Privacy Policy

Last updated: 06/01/2026

We collect only the data we need to run our website and improve your experience. We do not sell your personal data. You have the right to access, correct, or delete your information at any time. For full details, read on.

1. Who We Are

Financial ComoGanhoDinheiro(“we”, “us”, “our”) is the data controller responsible for your personal data. We operate the website at financial.comoganhodinheiro.com

This Privacy Policy applies to all personal data collected through our website, newsletter, comments, forms, and any other services we provide. It should be read alongside our Cookie Policy, which details how we use tracking technologies.

2. What Personal Data We Collect

2.1 Data You Provide Directly

Data TypeWhen / How CollectedExamples
Account & Registration DataWhen you register or create an accountName, email address, username, password (hashed)
Contact & Inquiry DataWhen you fill out a contact or feedback formName, email, message content
Comment DataWhen you post a comment on our siteName, email, website URL, comment text
Newsletter & Subscription DataWhen you subscribe to updates or newslettersEmail address, subscription preferences, opt-in timestamp
Payment DataWhen you make a purchase (if applicable)Billing name, address — card details processed by our payment provider, not stored by us

2.2 Data Collected Automatically

Data TypeHow CollectedExamples
Technical / Log DataServer logs, automatically on each visitIP address (anonymized where required), browser type, operating system, referrer URL, pages visited, timestamps
Usage & Analytics DataCookies and analytics tools (with consent)Session duration, page views, clicks, scroll depth, geographic region (country/city level)
Advertising & Interaction DataThird-party advertising cookies (with consent)Ad impressions, clicks, conversions, inferred interests
Device & Connection DataAutomatically, on site loadDevice type, screen resolution, language setting, time zone

2.3 Data From Third Parties

We may receive data about you from third-party sources, including:

  • Social media platforms (if you interact with our social content or use social login);
  • Advertising partners (e.g., audiences or conversion signals from Google or Meta);
  • Analytics providers (aggregated, anonymized insights).

3. How and Why We Use Your Data

PurposeData UsedLegal Basis (GDPR)
Providing and maintaining the websiteTechnical/log data, account dataLegitimate interest (Art. 6(1)(f))
Responding to your inquiries and commentsContact data, comment dataContract / Legitimate interest (Art. 6(1)(b)(f))
Sending newsletters and updatesEmail address, preferencesConsent (Art. 6(1)(a))
Analyzing site performance and user behaviorUsage/analytics data (anonymized)Consent (Art. 6(1)(a))
Displaying personalized advertisingAdvertising & interaction dataConsent (Art. 6(1)(a))
Processing paymentsPayment dataContract (Art. 6(1)(b))
Complying with legal obligationsAny relevant dataLegal obligation (Art. 6(1)(c))
Preventing fraud and ensuring securityTechnical/log data, account dataLegitimate interest (Art. 6(1)(f))

We do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects on you.

4. Cookies and Tracking Technologies

We use cookies and similar technologies on our website. For a full breakdown of the cookies we use, their purposes, and how to manage them, please read our dedicated Cookie Policy.

5. How We Share Your Data

We do not sell your personal data. We may share it with the following categories of recipients:

RecipientPurposeSafeguards
Hosting / Infrastructure ProviderStoring and serving the websiteData Processing Agreement (DPA)
Google LLC (Analytics, Ads)Analytics and advertising (with consent)DPA + Standard Contractual Clauses (SCCs)
Meta Platforms (Facebook Pixel)Advertising measurement (with consent)DPA + SCCs
Email / Newsletter ServiceSending newsletters and communicationsDPA
Payment Processor (if applicable)Processing transactions securelyPCI-DSS compliance + DPA
Legal & Regulatory AuthoritiesCompliance with court orders or legal obligationsAs required by law

All third-party processors are required to handle your data in accordance with applicable privacy laws and only for the purposes we specify. We do not allow them to use your data for their own marketing.

6. International Data Transfers

Some service providers we use are located outside your country of residence, including outside the European Economic Area (EEA) or Brazil. In such cases, we ensure that appropriate safeguards are in place:

  • Standard Contractual Clauses (SCCs) — approved by the European Commission and recognized under UK and Brazilian frameworks;
  • Adequacy decisions — where the European Commission or Brazilian ANPD has recognized the destination country as providing adequate protection;
  • EU-U.S. Data Privacy Framework — for transfers to certified U.S. organizations.

You may request a copy of the relevant safeguards by contacting us at here.

7. Data Retention

Data TypeRetention PeriodReason
Account dataDuration of account + 2 years after deletion requestLegal compliance, dispute resolution
Contact form submissions2 years from last contactResponding to follow-up queries
CommentsUntil deletion is requested or content is removedPublishing and moderation
Newsletter subscriptionsUntil you unsubscribe + 30 daysConsent record-keeping
Analytics dataUp to 26 months (anonymized)Performance analysis
Server / access logs90 daysSecurity monitoring
Financial / payment records7 years (or as required by local tax law)Legal / fiscal obligation

When data is no longer needed, it is securely deleted or irreversibly anonymized.

8. Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • HTTPS encryption for all data in transit;
  • Access controls and authentication requirements for data systems;
  • Regular security reviews and software updates;
  • Limited access to personal data on a need-to-know basis.

No method of transmission over the internet or electronic storage is 100% secure. In the event of a data breach that poses a risk to your rights and freedoms, we will notify the relevant authorities and, where required, affected individuals in accordance with applicable law.

9. Your Rights

Depending on your country of residence, you have the following rights regarding your personal data:

🔍 Right of AccessRequest a copy of the personal data we hold about you.

✏️ Right to RectificationRequest correction of inaccurate or incomplete data.

🗑️ Right to ErasureRequest deletion of your personal data (“right to be forgotten”).

⏸️ Right to RestrictionRequest that we limit how we process your data in certain circumstances.

📦 Right to PortabilityReceive your data in a structured, machine-readable format.

🚫 Right to ObjectObject to processing based on legitimate interest or for direct marketing.

↩️ Right to Withdraw ConsentRevoke consent at any time without affecting prior processing.

🤖 Right re: Automated DecisionsNot to be subject to solely automated decisions with significant effects.

To exercise any of these rights, contact us here. We will respond within 30 days (extendable to 60 days for complex requests, with notice). We may ask you to verify your identity before processing the request. There is no fee for exercising your rights, unless requests are manifestly unfounded or excessive.

10. Jurisdiction-Specific Information

🇪🇺 European Union / EEA — GDPR

We process your data in accordance with Regulation (EU) 2016/679 (GDPR). The legal bases for processing are listed in Section 3. If you believe our processing violates the GDPR, you have the right to lodge a complaint with your national Data Protection Authority (DPA). Find your DPA at edpb.europa.eu.

🇧🇷 Brazil — LGPD (Lei Geral de Proteção de Dados)

We process personal data in accordance with Lei nº 13.709/2018. The applicable legal bases include consent (Art. 7, I), legitimate interest (Art. 7, IX), and legal obligation (Art. 7, II), as described in Section 3. You may submit requests or complaints to the Autoridade Nacional de Proteção de Dados (ANPD) at gov.br/anpd.

🇺🇸 California, USA — CCPA / CPRA

California residents have additional rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA):

  • Right to Know — categories and specific pieces of personal information collected, used, disclosed, or sold;
  • Right to Delete — request deletion of personal information we have collected;
  • Right to Opt-Out — opt out of the “sale” or “sharing” of personal information for cross-context behavioral advertising;
  • Right to Correct — request correction of inaccurate personal information;
  • Right to Limit — limit the use of sensitive personal information;
  • Right to Non-Discrimination — we will not discriminate against you for exercising your rights.

We do not knowingly sell personal information of consumers under 16.

🇨🇦 Canada — PIPEDA / Québec Law 25

We comply with the Personal Information Protection and Electronic Documents Act (PIPEDA) and, for Québec residents, the Act respecting the protection of personal information in the private sector (Law 25). You may withdraw consent for non-essential processing at any time. To exercise your rights or file a complaint, contact the Office of the Privacy Commissioner of Canada at priv.gc.ca.

🇬🇧 United Kingdom — UK GDPR / PECR

We process UK residents’ data in accordance with the UK GDPR and the Data Protection Act 2018. Complaints may be directed to the Information Commissioner’s Office (ICO) at ico.org.uk.

🇦🇺 Australia — Privacy Act 1988 / APPs

We handle personal information in accordance with the Australian Privacy Principles (APPs). Complaints may be submitted to the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.

11. Children’s Privacy

Our website is not directed at children under 13 years of age (or under 16 in the EU/EEA). We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected data from a child, we will delete it promptly.

12. Third-Party Websites and Links

Our website may contain links to third-party websites. This Privacy Policy applies only to our website. We are not responsible for the privacy practices of other sites and encourage you to review their privacy policies before providing any personal data.

13. Newsletter and Marketing Communications

If you subscribe to our newsletter, we will use your email address to send you updates, news, and promotional content based on your consent. You may unsubscribe at any time by clicking the “unsubscribe” link in any email or by contacting us directly. After unsubscribing, we will retain your email address for up to 30 days as a suppression record to prevent accidental re-subscription.

14. Comments and User-Generated Content

When you post a comment on our website, your name, email address, and comment text are collected and published. Your email address is not publicly displayed but is used for spam detection and moderation purposes. We use an automated spam filtering service (e.g., Akismet) that may process your comment data. Comments may be retained indefinitely as part of our published content unless you request their removal.

15. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in law, technology, or our data practices. When we make material changes, we will update the “Last updated” date at the top of this page and, where required by law, notify you via email or a prominent site notice and seek renewed consent if necessary. We encourage you to review this policy periodically.

16. Contact and Complaints

For questions, concerns, or requests regarding this Privacy Policy or the processing of your personal data, please contact us.

If you are not satisfied with our response, you have the right to lodge a complaint with the relevant supervisory authority in your jurisdiction (see Section 10 for authority links by country).