PRIVACY POLICY

Last updated: September 14, 2023

Summary

Presentation

  1. Settings
  2. Ownership of Personal Data
  3. What information can Agres collect from you?
  4. What are your rights regarding the personal data collected?
  5. How can we use Personal Data in marketing and advertising?
  6. Option to opt out of receiving marketing communications
  7. Possibility to delete Personal Information
  8. Storage Period
  9. Data security and protection
  10. Independent evaluations of our compliance with the Privacy Policy
  11. Use of Agres Products by minors
  12. International Transfers and Users
  13. Third-party services and user-generated content
  14. How to contact us
  15. Updates to this Privacy Policy

Presentation

Agres values ​​the privacy and security of your information. Therefore, we have developed this Privacy Policy. The objective of this document is to establish, in a clear way for data holders, the rules for collection, storage, use, processing, sharing and deletion of data and information eventually collected by Agres in its various channels.

This Privacy Policy is an essential part of Agres' commitment to respect and comply with the provisions of the General Data Protection Law (“LGPD”) – Law No. 13.709/2018.

1. Definitions

According to art. 5th of the General Data Protection Law, the following definitions apply to this Privacy Policy:

  1. Personal Data: information related to a natural or identifiable person;
  2. Sensitive Personal Data: personal data on racial or ethnic origin, religious conviction, political opinion, membership of a trade union or organization of a religious, philosophical or political nature, data relating to health or sexual life, genetic or biometric data, when linked to a natural person;
  3. Sensitive Personal Data: natural person to whom the personal data subject to processing refer;
  4. Controller: natural or legal person, governed by public or private law, who is responsible for decisions regarding the processing of personal data.
  5. Operator: natural or legal person, governed by public or private law, who processes personal data on behalf of the controller. 

2. Ownership of Personal Data

You are the owner of the data you provide to us when you purchase, open an account or use any Agres product or service, including data generated from agricultural equipment you own or use (“Personal Data”). Personal Data remains yours even after you share it with us. By providing Personal Data you declare that you have the right to share it with us and allow us to use and disclose it as explained in this Privacy Policy.

3. What information can Agres collect from you?

Agres will only collect data from its customers, product users, participants in events organized by Agres and those who interact with Agres' online channels. The use of Personal Data collected is only for the purposes specified here:

GoalPersonal Data CollectedLegal Basis for Data Processing (art. 7, LGPD)
Contact for customer serviceName, address, telephone number, email, location and contact preferencesConsent
Activities of a user on the websiteAccess device identifiers and IP addressLegal Obligation and Legitimate Interest
Contracting ServicesInformation about payment methods, including credit cards, billing address, debtor's CPF, transaction data.Contract Execution and Consent
MarketingName, address, telephone number, email and contact preferencesConsent
Deliver, manage, develop and improve Agres products and services;Information about your farming operations, which includes map or boundaries, weather, climate, agronomic data, crop losses, crop yield, environmental data, farming practices, seed planting rates, fertilizer application rate, and other uploaded information and data , introduced, transmitted or stored in Agres products or servicesContract Execution and Consent
Provide the best delivery of online services.Information about the device, including Media Access Control (MAC) address, screen resolution, operating system name and version, device manufacturer and model, as well as the type and version of browser used.Execution of the Contract
Marketing and Security CookiesConsent
MarketingPixel tags/Web beaconsConsent

The Personal Data mentioned in the table is defined as follows:

  • Your browser or device: When you use websites or online services, certain information is collected by most browsers or automatically via your device, including your Media Access Control (MAC) address, screen resolution, operating system name and version, manufacturer and model device, as well as the type and version of the browser you are using. We use this information to ensure that websites or online services function properly.
  • Use of cookies and similar technologies: Cookies are information stored directly on the computer you are using. Cookies allow us to collect information such as type of browser, time spent using the pages visited, language preferences and other anonymous traffic data. We and our Service Providers use the information for security purposes, to facilitate navigation, to display information more effectively and to personalize your experience with the use of online services. We also collect statistical information about the use of online services to make continuous improvements to their functionality, understand how they are used and to resolve issues that concern them. If you do not want us to collect this information through cookies, most browsers allow you to automatically refuse cookies or allow you to refuse to transfer cookies from a particular website to your computer. On the other hand, if you do not accept cookies, you may experience some inconvenience in your use of Agres services and its website. For example, we may not be able to recognize your computer, in which case you may have to log in each time you access applicable online services.
  • Use of pixel tags and other similar technologies: Pixel tags (also known as web beacons and clear GIFs) can be used in connection with some online services to, among other things, track the activities of users of online services (including email recipients), measure the success of our marketing campaigns and compile statistics on the use of online services and response rates.
  • IP adress: Your IP address is a number automatically assigned by your ISP to the computer you are using. The IP addresses can be automatically identified and logged on our servers whenever the user accesses the online services, together with the time of the visit and the pages visited. The collection of IP addresses is standard and done automatically by many websites, applications and other services. We use this information to understand and analyze trends, administer the site, diagnose problems with online services, learn about user behavior on the site, improve our products and services and collect demographic information about our user base as a whole.
  • Physical location: We can collect the physical location of your device, for example using signals from GNSS (eg GPS, A-GPS, GLONASS, etc.), cell tower, WiFi and Bluetooth. We may use your device's physical location to provide you with personalized products and content regarding the location. In some cases, you will be able to choose between allowing or denying such uses and / or sharing the location of your device, but if you choose to decline, we may be prevented from providing you with applicable products and personalized content.

4. What are your rights regarding the personal data collected?

Every data subject has a list of rights that can be exercised when necessary. These rights aim to protect Personal Data and the privacy of data subjects.

According to art. 18 of the LGPD, the rights of holders of Personal Data against the Controller, at any time and upon request, are: confirmation of the existence of data processing; access to data; correction of incomplete, inaccurate or outdated data; anonymization, blocking or deletion of unnecessary, excessive or processed data that does not comply with the provisions of the law; data portability; deletion of personal data processed with the holder’s consent; information from public and private entities with which the controller shared data; information about the possibility of not providing consent and the consequences of refusal; and revocation of consent.

5. How can we use Personal Data in marketing and advertising?

We will not use Personal Data to promote or advertise third party products or services without your consent. If you consent, you may withdraw your consent at any time. We may use Personal Data to contact you about our products and services, subject to your right to withdraw your consent to these communications, as explained below.

6. Opting out of receiving marketing communications

You can opt out of receiving further marketing communications from Agres by communicating to our team, via telephone, email, website and through our online services. Please note, however, that we may still send you important administrative messages relating to your use of Agres products and services, which you cannot opt ​​out of receiving.

7. Possibility to delete Personal Information

As the holder, you have the right to request the deletion of any Personal Data related to Agres products and services, at any time (art. 18, IV and VI, of the LGPD).

Our intention is that, once you have made the request and we have taken the necessary steps, Personal Data will no longer be available to us, as provided in this Privacy Policy. Unless you request that your account be closed or Personal Data be deleted, we will only retain Personal Data to the extent necessary to fulfill the purposes for which it was initially collected, as mentioned above, unless otherwise stated or permitted by law. Personal Data may be subject to legal retention requirements, which may require us to retain Personal Data for several years.

There are some limitations to your ability to have Personal Data deleted. Specifically, you may not delete Personal Data that:

  • Have been incorporated into the Aggregated Information; or
  • We are using it to support your use of Agres products and services when you request deletion.

In addition, you will not be able to exclude certain information if its retention, in our reasonable discretion, is necessary or appropriate: (i) to comply with applicable law and procedural requirements, or (ii) to protect our rights such as to seek legal remedies available or limit the damage that we may suffer. Also, please note that if we have information received from third parties, in addition to what you have provided yourself, your request for deletion may not mean that all corresponding information from other sources is also deleted.

If you would like Personal Data to be deleted (other than the exceptions to deletion above), please contact us at [email protected]. In your request, make it clear what information you want to see deleted. For your protection, we may implement requests with respect to the information associated with the email used to send your request, and we can take other steps to confirm your identity before implementing your request. We will endeavor to comply with your request as soon as reasonably practicable, but always respecting the legal deadlines, if applicable.

8. Storage Period

Personal Data collected by Agres will be stored for the time necessary to ensure proper treatment in accordance with the legal hypotheses mentioned above. The termination of the processing of personal data will occur in the cases provided for in art. 15 of the LGPD, including the revocation, by the holder, of their consent.

9. Security and data protection

To protect your privacy and security, we take certain measures designed to verify your identity before granting access to our services. It is your responsibility to maintain the security of your password and account information at all times and for all transactions made from that account.

When your Personal Information is stored by Agres, we use computer systems with limited access, maintained in facilities that include physical security measures. All of your data is stored encrypted, even when using third-party storage.

We do not collect any Sensitive Personal Data.

We take reasonable measures to protect Personal Data, from an organizational, technical and administrative point of view. If you have reason to believe that your interaction with us is no longer secure, please notify us immediately.

10. Independent assessments of our compliance with the Privacy Policy

We may hire assessments made by third parties independent of Agres' systems and procedures to confirm that they are in accordance with the Privacy Policy.

11. Use of Agres Products by minors

Agres' products and services are not intended for children under 18 (eighteen) years. We ask that these people do not provide us with any information or use our products and services.

12. International Transfers and Users

Agres is controlled and managed in Brazil. Even so, Personal Data may be stored and processed in Brazil or in another country where we have facilities or hire Service Providers, and by using Agres products or services you consent to the transfer of information to countries outside Brazil, which may have rules regarding data protection different from those in force in Brazil.

13. Third Party Services and User Generated Content

This Privacy Policy does not deal with policies or practices for the collection, use, disclosure or security of third parties, information provided by them, or any other of their practices, nor are we responsible for them. This includes, for example:

  • Third parties that operate a website or service linked to Agres' online products or services; and
  • Any mobile application developer or provider, social media platform provider, operating service provider, wireless service provider, or device manufacturer.

We are not responsible for the information, including personal data, that you submit on any service with user-generated content, such as posting a question on social media, answering or blogging anywhere with interface with the Agres public. The personal data you submit at these locations will become public, unless clearly indicated otherwise, and therefore can be read, collected or used by other users and can be used to send you unsolicited messages.

14. How to contact us

If you have any questions about Agres' Privacy Policy or the processing of your data, you can contact us via phone, email, website and also through our online services. Since e-mail communications are not always secure, do not include information about your credit card or other sensitive information in your e-mails sent to us.

15. Updates to this Privacy Policy

We may change this Privacy Policy at any time, but we will always indicate when this Privacy Policy was last updated. Any changes to this Privacy Policy will take effect when we post or distribute the revised Privacy Policy. If your personal contact details are stored in our database, it is possible that you will be notified of this update by email, or some other equivalent method. The use of Agres products and services based on these changes signifies your acceptance of the revised Privacy Policy.