Privacy Policy

Your privacy is vital to us, so we take care to be transparent in how we collect, use and share your data.

Privacy Policy

Your privacy is vital to us, so we take care to be transparent in how we collect, use and share your data.
1. e-Cores commitment to privacy

This website is administered by e-Core IT Solutions (“e-Core” or “we”).

This Privacy Policy applies to data collected by e-Core through its www.e-core.com website and subdomains, services provided, or through any other forms of collection performed during the course of our business activities.

We only process personal data as long as necessary and appropriate for the purposes that underpin the collection, always observing the legal bases of the processing. Thus, we may retain the data for compliance with legal or regulatory obligation, regular exercise of law, legitimate interest, or with your explicit consent.

2. Why e-Core collects personal information

We collect your personal information primarily to provide the services you have hired, organize your participation in events you have signed up for, or contact you when requested through our forms and newsletters.

  1. e-Core collects personal information to market our products and services, provide our contracted services, and meet applicable legal requirements. Sometimes our customers may require us to collect information of interest from the provision of products and services. We may also collect data to improve our services, improving the experience we provide to our customers.
  2. You are not required to provide us with personal information, but this may influence our ability to interact with you and better provide our services

If, after reading our privacy policy, you still have questions, complaints, want to exercise your rights or if you no longer want to receive our communications, inform us by contacting our person in charge of the processing of personal data (DPO) through [email protected] e-mail or our data subject access request form(DSAR).

3. Personal Information you provide to us
  1. Profile and Account Information
    1. We collect Personal Information when you fill out any form on our website, contact us or apply for a job. Personal Information may include your contact information (name, email, phone number, address) and the data recorded in your resume (work history, educational level, etc.). You may provide this Information directly when you access our website or when e-Core provides any of its services. In some cases, other users may provide them on your behalf. If you are providing Information (including Personal Information) about others, you confirm that you have explicit authority and permission to act on behalf of the person and agree to this Privacy Notice.
  2. User Consent
    1. If you create, insert, send, post, transmit and/or store information (“User Content”) while using our website or while e-Core provides services, your Personal Information such as name, email, address, or other contact information will be associated with the respective User Content. Any information, including Personal Information, that you submit to our websites may be visible to the public unless it is sent to a secure area of our website. For example, interactions on our blog will be visible to everyone who access the blog, and resumes submitted for application in a job vacancy will be sent to a secure area on our website.
4. Personal Information we collect, purpose and legal basis
  1. Marketing, Sales, and Events
    1. Type of Data collected
      1. Name, Last Name, Company, IDs, Professional or Personal E-mail, Address, Telephone, Position or Function, Country of Residence;
      2. Interest in our services or events, or the services and events of our customers and partners.;
      3. Information about interpersonal relationships and business activities with us or our customers and partners;
      4. Data provided for participation in events and training.
    2. Collection and Purpose:
      1. Newsletter
      2. Contact Tab of our website
      3. Subscribe to our landing pages
      4. Lectures. Events and training
      5. Offer of services and customer service
    3. Legal Basis:
      1. Consent
      2. Legitimate Interest
  2. Costumers of Support, Development, and Consulting services
    1. Type of Data collected
      1. By providing support services to our customers or our customer’s customers in a product installed in their environment, we may receive:
      2. Anonymous dump of customer environment data;
      3. Dump data from the customer’s environment;
      4. Files compressed with logs of the client environment software;
      5. Access to the customer instance in a cloud-based product (Cloud);
      6. To provide our services, we may receive data or access to the customer’s environment.
    2. Collection and Purpose:
      1. Service provision
      2. Customer service
      3. Availability of services
      4. Ticket support services
    3. Legal Basis:
      1. Contract Execution
  3. Platform and website navigation
    1. Type of Data collected
      1. Browsing data: data collected through cookies or device IDs, such as IP address, date and time of access, geolocation, local storage, type of web browser, pages visited, and duration of the visit.
    2. Collection and Purpose:
      1. Cookies
      2. Access record
      3. Service improvement
      4. Platform Improvement
      5. Correct redirection
      6. Legal duty
    3. Legal Basis:
      1. Consent
      2. Legitimate interest
      3. Legal Obligation
  4. Human Resources
    1. Type of Data collected
      1. First Name, Last Name, Date of Birth, IDs, E-Mail, Address, Telephone, Country of Residence, Photos;
      2. Curriculum, professional history, education, income;
      3. Demographic information.
    2. Collection and Purpose:
      1. Recruitment and selection
      2. Engagement and corporate culture
      3. Employee service
    3. Legal Basis:
      1. Consent
      2. Legitimate interest
      3. Legal Obligation
  5. Payroll / Personnel Department
    1. Type of Data collected
      1. First Name, Last Name, Date of Birth, IDs, E-Mail, Address, Telephone, Country of Residence, Photos;
      2. Data regarding the personnel department (payroll of employees, contracts, e-Social, Benefits, Medical Attested);
      3. Bank and income data.
      4. Demographic information.
    2. Collection and Purpose:
      1. Payroll processing
      2. Labour law requirements
      3. Journey control
    3. Legal Basis:
      1. Execution of contract
      2. Legal Obligation
  6. Reception and Physical Security
    1. Type of Data collected
      1. First Name, Last Name, Company, IDs, Professional and/or Personal E-mail, Address, Telephone, Position or Function, Country of Residence, Photos;
      2. Biometric data for building/office access;
      3. Video recordings (monitoring and CCTV).
    2. Collection and Purpose:
      1. Building access
      2. Reception
      3. Office access and visitor tracking
      4. Information and contact
      5. Physical and property security
    3. Legal Basis:
      1. Consent
      2. Legitimate interest
      3. Legal Obligation
  7. IT Infrastructure, Information Security and Compliance
    1. Type of Data collected
      1. Operating System, model, manufacturer, unique identifier, IP address, telephony operator, screen resolution, browser type, browsing speed;
      2. Software versioning, encrypted passwords, intrusion monitoring, access trail, logs, and auditing;
      3. Signatures, participation in training, and awareness.
    2. Collection and Purpose:
      1. Essential features
      2. Access to systems and tools
      3. Support and troubleshooting
      4. Meetings, conversations, and screen sharing
      5. Operating system update, antivirus, firewall, patching
      6. Data Protection
      7. Information Security Management
      8. Compliance with legal or customer requirements, frameworks, certifications, and best practices
      9. Audit and risk analysis
      10. Incident investigation
      11. Training, lectures, and awareness
    3. Legal Basis:
      1. Execution of contract
      2. Legal Obligation
      3. Legitimate interest.
5. Cookies

Cookies are small pieces of data or text files that are stored on your computer or mobile device when you access certain websites. Cookies may contain texts that can be read by the web servers that have delivered the cookie to you. The text in the cookie usually consists of a sequence of letters and numbers that uniquely identify your computer or mobile device, and may also contain other information and recognize your preferences for adapting our website to your specific needs.

Our website uses cookies for continuous improvement and to improve your end-user experience. By accessing it, you may choose to disable the use of Cookies; however, some of the website’s features may become unavailable after deletion. Most web browsers can be configured to disable the usage of cookies; to learn how, access: Google Chrome, Safari, Microsoft Edge, and Mozilla Firefox.

By accepting our cookies usage, you are providing to us, and third parties who are our partners, permission to allocate, store and access some or all of the cookies described below on your computer

  1. Strictly Required Cookies: These cookies are necessary for the proper operation of the website, such as display of content, account access, validation of your session, response to your service requirements, and other functions.
  2. Performance Cookies: These cookies collect information about website usage, such as pages visited, traffic sources, user interests, content management, and other website measurements.
  3. Functional Cookies: These cookies enable the website to recall a user’s choice —such as their language, username, and other personal choices—while using the website. It can be used to deliver services, such as letting the user create a blog post, listen to audio, or watch videos on the website.
  4. Media Cookies: These cookies can be used to improve a website’s performance and provide features and content. They may be placed by third parties who provide services to us or by our company.
  5. Advertising or targeting cookies: These cookies are generally allocated and used by advertising companies to develop a profile of your browsing interests and serve ads on other sites related to your interests. You’ll see less advertising if you turn off these cookies.
  6. Session cookies: These cookies allow websites to link a user’s actions during a browser session. They can be used for a variety of purposes, such as remembering what a user has in their shopping cart while browsing a website. Session cookies also allow users to be recognized while browsing a website so that any item or page change is remembered from one page to another. Session cookies expire after a browser session; thus, they are not stored in the long run.
  7. Persistent cookies: These cookies are stored on a user’s device between browser sessions, which allows the user’s preferences or actions on a website (or, in some cases, on different websites) to be remembered. Persistent cookies can be used for a variety of purposes, including remembering users’ choices and preferences when using a website or target advertising to them.

As with most websites, we collect certain information automatically and store it in log files. This information may include Internet Protocol (IP) addresses, browser type, Internet service provider (ISP), reference/output pages, operating system, date/time stamps, and/or clickstream data. Our partners (marketing partners, affiliates, or analytics providers) use cookies or tracking technologies to analyze trends, administer the site, track the movements of users on the site, and gather demographic information about our user base as a whole. We may receive reports based on these companies’ use of these technologies on an individual and aggregated basis.

Briefly, we use cookies to:

  1. Identify areas of our website you have visited
  2. Personalize content you see on our website
  3. Review our website
  4. Perform marketing actions of our products or services for you
  5. Remember your preferences, settings, and access details
  6. Target advertising and ad serving relevant to your interests
  7. Develop affiliate marketing
  8. Allow you to post comments
  9. Allow you to share content with social networks

When we include content from other sites (Google Analytics, Lever, Hubspot, Atlassian, Slack, Linkedin, etc.), these sites may also set their own cookies, and we have no access to or control over these cookies. We suggest that you visit the relevant third-party websites for more information about the use of cookies:

  1. Google Analytics – http://www.google.com/policies/privacy/
  2. Hubspot – http://legal.hubspot.com/privacy-policy
  3. Hotjar – https://www.hotjar.com/legal/policies/privacy/
  4. Lever – https://www.lever.co/privacy-notice/
  5. Slack – https://slack.com/intl/pt-br/trust/compliance/cookie-policy
  6. Atlassian – https://www.atlassian.com/legal/cookies
  7. Vimeo – https://vimeo.com/cookie_policy
  8. Linkedin – https://br.linkedin.com/legal/cookie-policy

e-Core and third-party vendors, including Google, use primary cookies (Google Analytics cookies) and third-party cookies (DoubleClick cookies) together to inform, optimize and serve ads based on previous visits to our site. More specifically, our site has implemented and uses graphic advertising, and we use Google Analytics to implement a specific feature called remarketing. Remarketing is an AdWords feature that allows us to optimize ad content display specifically targeted to a visitor’s interests based on previous visits to our site. If you want more information about remarketing lists in Google Analytics, visit the following website: https://support.google.com/analytics/answer/2611268. If you want to disable Google Analytics for graphic advertising, use the Preference Manager provided by Google or the Google Analytics opt-out browser add-on, which you can download in https://tools.google.com/dlpage/gaoptout.

Our web pages contain electronic images known as Web beacons (sometimes called single-pixel gifs) that are used combined with cookies to compile aggregate statistics and to analyze how our website is used and can be used. Web beacons can also be used in some of our emails to let us know which emails and links were opened by recipients. This allows us to evaluate the effectiveness of our customer communications and marketing campaigns.

We also collect information directly when you voluntarily submit it. We may offer you the opportunity to sign up for periodic newsletters by email by entering your email address. It is entirely your choice whether or not to provide this information. In addition, we collect personal information (such as your name and contact information) when you sign up online for a job at e-Core. You may opt-out of receiving our newsletters or marketing emails by opting out via the instructions included in these emails.

“Usage Data” is aggregated data about a group or category of services, resources, or users that should not contain Personal Information. If Usage Data contains Personal Information, it will be a byproduct of our understanding of broader patterns and trends. It is not a concentrated effort on our part to examine the content of any particular user.

6. Sharing information with third parties, including foreigners

We respect and protect your privacy and only share your data with third parties to fulfill the purposes already expressly mentioned and only in the forms described in this Privacy Policy. We do not sell or market your Personal Data.

e-Core is headquartered in Brazil, and collected data are governed by Brazilian law. The information we collect may be stored, processed, and/or transferred between countries in which e-Core, its respective partners, affiliates, contractors, and service providers have offices in order to allow the company to use the information as set forth in this Privacy Policy and in compliance with applicable data protection laws.

We may also share data as required by law to comply with subpoenas, bankruptcy proceedings, or similar legal requirements when we have a good-faith claim that disclosure is necessary to protect e-Core, its customers, the public, investigate fraud, or respond to a government request. We reserve the right to disclose any information we obtain through any e-Core website if required by law or by a government agency.

You agree that e-Core may share your personal information with organizations or persons who help us fulfill our obligations or provide our services to you. e-Core will use efforts to ensure that these parties have measures in place to protect your information and comply with our obligations under applicable privacy rules.

If e-Core is involved in a merger, acquisition, or sale of all, or a portion of its assets, we may have the need to share your personal information with the acquiring entity. In this case, you will be notified through a notice on our website of any change of ownership or use of your personal information, as well as any choices you may have regarding your personal information.

7. How e-Core protects sensitive personal information

In addition to the information you provide when applying for a position at e-Core, we do not seek to collect sensitive personal information from children or adolescents through our website. Therefore, we advise you not to provide unsolicited sensitive personal information. By providing us with unsolicited sensitive personal information, you consent to the use of the information for the purposes set out in this Privacy Policy, subject to applicable law. Where possible, e-Core applies active encryption (SSL) and other technical measures to protect personal information transmitted through your website, systems, and tools. “Sensitive Personal Information” includes the various categories of personal information and data identified by the privacy laws of countries we operate, such as Brazil, the United States, Mexico, the European Union, or other countries and jurisdictions that require some kind of special treatment of this information, including, in some circumstances, the need to obtain explicit consent. These categories may include personal identity numbers, personal data regarding personality and private life, racial or ethnic origin, nationality, political opinions, participation in political parties or religious movements, philosophical or other similar beliefs, belonging to a trade union or profession, or trade association, physical or mental health, genetic code, addictions, sex life, property issues or criminal record (including information about suspected criminal activities).

8. Security of your information

e-Core adopts all applicable technical, administrative, and organizational measures to protect the personal data entrusted to us against loss, abusive, inappropriate, unlawful, or unauthorized usage, adopting information security best practices, which we can mention, but are not limited to:

  1. Internal Information Security and Compliance team, Legal team and Data Officer (DPO) able to meet the requirements of data protection laws and regulations in its necessary scopes and measures;
  2. Risk Management, Incident Response, and Internal Audit initiatives;
  3. Information Security, data protection and privacy awareness program;
  4. Strong authentication mechanisms and two-factor authentication(2FA);
  5. Active encryption, intrusion detection, firewall, and endpoint protection;
  6. Adoption of strategies and principles such as “Privacy by Default” and “Privacy by Design”;
  7. Adoption of world-recognized information security best practices, such as NIST, SANS, OWASP, ISO-27002, and ISO-27001.
9. Access, update, and deletion of personal information

We will retain your information as necessary to provide services to you and to comply with our legal obligations, resolve disputes, and/or enforce our agreements and commitments. You have the right to know whether we have information about you and, if we do, the type of information, the purposes for which we possess it, the possible recipients or types of recipients. You also have the right to have access to your personal information and to require that this information be corrected if it is inaccurate, incorrect, or even request the cancellation and deletion of your data.

To exercise your rights or request more information about our data processing, you can contact our Data Protection Officer, Gustavo Gattino, via email at [email protected], or by using our Data Subject Access Requests (DSAR) form, available here. After verifying your identity and in compliance with the law, we commit to correcting, deleting, and/or blocking your personal information from any future use and processing within a reasonable timeframe.

10. Notification of changes to the Privacy Policy

We may update this Privacy Policy to reflect changes to our information use practices. We recommend that you periodically revisit this page for the latest information on our privacy protection practices.

If you have any questions regarding this Privacy Policy, please do not hesitate to contact our Data Protection Officer (DPO) via [email protected]

Last Updated: August 18, 2021