Introduction
This Privacy Policy governs the collection, processing and storage of personal data by Intervention Soluções Tecnológicas Ltda, a company registered in Brazil under CNPJ 17.645.845/0001-37, with registered address at Rua Fortaleza, 1003, Quadra 18 Lote 04, 2nd Floor, Bairro Jardim das Esmeraldas, Goiânia — GO, Brazil (hereinafter "Intervention", "we", "us" or "our").
We operate this website and provide technology solutions, IT infrastructure support, and managed services to businesses across multiple sectors. In the course of delivering these services and running our digital presence, we inevitably handle information that relates to identified or identifiable individuals.
Our data practices are designed to comply with Brazil's Lei Geral de Proteção de Dados (LGPD — Law 13.709/2018) and, where applicable to users in the European Economic Area, with the General Data Protection Regulation (GDPR — Regulation EU 2016/679). We also observe the advertising policies of platforms such as Google Ads, which require transparent disclosure of data handling as a condition of running paid digital campaigns.
By using our website, submitting a contact form, or engaging with our services, you acknowledge that you have read and understood this Privacy Policy. If you disagree with any part of it, please refrain from using our website and contact us at contato@intervention-us.site with any questions before doing so.
Information We Collect
We collect personal data through several distinct channels. The type and volume of data collected depends on how you interact with us. Below is a transparent breakdown:
| Category | Data Points Collected | Source |
|---|---|---|
| Contact & Enquiry Data | Full name, company name, email address, phone number, message content, and preferred contact time submitted via our website forms or email | Provided directly by you |
| Technical / Device Data | IP address, browser type and version, operating system, device type, screen resolution, referring URL, pages visited, and session timestamps | Automatically collected via server logs and analytics tools |
| Usage & Behavioural Data | Pages viewed, time spent on each page, clicks on links and buttons, scroll depth, and interactions with embedded media | Collected via cookies and analytics scripts (see Section 4) |
| Communication Records | Emails sent to or received from our team, WhatsApp messages initiated through the site's contact button, and records of any follow-up correspondence | Provided directly by you in the course of communication |
| Advertising Interaction Data | Ad click identifiers, conversion events (e.g., form submissions attributed to a Google Ads campaign), and audience segment signals derived from cookie data | Collected via Google Ads tags and Google Analytics |
Data you provide voluntarily. When you complete a contact form on our website, you supply us with information directly. We use this data exclusively to respond to your enquiry and, if you consent, to send occasional service-relevant communications. Fields marked as required are necessary for us to process your request; optional fields help us respond more precisely.
Data collected automatically. Like virtually every website, ours collects certain technical information the moment a browser connects to our server. This data is used to keep the site functional, secure, and continuously improving. We do not use automatic collection to build individual profiles for sale or unauthorised profiling.
No sensitive data. We do not intentionally collect special categories of personal data — such as health information, racial or ethnic origin, religious beliefs, political opinions, biometric data, or financial account details — through this website. If any such data were inadvertently submitted to us, we would delete it promptly.
How We Use Your Information
Every use of personal data at Intervention is grounded in a specific purpose and a lawful legal basis under LGPD (Art. 7) and, where applicable, GDPR (Art. 6). We never repurpose data for uses that are incompatible with the original reason it was collected.
- Responding to contact form submissions and enquiries. When you submit a form requesting information about our services, IT solutions, or support plans, we use your name and contact details to reply. Legal basis: performance of a pre-contractual relationship (LGPD Art. 7 V; GDPR Art. 6(1)(b)).
- Delivering contracted services. If you become a client, your data is used to provision, manage, and support the technology solutions you have engaged us to provide. Legal basis: performance of contract (LGPD Art. 7 V; GDPR Art. 6(1)(b)).
- Service communications. We may send transactional messages such as appointment confirmations, follow-up on an open enquiry, or important updates to an active service engagement. Legal basis: legitimate interest (LGPD Art. 7 IX; GDPR Art. 6(1)(f)).
- Marketing communications. With your explicit prior consent, we may send email or WhatsApp messages about new services, case studies, or technology insights that we believe are relevant to your business. You may withdraw consent at any time. Legal basis: consent (LGPD Art. 7 I; GDPR Art. 6(1)(a)).
- Website analytics and improvement. We analyse aggregated usage data to understand how visitors interact with our site, identify technical errors, and improve the content and user experience. Legal basis: legitimate interest (LGPD Art. 7 IX; GDPR Art. 6(1)(f)).
- Advertising performance measurement. We use conversion tracking to understand which Google Ads campaigns and keywords lead to meaningful enquiries, allowing us to allocate our marketing budget responsibly. Legal basis: legitimate interest / consent where applicable.
- Legal and regulatory compliance. We may process and retain certain data to meet our obligations under Brazilian tax law, labour law, or to respond to lawful requests from judicial or administrative authorities. Legal basis: compliance with legal obligation (LGPD Art. 7 II; GDPR Art. 6(1)(c)).
Cookies & Tracking Technologies
Cookies are small text files stored on your device by your browser when you visit a website. They serve a variety of functions — some are essential to the site working correctly; others help us understand how the site is being used; and some are placed by advertising platforms to measure and optimise campaign performance.
Our website uses the following categories of cookies and tracking technologies:
- Strictly Necessary Cookies. These are required for core website functionality — for example, maintaining session state, security tokens, and load-balancing identifiers. The site cannot function properly without them. No consent is required for these cookies, and they cannot be disabled through our consent mechanism.
- Analytics Cookies (Google Analytics 4). We use Google Analytics to collect aggregated, anonymised information about how visitors use our site — page views, session duration, geographic region (at city level), device type, and traffic sources. IP addresses are anonymised before storage. These cookies are placed only with your consent where required by law.
- Advertising & Conversion Cookies (Google Ads). When you click on one of our Google Ads campaigns and subsequently complete a form on this website, the Google Ads conversion tag records that action. This enables us to measure the return on our advertising investment. Google may also use this data to show you relevant ads on other platforms in its network, subject to your settings on your Google account and device.
- Preference Cookies. If applicable, these remember choices you have made on the site — such as language preference or consent decisions — so you are not asked the same questions repeatedly across sessions.
We do not use cookies to collect sensitive personal data, to engage in automated individual profiling that produces legal effects, or to identify you personally without your knowledge and consent. Retention periods for analytics cookies are set to 14 months or less, consistent with Google Analytics' default configuration and our commitment to data minimisation.
Sharing With Third Parties
We do not sell, rent, or trade your personal data. We will never share your information with third parties for their own independent marketing purposes. However, in the ordinary course of operating our website and delivering our services, some data is processed by trusted service providers acting on our behalf. These processors are bound by data processing agreements and are contractually prohibited from using your data for any purpose other than fulfilling the specific service they provide to us.
The categories of third parties with whom we may share data include:
- Google LLC — for website analytics (Google Analytics 4) and advertising performance measurement (Google Ads). Google's Privacy Policy is available at policies.google.com/privacy. Data may be processed in the United States under Standard Contractual Clauses approved by the European Commission.
- Email and communication infrastructure providers — such as email hosting and transactional email services used to route correspondence. These providers process only the technical data necessary to deliver messages.
- CRM and customer support tools — if we use software to manage client relationships and support tickets, data stored within those platforms is subject to the respective vendors' data processing agreements.
- Hosting and cloud infrastructure providers — our website and related systems are hosted on servers that may be operated by third-party cloud providers. These providers have access to server-level data as part of infrastructure management, but are not permitted to access or process the personal content of communications.
- Legal, regulatory, and governmental authorities — we will disclose personal data if required to do so by a court order, administrative authority, or other legal obligation. Where the law permits, we will attempt to notify you of such disclosure.
Any international transfer of personal data from Brazil to a country that does not offer an equivalent level of protection is conducted under the safeguards set out in LGPD Art. 33, including the use of Standard Contractual Clauses or other approved transfer mechanisms.
Data Retention
We retain personal data only for as long as is necessary to fulfil the purpose for which it was collected, or as required by applicable law. Once data is no longer needed, we delete or anonymise it in a secure and irreversible manner.
| Data Type | Retention Period | Reason |
|---|---|---|
| Contact form submissions (no contract) | Up to 24 months from last interaction | To enable follow-up on open enquiries; deleted upon your request |
| Client contract & service records | 5 years after contract termination | Brazilian civil and tax law obligations (Código Civil Art. 206) |
| Invoicing and financial records | 10 years | Brazilian tax legislation (Código Tributário Nacional) |
| Email correspondence | 3 years from the date of exchange | Legitimate interest in documenting service history; legal claims |
| Website analytics data | 14 months (Google Analytics default) | Trend analysis; automatically deleted thereafter by Google |
| Google Ads conversion data | 90 days (event-level) / aggregated reports indefinitely | Campaign measurement; aggregated data contains no personal identifiers |
| Marketing consent records | Duration of consent + 3 years | Proof of consent for regulatory compliance |
When a retention period expires, data is either deleted from active systems and backups, or anonymised to a standard that makes re-identification impossible. We do not retain data solely on the basis that it might one day be useful.
Data Security
As a technology company, security is central to our identity — not merely a compliance checkbox. We apply the same standards to protecting your personal data that we recommend to our clients. Our technical and organisational security measures include:
- TLS/HTTPS encryption across all pages of this website, ensuring that data transmitted between your browser and our servers cannot be intercepted in transit.
- Access controls and least-privilege principles — only staff members with a demonstrable operational need have access to personal data, and access is authenticated and logged.
- Regular security patching of server infrastructure, CMS platforms, and third-party dependencies to minimise known vulnerabilities.
- Encrypted storage for sensitive data at rest, using industry-standard encryption algorithms.
- Incident response procedures — in the event of a data breach that poses a risk to your rights and freedoms, we will notify the relevant regulatory authority (ANPD in Brazil, the applicable supervisory authority in the EU) within 72 hours of becoming aware of it, and affected individuals without undue delay, in accordance with LGPD Art. 48 and GDPR Art. 33–34.
Despite these measures, no method of data transmission over the internet or electronic storage is completely secure. If you have reason to believe that your interaction with us has been compromised, please contact us immediately at contato@intervention-us.site.
Your Rights
Under LGPD and GDPR, you hold meaningful, enforceable rights in relation to your personal data. We are committed to honouring these rights promptly and without unnecessary friction. The rights available to you include:
You may request a copy of all personal data we hold about you, along with information about how it is used, where it came from, and with whom it has been shared.
If any personal data we hold is inaccurate or incomplete, you have the right to have it corrected or supplemented without undue delay.
You may request that we delete your personal data where it is no longer necessary for the purpose it was collected, where you withdraw consent, or where processing is unlawful. Legal retention obligations may limit full deletion in some cases.
Where we process data based on legitimate interest — including for direct marketing purposes — you have the right to object. We will cease that processing unless we can demonstrate compelling legitimate grounds that override your interests.
Where processing is based on your consent or a contract with you, and is carried out by automated means, you may request your data in a structured, commonly used, machine-readable format (e.g., JSON or CSV).
Where we rely on your consent to process personal data (such as for marketing communications), you may withdraw that consent at any time. Withdrawal does not affect the lawfulness of processing prior to withdrawal.
How to exercise your rights. To submit any data rights request, please email contato@intervention-us.site with the subject line "Data Rights Request" and a clear description of your request. We will respond within 15 business days for LGPD requests (extendable to 30 days with notice) and within 30 calendar days for GDPR requests (extendable by a further two months for complex or multiple requests). We may need to verify your identity before processing the request, to protect you and other individuals from unauthorised access.
If you believe we have not adequately addressed your concern, you have the right to lodge a complaint with Brazil's national data protection authority, the Autoridade Nacional de Proteção de Dados (ANPD) at gov.br/anpd, or — if you are located in the EEA — with the supervisory authority of your country of residence.
Children's Privacy
Our website and services are directed exclusively at businesses and adult professionals. We do not knowingly market to, solicit enquiries from, or collect personal data from individuals under the age of 18. No section of this website is designed or intended for use by minors.
If we become aware that we have inadvertently received personal data from a person under 18 without verifiable parental or guardian consent, we will delete that data from our records immediately. If you are a parent or guardian and believe your child has submitted personal data to us, please contact us at contato@intervention-us.site and we will act promptly.
Changes to This Policy
Privacy laws evolve, our business grows, and the technologies we use change. We therefore reserve the right to update this Privacy Policy periodically to reflect changes in our practices, our services, or applicable legal requirements. When we make material changes, we will update the "Last updated" date at the top of this page.
For changes that are significant — for example, a new purpose of processing or a new category of data being collected — we will take additional steps to bring the update to your attention. This may include placing a prominent notice on our homepage or, where we hold your email address and the change materially affects you, sending you direct notification.
We encourage you to review this page periodically. Continued use of our website after any posted changes constitutes your acceptance of the updated policy. If you do not agree to the revised terms, you should discontinue use of the site and contact us if you would like your data deleted.
Contact & Data Controller
For all questions, concerns, or requests related to this Privacy Policy or our data processing activities — including the exercise of your rights — please contact us using the details below. We take all privacy-related correspondence seriously and commit to responding in a timely, helpful manner.
Intervention Soluções Tecnológicas Ltda — Data Controller
Bairro Jardim das Esmeraldas, Goiânia — GO, Brazil