Privacy Policy

Last Updated: February 18, 2026

At GRM Sys ("we," "our," or "us"), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile applications and services.

1. Information We Collect

1.1 Information You Provide

We may collect information that you voluntarily provide to us when you:

• Create an account or register for our services
• Use our mobile applications
• Contact our customer support
• Subscribe to our newsletters or marketing communications
• Participate in surveys or promotions

This information may include:

• Name and email address
• Account credentials
• Profile information
• User-generated content and data
• Communication preferences

1.2 Automatically Collected Information

When you use our applications, we may automatically collect certain information, including:

• Device information (model, operating system, unique device identifiers)
• Usage data (features used, time spent, interactions)
• Log data (IP address, access times, app crashes)
• Location data (with your permission)
• Analytics and performance data

2. How We Use Your Information

We use the collected information for various purposes, including:

• Providing, maintaining, and improving our services
• Creating and managing your account
• Personalizing your experience
• Communicating with you about updates, features, and support
• Analyzing usage patterns and trends
• Detecting and preventing fraud or security issues
• Complying with legal obligations
• Sending marketing communications (with your consent)

3. Data Sharing and Disclosure

3.1 Third-Party Service Providers

We may share your information with trusted third-party service providers who assist us in operating our applications and services, including:

• Cloud hosting and storage providers
• Analytics services
• Payment processors
• Customer support platforms
• Marketing and communication tools

These providers are contractually obligated to protect your information and use it only for the purposes we specify.

3.2 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities, including to meet national security or law enforcement requirements.

3.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

4. Data Security

We implement appropriate technical and organizational measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit and at rest
• Regular security assessments and audits
• Access controls and authentication mechanisms
• Secure data storage practices

However, no method of transmission over the internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

5. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law. When we no longer need your information, we will securely delete or anonymize it.

6. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information, including:

• Access: Request access to the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information
• Portability: Request a copy of your data in a structured format
• Objection: Object to certain processing of your information
• Withdrawal of Consent: Withdraw consent for processing where applicable

To exercise these rights, please contact us at privacy@grmsys.com.br.

7. Children's Privacy

Our services are not intended for children under the age of 13 (or the applicable age of consent in your jurisdiction). We do not knowingly collect personal information from children. If we become aware that we have collected information from a child without parental consent, we will take steps to delete that information.

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those in your country. We ensure appropriate safeguards are in place to protect your information in accordance with this Privacy Policy.

9. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience, analyze usage, and deliver personalized content. You can control cookie preferences through your browser settings, but disabling cookies may limit certain features of our services.

10. Third-Party Links

Our applications may contain links to third-party websites or services. We are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies before providing any personal information.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements. We will notify you of any material changes by posting the updated policy on our website and updating the "Last Updated" date. Your continued use of our services after such changes constitutes acceptance of the updated policy.

12. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

GRM Sys
Email: privacy@grmsys.com.br
General Inquiries: contact@grmsys.com.br
Website: grmsys.com.br

13. Specific Information for Residents of Certain Jurisdictions

13.1 European Economic Area (EEA) and United Kingdom

If you are located in the EEA or UK, you have additional rights under the General Data Protection Regulation (GDPR), including the right to lodge a complaint with a supervisory authority.

13.2 California Residents

If you are a California resident, you have rights under the California Consumer Privacy Act (CCPA), including the right to know what personal information we collect, the right to delete your information, and the right to opt-out of the sale of your information. We do not sell personal information.

13.3 Brazil Residents

If you are located in Brazil, you have rights under the Lei Geral de Proteção de Dados (LGPD), including the right to access, correct, and delete your personal data.

By using our services, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.