The website www.usaisocert.com does not collect any user statistics, except for optional, explicit, and voluntary access to social media used to contact Massimo Venelli provided on the site.

This information applies solely to the website www.usaisocert.com and not to other websites that users may visit through links on our site. In fact, the content of those sites is not monitored or verified, nor do we know if those sites use tools to collect and process visitors’ personal data.

Therefore, we disclaim any responsibility for the material available on those sites and strongly recommend that you check the privacy policies of each site.

Rights of Data Subjects (Article 18)

1. Confirmation of the existence of data processing.
2. Access to data.
3. Correction of incomplete, inaccurate, or outdated data.
4. Anonymization, blocking, or deletion of unnecessary, excessive data, or data processed in violation of the law.
5. Data portability to another service or product provider, upon express request, in accordance with the national authority’s regulations, while observing commercial and industrial secrets.
6. Deletion of personal data processed with the data subject’s consent, except in cases provided for in Article 16 of this Law.
7. Information about public and private entities with which the controller has shared data.
8. Information on the possibility of not providing consent and the consequences of refusal.
9. Revocation of consent, as per § 5º of Article 8 of this Law.

Article 7 – Personal Data Processing Conditions

Personal data processing may only be conducted under the following conditions:

1. With the data subject’s consent.
2. To comply with a legal or regulatory obligation by the controller.
3. By public administration, for the processing and sharing of data necessary for the implementation of public policies as provided by laws and regulations or supported by contracts, agreements, or similar instruments, in accordance with the provisions of Chapter IV of this Law.
4. For conducting studies by research entities, ensuring anonymization of personal data where possible.
5. When necessary for the execution of a contract or preliminary procedures related to a contract to which the data subject is a party, upon the data subject’s request.
6. For the regular exercise of rights in judicial, administrative, or arbitration processes, the latter as per Law No. 9,307 of September 23, 1996 (Arbitration Law).
7. For the protection of the life or physical safety of the data subject or a third party.
8. For health care, exclusively, in procedures carried out by health professionals, health services, or health authorities.
9. When necessary to meet the legitimate interests of the controller or a third party, except where fundamental rights and freedoms of the data subject require personal data protection.
10. For credit protection, including as provided by relevant legislation.