BHead IT Solutions

Menu
Instagram Linkedin

Data Protection Policy

PERSONAL DATA PRIVACY POLICY

UPDATED MARCH 2025

 

INDEX 

  1. INDICATION AND COMMUNICATION CHANNEL WITH THE PERSONAL DATA CONTROLLER (DPO).
     
  1. DEFINITIONS OF HOLDER, CONTROLLER AND OPERATOR OF PERSONAL DATA.
     
  1. BHEAD IT SOLUTIONS LTDA AS PERSONAL DATA OPERATOR.
     
  1. BHEAD IT SOLUTIONS LTDA AS CONTROLLER OF PERSONAL DATA.
     
  1. DOES BHEAD IT SOLUTIONS LTDA TRANSFER YOUR PERSONAL DATA?
     
  1. RIGHTS OF PERSONAL DATA SUBJECTS.
     
  1. GLOSSARY.

 

1 – INDICATION AND COMMUNICATION CHANNEL WITH THE PERSONAL DATA CONTROLLER (DPO).

We present our Personal Data Officer, Dr. Stefano Del Sordo Neto.

The communication channel is via email stefano@stefanodelsordo.adv.br, by telephone +55 11 98249 0009 or via the reporting channel on our Website.

2 – DEFINITIONS: HOLDER, CONTROLLER AND OPERATOR OF PERSONAL DATA.

HOLDER: Natural person to whom the personal data that are subject to processing refer;

CONTROLLER: Natural or legal person, under public or private law, responsible for decisions regarding the processing of personal data;

OPERATOR: Natural or legal person, under public or private law, who processes personal data on behalf of the controller;

2.1 – A BHEAD IT SOLUTIONS LTDA AS A PERSONAL DATA OPERATOR.

A BHEAD IT SOLUTIONS LTDA has been in the market for 7 years and we have a personal data protection policy in accordance with Law No. 13,709/18 – General Personal Data Protection Law.

Our Technology team works hard to protect your personal data.

Our service providers receive ongoing training on the General Data Protection Law. With us, your personal data is protected.

3 – HOW YOUR DATA IS PROCESSED BY BHEAD IT SOLUTIONS LTDA

BHEAD IT SOLUTIONS LTDA does not collect your personal data.

According to the General Personal Data Protection Law, BHEAD IT SOLUTIONS LTDA is the Data Operator, which means that, under a contract, it processes personal data for a specific purpose, in accordance with your consent.

3.1 – CAN BHEAD IT SOLUTIONS LTDA RECTIFY OR DELETE YOUR PERSONAL DATA?

A BHEAD IT SOLUTIONS LTDA may only process personal data in accordance with the instructions of the contracting client, in order to fulfill its obligations based on the service contract, never for any other purpose.

4 – BHEAD IT SOLUTIONS LTDA AS CONTROLLER OF PERSONAL DATA.

BHEAD IT SOLUTIONS LTDA treats personal data with strict security standards at all stages.

4.1 – CANDIDATES FOR OUR JOB VACANCIES.

Resumes and other data from candidates applying for our vacancies are deleted by our Human Resources Department.

Questions can be clarified by email at contato@bhead.com.br

 4.2 – SERVICE PROVIDERS.

The personal data of our service providers are used for the specific purposes of fulfilling contracts and obligations ancillary to contracts, for other purposes we collect consent.

5 – DOES BHEAD IT SOLUTIONS LTDA TRANSFER YOUR PERSONAL DATA?

BHEAD IT SOLUTIONS LTDA may only process personal data in accordance with the instructions of the contracting client, in order to fulfill its obligations based on the service contract, never for any other purpose.

6 – RIGHTS OF PERSONAL DATA SUBJECTS.

The holder has the right to easy access to information about the processing of his/her data, which must be made available in a clear, appropriate and visible manner regarding, among other characteristics provided for in regulations to comply with the principle of free access:

    1. – Specific purpose of processing;
    2. – Form and duration of treatment, observing commercial and industrial secrets;
    3. – Controller identification;
    4. – Controller contact information;
    5. – Information about the shared use of data by the controller and the purpose;
    6. – Responsibilities of the agents who will carry out the processing;
    7. – Confirmation of the existence of treatment;
    8. – Data access;
    9. -Correction of incomplete, inaccurate or outdated data;
    10. – Anonymization, blocking or deletion of unnecessary, excessive data or data processed in non-compliance with the provisions of this Law;
    11. – Portability of data to another service or product provider, upon express request, in accordance with the regulations of the national authority, observing commercial and industrial secrets;
    12. – Deletion of personal data processed with the consent of the holder, except in the cases provided for in art. 16 of this Law;
    13. – Information on public and private entities with which the controller shared data;
    14. – Information about the possibility of not providing consent and the consequences of refusal;

7 – GLOSSARY.

Personal Data:  Information related to an identified or identifiable natural person;

Sensitive Personal Data: Personal data about racial or ethnic origin, religious belief, political opinion, membership of a trade union or organization of a religious, philosophical or political nature, data relating to health or sexual life, genetic or biometric data, when linked to a natural person;

Holder: Natural person to whom the personal data being processed refer;

Controller: Natural or legal person, under public or private law, responsible for decisions regarding the processing of personal data;
Operator: Natural or legal person, under public or private law, who processes personal data on behalf of the controller;

In charge: Person appointed by the controller and operator to act as a communication channel between the controller, data subjects and the National Data Protection Authority (ANPD)

Treatment agents:  The controller and the operator;

Treatment: Any operation carried out with personal data, such as those relating to collection, production, reception, classification, use, access, reproduction, transmission, distribution, processing, archiving, storage, elimination, evaluation or control of information, modification, communication, transfer, dissemination or extraction;

Consent: Free, informed and unequivocal expression by which the holder agrees to the processing of his/her personal data for a specific purpose;

Personal Data Protection Impact Report: Controller documentation containing a description of personal data processing processes that may pose risks to civil liberties and fundamental rights, as well as measures, safeguards and risk mitigation mechanisms;

National authority: Public administration body responsible for overseeing, implementing and monitoring compliance with this Law throughout the National territory.

Logo_Bhead_Site_White
Contact information
Site Map
Follow us on
Social media
Instagram Linkedin-in