PRIVACY POLICY & DATA PROTECTION

Last updated: June 2, 2026

This Privacy Policy describes how WorkCoherence LLC (“we,” “our,” or “the company”) collects, uses, and shares your personal information. This document was prepared to comply with applicable data protection laws, including the LGPD (Brazil), GDPR (EU and UK), CCPA/CPRA (USA), nFADP (Switzerland), PIPEDA (Canada), and other international privacy regulations.

YOUR RIGHTS AT A GLANCE: You have full control over your data. You may access, correct, port, or delete your information at any time. To exercise your rights, contact us at: [email protected]

1. Data Controller

The entity responsible for processing your personal data is:

• Company Name: WorkCoherence LLC
• EIN: 85-3739980
• Privacy Contact: [email protected]

2. Data We Collect

We collect information in the following ways:

• Voluntarily provided information: Through contact forms, we collect your name, email address, phone number, and the content of your message.
• Automatically collected information: When you visit our website, we collect technical data via cookies and similar technologies (such as the Meta Pixel and Google Tag Manager), including IP address, browser type, and browsing behavior.

3. Purpose and Legal Basis

We process your data for the following purposes, based on the legal grounds established by the LGPD and GDPR:

• Contact & Inquiries: Name, Email, Phone — Contract performance
• Marketing & Advertising: Cookies and Pixel — Consent
• Website Improvement: Technical data (GTM) — Legitimate interest
• Security & Auditing: Access logs and IP — Legal obligation

4. Cookies and Tracking Technologies

We use CookieYes to ensure you have control over your privacy preferences in compliance with Google’s Consent Mode v2.

• Technologies used: Google Analytics 4 (analytics), Meta Pixel & CAPI (ad conversion), and Google Tag Manager (script management).
• Consent management: No marketing or statistical cookies will be activated without your explicit consent. You may change or withdraw your consent at any time through the cookie settings widget in the footer of our website.

5. Data Sharing

We do not sell your data. It is shared only for operational purposes with:

• Service providers: Website hosting and CRM systems.
• Advertising platforms: Google and Meta (for paid traffic measurement).
• Legal obligation: Competent authorities, when required by law.

6. International Data Transfers

As we use global services (Google, Meta, AWS), your data may be processed on servers outside your country of residence. We ensure such transfers occur under appropriate legal mechanisms, such as Standard Contractual Clauses (SCCs).

7. Your Rights

Depending on your location, you have the following rights:

• Confirmation and Access: Know whether we process your data and access it.
• Correction and Deletion: Correct incomplete data or request its permanent removal.
• Withdrawal: Revoke consent for cookie use at any time.
• Objection: Refuse the processing of data based on legitimate interest.

To exercise any of these rights, send an email to: [email protected]

8. Retention Period

• Contact data: Retained for 12 months after the last interaction, or until a deletion request is made.
• Cookie/marketing data: Retained according to Meta and Google policies, not exceeding 24 months.
• Security logs: Retained for up to 6 months.

9. Security

We implement strict technical measures, including SSL/TLS encryption, and organizational access controls to protect your data against unauthorized access or accidental leaks.

10. Global Compliance

• Brazil (LGPD): Full compliance with Law No. 13,709/2018.
• USA (CCPA/CPRA): We respect your right to opt out and do not sell personal data.
• Europe (GDPR): Granular consent management and full transparency regarding international data transfers.