We know that it is tiring to read large texts and we understand that it makes you feel lazy, but we believe that reading it is very important so that you understand perfectly well how and for what purpose your personal data can be processed by IMI and which our and your responsibilities when creating an account (it’s not as complicated as it sounds). Therefore, we will use an informal language here to make it easier for you to read and understand it very carefully.
We, at IMI, always seek to offer the best experience possible to ensure that you get the most out of our products and services, because, like you, the privacy and security of your personal data are very important to us!
Of course, we know that ensuring privacy goes beyond compliance with legislation. It is respecting our customers and potential customers, honoring our pillars of transparency partnership, security, simplicity and a positive experience.
Thus, IMI’s Privacy Policy always seeks (and always does):
(i) Reinforce our commitment to privacy and security in the treatment of information collected from our customers and other data subjects;
(ii) Demonstrate, in a transparent and simple way, which data are processed (as defined below) by IMI, the reason and the way we use to collect, store, process, transfer and consult this data;
(iii) Introduce how we protect your data;
(iv) Define when and how you can control your privacy preferences, as well as update, transfer and manage your information through our mobile application (“App”).
The IMI Privacy Policy applies to all services offered by IMI that use Personal Data (as defined below) of customers, potential customers, employees and/or third parties (“Data Subjects”).
By accessing and using the products or services offered by IMI, you fully agree and accept the provisions of the Policy.
Here we will define some terms for a better understanding of the next items.
Follow below!
a) What is the General Data Protection Regulation (GDPR)?
The General Data Protection Regulation (GDPR) establishes rules on how personal data (of an individual) must be treated in physical or digital media. The purpose of this law is to protect your rights to freedom and privacy.
b) What changes with the General Data Protection Regulation?
The GDPR determines that any personal data processing activity must respect the privacy of the data subject involved. In this way, the activity must provide clear, accurate and easily accessible information about:
• How personal data will be treated;
• For what purpose this data will be used;
• What are the measures applied for the security of this information;
• What rights the holder has over their personal data;
IMI, valuing the safety of its customers, has adopted internal procedures to meet all the requirements of the GDPR.
c) This data protection law applies to whom?
The GDPR protects the processing of personal data of an individual, but a legal entity is also subject to comply with the rules of the LGPD in situations involving the processing of personal data of their customers.
d) What is the purpose of the General Data Protection Law?
The purpose of the law is to protect the freedom and privacy rights of the holders of personal data.
e) What can be considered as personal data?
Personal data is information that allows the individual to be identified directly (ID, proof of address, etc.) or indirectly (data recorded during their access to applications and websites).
f) What is sensitive personal data?
This information opens the way to discrimination against the individual and, therefore, deserves a higher level of protection and care. It is data that reveals religious conviction, political opinion, union membership, ethnic or racial origin, information regarding health, sex life, genetics and biometrics, when linked to a natural person.
We process your information to develop and improve our products and services. In some cases, you will be able to manage the information collected and/or used by IMI, through one of the service channels for privacy matters indicated in item 9 of this Policy, as well as the way in which you use our services.
What do you mean? We can explain.
Different information is collected when you use our App or Website:
(i) Data provided by the Holder:
It is the information provided by you when interacting, contracting or using any products or services provided by IMI, such as:
Name, email, telephone number, id, address, occupation, marital status, image of your official identity documents or any other Personal Data provided to create or change your digital account or to simulate or contract any product or service provided by IMbank.
The verification and confirmation of Personal Data may, at the discretion of IMI, be carried out by outsourced partner companies, which will respect the same security and privacy criteria here established.In this part we count on you! You will be only and exclusively responsible for the veracity of the Personal Data provided to IMI when registering, quoting and/or contracting any products or services. IMI is not responsible for the veracity of the data provided, as well as for any damages resulting from the inaccuracy and/or outdatedness of your information.
(ii) Data collected while using our services on the APP or website (browsing):
the information collected by IMI when you browse and/or use our services, such as Browsing Data (search history, browsing history, dates and times of access, resources used, the way in which you use products and services, problems of the App and other system activities. This information is important for a better performance of the features available on the website and App and to enable the display of content that is important to you); Geolocation, (information we collect about your location that allows us to guarantee greater security for your transactions based on geographic location points (anti-fraud), improve your experience in the App, showing, for example, the establishments that accept our products and services, identify the origin of a call received in our service channels).
Are they also collected from other sources? Yea! IMI may collect information from outsourced partner companies, suppliers and service providers, respecting the purposes set out in this Policy. These companies may change depending on the services offered by IMI and the information collected.
This is easy! We explain in the smallest details! The Personal Data collected, under the terms of this Policy, is used for the following purposes:
• Comply with our contractual obligations, in particular the execution of the terms of your contract with IMI;
• Comply with applicable legal and/or regulatory requirements;
• Provide you with our products and services;
• Notify you of any changes to our products and services;
• Reinforce our safety and security procedures to provide a safer and more effective service;
• Protect credit;
• Manage our provision of services and/or supply of products;
• Conduct internal operations, including supporting customers and other data subjects, troubleshooting, data analysis, testing, research and statistics;
• Improve our services and products, ensuring they are presented in the most effective way to you;
• Evaluate or understand the effectiveness of the advertising we serve in order to provide advertising that is relevant to you;
• Allow you to participate in interactive features of our services, when you choose to do so;
• Provide information about other services and/or products we offer;
• Offer products or services that are appropriate and relevant to your interests;
• Produce evidence and assist in the conduct of legal, administrative or arbitration proceedings, as well as assist in the fulfillment of other legal requirements; and
• Make automated decisions regarding the use of our services.
All data that you actively provide to us or that we collect is considered confidential. Thus, we undertake to adopt all technical and administrative measures capable of protecting your Personal Data, observing, for example, the guidelines on security standards established in current legislation.
If you would like more information about the third parties with whom we share your Personal Data, please contact us through our support channels.
IMI and/or the related companies keep personal data in their database throughout the contractual relationship and, when necessary to comply with a legal and/or regulatory obligation (as in cases of legal proceedings and remittance operations), keep the data even after the end of that relationship. Personal data can also be deleted upon request by the holder, unless there is any legal hypothesis that justifies the storage of the data. In this case, the holder will be informed of the reason for preventing elimination.
We at IMI care for the privacy of your data and, in accordance with data protection and bank secrecy rules, we only share your information for the purposes set out in this Privacy Policy. Seus dados pessoais são compartilhados com:
Your personal data is shared with:
1. IMI partner companies for commercial purposes, registration and legal obligations, always adopting adequate measures to guarantee the protection of personal data;
2. Suppliers and third-party companies to provide services, approved by IMI;
3. Public bodies and competent authorities in the fulfillment of legal and/or regulatory obligations, or for the protection of the Organizations interests in any type of conflict, including lawsuits and administrative proceedings Don’t worry!
Any information sharing is done strictly to the extent necessary and following strict security and confidentiality standards, as well as banking secrecy rules and other privacy protection laws and rules, always respecting and ensuring that third parties respect the confidentiality of your information. .
If you would like more information about the third parties with whom we share your Personal Data, please contact us through our support channels.
At this point in your reading, you already know almost everything about our Privacy Policy: what it is, why we use it, how we use it and where we store it all. Now we need to talk about the international transfer of personal data.
IMI may share your Personal Data with business partners, service providers, suppliers and subcontractors located in other countries for the purposes described in this Policy, such as:
• carry out international remittance operations;
• Problems solution;
• data storage and analysis;
• comply with the provision of our products and services.
We will only share data with third parties who are in countries that provide the degree of data protection provided for in the GDPR.
IMI guarantees that the transmission of your Personal Data is carried out in accordance with applicable privacy laws and, in particular, that adequate contractual, technical and organizational measures are observed, ensuring greater security for your Personal Data.
For Privacy related matters, you can:
• In the App, access the Privacy Center available on your profile through your account’s home menu.
If this option is unavailable, you can:
• Access the chat on the App;
• Call the Call Center by phone 11 4000-2005 (capitals and metropolitan regions) and xxxxxxxxx (for other locations);
• If you are abroad, the service will be carried out through the chat on the App;
• Assistance to people with special speech and hearing needs will be carried out through chat on the App, or by phone xxxxxxxxxxxx;
• If you are not satisfied with the solution presented, contact the Ombudsman by telephone xxxxxxx available from Monday to Friday, from 9 am to 6 pm (except holidays);
To report any suspicious attitude and/or communicate conduct considered antithetical, which violates the IMI Code of Conduct and Ethics and/or current legislation by our employees, partners and customers, you can use the channel https://imibank.com.br/en/denunciations/ or send email to privacidade@imibank.com.br.
The terms of this Policy may be modified at any time, due to changes in laws or in the products or services we provide, as a result of the updating of technological tools or, when necessary, at our discretion, such as due to the offer of new products or services, after all we need to keep up to date, right?!. When we make relevant changes, Data Subjects will be informed by means of a notice on our App, Website, email or by any other means of communication available, at the discretion of IMI. Be sure to carefully read any concerning this subject.
Any questions about this Policy can be addressed with our Personal Data Protection Officer by email privacidade@imibank.com.br. It is available on weekdays from 9 am to 6 pm and you will receive a response within a maximum period of 5 days.
The use of our services will imply express acceptance of the terms and conditions of the Privacy Policy in force on the date of use. For data subjects who do not agree with the current Privacy Policy, we recommend not using our products or services. Non-acceptance or refusal to provide the requested information may prevent the provision of such products or services.
Any kind of conflict regarding the terms presented in this Privacy Policy will be resolved in accordance with Brazilian law, with the jurisdiction of the city of São Paulo – SP, excluding any other, however privileged it may be.
The use of services and/or orders commanded outside Brazilian territory, as the case may be, or those derived from operations initiated abroad may also be subject to the legislation and jurisdiction of the authorities of the countries where they are commanded or initiated.
That’s it! If you still have any questions, just send an email to privacidade@imibank.com.br.
It will be a pleasure to help! 😀