GPRD

​When you hire an LM service, you provide us with some personal data in order to enable your operation. We value the security of your data, respect for your privacy and transparency with you, and for this reason, we dedicate this document to explain how your personal data will be treated and what measures we apply to keep it safe. According to the definition provided by the General Data Protection Law “LGPD” (Federal Law No. 13,709,2018), most of the time we will be the controller of your information, and therefore, we are responsible for defining what happens to this data and for protecting it.

To make this policy easier to understand, every time you find the terms “we” or “our”, we are referring to the controller of your personal data, that is, LM&Companhia, and every time you read “user”, “you”, “your” or “yours”, we are referring to you, our client or user of our platforms.

​

WHAT DATA IS COLLECTED

During your experience, we may collect different types of personal data, either automatically for the purpose of checking, monitoring and controlling, or provided directly by you, such as for the purpose of completing your registration. See below which personal data we may collect and in each situation:

During registration:

Full name;

Photo;

CPF number;

Email address;

Mobile phone number;

Date of birth;

Data relating to your addresses.

IP address;

Information about the device used for browsing;

Products and categories searched or viewed;

View count;

Pages visited on other websites.

Below we present some information that will only be accessed if you authorize us. You may revoke this authorization at any time.

During the use of certain features of our website.

Geolocation;

Access to the contact list;

Access to the camera.

Other information that may be collected:

Social login information, if you register using a social media account, such as Facebook and Google, and authorize this collection;

Information about you that you have made public or that is publicly available;

Information that we collect from third parties, such as, for example, supplements to your registration data (name, affiliation, date of birth, CPF, telephone number, address, among others), score generated by credit agencies, whether you are part of a Politically Exposed Person (PEP) list or an alert list (such as OFAC, CSNU and other international lists), among others.

Information that we receive from partners for the delivery of products purchased on partner platforms, such as, for example, redemption of products in loyalty programs or any other platform where we may offer your catalog of products and services.

Information provided by you voluntarily, such as through communications with LM&Companhia on social media or in comments and product reviews.

Copies of documents sent by you as proof of residence, bank details or a copy of an identity document, generally used to prove your registration or validate your identity.

HOW WE USE YOUR PERSONAL DATA

We use personal data to ensure quality service and a better experience. We list below the purposes for which we may use your personal data:

Registration data:

To enable the provision of different services available on our website

To handle requests and queries at our Customer Service Center.

To correctly identify the User.

To send purchased products or communications about offers.

To contact you, when necessary. This contact may cover a variety of topics, such as communication about promotions and offers, answers to questions, answers to complaints and requests, updates on orders placed and delivery information.

To assist in diagnosing and solving technical problems.

To develop new features and improvements, improving your experience with our available services.

To consult your information in credit agency databases.

To conduct investigations and take measures to prevent and combat illicit activities, fraud, financial crimes and money laundering and/or terrorist financing crimes.

To ensure compliance with a legal or regulatory obligation or to ensure the regular exercise of rights. In these cases, we may even use and present the information in legal and administrative proceedings, if necessary.

To assist in complying with a court order, competent authority or regulatory body.

​

Geolocation:

To identify the physical stores closest to you.

To display personalized ads.

To send contextualized messages via push (1).

To assist in analyses that can be used to protect your account and increase the level of security of your registration data or even prevent possible fraud.

​

Contact List and Camera:

To provide Wix features and resources

Browsing Data:

To assist in diagnosing and solving technical problems.

To develop new features and improvements, improving your experience with our available services.

WHO WE MAY SHARE PERSONAL DATA WITH

In order to perform the activities listed above, whenever necessary, we may share your personal data with other companies in our group, with service providers, partners or with regulatory bodies. We never sell personal data. Below is a summary of these possibilities:

Service providers: so that we can make our products available and provide our services with quality, we rely on the collaboration of several service providers, who process the personal data collected on our behalf and in accordance with our instructions. These service providers act mainly to assist us in anti-fraud analysis, payment intermediation, marketing campaign management, database enrichment and cloud storage.

Judicial, police or government authorities: we must provide personal data of Customers and/or Users, in compliance with a court order, requests from administrative authorities, legal or regulatory obligation, as well as to act collaboratively with government authorities, generally in investigations involving illegal acts.

Potential buyers: we may share your personal data with other companies with whom a sale or transfer of part or all of the commercial activity, business or operation is concluded. If the sale or transfer is not completed, we will ask the potential buyer not to use or disclose your personal data in any way or form, and to erase it completely.

STORAGE AND SECURITY OF PERSONAL DATA

We store your data securely in data centers located in Brazil and abroad. In the case of storage abroad, all applicable legal measures are adopted, in accordance with the General Data Protection Law and its future regulations, ensuring the protection and privacy of your personal data.

 

We adopt the best techniques to protect the personal data collected from unauthorized access, destruction, loss, alteration, communication or any form of inappropriate or unlawful processing, including encryption mechanisms. We emphasize, however, that no platform is completely secure. If you have any concerns or suspicions that your data is at risk, please contact us through our customer service channels and we will be happy to assist you promptly.

Your personal data will be kept for the entire period that you are an active customer. After this period, we may store your personal data for an additional period for audit purposes, to enable compliance with legal or regulatory obligations. We will retain your data for the necessary period, respecting the deadlines established in the applicable legislation.

COOKIES AND MONITORING TECHNOLOGIES

We may use certain monitoring technologies to collect information about the activities carried out on our platforms in an automated manner. The information collected through such technologies is used to perform application performance metrics, identify usage issues, capture User behavior in general, and collect content impression data.

​

See below some of the technologies that may be present

:

Cookies: a cookie is a small file added to the User's device to provide a personalized experience when accessing the platform. Cookies help analyze internet traffic and allow us to know when the User has visited a specific website. A cookie does not give access to a computer or reveal information beyond the data that the User chooses to share with us.

Pixels: pixels are parts of JavaScript code installed in our applications, websites, or in the body of an email, with the purpose of tracking and collecting information about user activities, allowing the identification of their access patterns, navigation, interest, and product purchases, and optimizing content targeting.

Web beacon: a web beacon is a technique that allows us to map who is visiting a given web page, identifying user behavior with different websites or web servers.

​

Analytics tools: these tools may collect information about how Users visit one of our pages, which sessions they visit and when they visit such pages, other websites that were previously visited, among others.

INTERNATIONAL TRANSFER OF PERSONAL DATA

Some of your personal data may be transferred to other countries, for example, when we use cloud computing services for data processing or storage, located outside of Brazil.

YOUR RIGHTS AS THE HOLDER OF PERSONAL DATA

Transparency regarding the processing of your personal data is a priority. In addition to the information provided in this Privacy Policy, you may also exercise the rights provided for in the General Data Protection Law, including:

​
Confirmation of the existence of personal data processing.

Access to personal data.

Revocation of consent.

Correction of incomplete, inaccurate or outdated personal data.

Deletion of personal data processed with consent or unnecessary, excessive or when you understand that some point of the LGPD has not been met.

Information about the hypotheses and with which companies, partners and other institutions we may share or receive personal data relating to you.

Information about the possibility of not providing consent and about the consequences of refusal, when applicable.

All requests will be processed free of charge, and will be subject to a prior assessment of your identity and the feasibility of the service, in order to comply with any obligations that prevent the full fulfillment of the requests of the rights holders.

 

RETENTION AND DELETION OF YOUR PERSONAL DATA

We will treat your personal data with high levels of protection and guarantee your privacy, throughout the period that you are our customer, browsing our platforms and using our services, or a potential customer with whom we share our product and service offerings.

When applicable, and even if you choose to delete your personal data from our database, the website may retain some or all of your personal data for additional periods to comply with legal or regulatory obligations, for the regular exercise of rights, possible legal actions, audit purposes of various natures, or other periods defined and based on legal bases that justify the retention of this data.

CHANGES TO THIS PRIVACY POLICY

We are constantly seeking to improve our customers' experience. Therefore, our personal data processing practices may change with the inclusion of new features and services.

​

We value transparency in the way we process your personal data. Whenever any relevant condition of this Privacy Policy is changed, these changes will be valid, effective and binding after the new version is published on our website. These changes will be communicated through one of the channels made available by you during your registration (email, SMS, WhatsApp and others).

CONTACT US

Whenever you have any questions about this Privacy Policy, even after reading it, or need to interact with us on matters involving your personal data, you can do so:

​

Through our service channels available through the Data Controller's email: contato@lucasmelara.com

​

Updated: October 31, 2025.

​

LM&CO