Privacy Policy
I - INTRODUCTION
RV Pinheiro Advogados ("Firm") is committed to protecting the privacy and personal data of all those who interact with its services, including clients, employees, suppliers and visitors to its website and other digital platforms.
This Privacy Policy aims to explain in detail how personal information is collected, used, stored and protected, ensuring full transparency and compliance with the General Personal Data Protection Law (LGPD - Law No. 13,709/2018). The Office's activities are aligned with the best practices in governance and information security, ensuring that all processes follow ethical and legal standards.
Privacy and data protection are fundamental values in the relationship between the Office and its clients, employees and partners. We adopt security measures that ensure the integrity and confidentiality of the information collected, preventing improper access, leaks or any form of inappropriate treatment.
This Policy must be followed by all those who interact with the Firm, whether through legal consultations, browsing the website, in-person service, use of digital platforms or any other means of communication. Our actions are based on transparency, ensuring that data subjects clearly understand how their information is used.
II - DEFINITIONS AND PRINCIPLES
The processing of personal data carried out by the Office follows the definitions and principles established by the LGPD, ensuring that all operations are conducted in an ethical and responsible manner.
In compliance with the principle of purpose, personal data will only be collected for specific, legitimate purposes and previously informed to the holder. The principle of necessity, which ensures that only information that is strictly essential for the provision of services and compliance with legal obligations is processed, avoiding excess or the collection of unnecessary data. Transparency ensures that data subjects have access to information about how their data is used, in a clear and accessible manner.
Furthermore, the Office is committed to security, applying technical and administrative measures to protect information against unauthorized access and security incidents, as well as providing free access for data subjects to consult, at any time, which of their data are being processed and in what way.
III – TARGET AUDIENCE OF THE POLICY
This Policy applies to all individuals whose personal data is processed by the Office, regardless of how this relationship is established. This includes clients seeking legal advice, employees and interns whose information is processed for administrative purposes, suppliers and service providers hired by the Firm, as well as visitors to the website and physical premises who, in some way, provide their data.
The Policy covers all situations in which personal data is processed, whether through digital interactions, registration forms, contract signatures, use of online services or any other form of communication. Regardless of the form of collection, the Office ensures that all data processing operations will be conducted transparently, respecting the rights and guarantees of the holders.
IV - COLLECTION AND USE OF PERSONAL DATA
Personal data may be collected directly, when the data subject voluntarily provides it, or indirectly, through digital interactions and other legitimate sources. Among the information collected are identification data, such as name, CPF, RG, address, telephone number and email; professional data, such as position and academic history; financial, for issuing charges and invoicing; and browsing data, such as IP address, cookies and website access preferences. In some specific cases, sensitive data may be collected, provided that it is strictly necessary and with the appropriate legal basis for authorization.
Personal data may be collected directly, when provided by the holder through registrations, forms or contact with the Office, and indirectly, through cookies and other tracking technologies when accessing our website. This data is processed for different purposes, including the provision of legal services, institutional communications, contract management, compliance with legal and regulatory obligations and facility security.
The use of data may also involve sending information about events, newsletters and other relevant communications to the data subject, always respecting the legal bases for processing. If cookies are used, the Office will inform the holder about what data is collected, its purpose and how it can be managed.
V - COLLECTION AND USE OF CUSTOMER DATA
In the context of legal services, the Firm treats client data with absolute confidentiality, in accordance with the OAB Code of Ethics. The data may be provided by the client or by authorized third parties and are used exclusively for the execution of the contracted services.
In order to provide our legal services, we process our clients' data as necessary, always ensuring respect for the ethical principles of law and the professional secrecy that governs the relationship between lawyer and client. Data processing is carried out in a careful manner, ensuring that all information collected is used exclusively for legitimate purposes and previously informed to the holder.
The data processed by the Office for the provision of services may include information provided directly by clients or made available by third parties indicated by them. The data collected includes: registration information, such as name, company you work for and position; contact details including postal address, email and telephone number; financial information, such as bank, branch and bank account number, when necessary for contractual transactions; and authentication data, essential for validating signatures of digital contracts and other legal documents.
In certain situations, the Office may need to process sensitive data, whenever such information is strictly necessary for the provision of the requested legal service and with the express consent of the holder, when applicable. Additionally, client identification and historical information may be collected for purposes of conflict of interest analysis and compliance with legal or regulatory obligations to which the Firm is subject.
Protecting client data is a priority for the Firm. All information is stored securely and accessible only by authorized professionals, ensuring that professional secrecy and the rights of holders are fully respected. The Office also undertakes not to use this data for purposes other than those informed to the holder and to ensure that any sharing occurs only within the limits necessary for the execution of the contracted services.
V - DATA SHARING
The Office does not share, sell or commercialize personal data or that of its clients. However, to ensure the execution of its services and the fulfillment of its obligations, data may be shared with third parties, such as corresponding offices, public and judicial bodies, financial and technology service providers. Any sharing occurs based on contracts and agreements that ensure the protection and confidentiality of information.
In situations involving international data transfer, the Office will adopt the necessary measures to ensure that such transfers occur in compliance with the LGPD, ensuring that the data remains protected.
VI – USE OF COOKIES AND SIMILAR TECHNOLOGIES
Our website may use cookies to improve the user experience, allowing for more fluid and personalized navigation. Cookies are small files stored on the user's device that help identify preferences, website performance and specific features. If preferred, the holder can manage cookie permissions through the browser settings, blocking or deleting temporary files.
VII - DATA STORAGE AND SECURITY
Personal data will be stored for as long as necessary to fulfill its purposes or in accordance with legal requirements. The Office adopts security measures to protect this information against unauthorized access, loss, alteration and any other form of inappropriate or unlawful treatment.
If the data is no longer necessary, the Office will delete it securely, following LGPD standards. Additionally, measures such as anonymization can be applied to ensure that the information is no longer linked to a specific data subject.
The Office adopts technical and administrative measures to ensure the protection of personal data against unauthorized access, leaks and misuse. These measures include restricted control of access to information, constant monitoring of systems and ongoing training of employees on good information security practices.
All information stored by the Office follows strict protection standards and is treated with the highest level of confidentiality. If any security incident occurs that could compromise personal data, data subjects will be duly informed and corrective measures will be adopted immediately.
VIII - RIGHTS OF HOLDERS
Data subjects have rights guaranteed by the LGPD, such as access to information about the processing of their data, correction of incorrect information, data portability and request for deletion when possible.
The Office ensures that all requests will be handled transparently and within the deadlines established by the ANPD. Furthermore, the holder may request information about any sharing carried out and contest automated decisions that may impact him/her.
To exercise their rights, the holder may contact the Office, which undertakes to respond to requests within the legal deadlines established by current legislation.
IX. COPYRIGHT AND INTELLECTUAL PROPERTY
All content made available by the Firm, whether on its institutional website, legal materials, informative publications or any other means of communication, is protected by copyright and intellectual property laws. This includes, but is not limited to, text, images, logos, graphics, layouts and documents made available to customers.
Copying, reproducing, distributing or using any other form of materials from the Office without express authorization is prohibited. The improper use of such content may constitute a violation of intellectual property rules, subjecting the offender to the appropriate measures provided for in current legislation. Any authorized use must respect the integrity of the materials and may not, under any circumstances, distort or modify the original content in a way that impairs its interpretation or reliability.
If third parties have authorized the Office to use copyrighted content, such materials will remain subject to the rules set by their original owners. Any infringement related to the improper use of intellectual property may be notified to the Office for the adoption of appropriate measures.
X. FRAUD ALERT
The Firm warns its clients, partners and other data subjects to be aware of fraud attempts involving improper communications on behalf of the Firm. The Office does not request, by email or any other electronic means, confirmation of personal or banking information. If you receive any message of this type, be suspicious and contact our official channels before providing any data.
We recommend that everyone carefully check the sender and content of messages received before clicking on links or providing sensitive information. Suspicious emails often contain spelling errors, generic language, and unknown senders, in addition to requesting urgent action. For greater security, it is advisable not to download attachments from suspicious emails and not to provide confidential information without verifying the authenticity of the request.
If you suspect any fraud attempt or receive suspicious communications on behalf of the Office, we ask that you contact us immediately through our official channels so that we can take appropriate measures and alert other data subjects about possible scam attempts.
XI - FINAL PROVISIONS
This Policy may be updated periodically to ensure its compliance with current legislation and the evolution of best data protection practices. The latest version will always be available on the Office's website.