The privacy and security of the user’s personal data is of great importance to us. That’s why we transparently explain how we collect, store, share and use your personal data.
This document aims to clarify the rights and duties of people related to data processing rules, including, for example, collection, production, reception, classification, use, access, reproduction, transmission, distribution, treatment, archiving, storage, deletion, evaluation or control of information, modification, communication, transfer, disclosure or extraction of data collected from users, in addition to recording their activities, in accordance with applicable laws.
Our site may, from time to time, contain links to and from the websites of our partners, advertisers and affiliate networks. If you follow a link to any of these sites, you should be aware that these sites have their own privacy policies and that we have no responsibility for those policies.
When using the STMI Platform, the user expressly guarantees that he is fully capable (over 18 years of age without any legal impediment) to exercise and enjoy all services.
For the purposes of this document, the following definitions and descriptions should be considered for a better understanding:
ACCOUNT: is the way in which the USER is represented when accessing the website’s functionalities, applications and services offered by STMI, normally corresponding to a set of data that represents the USER (such as registration data) and other relevant data to guarantee a closer relationship adequate and complete agreement between STMI and the USER.
COOKIES: small files or data packages sent by STMI to the USER’s device to identify and collect information that helps STMI to improve the services provided to the USER.
PERSONAL DATA: information relating to an identified or identifiable natural person. They may include, for example, name, address, email, telephone number, identification number, debit/credit card number, IP address.
DPO: natural or legal person designated by STMI responsible for acting as a communication channel between the controller, interested parties and the National Data Protection Authority.
DATA PROTECTION OFFICER: natural or legal person, public or private, who is responsible for decisions regarding the processing of personal data.
DATABASE: structured set of personal data located in one or more places, in electronic or physical support.
CONSENT: is the free, informed and unequivocal manifestation through which the USER accepts the use of his/her personal data.
PAYMENT GATEWAY: is the company that provides a service consisting of the connection between product sales platforms, with acquirers, Sub-Acquirers, Brands or Intermediaries, in order to improve and guarantee security in the relations between “buyers” and ” users and vendors”.
PAYMENT GATEWAY USERS: natural persons or registered natural persons who use the payment gateway.
DATA COLLECTION INFORMATION
1.1 WHAT KIND OF INFORMATION DO WE COLLECT?
Personal DATA will be collected when voluntarily entered or sent by the USER on the website, applications and services offered by STMI, such as creating accounts, browsing, interacting with content and purchasing services.
Personal Data will also be collected so that they are sent automatically and without the need for any action on the part of the USER, such as through Cookies or partners who have obtained authorization to share personal data with STMI.
STMI treats users’ personal data as necessary to comply with its legal and contractual obligations, operate businesses, provide the products and services that USERS use.
The legal basis that legitimizes the processing of personal data will be the consent given when registering and registering on the platform, expressly accepting these provisions.
INFORMATION AND CONTENT YOU PROVIDE
We collect the content, communications and other information that you provide when you register to create an account: full name, user identification number, date of birth, email address, telephone number.
INFORMATION ABOUT TRANSACTIONS MADE IN OUR PAYMENT GATEWAY
If you use our payment gateway for purchases or other financial transactions, we collect account or transaction information. This includes payment information; other account and authentication information; billing and contact details.
ACCESS TO REGISTRATION INFORMATION
We collect information about the computers, phones and other devices connected to the web that they use when accessing our platform that integrates with our payment gateway, and we combine that information from the different devices that you use.
The information we obtain from these devices includes:
Device attributes: Information such as operating system, hardware and software versions, battery level, signal strength, available storage space, browser type, names and types of files and applications, and add-ons.
Network and connections: Information such as the name of your mobile operator or Internet service provider, language, time zone, mobile phone number, IP address, connection speed.
Device Signals: Bluetooth signals and information about nearby Wi-Fi hotspots, beacons and cell towers.
Device Configuration Data: Information that you allow us to receive through the settings of the device you activate, such as access to your GPS location, camera or photos.
1.2 HOW DO WE USE THIS INFORMATION?
Access to the Device/Creation of Login: the personal data collected when creating your account will be used to identify and authenticate the use of our services. This way, you can use the same account information to connect from any location or device.
Improve our products and services: your personal data will be used to create a profile about you, understand how you use our products and services, develop new products and services that are more interesting and relevant, as well as customize the products and services you already have. we offer you.
Process your order: uses the personal data described above to process, deliver and report on the status of your operations.
Carry out checks: we will also use your personal data to assess its suitability and prevent fraud.
In Customer Service: if you contact our Customer Service Channels, we will use your personal data to process your request and offer you the best possible service/solution.
For marketing actions: when you sign up to receive STMI newsletters, create an account, request or provide feedback on a product or service online, or use our website, we will use your personal data to create a profile based on the information we have about you. yes. We create your profile according to your preferences to offer you the best personalized experience and send personalized marketing messages and newsletters, as well as for opinion research. To achieve these objectives, STMI uses your personal data according to the way you interact with our brand through all the different channels described above and the information we collect about them, through each of these channels, is related both with your interests and preferences. This perception allows us to offer the best possible experience. If you have allowed us to send you marketing communications, we will use the information you have provided, when interacting with us, to send messages of this nature, but in a personalized way, about products or services, discounts, gifts, events and commercial promotions made by STMI. In some circumstances, we also combine your personal information with others to create comprehensive reports on how customers use our products and services and experience our brand, but for statistical reasons we will use your personal data anonymously. In addition, we will send you direct marketing communications through the channel you choose and authorize, such as email, phone or social media. As we mentioned, the messages we convey will be tailored and tailored to your individual preferences and interests. We use analytics to generate these personalized messages. These direct marketing messages may contain information about STMI products and services, events, sweepstakes or promotions and news. We will also, under certain circumstances, use channels for opinion polls (to ask you if you want to participate in a poll) as well as to find out more about your experience.
Retargeting: Our sites use retargeting technologies. This ensures that we show our visitors, who have already shown an interest in our store and our products and/or services, our advertisements on other websites. We believe that serving personalized interest-based ads is more interesting and relevant to our customers than serving ads that are not personally connected. Targeting technologies analyze the information we collect about your interactions, as described above, with respect to marketing actions, including your cookies, and serve ads based on your past web browsing behavior.
Enriching our data: by obtaining your information from different sources, we combine this information, in some circumstances, to enrich our understanding of your preferences in relation to our products and services, in order to improve your experience by sending you personalized marketing or preparing more effective marketing campaigns.
Improving our products and services: We use the personal data we hold about you (as well as anonymous information generated by your personal information) to perform our analysis and research, including: data science or analysis, in which we combine information (personal and/or or confidential data obtained from the use of a Training application or your browsing history, navigation, for example) that we maintain on a large scale, with the aim of learning more about our customers and their preferences, identifying their patterns and trends , improving the user experience on our websites, providing information, content and offers tailored to individual needs, generic research and statistical purposes, or even for the purpose of aggregated STMI group reports. You can also help us develop new products and services, monitor their performance and/or improve our technology.
Website: the personal data collected through our website will be used to evaluate browsing behavior on our website, understand where we can improve, optimize our products and services, as well as customize and improve your experience on our website.
Performance Analysis: we will use your personal data (including through anonymity and aggregation with the personal information of other customers) for sales, supply chain and financial analysis purposes to determine how STMI is performing, where improvements can be made and , if necessary, inform our parent company or group subsidiaries.
1.3 IS YOUR INFORMATION SHARED?
STMI operates with financial and payment transaction automation routines, so that it can work together with other companies to provide services correctly. The exchange of personal data may involve companies such as payment processors, fraud prevention officers and agencies. Your information is shared with others as follows:
Service Providers and Vendors: We work with third-party partners who help us deliver and improve our payment gateway. We stress that we place strong restrictions on how our partners can use and disclose the data we provide. We provide information and content to suppliers and service providers that enable our business to function, whether providing technical infrastructure services, analyzing how our platform is used, providing customer service, facilitating payments or carrying out surveys.
Law enforcement or legal requests: STMI may also share your information with police or judicial authorities, competent public authorities or other third parties, inside and outside the country in which you reside, if necessary by applicable law, court decision and request by the authorities, or as necessary to respond to legal proceedings or to participate in any litigation or litigation of any nature.
With STMI Group companies: We may share the data we collect with the companies of the Economic Group to which STMI belongs. The same guarantees and care that STMI has with your data will be replicated by STMI Group companies. The exchange of data with STMI Group companies will have the following purposes: development of new products and services, offer of products and services that best suit your interests, generation of statistical and aggregated data on the use of our products and services and profiles of user.
1.4 DO WE TRANSFER YOUR DATA TO OTHER COUNTRIES?
We may make international data transfers to other countries in order to carry out some activities related to the services provided to you, as well as to obtain information that may contribute to the improvement of our services.
HOW DO WE PROTECT YOUR INFORMATION?
STMI uses its best efforts to respect and protect your personal information against loss, theft or any form of misuse, as well as against unauthorized access, disclosure, alteration and destruction.
We only process your data through a high degree of security, implementing the best practices in use in the industry for data protection, such as encryption techniques, monitoring and periodic security tests. However, it is not possible to fully guarantee the non-occurrence of intersections and violations of STMI systems and databases, since the Internet has its security structure constantly improving.
HOW LONG IS THE INFORMATION STORED?
If you request the deletion of your account, your personal information provided to STMI during the use of our services will be permanently deleted in accordance with the required legislation.
In some cases, we may retain your information even if you delete your account, such as mandatory records that must be kept in accordance with applicable law, if there is an unresolved matter relating to your account (such as an unresolved claim or dispute ), or if necessary for our legitimate business interests, such as preventing fraud and improving the security of our users.
WHAT ARE YOUR RIGHTS REGARDING YOUR PERSONAL DATA?
The holder of personal data has the right to obtain from the person responsible, in relation to the data of the interested party, processed by him, at any time and on request:
Right of access: the holder’s right to obtain confirmation of the processing of their data from the controller and, in addition, request access to their personal data.
Right to rectification: the holder’s right to ensure that their personal data is accurate and updated, if necessary.
Right to be deleted or forgotten: the right of the data subject to ask the controller to erase their personal data without undue delay.
Right of opposition and limitation of treatment: the right of the owner to oppose the processing of their data and even restrict them if they so wish.
Right to data portability: the right of data subjects to obtain their information in a structured, machine-readable format or to transfer their data to another organization if possible.
Right to information: the owner’s right to be informed about how and why their personal data is being processed.
Right to notification: In case of a data breach, data subjects must be informed within 72 hours of their attention to the breach.
Please contact STMI’s Data Protection Officer if you have any questions about how we process your personal data or if you wish to exercise any of your rights in relation to your personal data.
The responsible contact is the support address firstname.lastname@example.org.
If, despite STMI’s commitment and efforts to protect your personal data, you discover that your data privacy rights have been violated, we recommend that you first contact STMI to resolve any issues.
UPDATE THIS POLICY
If there are updates to this document, STMI will notify the USER through the tools available on the websites, applications and services provided and/or contact methods provided by the USER. The USER will be bound by what we have of this document from the delivery of the notification about the updates.
HOW TO CONTACT US
Type and number of identification document;
Contact phone number;
e-mail (the same used in the STMI Register);
description of the question or reasons for any request.
Last revised date: April 10, 2023.