outdated data; Anonymization, blocking, or deletion of unnecessary, excessive, or unlawfully processed data; Portability of your Personal Data to another service or product provider, observing commercial and industrial secrets; Revocation of consent; Deletion of Personal Data processed with the Data Subject’s consent; Obtaining information about public or private entities with which Briddge shared your Personal Data; Information about the possibility of not providing consent and the consequences of refusal; Manifestation of opposition to the Processing of your Personal Data based on a legal ground other than consent. 7.2. You may request the confirmation of the existence of Processing of Personal Data and/or any of the actions listed above from Briddge’s Data Protection Officer through the contact email indicated in section 12 below.
7.3. We emphasize that not all requests can be met by Briddge. However, in the event that a measure cannot be adopted, we will indicate the responsible processing agent or provide the reasons that prevent the immediate adoption of the measure, allowing you to understand our reasons.
7.4. If you request the deletion of your Personal Data, it may happen that the data needs to be kept regardless of the deletion request, under the applicable law, to fulfill legal or regulatory obligations and whenever necessary for our judicial or extrajudicial defense.
- International Transfer
We process and store Personal Data in Brazil. However, we use third-party service providers, such as our website hosting service and cloud storage service, and in some cases, these third parties may store Personal Data abroad. In such cases, Briddge ensures that Personal Data will only be sent to countries with an adequate level of Personal Data protection and in accordance with the provisions of the LGPD.
- How are your Personal Data protected?
9.1. The Personal Data and other information collected will be stored in a secure environment, considering the available state of the art, and will only be processed by qualified and authorized persons by Briddge, solely to fulfill the purposes for which the Personal Data was collected.
9.2. The Personal Data we access may be accessed by Briddge’s employees or subcontracted partners only when strictly necessary to fulfill the purposes provided here, such as information storage service providers. We strive to require that all our subcontracted partners maintain adequate standards in privacy and data protection and comply with the contractual provisions and/or rules established by Briddge regarding Personal Data protection.
- How long can we retain your Personal Data?
10.1. Your Personal Data will be processed and stored for as long as necessary to achieve the purposes outlined in this Privacy Policy, or until you exercise your rights to object to the Processing or revoke your consent, as applicable.
10.2. Once the purposes are achieved or you exercise some of your rights, your Personal Data will be deleted, except in cases provided by law where Briddge may retain your data, such as: a) compliance with legal or regulatory obligations; b) safeguarding Briddge’s rights; c) to comply with court orders; d) for Briddge’s defense in court, or outside it, observing applicable statute of limitations periods.
- Updates to this Privacy Policy
This Privacy Policy may be updated at any time by Briddge, so that it always reflects the most clear and accurate Processing of Personal Data we conduct. Therefore, we recommend that you read this Privacy Policy from time to time, so you are always aware of the terms set out here.
- Contact
If you have any questions regarding this Privacy Policy or wish to exercise any of your rights as a Personal Data Subject, please contact Briddge’s Data Protection Officer, Ms. Suzan Erdosi, via email at suzan@briddge.co.
- Law and Jurisdiction
This Privacy Policy is governed by Brazilian law, and Briddge elects, and you ratify the choice of, the Court of the Capital of the State of São Paulo, Brazil, to settle any disputes arising from this Privacy Policy.
Updated on June 18, 2024.