PRIVACY POLICY –

TIME TWO COFFEE

 

1. Who are we

Time Two Coffee is a platform available on the website https://timetwocoffee.com.br, which allows registered customers to have access to Cafezeiros, professionals made available by the platform who stand out in their areas of expertise, to hire a coffee service. virtual conversation lasting one hour, Cafezinho.

2. Goal

This Privacy Policy contains information on the collection, use, storage and other activities for the treatment and protection of personal and sensitive personal data of users of the Time Two Coffee website, (website: https://timetwocoffee.com.br), belonging to to Time Two Coffee Consultoria Ltda, CNPJ: 44.597.996/0001-30, with the purpose of demonstrating absolute transparency on the subject and clarifying to all interested parties about the types of data that are collected, the reasons for the collection and the way in which users can manage or delete their personal information.

When using our services, data subjects understand that we will collect and use their personal information in the ways described in this Policy, in compliance with Data Protection regulations (Federal Law No. 13,709/2018 – General Law for the Protection of Personal Data) and the other applicable rules of the Brazilian legal system. This document was prepared in accordance with Federal Law No. 13.709/2018 - General Law for the Protection of Personal Data and will be updated as a result of any regulatory update.

This Privacy Policy should be considered complementary to the Website Terms of Use - https://timetwocoffee.com.br/politica-de-privacidade.

For the purposes of this Privacy Policy:

  • Personal data means any data concerning an identified or identifiable natural person; 
  • Sensitive personal data Sensitive personal data is personal data about racial or ethnic origin, religious conviction, political opinion, union affiliation or organization of a religious, philosophical or political nature, data referring to health or sex life, genetic or biometric data, when linked to a natural person;
  • User(s) means Cafezeiro (professionals registered on the site, who stand out in their areas of expertise and offer their services for carrying out Cafezinho online, through the Time Two Coffee platform) and Customer (any person who accesses the site and uses it and/or hires its functionalities, through registration), to whom this Policy applies.

 

3. What User Personal Data Do We Collect?

The personal and sensitive personal data collected are the following:

a) Data that users provide us through online registration forms, available at URLs (https://timetwocoffee.com.br/cliente/cadastro and https://timetwocoffee.com.br/cadastro-cafezeiro ): full name, CPF, e-mail, telephone, date of birth, full address (street address, number, complement, zip code, city, state), gender identity, position, company, professional profile (description of your resume, experiences professionals and other related information), bank details.

b) Data we collect automatically: browsing data, i.e. data about how the user uses and interacts on our platform, which may include the dates the user purchased the products and their browsing activities, IP Address and Port Logic of Origin, Device (operating system version), Geolocation, Date and time stamps for each action you perform, which screens you accessed, session ID, Cookies.

c) Data we collect from other sources: we may collect data from other sources, such as public databases, data from public profiles on social networks and credit protection entities.

 

4. For what Purpose do we use the Personal and Sensitive Personal Data of Users

The personal data collected are intended to:

a) Registration, identification and authentication for the coffee grower and the customer to use the platform;

b) Identification of the credit card owner for the payment partner company, in order to carry out the financial transaction with the buyer's bank;

c) Identification of the credit card owner for the fraud risk analysis partner company, in order to enable the fraud risk assessment in this type of transaction;

d) Updating customer registration data, in order to make subsequent changes to coffee dates (conversation with the coffee makers);

e) Communication/Warning/Notification of Customers and Coffee Shops about the conditions of their purchased coffees, in order to clarify dates of use or changes in opening hours;

f) Sending Whatsapp messages and purchase confirmation emails and coffee details;

g) Financial assistance to buyers in order to provide the information and documents requested by buyers;

h) Time Two Coffee's financial or legal assistance, in order to provide the requested information to carry out legal defense;

i) Request to participate in satisfaction surveys about programs and services carried out by us or by partners;

j) Offer of promotions and other communications, in order to promote discounts and purchase conditions to potential customers through e-mail, SMS and WhatsApp messages to registered cell phones;

k) Offer targeted advertising in order to promote Time Two Coffee to potential customers through the identification of cookies in advertising tools such as Facebook, Instagram and Google;

l) Ensuring the portability of registration data to another Controller in the same field in which we operate, if requested by users, complying with the obligation of article 18 of the General Law for the Protection of Personal Data;

 

5. How We Handle Your Personal and Sensitive Personal Data

The processing of your data may occur through the situations described below, in accordance with the law:

a) Compliance with a legal or regulatory obligation;

b) Consent – The purposes for using your data will be specific and highlighted in your consent, and you can choose to accept or not the processing of data as indicated.

c) Legitimate interest in promoting Time Two Coffee activities or in corporate audits and investigations supported by law or regulation. Not applicable to sensitive personal data.

d) When necessary for the execution of a contract or preliminary procedures related to a contract to which the holder is a party, at the request of the data subject;

e) For the regular exercise of rights in judicial, administrative or arbitration proceedings, the latter under the terms of Law No. 9,307, of September 23, 1996 (Arbitration Law).

f) For credit protection, including the provisions of the relevant legislation. Not applicable to sensitive personal data.

 

6. How Long Is Personal Data Stored?

We store your data on our servers located in Brazil, as well as in an environment using resources or servers in the cloud (cloud computing) and we keep your information:

a) In general, the data will be kept as long as the contractual relationship between users and Time Two Coffee lasts;

b) For the time required by law;

c) Until the end of the processing of personal data.

Thus, we will process your data, for example, during the applicable statute of limitations or as necessary to comply with a legal or regulatory obligation. The termination of the processing of personal data will occur in the following cases:

a) When the purpose for which the personal data was collected is achieved, and/or the personal data collected is no longer necessary or relevant to the achievement of such purpose;

b) When the data processing period ends;

c) When the holder requests the deletion of his data, respecting the rights of third parties;

d) When there is a legal determination in this regard.

The storage time of personal data may be reduced if the holder requests the deletion of his data, provided that such action does not infringe the rights of Time Two Coffee or third parties or that the maintenance of data is not expressly required or authorized by law or appropriate regulation. In the latter case, personal data should only be deleted after the legally authorized/required period has expired.

In cases of termination of processing of personal and sensitive personal data, subject to the assumptions established by the applicable legislation or by this Policy, they will be eliminated using secure disposal methods, and this Policy will no longer be applicable to the user.

 

7. Security of Stored Personal Data

Time Two Coffee undertakes to apply technical and administrative measures capable of protecting personal data from unauthorized access and situations of destruction, loss, alteration, communication or dissemination of such data.

Among the measures we adopt, we highlight the following:

a) Only authorized persons have access to your personal data.

b) Access to your personal data is made only after the commitment of confidentiality.

c) Your personal data is stored in a safe and suitable environment.

The personal data stored are treated confidentially, within legal limits. Personal information may be disclosed in case of legal obligation. In case of security incidents that may generate risk or significant damage to any user, we will notify those affected and the National Data Protection Authority about what happened, in line with the provisions of the General Data Protection Law.

 

8. Data Sharing

We may share the data with other sectors and other companies of the Time Two Coffee Group. When accessing this site, the user agrees with the sharing of his personal data among companies of the economic group, including those that may be constituted or resulting from any corporate operations.

We may also share your Personal and Sensitive Personal Data when we have a good faith belief that we have an obligation to:

comply with any law, regulation or court order;
respond to requests for duly authorized information from regulators and law enforcement and other public authorities, including in cases associated with security threats;
enforce and/or protect Time Two Coffee's rights and property, including to investigate fraud and help prevent security threats, or other criminal or malicious activities;
protect the legitimate interests of others, including the personal safety of Time Two Coffee employees;
meet the other hypotheses provided for in the applicable legislation;


We may also share your Personal and Sensitive Personal Data with advertisers on targeted advertising platforms to measure the effectiveness of online advertising. The holder or potential customer may eventually directly receive ads, content and links displayed in a personalized way, according to the interests and behaviors on our platforms or in other experiences with which the user interacts. To this end, data may be shared between Time Two Coffee and the targeted advertising platform, mainly unique identifiers, IP addresses, cookies and other information collected from your browser, which may be used to measure the effectiveness of online advertising. The Data Subject can always oppose this advertising by contacting us through our institutional communication channels;

We may also share your Personal and Sensitive Personal Data with suppliers and/or partners who need to use the data to carry out processes or activities necessary for the full functioning of the Time Two Coffee platform, always in compliance with the provisions of this Policy. Our partners are only authorized to use Personal Data for the specific purposes for which they were hired, and are also obliged to treat the Data with the information security standards established by Time Two Coffee. They must also respect the contractual clauses signed with partner companies to communicate about products, services, promotions, news, updates, events and other matters of interest to Time Two Coffee and users.

Time Two Coffee may decide to sell, buy, merge or reorganize its businesses. In these cases, we may share or transfer your Personal Data with/to interested parties or buyers.

 

9. Third Party Services and Applications

This Privacy Policy does not apply to third party websites, products, services or social media features, which may be accessed through links we provide for your convenience and information. Accessing these links will remove the user from our environment and may result in the collection or sharing of information about the user by third parties. We do not control, endorse or make any representations about these third party sites or their privacy practices, which may differ from ours. We encourage the user to review the Privacy Policy of any website with which he interacts, before allowing the collection and use of his personal data.

 

10. Data on Children and Adolescents

Time Two Coffee does not intentionally collect information from children and adolescents, as defined by Brazilian law. Users under the age of 18 (eighteen) years must not register, publish or provide personal data to our website.

We recommend that users supervise their children's online activities and consider using available control tools that help provide a child-friendly Internet environment.

 

11. International Transfer of Personal Data

Your personal data may be transferred and processed in countries other than the country in which the User resides. However, this will only occur in cases where these countries provide a degree of protection of personal data adequate to that provided for in the LGPD. For this, we take security measures to require that your personal data remain protected in accordance with this Privacy Policy. This includes implementing standard contractual clauses for transfers of personal data between Time Two Coffee companies. We will also implement similar safeguards with our third-party service providers and partners.

 

12. Holder's Rights

Holders of personal data have certain rights with regard to their personal data and can exercise them by contacting us via e-mail: dpo@timetwocoffee.com.br

Confirmation of the existence of processing of personal data;
Access to personal data, under the terms of the applicable legislation;
Correction of incomplete, inaccurate or outdated data;
Data portability;
Exclusion of data, when these are processed based on the consent of the Holder or when the data is unnecessary, excessive or treated in breach of applicable legislation;
Request for information about shared use of data. Please note that this Privacy Policy describes Time Two Coffee's personal data sharing activities. To receive more information about how we share your data, please contact us;
Revocation of consent, when applicable;
For security reasons, we will only be able to fulfill your request if we are sure of your identity. Therefore, we may request additional data or information to confirm the identity and authenticity of the Holder.

Time Two Coffee has as Data Officer:

Identification: Felipe Capelo Borges;

Contact: dpo@timetwocoffee.com.br.

 

13. Privacy Policy Changes

We reserve the right to modify this Privacy Policy. Therefore, it is recommended that the user review it frequently.

Changes and clarifications will take effect immediately upon publication. The most up-to-date version of this Policy will be available on the website, and the user must consult it frequently to check the new terms.

When using any service or providing personal information after any modifications, the User demonstrates his agreement with the new rules.

Version Updated on 08/08/2023.