Privacy Policy
Privacy & Personal Data
1. Privacy Policy and Data Processing of Genio
Preamble:
Genio is a trademark of the company Genio, registered in Spain. We are a SaaS platform, and our main sales area is in Brazil, particularly in Rio de Janeiro and São Paulo.
At Genio, we build strong and lasting relationships with our clients, partners, and users, based on mutual trust. Ensuring the security and confidentiality of your personal data is a top priority for us.
Genio complies with all European and Brazilian regulatory and legislative provisions regarding the protection of personal data.
We apply a strict privacy policy to ensure the protection of personal data for users of our platform:
- Each user remains in control of their data. It is processed transparently, confidentially, and securely.
- Genio is committed to continuously protecting its users' data in compliance with the General Data Protection Regulation (GDPR) and applicable local laws.
Definitions
- "Personal Data": any information relating to an identified or identifiable natural person.
- "we": refers to the company Genio.
- "Platform": refers to this website and/or mobile application (Genio.com), as well as any sub-sites, mirror sites, or sub-domains, where applicable.
- "Data Controller": refers to the natural or legal person who determines the purposes and means of the processing.
- "Processor": refers to the natural or legal person who processes Personal Data on behalf of the Data Controller.
- "you": any user/visitor of the Platform.
Purpose of this policy
We place great importance on protecting your Personal Data. This policy aims to inform you of the conditions under which we collect, process, use, and protect your personal data through our platform. Please read it carefully to understand which categories of data are collected, how they are used, and with whom we may share them. The policy also describes your rights and how you can contact us to exercise them or ask questions.
Identity and contact details of the Data Controller
The Data Controller is Genio, a company registered in Spain.
Collection and origin of personal data
We collect your Personal Data directly (via forms on our Platform) or indirectly (via your employer or the technologies of our Platform). We are committed to obtaining your consent and/or allowing you to object to the use of your data, as required. You may withdraw your consent at any time in the relevant sections of the client area of the Platform.
2. Types of Personal Data we collect and use
We may collect and process the following types of Personal Data:
- Information provided through forms (registration, account customization, participation in satisfaction surveys, etc.)
- Authentication, login, and browsing information (identifiers, IP address, cookies, etc.)
- Order management and payment information (food preferences, payment information, etc.)
- Content shared through posts, comments, or other contributions.
Regarding DNA tests:
- Sample retention: Genio does not retain DNA test samples. These are kept by our partner medical analysis laboratory, which is responsible for their storage and processing.
- DNA test results: By providing a sample, you authorize Genio to store the data resulting from your DNA test for the purpose of improving our services and personalizing our offerings for you. You may request at any time that Genio delete this data.
Certain data is mandatory, and its absence may prevent the processing of your request.
3. Purposes for which we use personal data
The data is used for the following purposes:
| No. | Purpose of processing | Legal basis | Data retention period |
|---|---|---|---|
| 1 | Manage and process account creation and management requests on the Platform | Performance of our contractual relationship with you and/or your employer | Up to 12 months after the last activity or account deletion |
| 2 | Provide services and deliverables ordered on the Platform | Performance of our contractual relationship with you and/or your employer | Up to 5 years after the end of our contractual relationship |
| 3 | Respond to your contact requests with the sales team | Performance of our contractual relationship with you and/or your employer | Up to 3 years after the last contact |
| 4 | Allow you to view your balance and/or history, your consumption | Performance of our contractual relationship with you and/or your employer | Until account deletion |
| 5 | Offer you promotions for our products and services, send newsletters | Legitimate interest in improving our services; Consent for receiving offers | Clients: Up to 36 months after the last activity; Prospects: 3 years |
| 6 | Share data with partners for advertising targeting purposes | Consent | Up to 12 months after the last activity or account deletion |
| 7 | Conduct satisfaction surveys | Legitimate interest in improving our services | Up to 12 months after the last activity or account deletion |
| 8 | Personalize and improve your experience on the Platform | Legitimate interest in improving our services | Up to 12 months after the last activity or account deletion |
| 9 | Store your payment data to facilitate transactions | Consent | Until consent withdrawal |
| 10 | Store data related to your food preferences | Consent | Until consent withdrawal |
| 11 | Store data related to invoices | Compliance with legal obligations | Up to 10 years |
| 12 | Store DNA test results to improve our services | Consent | Until consent withdrawal |
4. Retention period of your personal data
We retain your Personal Data for a period that does not exceed what is necessary for the purposes for which it is collected and processed. After this period, some data may be retained for evidentiary purposes, to comply with legal retention periods, or to fulfill contractual obligations.
5. Communication of personal data
We limit access to your Personal Data to our teams who need to know it to process your request or provide the requested service. We do not disclose your Personal Data to unauthorized third parties, except in the following cases:
- Sharing with our processors for service management (technical providers, secure payment providers, etc.)
- Sharing with our commercial partners (with your prior consent)
- Responding to a legal obligation, a public authority request, or the need to protect the rights and safety of individuals.
6. Transfers of personal data
To ensure the security and confidentiality of transferred Personal Data, we take all necessary measures to ensure that they receive adequate protection, such as signing Standard Contractual Clauses from the European Commission or Brazilian authorities or any other equivalent mechanism.
7. Your rights
You have certain rights regarding the processing of your Personal Data, including:
- Right of access and rectification : Request access to and correction of Personal Data.
- Right to erasure : Request the deletion of Personal Data in certain cases.
- Right to restriction : Request the restriction of data processing.
- Right to object : Object to receiving direct marketing messages.
- Right to data portability : Request the transfer of your Personal Data to another data controller.
- Right to set out advance directives : Specify how you want your data to be handled after your death.
- Right to lodge a complaint : File a complaint with a competent supervisory authority.
To exercise these rights, contact us at: dpo@geniolife.com
We may ask for additional information to identify you and process your request.
8. Security
We implement all necessary technical and organizational measures to ensure the security and confidentiality of Personal Data processing. This includes physical protection measures, secure authentication processes, data encryption, and connection logging.