Alex Fernando Rodrigues
Privacy Policy
Personal data processing, security, legal basis, sharing, retention and data subject rights.
This Privacy Policy explains how alexfernando.com processes personal data on institutional pages, articles, contact forms, project pages, professional content, external links and administrative areas.
The website is intended to reflect the same governance, transparency, minimization and security standards expected from data protection, information security and responsible automation projects.
1. Controller and DPO contact
For the website’s own operations, the controller is Alex Fernando Rodrigues. Personal data matters should be addressed to dpo@alexfernando.com.
2. Scope and data subjects
This policy applies to website visitors, article readers, people contacting through forms, WhatsApp, email or social networks, companies interested in services, project participants, administrative users and people accessing project pages linked to this domain.
3. Data processed, purposes and legal basis
| Situation | Data | Purpose | Main legal basis |
|---|---|---|---|
| Browsing | IP address, date and time, page accessed, browser, device and security logs. | Operation, security, audit, technical diagnosis and abuse prevention. | Legitimate interest, legal obligation and regular exercise of rights. |
| Contact forms | Name, email, phone, company, subject, message, date, IP and browser agent. | Responding to requests, organizing service and keeping minimum history. | Pre-contractual procedures, legitimate interest and consent where applicable. |
| WhatsApp, email or social networks | Sender identification, message content, voluntarily submitted files and channel metadata. | Support, screening, response and communication record. | Pre-contractual procedures, contract performance, legitimate interest and regular exercise of rights. |
| Administrative area | Credentials, session data, logs, IP, two-factor authentication and audit records. | Access control, traceability, security and integrity protection. | Legitimate interest, legal obligation and information security. |
4. Sensitive data and minors
The website does not generally request sensitive data. If such data is voluntarily submitted, it will be processed only when necessary for the requested purpose, legal analysis, rights defense or legal compliance. The website is not directed to children.
5. Cookies and local storage
The website is designed to use only necessary cookies and technical records for operation, security, administrative sessions and privacy notice preference. See the Cookie Policy.
6. Sharing and international transfers
Personal data is not sold. It may be shared with hosting, database, email, security, backup, support, communication or legal/technical partners when necessary. Some technology providers may process data outside Brazil, subject to appropriate legal basis and safeguards.
7. Security and retention
Security measures include administrative access control, two-factor authentication, audit logs, CSRF protection, least privilege, component review and sensitive directory restrictions. Data is retained only as needed for service, security, legal compliance and regular exercise of rights.
8. Data subject rights
Data subjects may request confirmation, access, correction, anonymization, blocking, deletion, portability, information about sharing, review of automated decisions, objection and withdrawal of consent, subject to legal limits. Requests should be sent to dpo@alexfernando.com.
9. Automated decisions and AI
The website may use technical automations for security, content organization and operations. No solely automated decision with relevant legal effects is declared for ordinary visitors. Future AI features with relevant impact will require updated transparency.
10. Updates
This policy may be updated to reflect legal, regulatory, technical or operational changes.