Privacy Policy

Your privacy is important to us. This policy explains how we handle your information.

TL;DR (Quick Summary)

  • Static website with minimal data collection through Cloudflare
  • Policy applies to both individual and business users
  • We do not collect personal user information
  • No cookies or user tracking are currently in use
  • Technical logs are retained for maximum 7-30 days for security
  • We absolutely do NOT sell any visitor data
  • Separate privacy policies exist for our products
  • We follow LGPD (Brazil) and align with GDPR principles
  • Under Brazilian jurisdiction with bilingual support (EN/PT)
  • Policy changes are announced via website banner for 30 days
  • Response time for privacy requests: 15 days maximum

Contact Information:

Comprehensive Privacy Policy

1. Preamble

1.1 Scope and Application

This Privacy Policy ("Policy") applies exclusively to the Discerne.co website ("Site") at discerne.co. Our products StoryPassword and "Isto é golpe?" maintain separate privacy policies, which can be found on their respective product pages. This separation ensures clear, product-specific privacy information for our users.

1.2 Consent

By accessing or using our Site, you (whether as an individual or on behalf of a company) explicitly consent to:

1. Technical Data Collection:

  • Collection of non-personal technical information through server logs
  • Processing of IP addresses for security purposes
  • Usage of Cloudflare's security and performance features
  • Storage of aggregate, anonymized performance metrics

2. Operational Requirements:

  • Implementation of security measures for threat detection
  • Processing of technical data for site functionality
  • Use of essential security logs for threat prevention

This consent applies solely to the Discerne.co website and not to our individual products, which maintain separate privacy policies and consent mechanisms.

2. User Categories and Applicability

2.1 Individual Users

This Privacy Policy applies to individual users ("Consumers") who:

  • Visit our website for informational purposes
  • Subscribe to newsletters or updates
  • Contact us through provided channels
  • Express interest in our products

2.2 Business Users

This Privacy Policy applies to business users ("Business Users") who:

  • Represent organizations exploring our solutions
  • Engage with us for business purposes
  • Access our website on behalf of their organization
  • Utilize business contact information

2.3 Differentiated Treatment

While the core privacy principles apply uniformly, certain aspects may differ:

1. For Individual Users:

  • Personal contact information handling
  • Consumer protection rights emphasis
  • Individual consent management
  • Direct marketing preferences

2. For Business Users:

  • Business contact information processing
  • Company representative authorization
  • B2B communication preferences
  • Professional relationship management

3. Technical Infrastructure

3.1 Website Characteristics

  • Static website deployment via Cloudflare Pages
  • No user authentication systems
  • Informational content only
  • Presentation of product information

3.2 Server Interactions and Logging

Through our use of Cloudflare's infrastructure:

  • Log retention is disabled by default for HTTP request logs
  • Essential security logs may be maintained for threat detection
  • IP addresses and standard technical information may be processed for security purposes
  • Aggregate, non-identifiable traffic information may be collected for performance optimization

3.3 Security Measures

Our site benefits from Cloudflare's security features including:

  • DDoS protection
  • SSL/TLS encryption
  • Web Application Firewall (WAF)
  • Real-time security updates
  • Bot management
  • Zero Trust security model

3.4 Data Retention

  • Standard server logs are retained for a maximum of 7 days
  • Security-related logs may be retained for up to 30 days for threat analysis
  • Aggregate, anonymized performance metrics may be retained for up to 90 days

4. Data Commercialization Policy

4.1 No Data Selling Commitment

  • Discerne.co does not sell, rent, trade, or commercially exploit any visitor data
  • This commitment applies to all current and future iterations of our website
  • No personal or aggregate data will be monetized or transferred for commercial purposes

4.2 Third-Party Services

  • We use Cloudflare for website hosting and security
  • No third-party analytics tools are implemented
  • No advertising or marketing trackers are used
  • No data is shared with third parties except as required for basic website operation

4.3 Business Operations

  • Data collected is used solely for website operation and security
  • No commercial use of technical logs or server data
  • No creation of user profiles or behavioral tracking
  • No data brokering or information reselling

5. Legal Framework and Compliance

5.1 Jurisdiction and Governing Law

This Privacy Policy is governed by the laws of Brazil. Any disputes arising from this Policy shall be subject to the exclusive jurisdiction of the courts of Brazil.

5.2 LGPD Compliance

Under Brazil's General Data Protection Law (LGPD), we ensure:

  • Transparency about data processing activities
  • Legal basis for any data processing (in our case, legitimate interests for security logs)
  • Rights of data subjects are protected
  • Security measures are implemented
  • Data processing records are maintained

5.3 GDPR Alignment

Although primarily operating under Brazilian jurisdiction, we align with GDPR principles:

  • Data minimization
  • Purpose limitation
  • Storage limitation
  • Integrity and confidentiality
  • Accountability

5.4 Data Subject Rights

Under both LGPD and GDPR, users have the right to:

  • Confirmation of data processing
  • Access to data
  • Correction of incomplete or inaccurate data
  • Anonymization or deletion of unnecessary data
  • Data portability
  • Information about shared use of data
  • Information about the possibility of denying consent

5.5 Response Timeframes

  • We will respond to data subject requests within 15 days, as required by LGPD
  • Responses will be provided in a clear, adequate format
  • No fees will be charged for basic data subject rights requests

6. Policy Modifications

6.1 Policy Updates

We reserve the right to modify this Privacy Policy at any time. When we do:

1. Notification Methods:

  • A prominent banner will be displayed on our website for 30 days
  • The "Last Updated" date at the bottom of this policy will be revised
  • For significant changes, we will provide:
    • A comparison of old and new versions
    • A summary of material changes
    • 30 days notice before implementation

2. User Responsibilities:

  • Users are encouraged to review this policy periodically
  • Continued use of the Site after policy changes constitutes acceptance
  • Users may opt to discontinue use if they disagree with changes

3. Version History:

  • Previous versions will be archived and available upon request
  • Change logs will be maintained for transparency
  • Major revisions will be documented with rationale for changes

7. Contact Information

7.1 Contact Methods

For any privacy-related inquiries or requests:

Primary Contacts:

Response Times:

  • General inquiries: Within 2 business days
  • Data subject requests: Within 15 days (as per LGPD)
  • Urgent security concerns: Within 24 hours

7.2 Official Channels

Official communication channels for privacy matters:

  • Email: The addresses listed above
  • Website: Through our contact form at discerne.co/contact
  • Postal: Available upon request for formal notices

7.3 Documentation

When contacting us about privacy matters:

  • Please include relevant reference numbers if applicable
  • Specify whether you're an individual or business user
  • Indicate your preferred language (English or Portuguese)
  • Provide context for your inquiry

Last Updated: February 10, 2025