This privacy policy informs about the data we collect when you use our website. By collecting this information, we act as a data controller and, by law, we must provide information about us, why and how we use your data, and also the rights you have.
We are KODUS, CNPJ 32.774.570/0001-25. We are located at Rua Joaquim Anacleto Bueno, 1-20, Bauru – SP. You can contact us at our physical address, or by email at contato@kodus.io
We also have a data protection officer, so any questions or requests regarding the use of your personal data should be directed to our data manager:
When you use our site to browse our products and services and view the information we provide, various cookies are used by us and by third parties to enable the site to function, collect useful information about visitors, helping to make your user experience better.
Some of the cookies we use are strictly necessary for the operation of our website, and we do not ask for your consent to place them on your computer.
However, for cookies that are useful but not strictly necessary, we will always ask for your consent before collecting them.
When you send an inquiry/response through our website, we request your name, contact phone, and email.
We use this information to respond to your inquiry, including providing information requested about our products and services.
We may also email you several times after your inquiry to follow up on your interest and ensure that we have responded satisfactorily. We do this based on our legitimate interest in providing accurate information.
Your inquiry is stored on our server and will be treated only as a result of your request via our website.
We do not use the information you provide to make any automated decisions that may affect you.
We keep your inquiry email for two years, after which it is archived and kept securely for five years, when we delete them. CRM records are kept for three years after the last contact with you.
By law, you can ask us what information we have about you, and you can ask us to correct it if it is inaccurate. If we have requested your consent to process your personal data, you may withdraw this consent at any time, as well as request data deletion.
If we are processing your personal data for reasons of consent or to fulfill a contract, you may ask us for a copy of the information in a readable format so that you can transfer it to another provider. You can also request the deletion of your data.
You have the right to ask us to stop using your information for a period if you believe that we are not doing so legally.
To send a request about your personal data by email, mail, or phone, use the contact information provided above.
If you have a complaint about the use of your information, we prefer that you contact us directly so that we can address your complaint.
We regularly review and, if appropriate, update this privacy policy from time to time, and as our services and use of personal data evolve. If we want to use your personal data in a way that we have not previously identified, we will contact you to provide information about this and, if necessary, request your consent.
We will update the version number and date of this document every time it is changed.
We do not use your data for the training of external Language Model (LLM) models. It is worth noting that we employ OpenAI’s API for some natural language processing functionalities, and according to OpenAI’s data policy, data transmitted through the API is not retained or used to train its AI models.
🔒 All our integrations are performed via API, adhering to the OAuth2 standard, which is renowned for providing high levels of security to your data. You maintain full control over the permissions granted, being able to adjust or revoke access at any time.
All interactions with integrated platforms are conducted securely via API, using the HTTPS protocol to ensure the integrity and confidentiality of transmitted data.
The data collected serves as the foundation for:
We highlight that we do not store raw data from integrated platforms. All retained data has already undergone a processing phase, maintaining only the crucial information for the generation and maintenance of the desired artifacts. This practice aims to minimize data retention, reaffirming our commitment to the privacy and security of user data.
We use Amazon Web Services (AWS) cloud services to ensure the security, integrity, and availability of our application and users’ data. AWS is a recognized cloud service platform that provides robust IT infrastructure and meets the highest standards of security and compliance.
AWS’s security certifications and assurances, such as ISO 27001, SOC 1, and SOC 2, allow us to create a secure environment to process and store data. Data is protected by robust access control mechanisms and encryption, both in transit and at rest, ensuring the privacy and security of users’ data at all times.
We continue to adhere to best practices in security and compliance, ensuring strict control and monitoring of data access.
🔒 JIRA has a particularity where to retrieve a piece of information, we need a set of scopes that cover that information. For example, to get the issue, we need all Scopes related to issues to have permission.