Privacy Policy
Open Cybersecurity Tecnologia LTDA ("Open", "we") respects your privacy. This policy explains how we collect, use, and protect personal data on opencybersecurity.co.
1. Data we collect
We collect contact information you provide via forms, technical data from your browser (IP, user agent), and analytics events from our privacy-first analytics provider.
2. Why we collect it
To respond to inquiries, schedule consultations, send the newsletter you opted into, and improve the site experience. Lawful bases under LGPD: consent (Art. 7, I), legitimate interest (Art. 7, IX), and contract performance (Art. 7, V).
3. Sharing
We do not sell personal data. Limited sharing with our processors: HubSpot (CRM), Cal.com (scheduling), Plausible (analytics), and infrastructure providers under DPA.
4. Your rights
Under LGPD, you have rights to access, correct, delete, port, and restrict processing of your personal data. Contact our DPO at dpo [at] opencybersecurity [dot] co.
5. Retention
We retain marketing data for 24 months from last interaction. Customer data is retained as long as the engagement is active, plus the legal retention period.
6. Cookies
We use first-party analytics cookies. No third-party advertising cookies are set without consent.
7. International transfers
Some of our processors are based outside Brazil. Transfers are protected by SCCs or equivalent safeguards as required by LGPD Art. 33.
8. Contact
DPO: dpo [at] opencybersecurity [dot] co · ANPD: www.gov.br/anpd