Privacy Policy

We present our Privacy and Data Protection Policy, which aims to clarify and provide information about the privacy and security of our customers' and users' personal data, how it is collected, used, stored, and shared on our various digital platforms, websites, social media, applications, and even in our physical stores, as well as the measures used to keep it secure.

Therefore, our privacy policy complies with the provisions of Law 13.709/2018, protecting the fundamental rights of freedom and privacy and the free development of the individual's personality.

Therefore, the data protection policy aims to ensure this company's commitment to the security and privacy of the information collected, clarifying the general conditions for the collection, use, storage, and other forms of processing and protection of personal data.

WHAT IS PERSONAL DATA, HOW AND WHEN IS IT COLLECTED?

Personal data is information about users/customers, provided and collected as a result of their relationship/interaction with the company, capable of identifying the provider.

Today, data can be collected through voluntary or automated registrations. The former is collected through data collection in promotions, campaigns, opinion polls, interviews, interactions on social media, websites, the use of debit and credit card payments, identification for issuing receipts and invoices, identification for delivery of purchased/reserved products, completion of customer service forms, participation and consultation via online chats or email, and other incidents. In the latter case, data is collected as a result of digital interaction processes, such as website access, use and identification of browsing devices, IP addresses[1], identification cookies[2], records of pages visited, products and categories viewed, access to geolocation, and other incidents.

We clarify that this company uses only the minimum information necessary to execute and complete communication/interaction processes between the parties.

WHO IS THE CONTROLLER OF YOUR PERSONAL DATA?

Mormaii Jiujitsu is the controller of the personal data processed under this Privacy Policy, which means it is responsible for decisions regarding the processing of personal data.

PURPOSE OF COLLECTING PERSONAL DATA

The purpose of collecting data is to offer the best possible relationship with the user/customer, improving communication services and interactions between the parties, including information and promotions that are relevant to the user/customer or those arising from a legal requirement.

We therefore reaffirm our commitment to preserving the privacy and security of the data we collect, always respecting the highest ethical and legal principles.

INFORMATION

Our company is positioned in the retail market and does not engage in any activity related to the commercialization of data. Therefore, the data collected will be intended for the use of this controller and will not, under any circumstances, be sold to third parties.

This company will process Personal Data in accordance with the Data Protection Law and to the extent necessary for its proper compliance. We hereby declare that Personal Data will not be Processed for any purpose other than those stated herein. The Personal Data subject to Processing under this Agreement consists of information from those who visit and browse this company's websites, social media, internal records, and other sources, for all contractual and legal purposes.

We affirm that access by employees who need to consult Personal Data to comply with the maintenance of their information is restricted and is handled by employees committed to confidentiality.

We hereby inform you that we have adopted appropriate administrative and technical measures, including information security management, with a technology department. However, we may use third parties/consultants to improve the Personal Data Processing process, who will undertake the same responsibilities established herein.

In the event of any unauthorized, unlawful, and/or accidental processing, access, disclosure, exposure, alteration, loss, or destruction of Personal Data, or any other type of security incident, this company will immediately notify the responsible authorities and the parties involved, cooperating to remedy any incidents, providing appropriate responses and solutions within a reasonable timeframe.

HOW LONG WILL WE KEEP THE DATA?

Data and information will be stored for the period required to fulfill a legal or regulatory obligation, or to preserve the legitimate interests of the relationship developed by the parties, or until their deletion is requested by users/customers, or until they cease to be necessary or relevant for the initial purpose.

Upon termination of personal data processing, these will be deleted, except as provided by law or this Privacy Policy.

WITH WHOM WE SHARE YOUR DATA?

As explained, we do not sell our users/customers' data, but whenever necessary, we share the information with third parties, partners, or even regulatory agencies.

Therefore, we clarify that personal data may be shared with financial institutions when users pay for a specific product with their bank cards or other payment methods. Furthermore, we share information with anti-fraud companies, which analyze transactions to ensure regular transaction compliance. Please also note the need to share information with delivery services, such as carriers and postal services, which require the information to fulfill their obligations. We also share information with consulting firms, which analyze procedures to develop and improve the customer/user experience. Finally, we share it with judicial, government, and law enforcement authorities as a result of an investigation into alleged wrongdoing or compliance with a legal order, legal, or regulatory obligation.

INTERACTIONS WITH THIRD-PARTY SITES

Our website, social media, and other media channels may contain/provide access to external links, the content and privacy policies of which are not the responsibility of this company.

Therefore, we recommend that you consult the respective privacy policies of these websites/third parties to be fully informed about the use of your personal information by other platforms and companies.

SENDING OF COMMUNICATIONS AND ADVERTISING MESSAGES.

Consent to this company's policy implies receiving communications, newsletters, offer notices, coupons, and other advertising messages via email, phone, apps, mail, and other means, always with the option to unsubscribe at any time by the user/customer.

Requests to unsubscribe from receiving communications/advertising messages may be made by completing the online form, which will be sent by email, or by dropping it off at one of this company's physical stores, as indicated below.

USER/CUSTOMER REQUESTS.

Users/customers may, through this company's communication channel, access collected personal data, request corrections and updates, revoke consent, request confirmation of data processing, request deletion and erasure, and inquire about data sharing with partners/institutions.

The information requested above will be provided free of charge, in a timely manner, and will be subject to a prior feasibility analysis to meet technical and legal requirements.

To request access/deletion/change/correction/information regarding their data, please complete the deletion form and send it to mormaii@kmno.com.br, or visit one of our stores by delivering the completed and signed document in person.

RESPONSIBILITY FOR DATA AND INFORMATION PROVIDED BY THE CUSTOMER/USER.

It is the user's/client's duty to ensure the veracity and accuracy of the information voluntarily provided on communication portals, assuming responsibility for the improper use of third-party data, which may constitute an unlawful act.

Inaccurate data due to lack of updating exempts the CONTROLLER from any damage or loss caused to the customer/user, and it is the CONTROLLER's responsibility to maintain or update the data through the available communication channels.

If this company uses systems that require access through the creation of a login and password (such as registrations on websites, applications, and others), the user is responsible for safeguarding the password and creating a login.

To facilitate and ensure secure access, the CONTROLLER may recommend that the user create passwords with special and alphanumeric characters, or that they be changed periodically. The user must change the password IMMEDIATELY if there is any suspicion that their login has been discovered by third parties.

UPDATES

This Privacy and Data Protection Policy may be updated or changed at any time, if necessary, and always in compliance with current legislation. Changes will be prominently posted on our channels.

By using our services, the user/customer agrees to and accepts the terms of this privacy policy, which was last updated on December 1, 2021.

QUESTIONS

For more information or to resolve questions about our privacy policy, please contact us through our communication channels, email support, or other channels, which are available below;

Email: mormaii@kmno.com.br

[1] An Internet Protocol address is a numerical label assigned to each device connected to a computer network that uses the Internet Protocol for communication.

[2] Cookies are pieces of code that give a website a kind of short-term memory, allowing it to remember small pieces of your browsing information, such as your login information and browsing preferences, to offer you a more personalized experience.