Privacy Policy
Understand how UPTECH collects, uses, shares, and protects personal data across its digital, commercial, and operational channels.
LGPD and transparency
This policy follows the principles of the Brazilian General Data Protection Law, Law No. 13,709/2018.
Purpose-driven data processing
We collect only the data needed for service, contracting, support, security, and service improvement.
Data subject rights
You can request access, correction, deletion, information about sharing, and other rights provided under the LGPD.
Privacy channel
For LGPD requests, use the email below or send a message through the contact form.
dpo@uptech.com.br1
Scope of this policy
This Privacy Policy explains how UPTECH processes personal data on its websites, forms, commercial channels, technical support, demonstrations, partner relationships, and other institutional interactions.
It also applies to information collected while browsing our digital environments, including through cookies and access logs.
Visits to the website and institutional pages;
Commercial requests, demonstrations, proposals, and support contacts;
Contracting, management, and delivery of connectivity, telecom, IoT/M2M, API, and digital platform services;
Relationships with representatives of customers, suppliers, integrators, and business partners.
When there is a contract, proposal, DPA, or specific data processing instrument, those documents may supplement this policy.
2
UPTECH's role in data processing
We may act as a controller or processor of personal data, depending on the relationship context and processing purpose.
Controller
We act as a controller when we define the purposes and means of processing, such as commercial contacts, service, contract management, billing, institutional marketing, website security, and partner relationships.
Processor
We act as a processor when we process personal data on behalf of customers, following contractual instructions to enable connectivity services, platforms, integrations, APIs, support, and technical operations.
In scenarios where the customer defines the processing purposes, the customer is responsible for establishing the appropriate legal basis, providing information to data subjects, and responding to requests related to data under its responsibility.
3
Personal data we may collect
The data collected varies according to the way you interact with UPTECH. We do not require registration for simple website browsing, but some data may be needed for service, security, and compliance with legal obligations.
Contact and registration data
Used to identify the requester, respond to messages, qualify opportunities, and maintain the commercial relationship.
Name, email, phone, role, and company;
Company tax ID, segment, estimated device volume, and interest informed in the form.
Commercial and contractual data
Needed for proposals, contracting, billing, support, account management, and service execution.
Data from legal representatives, technical contacts, and financial contacts;
Service history, communications, requests, and records linked to the contract.
Operational and support data
May be processed for provisioning, monitoring, diagnosis, security, and business continuity.
Technical identifiers, ticket records, access logs, platform events, and information required to resolve incidents;
Data associated with SIM, eSIM, devices, APIs, and integrations, when applicable to the contracted service.
Browsing and device data
Collected for security, statistics, experience improvement, and compliance with legal obligations.
IP address, access date and time, browser, operating system, pages accessed, and traffic source;
Cookies, session identifiers, and usage preferences, according to browser settings and applicable consents.
4
Purposes and legal bases
We process personal data for legitimate, specific, and informed purposes. The applicable legal basis depends on the context and may include contract performance, preliminary procedures, compliance with legal or regulatory obligations, legitimate interest, consent, and regular exercise of rights.
Respond to contacts, questions, commercial requests, and demo requests;
Prepare proposals, formalize contracts, issue charges, and provide technical support;
Provision, operate, monitor, and improve connectivity, API, IoT/M2M, and digital platform solutions;
Send institutional, technical, or commercial communications, always with unsubscribe mechanisms when applicable;
Prevent fraud, protect systems, audit access, investigate incidents, and maintain operational security;
Comply with legal, regulatory, tax, and accounting obligations and respond to competent authorities.
5
Personal data sharing
UPTECH does not sell personal data. We may share information only when necessary to fulfill the purposes of this policy, perform contracts, protect rights, comply with legal obligations, or operate services securely.
Operators, integrators, and technical partners
Sharing required for connectivity, provisioning, support, routing, integration, and incident resolution.
Technology suppliers
Hosting, cloud, CRM, support, email, analytics, security, monitoring, and data processing providers.
Consulting and administrative support
Legal, accounting, financial, audit, compliance, collection, and business management service providers.
Public authorities
Regulatory bodies, administrative, judicial, or government authorities, whenever there is a legal obligation or valid order.
We require suppliers and partners to adopt security and data protection measures compatible with the nature of the information processed.
6
International data transfer
Some infrastructure, cloud, security, communication, or analytics providers may store or process data in other countries. When this happens, we will adopt measures compatible with the LGPD and applicable regulations from the Brazilian National Data Protection Authority.
Assessment of suppliers and their security practices;
Contractual clauses and processing instructions compatible with Brazilian law;
Technical and organizational controls proportional to the processing risks.
7
Information security
We use technical and organizational measures to protect personal data against unauthorized access, destruction, loss, alteration, improper disclosure, or any form of inadequate processing.
Access control and least privilege for systems and internal environments;
Encryption in transit, audit logs, monitoring, and environment segregation when applicable;
Backups, vulnerability management, incident response, and periodic control reviews;
Internal guidance on confidentiality, security, and good practices in data processing.
8
Data retention and deletion
We retain personal data for the time necessary to fulfill the purposes for which it was collected, perform contracts, comply with legal and regulatory obligations, preserve rights, or maintain security and audit records.
Commercial contact data may be retained while there is a relationship, legitimate interest, or valid consent;
Contractual, tax, accounting, and support data may be retained for periods required by law or necessary to defend rights;
Logs and technical records may be retained for periods compatible with security, auditing, and legal obligations;
When there is no longer a purpose or retention obligation, data will be deleted, anonymized, or blocked, as applicable.
9
Data subject rights
Under the LGPD, personal data subjects may exercise rights related to the processing of their information. UPTECH may request additional information to confirm the requester's identity and prevent fraud.
Access and confirmation
Request confirmation of the existence of processing and access to personal data processed by UPTECH.
Correction and update
Request correction of incomplete, inaccurate, or outdated data.
Deletion, blocking, or anonymization
Request deletion, blocking, or anonymization of unnecessary, excessive, or non-compliant data under the LGPD.
Information and objection
Receive information about sharing, revoke consent, and object to processing carried out in situations provided by law.
The rights provided by the LGPD are not absolute. UPTECH may retain data when there is a legal obligation, regular exercise of rights, contract performance, or another applicable legal basis.
10
Cookies and similar technologies
Cookies are small files stored on the user's device to enable technical operation, security, preferences, audience measurement, and browsing experience improvement.
Necessary cookies
Essential for website operation, security, authentication, stability, and abuse prevention.
Functional cookies
Help remember preferences and improve the user experience when these features are available.
Analytics cookies
Allow us to understand how visitors use the website and identify content, performance, and navigation improvements.
Marketing cookies
May be used to measure campaigns and personalize communications, respecting user choices and applicable law.
You can manage or delete cookies in your browser settings. Disabling non-essential cookies does not prevent browsing, but may limit some features.
11
Updates to this policy
This Privacy Policy may be updated to reflect changes in UPTECH's services, technologies, legal requirements, or internal practices.
This policy is governed by the laws of the Federative Republic of Brazil. Any disputes will be handled according to the applicable contractual instruments and Brazilian law.
Still have questions?
Talk to our team to clarify privacy, LGPD, security, or data processing requests in connectivity projects.