Privacy Notice

DPO: Renata Miziés de Barros (email: dpo@skyone.solutions)

We at Skyone are committed to respecting the privacy, protection, and security of our users' Personal Data, and we treat the information collected in accordance with Brazilian laws relating to privacy and the protection of Personal Data, such as the General Data Protection Law (LGPD).

Therefore, any information you provide to us will be treated in accordance with the limits established here and under the terms of applicable law. The same applies to companies acquired by the Skyone Group, which adhere to a rigorous program of compliance with best practices and alignment with our corporate processes.

With this Privacy Notice, we want to communicate the following aspects to you in an objective and transparent manner:

What is Skyone's role in handling your Personal Data?

In the course of its activities, Skyone performs various Personal Data Processing operations, and may be characterized as a Processor or Controller , always committed to seeking the best interests of the Personal Data subjects and respecting their rights based on current legislation, especially the LGPD (Brazilian General Data Protection Law).

Operator

Controller

For example, in its relationship with its clients, Skyone acts as a Personal Data Processor when it processes Personal Data in accordance with the lawful instructions of its clients.

For the sake of understanding. How about we clarify some of the technical terms in this Notice for you?

Term/Expression	Meaning
National Data Protection Authority (or ANPD)	The public administration body responsible for overseeing compliance with the provisions of the LGPD (Brazilian General Data Protection Law) throughout Brazil.
Personal Data	Any information capable of identifying a natural person, directly or indirectly.
Sensitive Personal Data	Any Personal Data relating to racial or ethnic origin, religious beliefs, political opinions, membership of a trade union or religious, philosophical or political organization, as well as data concerning health or sex life, genetic or biometric data.
DPO (or Data Protection Officer)	This professional is responsible for acting as a communication channel between Skyone, data subjects, and the ANPD (Brazilian National Data Protection Authority). Their main objective is to ensure that Skyone complies with laws and regulations relating to privacy and data protection.
LGPD	General Law on the Protection of Personal Data (Federal Law No. 13.709/2018)
Privacy by Design	Privacy by design is the principle of the LGPD (Brazilian General Data Protection Law) that requires the protection of personal data to be considered from the very beginning of any company project, system, or process—and not just after it is already in operation. This means planning and adopting preventive measures to ensure the security and correct use of data from the very first moment.
Third parties	Any and all individuals or legal entities with whom Skyone interacts or may interact. This includes, but is not limited to, service providers, suppliers, consultants, partners, contracted or subcontracted third parties, regardless of whether a formal contract exists or not, including those who use the Company's name, provide materials, interact with public officials, the government, or other third parties on behalf of Skyone
Holder	The individual to whom the Personal Data refers.
Treatment	Any activity performed with Personal Data, such as collection, reception, classification, use, access, reproduction, transmission, distribution, processing, archiving, storage, elimination, evaluation or control of information, modification, updating, communication, transfer, sharing, dissemination or extraction, according to Article 5, X, of the LGPD (Brazilian General Data Protection Law).

To whom does this Notice apply?

This Notice applies to (i) Skyone's individual and corporate clients; (ii) all third parties, whether individuals or legal entities, acting for or on behalf of Skyone in operations involving the Processing of Personal Data; and (iii) visitors to our Sites and users of our platforms.

This Privacy Notice also applies to the following websites:

https://www.skyone.solutions
https://www.skyone.cloud
https://support.skyone.cloud/
https://latamsuporte.skyone.cloud/
https://suporte.skyone.cloud/

Children and Adolescents

Our services are not designed for, nor intended for, use by individuals under the age of 18. For this reason, we do not collect or voluntarily solicit information from individuals under 18 years of age through the forms available on our services. Therefore, if we happen to receive such information, we will delete it and not retain it in our databases.

If you suspect that someone under 18 is using Skyone's services, you can send an email to: dpo@skyone.solutions.

What personal data of yours do we process?

In order to respect your privacy, we understand that any and all processing of personal data must be limited to the minimum necessary, in a relevant and proportionate manner, to allow the intended purpose to be achieved.

Therefore, the Personal Data we collect about you will vary depending on your relationship with us, whether you are a client, consumer, visitor, partner, or other.

Below, grouped into categories, we present the main Personal Data that may be processed by us:

Registration data: may include first and last name, date of birth, gender, ID number, and CPF (Brazilian tax identification number);
Qualifying data: may include residential/business address, area/department, nationality, parentage;
Contact information: may include landline or mobile phone numbers and personal and/or professional email addresses, information related to any user support services;
Professional information: may include profession, workplace, job title, and work history;
Financial information: checking account, bank branch, or other payment method used when contracting our services;
Social media data: social media profiles that you use to interact with us, primarily LinkedIn, Instagram, Threads, TikTok, YouTube, and Facebook;
Attributes associated with your electronic devices: IP address, user, access provider, operating system, browser (type, version, enabled options and installed plug-ins), video settings (size/resolution and number of colors), date and time of access, and pages viewed through cookies.

How and for what purpose do we use your information?

The information we process about you may have been provided directly by you to Skyone, by third parties, or even collected automatically through our platform and other channels.

Let's understand each of these data collection situations better?

Information provided directly by you

From the very beginning of your interaction with us, you voluntarily provide us with information about yourself. For example, when you contact us through social media or publicly tag us in a photo at an event. Or even when you use one of our customer service and support channels, or want to speak with one of our specialists. Furthermore, when you interact with the content on our Platform, register to participate in a selection process on our website, or subscribe to receive our newsletters .

Information obtained from third parties

In specific cases, we may also receive some of your Personal Data from Third Parties. For example, information provided by Skyone's contractors, such as employers, consultants, service providers, or suppliers who help us offer increasingly better products and services for you.

Information obtained automatically

In some situations, we may also automatically collect Personal Data through the devices you use to access our Platform. This information helps us generate access statistics and thus better understand our audience. This is important so that we can improve our Platforms and services and adapt them to the most diverse audiences. Some of this data may be collected through cookies or similar technologies, as we will explain in a specific section.

Publicly available information

There is also the possibility of collecting information about you that is publicly available and on social media (such as LinkedIn, Instagram, Threads, TikTok, YouTube , and Facebook ).

Therefore, from the collection of your information, we can use it for several different purposes. Below, we list our main purposes, as well as the main groups of data used:

Personal data category	Purposes	Legal basis
Registration data; Qualification data; Contact information; Financial data.	To make a service/product requested by you available. We will process your data in order to provide you with the service/product you purchased.	Contract execution
Registration data; Contact information; Financial data.	To execute a contract you have entered into with us or to carry out pre-contractual due diligence If you are a party to a contract with Skyone, or represent a company in a contract, we will process your Data for the conclusion and execution of the contract, to ensure the completion of the work and the respective payment.	Contract execution
Registration data; Qualification data; Contact information.	Communication • We may process your Personal Data to respond to your requests or other interactions with us, such as via email, chat, or other tools on our websites. • To send relevant notices about our activities, such as changes of address and corporate structure. • Forwarding updates that impact your relationship with us in the interest of transparency, such as updates to this Privacy Notice.	Legitimate interest or Contract Execution
Registration data; Qualification data; Contact information.	To comply with our legal or regulatory obligations Your Personal Data may be used to fulfill our obligations under the law and/or regulations of government agencies and orders or requests from tax authorities, the Judiciary, and/or other competent authorities. For example, we may process Personal Data for the issuance of invoices.	Compliance with a legal or regulatory obligation
Registration data; Contact information	To allow the regular exercise of our rights Even after your relationship with us has ended, we may process some of your Personal Data to exercise our legal rights, including as evidence in judicial, administrative, or arbitration proceedings.	Regular exercise of rights
Registration data; Contact information; Social media data; Attributes associated with your electronic devices.	To enable activities necessary for Skyone We may also process your Personal Data for activities such as: improving our products and services, conducting research and questionnaires, promoting events, sending gifts, maintaining relationships with our clients and partners, analyzing and reporting on company performance, and conducting internal consultations. In activities supporting Skyone's interests, we will always respect the limits of your expectations, and the processing of Personal Data will not prejudice your interests, rights, or fundamental freedoms.	Legitimate interest
Registration information; Contact information; Professional information.	Recruitment and selection We may process your Personal Data to receive your application (including through specialized websites), analyze your resume, verify your skills and curriculum information, and determine whether or not you meet the specific requirements of the position you applied for, as well as to proceed with the selection process, when applicable, in situations such as contacting you by phone or email and scheduling interviews.	Legitimate interest
Registration data; Contact information; Social media data; Attributes associated with your electronic devices.	Creating interest profiles We may analyze your personal information (Your Personal Data) to create a profile of your interests and preferences so that we can tailor and target our communications in a timely and relevant manner for you. We may use additional information about you when it becomes available from external sources to help us do this effectively. This allows us to be more focused, efficient, and economical with our resources and reduces the risk of you receiving information that is considered inappropriate or irrelevant.	Legitimate interest
Registration data; Contact information; Social media data; Attributes associated with your electronic devices.	Sending advertising We will only send marketing communications via email, text, and phone if you have explicitly given your prior consent. You can opt out of our marketing communications at any time by clicking the unsubscribe link at the bottom of our marketing emails or, in the case of text messages and phone calls	Consent

What are cookies and how do we use them?

Cookies are text files that may be stored on your electronic devices when you visit our Sites. We use this tool for different purposes, such as generating access statistics and improving your experience on our Sites.

Below is a list of the types of cookies used and their purposes:

Cookie Type	What do they do?
Necessary/Essential	To ensure the proper functioning of our Sites, as well as to allow you to make use of all available features.
Performance/Analysis	They help us understand how visitors interact with our Sites by providing information about the areas visited, the time spent on the Platform, and any problems encountered.
Functional	They allow us to remember your previous choices, such as your browsing language. They are responsible for providing a personalized experience.
Marketing/Advertising	Used to provide more relevant and specific content tailored to your interests. They can also be used to deliver more targeted advertising or limit the number of times it is shown. Additionally, they allow for measuring the effectiveness of a launched campaign.

We would like to emphasize that necessary cookies are essential for the normal functioning of our Sites. This means that if you object to the use of this tool, it may compromise your experience or result in the suspension of your access.

You can manage your preferences at any time through our cookie banner or through our tool available at: https://skyone.solutions/pb/cookies/

How long is your Personal Data kept?

We only retain your Personal Data for as long as necessary to fulfill the intended purpose, and the retention period may be determined by contractual and legal considerations.

We will retain your information for as long as you are a Skyone Solutions customer and for the time necessary to comply with our legal requirements or internal regulations. The period during which the Data is stored varies according to the purpose for which it was collected and, if there is no specific legal requirement, will observe the hypotheses provided for in applicable legislation.

We review our retention periods regularly.

Who has access to and with whom do we share your Personal Data?

We do not share your Personal Data with third parties for marketing purposes.

However, we may disclose your Personal Data to Third Parties in order to achieve the other purposes set out in this Notice. These Third Parties may include:

Companies within the Skyone economic group, so that we can provide our services and evaluate the efficiency of our customer service;
Business partners and service providers, to enable the operation of communication channels, as well as providing the necessary infrastructure for the viability of our services;
Hypotheses of some corporate operation, such as mergers, acquisitions, spin-offs and incorporations;
Administrative and judicial authorities when necessary to fulfill a legal obligation or to assist in the investigation of suspicious or illegal activities; and
Law firms, legal advisors, and other legal representatives when necessary to defend Skyone's interests in administrative, arbitration, or judicial proceedings

When we share your Personal Data in the situations described above, we use contractual instruments to ensure that any Third Party that receives it guarantees adequate protection for it.

International Data Transfer

Skyone adopts, whenever applicable, governance measures that include conducting Data Protection Impact Assessments (DPIAs), reinforcing our commitment to the principle of privacy by design and to the adoption of technical and organizational controls proportionate to the risks involved, identifying, assessing and mitigating risks before initiating processing.

Skyone may also review and update these assessments periodically, in accordance with technological advancements and changes in the operational context.

All Personal Data is stored in systems located in Brazil, the United States, Germany, and other regions such as Asia (including India and Saudi Arabia), when applicable, observing the appropriate levels of data protection required by applicable legislation. We may also relocate and store these systems in any other country that offers an adequate level of personal data protection or that observes the safeguards provided for in the LGPD (Brazilian General Data Protection Law) and, when applicable, in the GDPR (General Data Protection Regulation), always keeping them under our supervision and in a secure manner. All transfers will observe the principles of purpose, necessity, security, and transparency, ensuring the rights of data subjects.

In situations where we need to share Personal Data with a third party located outside of Brazil, including companies within the Skyone group, in addition to ensuring the security and protection of Personal Data through a contract, Skyone will utilize one of the legal grounds for international data transfer authorized by applicable legislation, in particular those provided for in articles 33 et seq. of the General Data Protection Law (Law No. 13.709/2018) and in the ANPD's Regulation on International Data Transfer (Resolution CD/ANPD No. 15/2024).

Where applicable, Skyone will also observe the obligations set forth by the European Union's General Data Protection Regulation (GDPR), including the application of approved standard contractual clauses, additional contractual guarantees, and respect for the rights of data subjects residing in the European Union.

What are your rights?

Whatever relationship you choose to establish with Skyone, you are guaranteed all rights relating to your Personal Data as provided by law, including:

Confirmation and Access Rights. You have the right to confirm what data about you is processed and to request access to what we hold about you. You also have the right to request a copy of the information we hold about you, and we will provide this to you unless legal exceptions apply. To access your information, please send a description of what you wish to see and proof of your identity so that we can validate and return your information.
Right to correct incomplete, inaccurate, or outdated data. You have the right to have your Personal Data corrected if it is incomplete, inaccurate, or outdated. The accuracy of your information is important to us, so we are working on ways to make it easier for you to review and correct the information we hold about you.
Anonymization, blocking, or deletion of unnecessary, excessive, or unlawfully processed data. You have the right to request that we anonymize, block, or delete unnecessary, excessive, or unlawfully processed data.
Right to erasure and/or revocation of consent. You can ask us to delete your Personal Data processed with your consent. In some cases, it will be necessary to retain this information, such as to comply with a legal or regulatory obligation or to maintain anonymized data.
Right to data portability. You can ask us to send your Personal Data to another service provider.
Right to object. You have the right to object to the Processing where we use your personal information (1) based on legitimate interests, (2) for direct marketing or (3) for statistical/research purposes.
Right to information from public and private entities. You have the right to obtain information about public and private entities with which we have shared your Data.

We may be required to request more information and/or proof of identity. We will strive to fully respond to all requests within the time frame stipulated by applicable law. However, if we are unable to do so, we will contact you explaining any reasons for the delay.
Requests involving Personal Data and/or documents of other Data Subjects will not be fulfilled, except by means of a power of attorney, parental authority, or other circumstance that authorizes you to exercise the rights of another Data Subject.
It is important to note that, in specific circumstances, your request may not be fulfilled. In these cases, we will explain the reasons for non-compliance.

Your choices and how to exercise your rights

If you do not wish to receive direct marketing communications and have any questions regarding the processing of your data, or wish to exercise your rights as a data subject, you can submit your request using the form available at: skyone.solutions/juridico-e-grc/requisicao-de-dados-lgpd-skyone/

We are committed to putting you in control of your Data at any time, as follows:

The form mentioned above;
Email: dpo@skyone.solutions ;
Our DPO: Renata Miziés de Barros – email: dpo@skyone.solutions

To do this, we ask that you identify yourself and indicate which right you wish to exercise. If you have any questions, please do not hesitate to contact us.

How do we keep your data secure?

We have internal policies and procedures that determine how Personal Data should be handled by Skyone. These guidelines aim to ensure the proper and lawful processing of the Personal Data we hold.
When you provide us with Personal Data, we take steps to ensure that appropriate technical and organizational controls are in place to protect it.
Any sensitive personal data that is processed is protected with 128-bit SSL encryption software and stored using cybersecurity systems.
Once we receive your information, we make every effort to ensure its security on our systems. It's important to note that where we have given (or where you have chosen) a password that allows access to certain parts of our Platform or Website, you are responsible for keeping that password confidential. We ask that you do not share your password with anyone.

In addition to these organizational and governance measures, we have adopted several other technical measures that ensure even greater security for your Personal Data, such as:

We maintain processes for detecting, resolving, preventing, and reducing the occurrence of privacy, data protection, and cybersecurity incidents, providing increasingly reliable, available, and secure computing environments
We adopt processes that include, but are not limited to: scanning for external and internal vulnerabilities; scanning the dark web; applying software patches; updating operating system versions; updating database versions; and scanning and mapping open ports
Analysis and management routines associated with monitoring and alerting of security events using XDR (Extended Detection and Response) technology.
Strict control of the processing of personal data, including access restriction and password-protected access;
The existence of an information security program;
Implementing segregation of access to Personal Data;
Guidelines for password protection; and
Access to services exclusively through secure networks.

In line with our commitment to privacy by , before implementing any high-risk data processing systems or processes, we conduct Data Protection Impact Assessments (DPIAs) to identify potential risks and define proportionate security and governance controls, as provided for in applicable legislation and ANPD guidelines.

Links to other websites

Our website may contain links to other websites operated by other organizations. This Notice applies only to Skyone Sites and the Personal Data we process, so we encourage you to read the privacy statements on other websites you visit. We cannot guarantee the accuracy and content of the privacy policies and practices of other websites, even if you access them using links from our Site.

Furthermore, if you are linked to our Site from a third-party website, we cannot be responsible for the privacy policies and practices of the owners and operators of that third-party website; therefore, we recommend that you check their privacy policy.

Changes to this Notice

Any changes we may make to this Notice in the future will be posted on this Site, so please check this page periodically to ensure you are aware of any changes. If we make any significant changes, we will make that clear on this Site.

This Privacy Notice was last updated on May 21, 2025.

Last updated on 21/05/2025.

Skyone Autosky

Cloud servers

Cloud database

Advanced Backup

Threat analysis

Security Operations Center (SOC)

Endpoint detection and response (EDR)

Web application firewall (WAF)

Penetration Testing

Phishing Test

Compliance with the LGPD (Brazilian General Data Protection Law)

Privileged access (Password vault)

Where the best AI agents are found

Cloud experts

Database management

Data expert

SAP Basis

Training in integrations

Retail

Hospitality

Distribution

Agribusiness

Services

Industry

Other Segments

Cost reduction and increased efficiency

Innovation and new revenue streams

Expansion

On

Social Responsibility

Work with us

Press

Events

Brand Skyone

Blog

Resources

YouTube

Success stories

Skyone Academy

Builders by Skyone

Skycast

Partners in Brazil

International Partners

Become a Franchisee

Franchise Units

AWS

Google Cloud

Microsoft Azure

Oracle Brazil

Privacy Notice

Follow us on social media