top of page

Privacy Policy

This application is maintained and operated by GRP Consultoria.

​

Last updated: August 4, 2025
Responsible party: GRP Consultoria – CNPJ: 26.643.804/0001-00Headquarters: Caraguatatuba – SP, Brazil

​

This Privacy Policy describes how GRP Consultoria ("we", "our", or "OmniOne") collects, uses, stores, and shares information when you use the OmniOne system — our integration solution for companies that sell online.

​

1. Information We Collect

1.1 Information provided by the user

OmniOne is a B2B platform designed exclusively for companies. Therefore, we only collect corporate data necessary to provide the service, such as:

  • Corporate name, company registration number (CNPJ), business email

  • Authorized users (name and corporate email)

  • Technical credentials (e.g., API keys, integration tokens)

  • 📌 We do not collect or process personal data of end consumers directly.

1.2 Technical and usage information

We may automatically collect:

  • Integration logs with marketplaces and ERPs

  • System performance and error data

  • Technical session identifiers

This information is used solely for audit purposes, continuous improvement, technical support, and security.

2. Purpose of Data Use

2.1 We use collected data to:

Enable system integrations (marketplaces, ERPs, platforms)

  • Ensure secure and stable operation of OmniOne

  • Provide technical support to our clients (with a human approach)

  • Fulfill legal, contractual, and compliance obligations

  • Protect against fraud, unauthorized access, and disruptions

We do not use data for advertising, remarketing, or any purpose outside the contracted scope.

3. Information Sharing

GRP Consultoria may share data exclusively with:

  • Authorized technical partners for executing requested integrations

  • Cloud infrastructure providers for hosting and system redundancy

  • Legal and tax authorities, when legally required

We do not sell, trade, or rent data to third parties.

4. International Data Transfer

Since we operate with cloud infrastructure and integrate with global marketplaces, technical data may transit through servers located outside Brazil, always in compliance with:

  • The LGPD (General Data Protection Law – Brazil) and other applicable laws

  • Contractual security, encryption, and confidentiality measures

5. Data Retention and Deletion

Corporate and technical data is retained:

  • While the contractual relationship is active

  • For the time required to fulfill legal obligations (e.g., tax, accounting)

  • For up to 180 days after contract termination, for auditing purposes

After this period, the data is securely deleted or anonymized.

6. Information Security

We implement technical and organizational measures to protect data, such as:

  • Encryption at rest and in transit

  • Access control with multi-factor authentication

  • Permission and activity audit logs

  • Backup and recovery policies

7. Client Rights

The contracting company has the right to:

  • Request access to, update, or deletion of stored corporate data

  • Request logs and usage history of the platform

  • Terminate the contract and request secure deactivation of the account

Requests can be made via: juridico@grpconsultoria.com.br

8. Changes to this Policy

GRP Consultoria may update this Policy periodically. In the event of significant changes, we will notify clients at least 10 days in advance.

The most recent version will always be available at: https://www.grpconsultoria.com/politica-de-privacidade

9. Contact

If you have questions or requests related to privacy, please contact our Data Protection Officer (DPO):

​

E-mail: juridico@grpconsultoria.com.br
Phone: +55 (11) 9 4726-2503
Address: Av. Dr. Arthur da Costa Filho, 1659 - Sumaré, Caraguatatuba - SP, 11660-005​​​

I. Groper Rodrigues Informatics - EPP/ CNPJ nº 26.643.804/0001-00

VT2.1 - 2023 GRP Consulting
Privacy Policy

bottom of page