By this electronic instrument, NANASI TRAVEL AGENCY LTDA, a legal entity headquartered in the city of São Paulo and enrolled with CNPJ (National Registry for Legal Entities) under no. 46.474.635/0001-21 (hereinafter, “Nanasi.com.br”), informs you of its PRIVACY POLICY, in accordance with the provisions set out below:

General notions:

This instrument provides for the privacy policy for the services provided by Nanasi, showing how the personal data and information of each USER shall be managed by Nanasi.com.br.

Nanasi.com.br obtains information on USERS through cookies.

This document has been prepared in accordance with the Brazilian General Law on Personal Data Protection (Law 13,709/18), the Brazilian Civil Rights Framework for the Internet (Law 12,965/14) (and EU Regulation no. 2016/6790). Furthermore, the document may be updated as a result of any change to a rule, which is why the user is invited to periodically refer to this section.

Cookies:

Nanasi.com.br collects information through cookies, which are information sent by the Nanasi.com.br server to the USER’s computer to identify them. Cookies are used solely for the internal control of traffic and navigation and never to control, identify, or track an Internet user’s preferences, except when such user violates any security rule or performs any activity that is harmful to the proper functioning of the website, such as, for example, attempts to hack the service. The acceptance of cookies can be freely changed in the configuration settings of your browser.

Information security:

The privacy policy of Nanasi.com.br aims to ensure that any information and data on users shall not be provided, published or marketed under any circumstances.

The personal data provided to Nanasi.com.br is stored in a reserved database with access restricted to some qualified employees, who are obliged, by agreement, to maintain the confidentiality of the information and not use it inappropriately.

The user’s and visitor’s personal data collected and stored by the Nanasi.com.br platform aims to:
User and visitor well-being: improve the product and/or service offered, facilitate, expedite and fulfill the commitments established between the user and the company, improve users’ experience and provide specific functionality depending on the user’s basic characteristics.
Platform Improvements: understand how the user uses the services on the platform to help develop business and techniques.
Advertisements: display personalized advertisements to the user based on the data provided.
Commercial: the data is used to personalize the content offered and generate support for the platform to improve service quality.
User profile prediction: automated treatment of personal data to assess usage on the platform.
Registration data: to allow user access to certain contents of the platform, which is exclusive to registered users
Contract data: provide the parties with legal certainty and facilitate the conclusion of the transaction.
Others

The treatment of personal data for purposes not provided for in this Privacy Policy shall only occur upon prior notification to the user, and, therefore, the rights and obligations set forth herein shall remain applicable.

SECTION 4 – HOW LONG IS PERSONAL DATA STORED FOR?

Users’ and visitors’ personal data is stored by the platform for the period necessary for the provision of the service or the fulfillment of the purposes set out in this document, in accordance with the provisions in item I of article 15 under Law 13,709/18.

The data can be removed or anonymized at the user’s request, except in cases where the law provides for another type of treatment.

Furthermore, users’ personal data can only be kept after the end of its treatment in the following cases provided for in article 16 of the aforementioned law:
I – compliance with a legal or regulatory obligation by the controller;
II – study by a research body, with the anonymization of personal data being guaranteed whenever possible;
III – transfer to a third party, provided that the data treatment requirements set forth in this Law are met;
IV – exclusive use of the controller, with its access by a third party being prohibited, and provided that the data is anonymized.

SECTION 5 – SECURITY OF STORED PERSONAL DATA

The platform undertakes to apply the technical and organizational measures capable of protecting personal data from unauthorized access and from events of destruction, loss, alteration, communication or dissemination of such data.

Data relating to credit cards is encrypted by using the “secure socket layer” (SSL) technology that guarantees the transmission of data in a secure and confidential manner, and, in this way, the transmission of data between the server and the user takes place in an encoded and encrypted manner.

The platform does not disclaim any liability for the exclusive fault of a third party, as in the case of an attack by hackers or crackers, or the exclusive fault of the user, as in the case where he/she himself/herself transfers his/her data to third parties. The website undertakes to notify the user in the event of any breach of security of their personal data.

The personal data stored is treated confidentially, within legal limits. However, we may disclose your personal information if we are required by law to do so or if you violate our Terms of Service.

SECTION 6 – DATA SHARING

Sharing of user data only occurs with data regarding posts published by the user himself/herself; such actions are shared publicly with other users.

The user’s profile data is publicly shared in search systems and within the platform, and the user is allowed to modify this configuration so that their profile does not appear in the search results of such tools.

SECTION 6 – WILL THE PERSONAL DATA STORED BE TRANSFERRED TO THIRD PARTIES?

Personal data may (not) be shared (with third parties) (with the following (natural) (legal) persons: Priscilla Mungai, CPF/CNPJ 70005908663.
(If data can be shared)
The named third parties receive the data to the extent necessary to allow them to perform the contracted services.

With respect to third-party service providers such as payment transaction processors, please note that each of them has its own privacy policy. Therefore, we recommend that you read their privacy policies to understand what personal information will be used by these providers.

(If transfer to other countries)
Providers may be located or have facilities located in different countries. Under these conditions, the personal data transferred may be subject to the laws of jurisdictions in which the service provider or its facilities are located.

By accessing our services and providing your information, you are consenting to the processing, transfer and storage of this information in other countries.

When you are redirected to a third-party application or website, you will no longer be governed by this Privacy Policy or our platform’s Terms of Service. We are not liable for the privacy practices of other websites, and we encourage you to read their privacy statements.

SECTION 07 – COOKIES OR NAVIGATION DATA

Cookies refer to text files sent by the platform to the user’s and visitor’s computer, which are stored there with information related to navigation on the website. Such information is related to access data such as access location and time and is stored by the user’s and visitor’s browser so that the platform server can read it later in order to customize the platform services.

The Nanasi.com.br platform user and visitor acknowledge and accept that a navigation data collection system can be used through the use of cookies.

Persistent cookies remain on the user’s and visitor’s hard disk drive after the browser is closed and will be used by the browser on subsequent visits to the website. Persistent cookies can be removed by following your browser’s instructions. Session cookies are stored temporarily and vanish after the browser is closed. You can reset your web browser to reject all cookies; however, some features of the platform may not function properly if the ability to accept cookies is disabled.

SECTION 8 – CONSENT
By using the services and providing personal information on the platform, the user is consenting to this Privacy Policy.

The user, when registering, expresses being aware of and able to exercise his/her rights to cancel his/her registration, access and update his/her personal data and he/she guarantees the veracity of the information provided by him/her.

The user has the right to withdraw his/her consent at any time, for which he/she shall contact us via e-mail [email protected].

SECTION 9 – ALTERATIONS TO THIS PRIVATE POLICY

We reserve the right to modify this Privacy Policy at any time, so it is recommended that the user and visitor review it often.

The changes and clarifications shall take effect immediately after their publication on the platform. When any changes are made, users shall be notified of them. By using the service or providing personal information after any modifications, the user and visitor show their agreement with the new rules.

In the event of a merger or sale of the platform with/to another company, user data may be transferred to the new owners so that the services continue to be offered.

SECTION 10 – JURISDICTION TO RESOLVE CONFLICTS

For the resolution of disputes arising from this instrument, Brazilian law shall be fully applied.

Any disputes shall be submitted to the central courthouse of the judicial district of São Paulo-SP, where the company’s headquarters are located.