Privacy Policy
Last Updated: January 2025
64.396.415 Yasmim de Oliveira (CNPJ: 64.396.415/0001-09), located at Rua Ricardo Gobbo, 509, Jundiaí, São Paulo 13203-554, United States, is committed to protecting the privacy and security of our visitors, clients, and users. Founded in 2026 by Yasmim de Oliveira, 64.396.415 Yasmim de Oliveira specializes in custom mobile app development services.
This Privacy Policy describes what personal data we collect, how we use it, and your rights to access, correct, or delete it. This policy applies to our website, applications, and services (collectively, the "Services"). It does not apply to applications or products developed for our clients, which are governed by their own privacy policies.
1. Introduction
64.396.415 Yasmim de Oliveira is a limited liability company registered in the state of São Paulo, United States. We are the data controller for the personal data collected through our Services. Our commitment to privacy extends to all interactions you have with our company, whether through our website, email, phone, or in-person meetings.
By using our Services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use our Services.
2. Information We Collect
2.1 Information You Provide Directly
- Identity Data: Full name, job title, company name, and professional credentials
- Contact Information: Email address, phone number, mailing address, and social media profiles
- Account Credentials: Username, password, and security questions (encrypted at rest)
- Financial Information: Billing address, payment card details (processed via PCI-DSS compliant processors), and bank account information for wire transfers
- Project Materials: Documents, specifications, design assets, and other content provided in connection with our services
- Communication Records: Emails, chat transcripts, meeting notes, and phone call records
2.2 Information Collected Automatically
- Device Information: Hardware model, operating system version, unique device identifiers, browser type and version, screen resolution, and language settings
- Log Data: IP address, access times, pages viewed, referring URL, click patterns, and error logs
- Location Data: Approximate geographic location derived from IP address (we do not collect precise GPS location)
- Performance Data: Page load times, response times, download errors, and interaction patterns
2.3 Cookies and Tracking Technologies
We use cookies, web beacons, local storage, and similar technologies to collect information about your browsing behavior. For detailed information about the cookies we use, please see Section 13 (Cookie Policy) of this document.
2.4 Information from Third Parties
We may receive personal data from third-party sources including business partners, marketing platforms, social media networks, data enrichment providers, and publicly available databases. This data is used to supplement the information we collect directly.
3. How We Use Your Information
We use the personal data we collect for the following purposes:
- Service Delivery: To provide, maintain, and improve our custom mobile app development services, process transactions, and fulfill contractual obligations
- Communication: To respond to inquiries, provide project updates, send technical notices, and deliver customer support
- Marketing: To send promotional materials, newsletters, and updates about our services (you may opt-out at any time via the unsubscribe link in any marketing email)
- Analytics: To analyze usage patterns, monitor service performance, and improve user experience
- Security: To detect, prevent, and address technical issues, fraud, and security threats
- Legal Compliance: To comply with applicable laws, regulations, legal processes, and government requests
- Business Operations: To manage our internal operations including billing, accounting, auditing, and regulatory compliance
4. Legal Basis for Processing
We process your personal data based on the following legal grounds:
- Contractual Necessity: Processing required to fulfill our contractual obligations to you
- Legitimate Interests: Processing necessary for our legitimate business interests, such as improving services, marketing, and fraud prevention, where these interests are not overridden by your rights
- Consent: Where you have given explicit consent for specific processing activities
- Legal Obligation: Processing required to comply with applicable laws and regulations
- Vital Interests: Processing necessary to protect someone's life or physical safety
5. How We Share Your Information
64.396.415 Yasmim de Oliveira does not sell your personal information. We may share your personal data in the following circumstances:
- Service Providers: We share data with trusted third-party companies that perform services on our behalf, such as cloud hosting, payment processing, email delivery, and analytics. These providers are contractually bound to protect your data and may only use it for the purposes we specify.
- Business Transfers: In the event of a merger, acquisition, reorganization, or sale of assets, your personal data may be transferred as part of the transaction. We will notify you of any such transfer and the choices available to you.
- Legal Requirements: We may disclose your information when required by law, subpoena, court order, or government regulation, or when we believe disclosure is necessary to protect our rights, safety, or property.
- With Your Consent: We may share your data with third parties when you have explicitly consented to such sharing.
- Aggregated Data: We may share anonymized, aggregated data that cannot be used to identify you for research, analytics, and business purposes.
6. Third-Party Services
Our Services may utilize the following types of third-party services:
- Analytics Providers: Google Analytics and similar services to understand how our website is used
- Payment Processors: PCI-DSS compliant processors for secure payment handling
- Cloud Infrastructure: Cloud hosting and storage providers for reliable service delivery
- Communication Tools: Email, chat, and video conferencing platforms for client communication
- Advertising Platforms: Services that help us measure the effectiveness of our marketing campaigns
Each third-party service has its own privacy policy governing the use of your data. We encourage you to review these policies.
7. Data Security
We implement comprehensive security measures to protect your personal data:
7.1 Technical Safeguards
- Encryption in transit using TLS 1.2 or higher
- Encryption at rest using AES-256 encryption
- Role-based access controls with principle of least privilege
- Web application firewalls and intrusion detection systems
- Regular vulnerability assessments and penetration testing
7.2 Administrative Safeguards
- Employee background checks and confidentiality agreements
- Regular security awareness training for all staff
- Documented incident response procedures
- Regular review and update of security policies
7.3 Physical Safeguards
- Controlled access to office facilities
- Secured server rooms and data centers
- Environmental controls (fire suppression, climate control)
While we strive to protect your personal data, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security but we continually work to enhance our protections.
8. Data Retention
We retain personal data for as long as necessary to fulfill the purposes for which it was collected:
| Data Category | Retention Period |
|---|
| Project and client data | 5 years after project completion |
| Financial and billing records | 7 years (regulatory requirement) |
| Marketing and communication preferences | Until you unsubscribe or request deletion |
| Analytics and usage data | 14 to 36 months |
| Communication records | 3 years |
| Account data (inactive accounts) | 24 months after last activity |
When personal data is no longer needed, we securely delete or anonymize it in accordance with our data retention schedule.
9. Your Rights Under CCPA (California Residents)
If you are a California resident, the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA) provide you with the following rights:
- Right to Know: You have the right to request information about the categories and specific pieces of personal data we have collected, used, disclosed, and sold about you in the last 12 months.
- Right to Delete: You can request that we delete the personal data we have collected from you, subject to certain exceptions.
- Right to Correct: You can request that we correct inaccurate personal data we maintain about you.
- Right to Opt-Out of Sale: You have the right to opt-out of the sale of your personal information. Note: 64.396.415 Yasmim de Oliveira does not sell personal information.
- Right to Limit Use of Sensitive Data: You can request that we limit our use of your sensitive personal information to only what is necessary to provide the services.
- Right to Non-Discrimination: We will not discriminate against you for exercising any of your CCPA rights.
To exercise these rights, please contact us at support@activewellnesspulse.site or call . We will respond to verifiable requests within 45 calendar days.
10. Your Rights Under GDPR (EU/EEA/UK/Switzerland Residents)
If you are located in the European Economic Area, United Kingdom, or Switzerland, the General Data Protection Regulation (GDPR) provides you with the following rights:
- Right of Access: You may request a copy of the personal data we hold about you.
- Right to Rectification: You may request correction of inaccurate or incomplete personal data.
- Right to Erasure: You may request deletion of your personal data when it is no longer necessary for the purposes for which it was collected.
- Right to Restriction: You may request that we restrict processing of your personal data in certain circumstances.
- Right to Data Portability: You may request to receive your personal data in a structured, commonly used, and machine-readable format.
- Right to Object: You may object to processing based on legitimate interests or for direct marketing purposes.
- Rights Related to Automated Decision-Making: You have the right not to be subject to decisions based solely on automated processing that produce legal or similarly significant effects.
We will respond to GDPR requests within 30 calendar days, which may be extended by up to 60 additional days for complex requests. You also have the right to lodge a complaint with your local supervisory authority.
11. Children's Privacy
Our Services are not directed to individuals under the age of sixteen (16). We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete that information immediately. For individuals between the ages of 16 and 18, we require parental or guardian consent before processing their personal data.
12. International Data Transfers
Your personal data may be transferred to and processed in the United States or other countries where our service providers operate. When we transfer data internationally, we implement appropriate safeguards including:
- Standard Contractual Clauses approved by the European Commission
- Data Processing Agreements with all processors
- Transfer Impact Assessments where required
- Technical and organizational measures to ensure data protection
13. Cookie Policy
We use the following categories of cookies:
- Strictly Necessary Cookies: Essential for website functionality (session management, security, load balancing). These cannot be disabled.
- Performance and Analytics Cookies: Help us understand how visitors interact with our website by collecting anonymous usage data.
- Functional Cookies: Remember your preferences and settings (language, region, display options) to enhance your experience.
- Targeting and Advertising Cookies: Used to deliver relevant advertisements and measure campaign effectiveness.
You can manage your cookie preferences through your browser settings. Most browsers allow you to block or delete cookies. Please note that disabling certain cookies may affect the functionality of our website.
14. Do Not Track Signals
64.396.415 Yasmim de Oliveira does not currently respond to Do Not Track (DNT) browser signals, as there is no industry-standard interpretation of DNT signals for websites. However, we respect your privacy preferences and provide you with choices through our cookie management tools and the opt-out mechanisms of the Digital Advertising Alliance (DAA), Network Advertising Initiative (NAI), and European Digital Advertising Alliance (EDAA).
15. Changes to This Policy
64.396.415 Yasmim de Oliveira reserves the right to modify this Privacy Policy at any time. When we make material changes, we will:
- Update the "Last Updated" date at the top of this policy
- Send email notifications to registered users and active clients
- Post a prominent notice on our website
Your continued use of our Services after any changes to this Privacy Policy constitutes your acceptance of the updated policy.
16. Contact Information
If you have questions about this Privacy Policy, wish to exercise your privacy rights, or need to report a privacy concern, please contact us:
64.396.415 Yasmim de Oliveira
Rua Ricardo Gobbo, 509
Jundiaí, São Paulo 13203-554
Phone:
Email: support@activewellnesspulse.site
Business Hours: Monday - Friday, 9:00 AM - 6:00 PM PST
We strive to respond to all privacy inquiries within 5 business days.