Legal

Privacy Policy

1. Who We Are

hiSofi provides a technological platform that connects creditors and users for communication, debt negotiation, and payment purposes.

In the context of providing its services, hiSofi may act:

  • as Controller, in the processing of personal data arising from browsing and direct use of the portal; and
  • as Processor, when processing personal data on behalf of contracting creditors, according to their instructions and under applicable law.

2. What Data We Process

We may process personal data such as:

  • full name;
  • CPF;
  • date of birth;
  • contact data (phone, email);
  • address;
  • information related to financial obligations;
  • browsing data (IP, logs, device).
  • Data is received directly from the user, from partner creditors (Controllers), and from public sources or third parties authorized by law.
  • hiSofi does not intentionally collect sensitive personal data.

3. Purposes of Processing

Personal data may be processed to:

  • enable communication about debts;
  • allow negotiation and payment;
  • authentication and fraud prevention;
  • compliance with legal and regulatory obligations;
  • regular exercise of rights in judicial proceedings;
  • service improvement and technological development.

4. Legal Bases

Personal data processing may be based on:

  • performance of a contract or preliminary procedures;
  • compliance with legal or regulatory obligation;
  • regular exercise of rights;
  • legitimate interest;
  • credit protection.

5. Sharing

Personal data may be shared with:

  • partner creditors;
  • service providers;
  • public authorities, when required by law.

6. International Transfer

Personal data may be stored or processed on servers located in Brazil or abroad, subject to applicable legal safeguards.

7. Security

hiSofi adopts appropriate technical and administrative measures to protect personal data against unauthorized access and security incidents.

8. Retention

Personal data will be kept for as long as necessary to:

  • comply with legal obligations;
  • regular exercise of rights;
  • fraud prevention;
  • audits and compliance.

9. Data Subject Rights

Under the LGPD, the data subject may request:

  • confirmation of processing;
  • access;
  • correction;
  • anonymization or deletion;
  • portability;
  • information about sharing.
  • Requests may be sent to: contato@hisofi.com

10. Updates

This Policy may be updated at any time by publication on the portal.

11. Applicable Law

This Policy will be interpreted under Brazilian law, with the courts of São Paulo/SP elected as the competent venue.