top of page

Privacy Policy


We at GREENHOUSE are committed to the protection of personal data used in our activities. This Personal Data Protection and Privacy Policy was carefully developed so that you, the user of our services, can understand our policies for use and practices regarding your personal data and how the treatment of this data is carried out.

This Policy covers our data collection activities on the website accessible at address, made available and maintained by GREENHOSE that applies to the holder who interact with our products and services. This Policy explains the rules on obtaining, using the collected data, treatment, storage, data protection, transfer, enrichment of the data collected from users, in addition to their rights in relation to this data, in accordance with the law in force in Brazil .

The Policy clarifies the conditions for collecting, using, storing, processing and protecting data on the platform, in accordance with Law  General Data Protection No. 13,709 of August 14, 2018.


1. Definition


The. Personal Data: Information relating to an identified or identifiable person. Personal data that have been de-characterized, coded or anonymized, but that can be used to identify a natural person.

B. Sensitive data: Personal data about racial or ethnic origin, religious conviction, political opinion, union affiliation or organization of a religious, philosophical or political nature, data referring to health or sexual life, genetic or biometric data, when linked to a person Natural.

w. Anonymized data: It is described as “data relating to the holder that cannot be identified, considering the use of reasonable technical means available at the time of processing”. In other words, it is information that has been de-characterized at some level so that its holder can no longer be identified by simple means, but which is still important to the controller.

d. Holder: Natural person to whom the personal data that are subject to processing refer.


It is. Treatment: Any operation carried out with personal data, such as those referring to the collection, production, reception, classification, use, access, reproduction, transmission, distribution, processing, archiving, storage, elimination, evaluation or control of information, modification, communication , transfer, diffusion or extraction.


f. User: People accessing the site 


g. Controller:   Natural or legal person, public or private, who is responsible for decisions regarding the processing of personal data.  


H. Operator: Natural or legal person, public or private, who processes personal data on behalf of the controller. It is the company or professional directly responsible for processing the data, directed or hired by the controller. Both the operator and the controller must keep records about the processing of data.


i. Data Officer (DPO): Person appointed by the controller and operator to act as a communication channel between the controller, the data subjects and the National Data Protection Authority.

j. National Authority for Data Protection (ANPD): Body of the direct federal public administration of Brazil that is part of the Presidency of the Republic and has duties related to the protection of personal data and privacy, complying with Law No. 13,709/2018.


k. Consent: free, informed and unequivocal statement by which the holder agrees with the processing of his personal data for a specific purpose.


l. Cookies: are small files that are stored on the device of an internet browser, when he accesses a website for the first time. They are responsible for collecting and storing information about navigation within that environment, allowing them to be used later.


m. Platform: website made available through link



2. Personal data sources

We collect your Personal Data from the following sources:

  • SAC: It is a means of communication for the user to receive post-purchase service, answer questions and share, covering any relationship needs that the user has with us;


  • WhatsApp: Service channel for customers who wish to receive assistance to meet their needs and requests;


  • Contact: It is a means of communication for the user to receive the assistance he needs, ask questions and learn about services or share experiences, covering any relationship needs that the user has with us;


  • Data Controller Channel (DPO): We provide a channel on our website so that the data subject can contact our data controller to request information or deletion of their personal data;


  • Cookies: These are data files used to perform platform performance metrics, identify usage problems, capture user behavior in general and collect content impression data.



3. What personal data we collect about you and how it is collected


During your interaction with, using one of the aforementioned collection sources, we may collect various types of personal data about you, as set out below:

  • SAC: Full name, e-mail and data informed by you in the communication channel;


  • WhatsApp: full name, phone number and data provided by you in the platform conversation;


  • Contact: Full name, e-mail, telephone and data informed by you in the communication channel;


  • Data Controller Channel (DPO): Full name, CPF, e-mail, telephone number and data provided by you in the request form;


  • Cookies: Data is collected according to the cookies you have enabled;


  • Sensitive Personal Data: GREENHOSE does not normally deal with Personal Data considered sensitive according to current legislation, so we do not intend to collect or process sensitive personal data in the normal course of your interactions with our products or services. When there is a need to process your sensitive personal data, for whatever reason, we will obtain your prior, express and formal consent for any processing that is voluntary. If we process your sensitive personal data for other purposes, we rely on the following legal bases: (i) crime detection and prevention; and (ii) compliance with applicable law.



4.About the treatments and uses of your personal data

The following items describe the purposes for which your personal data is collected. Please note that not all uses below will be relevant to all individuals and may only apply to specific situations.

  • SAC: Your personal data are used for the purpose of providing customer service, responding through this channel to your doubts, complaints, questions and receiving your suggestions. Your data is shared with the company Tomticket performs the call management process, the company in question is committed to the rules and responsibilities and will not be shared with any other operator and/or controller.


  • WhatsApp: Your personal data is used for the purpose of providing services according to the purpose of your contact. Your data is shared with the regional representatives mentioned in this list (  according to their region who carried out the service process on behalf of GREENHOSE and will not be shared with any other controller or operator;


  • Contact: Your personal data are used for the purpose of providing customer service, answering your questions and making budgets through this channel. Your data will be shared with Wix, the website creation platform, the company in question is committed to the rules and responsibilities and will not be shared with any other operator and/or controller;


  • Data Officer (DPO): It is an exclusive channel for the data subject to carry out their requests and information about the processing of their personal data in compliance with Law nº 13.709/2018 (LGPD).

  • Our motivations for collecting and processing personal data:

  • Comply with legal obligations;

  • Our legitimate interests, thus respecting the privacy of all holders;

  • In exercising our rights as Controller;

  • Make contact and respond to requests from customers and holders;

  • Always improve experiences and relationships;

5. Data Sharing

For the execution of platform activities, whenever necessary, we may share your personal data with other companies in our group, with service providers, partners, suppliers or regulatory bodies. Below is a summary of these possibilities:

  • With our partners when necessary and/or appropriate to provide related services;

  • With companies in our group, affiliates, associates;

  • With suppliers, service providers and partners to perform contracted services (such as information technology, anti-fraud analysis, cloud storage, accounting, among others).

  • When necessary as a result of legal obligation, determination of competent authority, or court decision.

6. About the disclosure, storage or transfer of your personal data

We have taken appropriate measures to ensure that your personal data is kept confidential and secure. However, these protections do not apply to information you choose to share in public areas such as social media or with third parties.

The database collected is our property and responsibility and will not be marketed or sold to third parties, its use and access are used within the purposes of our activities and can only be provided through legal proceedings.

  • People who can access your Personal Data: Your personal data is processed by our employees or authorized agents, provided that they need to have access to such information, in accordance with the specific purposes for which your personal data has been collected;

  • Measures taken in operational environments: We store your personal data in operational environments that use security measures, both technical and administrative, to prevent any type of unauthorized access, inappropriate or unlawful treatment. Following protocols and regulations to protect your personal data;


  • International transfer of your data: Your personal data will not be transferred to other countries, except for the cases provided for in current legislation, observing in these situations all the requirements established in current legislation, and adopting the best market practices in order to guarantee the protection and privacy of your personal data;


  • Steps we expect you to take: It is important that you seek to keep your personal data secure. When creating an online account, please ensure you choose a password that is strong to prevent unauthorized parties from guessing it. We recommend that you never reveal or share your password with others. You are solely responsible for keeping this password confidential.


If you use a shared or public computer, never choose the option to remember your login and password, email address or information, make sure you log out of your account (by logging out) whenever you leave the computer.

We will never ask you to enter your password outside the platform, by phone, email or any other means of communication. The user's password must be used exclusively when accessing the platform and, if you suspect that your password has been exposed to third parties, we recommend that you immediately change your password.



7. About the retention and termination of the processing of your personal data


We will treat your personal data in accordance with current legislation, using your personal data for the period informed at each time of collection existing on the site or upon request by the holder, followed by due disposal.


You can obtain more details about the retention of your personal data through the communication channels detailed in this policy.

When at the end of the processing of your personal data, these will be eliminated within the scope and within the technical limits of the activities, the conservation being authorized in the situations provided for in the current legislation to comply with legal and regulatory obligations.



8. About personal data of children and adolescents

Green House does not knowingly solicit, collect, process, store or share personal data from children and adolescents. If we discover the occurrence of any type of manipulation of said data, unintentionally, we will remove the personal data of the child or adolescent from our records quickly.

However, personal data of children and adolescents may be collected directly from their respective parents or legal guardians, through explicit consent, and in accordance with the Law that governs this policy in its art. children must be carried out with the specific and prominent consent given by at least one parent or legal guardian.)

9. How we use Cookies

Cookies are files or information that may be stored on your device when you visit the platform's pages. Generally, a cookie contains the name of the website that originated it, its lifetime and a value, which is randomly generated.


We use cookies to facilitate use and better adapt the pages to your interests and needs, as well as to compile information about the use of our sites and services, helping to improve their structures and content. Cookies can also be used to speed up your future activities and experiences on the pages. To find out more about which cookies we use, visit our Cookie Policy


Finally, we remind you that if the user does not accept some platform cookies, certain platform services may not function correctly.


10.About your rights regarding personal data

Transparency regarding the processing of your personal data is a priority for us. In addition to the information provided in this Privacy Policy, you can also exercise your rights under the General Data Protection Act, including:     _cc781905-5cde- 3194-bb3b-136bad5cf58d_     

  • Confirmation of the existence of treatment;

  • Data access;

  • Correction of incomplete, inaccurate or outdated data;

  • Anonymization, blocking or deletion of data that is unnecessary, excessive or treated in violation of current legislation;

  • portability of data to another service or product provider, upon express request, in accordance with current legislation;

  • Elimination of personal data processed with the consent of the holder, except for the cases provided for in current legislation;

  • information from public and private entities with which the data is shared;

  • Information about the possibility of not giving consent and about the    consequences of the refusal;

  • revocation of consent for the processing of your Personal Data, except for the cases provided for in current legislation.

These rights can be exercised through the communication channels detailed in this policy, free of charge, being necessary to validate your identity by providing a copy of your RG or equivalent means of identification and authenticity, in accordance with current legislation.

Whenever a request is submitted without providing the necessary evidence to prove the legitimacy of the data subject, the request will be automatically rejected. Please note that any identifying information provided to us will only be processed in accordance with, and to the extent permitted by, applicable laws.

We point out that in certain cases, we cannot delete your personal data without also deleting your user account. Additionally, some situations require the retention of your personal data after you request its deletion, in order to satisfy legal or contractual obligations.

We do our best to answer any questions you may have about the way in which we process your personal data. However, if you have unresolved concerns, you have the right to complain to the relevant data protection authorities.


11.Changes to our Privacy Policy

Whenever we change the way we handle your personal data, this Policy will be updated. We reserve the right to make changes to our practices and this Policy at any time, provided compliance with current legislation is maintained. Any and all changes are intended to adapt to any changes to our Sites, whether changes to new technologies or whenever necessary, as well as new legal, regulatory or contractual requirements. When this happens, we will inform you on the website platform itself, whenever the user accesses it we will ensure wide dissemination and communication to all our owners.


12.How to get in touch

Whenever you have any questions about this Privacy Policy, even after reading it, or need to interact with us about matters involving your personal data, you can do so through our available service channels:

Person in charge of Personal Data Processing:

Green House will receive, investigate and respond, within a reasonable period of time, to any request or complaint about the way in which We treat your personal data, including complaints about violation of your rights under applicable privacy and Personal Data protection laws.

We recommend that you check the updated version of this Privacy Policy whenever you browse our online stores. We are always available to answer your questions and put you in control of your personal data. Count on us to keep you informed.

13. Applicable jurisdiction legislation:

The presented legal basis of the privacy policy will be interpreted according to Brazilian legislation by law 13.709/2018, in the update of Law 13.853/2019.

This document is governed by and must be interpreted in accordance with the laws of the Federative Republic of Brazil. The Jurisdiction of the Comarca of Indaiatuba/SP is elected as the competent one to resolve any issues that may arise from this document, with express waiver of any other, however privileged it may be.

Indaiatuba, June 29, 2022.

Green House.

bottom of page