Back to Home

Privacy Policy — Orion Labs LTDA

Effective Date: July 29, 2025

Orion Labs LTDA (“Orion Labs”, “we”, “us”, or “our”) values your privacy and is committed to protecting the personal data of its users, clients, and visitors. This Privacy Policy explains how we collect, use, process, share, and safeguard your information across all platforms operated by Orion Labs, including websites, applications, trackers, software tools, and integrated third-party services (collectively referred to as the “Services”).

By accessing or using any part of our Services, you consent to the practices described herein.

1. Scope of this Privacy Policy

This Policy applies globally and to all users, including but not limited to residents of Brazil (LGPD), the European Union (GDPR), and California (CCPA/CPRA). We are committed to complying with all applicable privacy regulations.

2. Personal Data We Collect

a. Information Provided by the User:

  • Full name, email address, company name, phone number, billing address
  • Passwords and login credentials (encrypted)
  • Support tickets, chats, surveys, and feedback
  • Uploaded files, forms, or other content

b. Automatically Collected Information:

  • IP address, geographic location (approximate)
  • Browser type, device model, OS, screen resolution
  • Date/time stamps, URLs visited, time on page
  • Mouse movement, clicks, scroll behavior (behavioral analytics)
  • Tracking pixels (Meta Pixel, TikTok Pixel, Google Tag)

c. Data From Third Parties:

  • Ad platforms (Facebook, Google, TikTok)
  • CRM or analytics integrations
  • Affiliate partners and third-party APIs

3. How We Use Your Data

Your information is used to:

  • Operate and deliver all features of our Services
  • Manage and improve functionality, stability, and performance
  • Track conversions, optimize ads, and retarget users via third-party platforms
  • Analyze user behavior for service and marketing optimization
  • Provide customer support and account management
  • Detect, investigate, and prevent fraud, abuse, or security breaches
  • Comply with legal obligations, including tax and audit compliance

4. Legal Basis for Processing (GDPR)

We process your data under the following lawful bases:

  • Consent (e.g., marketing, cookies)
  • Performance of a contract (e.g., account registration, SaaS access)
  • Legal obligations
  • Legitimate interest (e.g., platform analytics, product development)

5. Cookies and Tracking Technologies

We use first-party and third-party cookies, beacons, tags, and scripts for the following purposes:

  • Session management and authentication
  • Visitor behavior analysis
  • Ad performance tracking and retargeting
  • A/B testing and UX improvements

You may manage cookie preferences via our [Cookie Settings] panel or directly through your browser.

6. Sharing and Disclosure of Data

We may share your data only when necessary, with:

  • Advertising platforms (Meta, Google, TikTok, LinkedIn, etc.)
  • Hosting and infrastructure providers (e.g., Vercel, Firebase, Supabase, Amazon AWS)
  • Analytics and performance tools (e.g., Mixpanel, Hotjar, Google Analytics)
  • CRM or automation tools (e.g., HubSpot, Intercom, Zapier)
  • Payment processors (e.g., Stripe, PayPal)
  • Regulatory authorities when required by law

We never sell or rent your data.

7. International Data Transfers

If you are located outside of Brazil, your information may be transferred to our servers in Brazil or any country where our partners operate. We use standard contractual clauses and industry-accepted safeguards to ensure data protection.

8. Data Retention

We retain your data for as long as necessary to:

  • Provide and improve Services
  • Comply with legal obligations
  • Resolve disputes and enforce agreements

Inactive user data is periodically reviewed and deleted when no longer needed.

9. Your Rights

Depending on your jurisdiction, you may:

  • Request access, correction, or deletion of your data
  • Object to or restrict processing
  • Withdraw consent (where applicable)
  • Lodge a complaint with your local data protection authority

Requests can be made via: orionlabs.adm@gmail.com

10. Children’s Privacy

Our Services are not intended for individuals under 13 years old. We do not knowingly collect or process personal data from minors.

11. Data Security

We implement:

  • SSL encryption
  • Firewalls and rate limiting
  • Token-based authentication
  • Role-based access control (RBAC)
  • Regular code audits and monitoring

Despite our efforts, no system is 100% secure. We encourage users to use strong passwords and enable 2FA where available.

12. Policy Updates

We may revise this Privacy Policy from time to time. Material changes will be announced via email or notice on our website. Continued use of the Services implies acceptance.

13. Contact Information

Orion Labs LTDA
Business Address: Rua Cel Jose Eusebio 95 Casa 13
Higienopolis
São Paulo SP
01239-030
Email: orionlabs.adm@gmail.com