This site is maintained and operated by Sabbry Industrial Solutions LTDA.

We collect and use some personal data belonging to those who use our website. In doing so, we act in the capacity of controller of such data and are subject to the provisions of Federal Law No. 13,709/2018 (General Data Protection Regulation - GDPR).

We take care to protect your personal data and therefore provide this privacy policy, which contains important information about:

- Who should use our website
- What data we collect and what we do with it;
- Your rights in relation to your personal data; and
- How to contact us.

1. Data we collect and reasons for collection

Our website collects and uses certain personal data from our users in accordance with the provisions of this section.

1.1 Personal data expressly provided by the user

We collect the following personal data that our users expressly provide to us when using our website:

- First name
- Surname
- Phone Number
- E-mail address

The collection of this data takes place at the following moments:

When the user uses the contact form

The data provided by our users is collected for the following purposes:

so that the user can acquire information about our products, parts and services.

1.2 Sensitive data

Sensitive data shallnot be collected from our users, i.e. data as defined in Articles 11 et seq. of the Personal Data Protection Act. Thus, no data shall be collected on racial or ethnic origin, religious beliefs, political opinions, membership of trade unions or religious, philosophical or political organisations, data concerning health or sex life, genetic or biometric data when linked to a natural person.

1.3 Cookies

Cookies are small text files automatically downloaded to your device when you access and browse a website. They serve, basically, to be able to identify devices, activities and user preferences.

Cookies do not allow any file or information to be extracted from the user's hard drive, and it is also not possible, through them, to gain access to personal information that has not come from the user or from the way in which they use the site's resources.

a. Third-party cookies

Some of our partners may set cookies on the devices of users accessing our website.

These cookies, in general, aim to enable our partners to offer their content and services to the user accessing our website in a personalised manner, by obtaining navigation data extracted from their interaction with the website.

The user can obtain more information about third-party cookies and how the data obtained from them are handled, as well as access to the description of the cookies used and their characteristics, by accessing the following link:

Google Analytics
https://developers.google.com/analytics/devguides/collection/gtagjs/pages

The entities in charge of collecting the cookies may assign the information obtained to third parties.

b. Cookie management

The user may oppose the registration of cookies by the website, simply by disabling this option in their own browser. More information on how to do this in some of the main browsers used today can be accessed from the following links:

Internet Explorer:
https://support.microsoft.com/pt-br/help/17442/windows-internet-explorer-deletemanage-cookies

Safari:
https://support.apple.com/pt-br/guide/safari/sfri11471/mac

Google Chrome:
https://support.google.com/chrome/answer/95647?hl=pt-BR&hlrm=pt

Mozila Firefox:
https://support.mozilla.org/pt-BR/kb/ative-e-desative-os-cookies-que-os-sites-usam

Opera:
https://www.opera.com/help/tutorials/security/privacy/

The deactivation of cookies, however, may affect the availability of some tools and functionalities of the website, compromising its correct and expected functioning. Another possible consequence is the removal of user preferences that may have been saved, harming your experience.

1.4 Data collection not expressly provided for

Eventually, other types of data not expressly provided for in this Privacy Policy may be collected, provided that they are provided with the consent of the user, or that the collection is permitted on another legal basis provided for by law.

In any case, the collection of data and the processing activities resulting from it will be informed to the users of the website.

2. Sharing of personal data with third parties

We do not share your personal data with third parties. However, we may do so in order to comply with a legal or regulatory requirement, or to comply with an order issued by a public authority.

3. For how long your personal data will be stored

The personal data collected by the website are stored and used for a period of time that corresponds to that necessary to achieve the purposes listed in this document and that considers the rights of its holders, the rights of the website controller and the applicable legal or regulatory provisions.

Once the storage periods for personal data have expired, they are removed from our databases or anonymised, except in cases where there is a possibility or a need for storage by virtue of a legal or regulatory provision.

4. Legal bases for processing personal data

Each personal data processing operation must have a legal basis, i.e. a legal basis, which is nothing more than a justification that authorises it, provided for in the General Law on Personal Data Protection.

All Our personal data processing activities have a legal basis to support them, among those permitted by law. Further information about the legal bases we use for specific personal data processing operations can be obtained from our contact channels listed at the end of this Policy.

5. User rights

The user of the website has the following rights, conferred by the Personal Data Protection Act:

- confirmation of the existence of processing;
- access to data;
- correction of incomplete, inaccurate or outdated data;
- anonymisation, blocking or deletion of data that are unnecessary, excessive or processed in breach of the law;
- portability of data to another service or product provider on express request, in accordance with the regulations of the national authority, respecting commercial and industrial secrets;
- deletion of personal data processed with the consent of the data subject, except in cases provided for by law;
- information of the public and private entities with which the controller has shared data
- information about the possibility of not giving consent and the consequences of refusal;
- revocation of consent.

It is important to note that under the LGPD, there is no right of erasure of data processed on legal grounds other than consent, unless the data is unnecessary, excessive or processed in breach of the law.

5.1 How the holder can exercise his rights

To ensure that the user who intends to exercise his rights is in fact the holder of the personal data that is the subject of the request, we may request documents or other information that may help to correctly identify him in order to protect our rights and the rights of third parties. This will only be done, however, if absolutely necessary, and the requester will receive all related information.

6. Security measures for the processing of personal data

We employ technical and organisational measures to protect personal data against unauthorised access and against the destruction, loss, misplacement or alteration of such data.

The measures we use take into account the nature of the data, the context and purpose of the processing, the risks that a possible breach would create to the rights and freedoms of the user, and the standards currently employed in the market by companies similar to ours.

Among the security measures adopted by us, we highlight the following:

- Our users' data is stored in a secure environment;
- We limit access to our users' data so that unauthorised third parties cannot access it;
- We use SSL(Secure Socket Layer) certificates so that data transmission between users' devices and our servers is encrypted;
- We keep records of all those who have, in any way, contact with our data.

Although we do everything in our power to prevent security incidents, it is possible that problems may occur that are exclusively the fault of a third party - such as a hacker attack, a cracker attack or the user's own fault, for example when a user transfers data to a third party. Thus, although we are generally responsible for the personal data we process, we cannot be held liable in such exceptional circumstances over which we have no control.

In any event, should any type of security incident occur that could generate relevant risk or damage to any of our users, we will notify those affected and the National Data Protection Authority of what has occurred, in accordance with the provisions of the General Data Protection Act.

7. Complaint to a control authority

Without prejudice to any other administrative or judicial remedy, holders of personal data who feel in any way aggrieved may lodge a complaint with the National Data Protection Authority.

8. Changes to this policy

This version of this Privacy Policy was last updated on: 10/09/2021.

We reserve the right to modify the present rules at any time, especially to adapt them to any changes made to our website, either by providing new functions or by suppressing or modifying existing ones.

Whenever there is a modification, our users will be notified of the change.

9. How to contact us

To clarify any questions about this Privacy Policy or the personal data we handle, please contact our Personal Data Protection Officer through any of the channels mentioned below:

E-mail: suporte@sabbry.com

Telephone: +55 11 2626-4219

Address: Rua Rubem Braga, 58 - conj 103
Melville Empresarial II
Barueri - SP
Zip Code: 06485-365