• 2000 Town Center, Suite 1900, Southfield
Get in touch

Privacy Policy

Understand our commitment to your privacy.

MR2 SYSTEMS PRIVACY POLICY

 

Last Updated: [REV_10/23/2025_08:04]

MR2 Systems (“We,” “Our,” the “Company”) values your privacy and is committed to protecting the Personal Data of our users, customers, partners, and employees (“You”). This Privacy Policy describes how we collect, use, store, share, and protect your personal information when you use our services, systems, websites, and other digital products (the “Services”).

By interacting with MR2 Systems and using our Services, you acknowledge and agree to the terms of this Privacy Policy.

 

1. Important Definitions

 

  • Personal Data: Any information relating to an identified or identifiable natural person.

  • Data Subject (Titular): The natural person to whom the Personal Data refers.

  • Processing (Tratamento): Any operation performed upon Personal Data, such as collection, production, reception, classification, use, access, reproduction, transmission, distribution, processing, filing, storage, elimination, evaluation or control of information, modification, communication, transfer, dissemination, or extraction.

  • Controller (Controlador): The natural or legal person (MR2 Systems, in this case) responsible for decisions regarding the Processing of Personal Data.

  • LGPD: Brazilian General Data Protection Law (Lei nº 13.709/2018).

 

2. Personal Data Collected

 

We collect the Personal Data strictly necessary for the provision of our Services, which may include, but is not limited to:

Data Category Examples (depending on the Service)
Identification and Contact Data Full name, CPF (Brazilian tax ID), email, phone number, job title, company.
Professional/Business Data Company name, CNPJ (Brazilian company registry number), contract information, system access data.
Interaction/Usage Data IP address, geolocation data (if authorized), date and time logs, browsing history, clicks, viewed pages, cookie data.
Payment Data Financial information for service payment processing (when applicable).

 

3. How and Why We Collect Your Data

 

Your Personal Data may be collected through:

Collection Method Purpose of Processing Legal Basis (LGPD)
Registration and Forms Provision of contracted Services, issuance of invoices, relationship management. Performance of a contract or preliminary procedures.
Service Interaction Improvement of user experience, performance monitoring, security, and fraud prevention. Legitimate Interest or Compliance with a legal obligation.
Communications (email, phone) Responding to requests, sending updates and technical support information. Performance of a contract or Legitimate Interest.
Cookies and Similar Technologies Personalizing content, analyzing traffic, and serving advertisements. Consent.

 

4. Sharing of Personal Data

 

MR2 Systems does not sell or rent your Personal Data. Information sharing will occur strictly when necessary and under the following circumstances:

  • Business Partners and Suppliers: With third parties who assist us in the operation of our Services (e.g., hosting services, payment platforms, analysis tools), always under contractual obligations of confidentiality and data protection.

  • Legal or Judicial Obligation: To comply with requests from competent authorities, court orders, or in response to legal and regulatory obligations.

  • Protection of Rights: To protect the rights, property, or safety of MR2 Systems, our users, or third parties.

 

5. Data Storage and Security

 

Your Personal Data is stored in secure and controlled environments, using market best practices to ensure its confidentiality and integrity. We adopt appropriate technical and organizational measures to protect the data against unauthorized access, alteration, disclosure, or destruction, such as:

  • Data encryption in transit and at rest;

  • Strict access controls based on roles (Principle of Least Privilege);

  • Continuous security monitoring.

Data will be kept only for the time necessary to fulfill the purposes for which it was collected, respecting legal and regulatory deadlines.

 

6. Data Subject Rights

 

In accordance with the LGPD, you, as the Data Subject, have the following rights:

  1. Confirmation of the existence of data processing;

  2. Access to your data;

  3. Correction of incomplete, inaccurate, or outdated data;

  4. Anonymization, blocking, or deletion of unnecessary or excessive data, or data processed in non-compliance with the LGPD;

  5. Data Portability to another service or product provider;

  6. Deletion of personal data processed with your Consent;

  7. Information about public and private entities with which the Controller has shared data;

  8. Information about the possibility of refusing Consent and the consequences of such refusal;

  9. Revocation of Consent, when it is the legal basis.

To exercise any of these rights, please use the contact channel indicated in section 8 of this Policy.

 

7. Use of Cookies

 

We use cookies and similar technologies to ensure the proper functioning of our websites, improve your experience, personalize content and advertisements, and analyze our traffic.

You can manage your cookie preferences through your browser settings or, if available, through our cookie consent management tool.

 

8. Contact and Data Protection Officer (DPO)

 

For any questions about this Policy, how we process your Personal Data, or to exercise your rights as a Data Subject, please contact our Data Protection Officer (DPO):

  • DPO: [DPO DEPARTMENT]

  • Email: [DPO@MR2SYSTEMS.COM]

  • Address: [2000 Town Center, Suite 1900, Southfield]

 

9. Changes to this Policy

 

MR2 Systems reserves the right to modify this Privacy Policy at any time to improve our Services and comply with legislation. The revised version will be published on our website with the date of the last update. We recommend that you consult it periodically.