NetworkCore
← Home

Privacy Policy

Last updated: 18 de junho de 2026

This Policy explains how Vitrion Serviços e Treinamentos em TI Ltda – ME (CNPJ 50.071.838/0001-44) handles personal data in NetworkCore, in compliance with Brazilian Law No. 13.709/2018 (LGPD).

1. Who is the controller

Vitrion Serviços e Treinamentos em TI Ltda – ME (CNPJ 50.071.838/0001-44), headquartered at Rua Gilberto Freire, 12, Vila Maria, Bandeirantes/PR, Brazil, ZIP 86360-205, is the controller of the data processed on the portal. Data Protection Officer (DPO): Felipe Padilha, dpo@networkcore.io.

2. Data we process

  • Registration: name, email, and company (optional).
  • Billing and invoicing: tax ID (CPF/CNPJ), phone, and address, to issue charges and the invoice.
  • Authentication: email and password (the password is stored only as a hash, never in plain text); if you use "Sign in with Google", we receive the name and email of the Google account.
  • Payment: processed by the payment provider (e.g., Asaas). We do not store card data. We keep the status, amount, and dates of charges.
  • Licensing: a computer fingerprint (derived from hardware identifiers, stored as a hash) and the name you give the machine, to bind the license.
  • Validation: date/time and IP address on periodic license checks.

We do not collect your network data. The OLT/ONU inventory and telemetry stay on your computer (the app's local storage), out of our reach.

3. Purposes and legal bases

  • Providing the service and managing the account/license: performance of a contract.
  • Billing and tax obligations: compliance with a legal obligation.
  • Fraud prevention and license validation: legitimate interest.
  • Communications about the service (transactional): performance of a contract.
  • News and tips by email and/or WhatsApp: consent, optional and revocable at any time under Account → Communications.

4. Sharing (processors)

We share only what is necessary with providers that enable the service:

  • Hostinger: infrastructure hosting (the server running the site, database, and authentication; the account data listed above is stored here).
  • Asaas: payment processing (receives name, email, and tax ID to issue the charge).
  • Resend: sending transactional emails (receives the recipient's name and email).
  • Meta (WhatsApp): sending WhatsApp communications, only if you consent (receives your name and phone). Also subject to Meta's policies.
  • Google: optional OAuth login (receives/returns name and email if you choose "Sign in with Google"); and Google Analytics, only if you consent to analytics cookies (usage metrics, with anonymized IP).

These processors handle data on our behalf, under contract and only for the purposes above. We do not sell personal data nor use it for third-party advertising.

5. International transfer

Some processors (e.g., Google and Meta/WhatsApp) may process data outside Brazil. In those cases, we require adequate safeguards, as per the LGPD.

6. Cookies

We use two categories of cookies:

  • Necessary (always on): keep your login session and the portal's security. Without them the service does not work.
  • Analytics (off by default): Google Analytics (cookies _ga/_gid) for usage metrics. They are only set if you consent; without consent, Google Analytics is not loaded.

We do not use advertising cookies. You can review your choice at any time via Manage cookies (site footer).

7. Retention

We keep each type of data only for as long as necessary. As a rule:

  • Account data (name, email, company): while the account exists.
  • License validation logs (IP hash + date/time): up to 6 months.
  • Support ticket diagnostics (app logs/context): anonymized 12 months after closure.
  • Financial records (charges/invoices): 5 years, by tax obligation.

Once the account is closed, data is deleted or anonymized within 30 days, except what the law requires us to retain (e.g., tax records).

8. Your rights (art. 18 of the LGPD)

You may request: confirmation and access, correction, anonymization or deletion, portability, information about sharing, and withdrawal of consent. In the portal, under Account, you can already do on your own: download all your data (access/portability, in JSON) and delete the account (deletion). For other requests or questions, write to contact@networkcore.io.

9. Security

We adopt technical and organizational measures to protect data (access control, encryption in transit, credential segregation). No system is 100% immune; in case of a relevant incident, we will act in accordance with the LGPD.

10. Changes

We may update this Policy; relevant changes will be communicated via the portal or by email.