Privacy – Common Questions

What is GDPR?

The General Data Protection Regulation, or GDPR, is a European Union (EU) law that governs how organizations inside and outside the EU handle the personal data of EU residents.

Does Blip have a Privacy Program?

Yes. Blip has a formal privacy and data protection program, which includes structuring a privacy team, establishing policies, processes and technological controls, among other requirements for compliance with privacy legislations.

How is personal data collected?

When you access and use our website or our Blip platform, or when you interact with the Blip Group in other ways, we may collect your personal data in different ways, such as those indicated below:

• By providing information by you, when you fill out the data to register on the Blip platform, to subscribe to our newsletter, to request more information about our solutions, to talk to “Contato Inteligente Blip”, to participate in events promoted by the Company and other companies in the group or when you contact the Company directly by other means or communication channels, such as telephone, email or messages on our social networks.
• By automatically collecting data, such as information about the type of your device, unique identifier number of your device, browser type, approximate geographic location, through tools in your browser and other technologies, such as cookies. (See our Cookie Policy).
• By receiving your personal data from recruitment companies, referrals, or other people who share your data with us for the purpose of allowing you to participate in selection processes conducted by the Company.
• By receiving your personal data through our partners, group companies, service providers, suppliers or third parties, such as in cases where we have business relationships with your employer, when we may receive your personal data to ensure our communication and confirm your identity as an employee of that company or for your registration on the Blip platform. We also receive your personal data from companies with which you have a business relationship and that use chatbot services or other solutions provided by the Blip Group.

Why do we collect your personal data?

Blip processes your personal data for various purposes, depending on your relationship with the Company and the way you interact with us.

The main purposes for which we collect, process or otherwise process your personal data include the following:

• User registration;
• Creation and use of the Blip Platform;
• To charge for the use of the platform and other products/services;
• To respond to your questions, compliments, complaints, suggestions and to communicate with you;
• To promote our activities;
• For marketing, sending information about our products or services;
• To contact potential customers, leads and prospects;
• To conduct satisfaction surveys;
• To recruit new employees;
• To analyze the use of our platform;
• To ensure the security of our platforms;
• To comply with legal, regulatory obligations or court orders;
• To defend ourselves in legal, administrative or arbitration proceedings;
• To ensure the security of our facilities and employees;
• To ensure the protection of your health, the health of our employees and third parties;
• To evaluate new acquisitions;
• To investigate possible complaints;
• For credit analysis;
• To hold meetings, videoconferences or telephone conferences;
• To receive referrals from third parties;
• To conduct internal audits.

The full content of the main purposes for which we collect, process or otherwise handle your personal data can be found in the Privacy Policy.

Are there records of personal data processing activities?

Yes. Blip maintains an inventory of personal data showing the processing activities.

Does Blip process sensitive personal data?

Blip does not intend to process sensitive personal data for its operations. We only collect personal data that is strictly necessary to comply with our legal obligations and to perform our contractual activities.

Does Blip share my data with partners, service providers, suppliers and third parties? If so, how can I prevent this from happening?

We may share your personal data with our partners, as set out in our Privacy Policy.

Our partners, service providers, suppliers and third parties are carefully evaluated and we maintain agreements with them defining the responsibilities regarding the processing of your data and applicable security requirements.

If you disagree with any sharing, you can exercise your right here on the Data Privacy and Security Portal in the Privacy Rights option.

About cookies

Cookies are files that help us recognize your access to our website and the Blip Platform. With them, we can personalize and improve your experience, in addition to facilitating safe navigation.

Want to know more about how we use cookies or how to disable them? See our Cookie Policy.

How long do we keep your data?

The Blip Group is committed to processing your personal data only for the period necessary to achieve the specific purposes of each processing, with data retention for the shortest possible period, taking into account all existing legal and regulatory obligations and the need to defend the Company’s interests in judicial, administrative or arbitration proceedings.

Are there subcontracted companies that will have access to my personal data? How does Blip monitor or control the legitimacy of this use?

Blip may subcontract third-party data processors with whom it may share the personal data received, such as cloud providers and service tools.

In all cases, Blip will be responsible for all its sub-operators, as well as requiring them to comply with obligations and levels of Information Security and adherence to applicable Privacy Legislations.

How do I correct or update my personal data?

You can exercise your rights here on the Data Privacy and Security Portal under the Privacy Rights option.

How do I revoke my consent for data processing?

You can exercise your rights here on the Data Privacy and Security Portal under the Privacy Rights option.

How can I exercise the rights of the data subject?

You can exercise your rights here on the Data Privacy and Security Portal under the Privacy Rights option.

What is the deadline for receiving a response to a request?

The response period is up to 15 days from the date of the request sent by the data subject, as established by Privacy legislation.

Requests can be registered here on the Data Privacy and Security Portal under the Privacy Rights option.

Who are the processing agents?

In the case of a Blip Platform licensing relationship, the customer is considered the Controller and Blip is the processor of the personal data provided by the customer and transmitted on the Blip Platform.

Who is the Data Protection Officer (DPO)? And what is the contact channel?

Blip has a Data Protection Officer who ensures compliance with privacy legislation in the way the Organization processes your data and that your rights as a data subject are respected.

You can communicate with the Data Protection Officer via email at [email protected] .

How do we protect your data?

Blip adopts good and best practices to protect the privacy and confidentiality of your information, thus maintaining security measures in accordance with applicable legal standards for protecting information against unauthorized access and use, alteration and destruction.

We conduct training to educate and raise awareness among our employees to ensure compliance with the relevant policies, procedures and rules regarding the privacy and confidentiality of information.

Can I make a request on behalf of someone else?

Yes. To do so, submit your request through the Data Privacy and Security Portal in the Privacy Rights option.

I am an employee, how can I exercise my rights?

You can exercise your rights here on the Data Privacy and Security Portal under the Privacy Rights option.